SUSE-SU-2025:0555-1
- Source
- https://www.suse.com/support/update/announcement/2025/suse-su-20250555-1/
- Import Source
- https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2025:0555-1.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/SUSE-SU-2025:0555-1
- Related
- Published
- 2025-02-14T15:25:28Z
- Modified
- 2025-02-14T15:25:28Z
- Summary
- Security update for the Linux Kernel
- Details
-
The SUSE Linux Enterprise 15 SP4 RT kernel was updated to receive various security bugfixes.
The following security bugs were fixed:
- CVE-2024-50199: mm/swapfile: skip HugeTLB pages for unuse_vma (bsc#1233112).
- CVE-2024-53104: media: uvcvideo: Skip parsing frames of type UVCVSUNDEFINED in uvcparseformat (bsc#1234025).
- CVE-2024-53166: block, bfq: fix bfqq uaf in bfqlimitdepth() (bsc#1234884).
- CVE-2024-53177: smb: prevent use-after-free due to opencacheddir error paths (bsc#1234896).
- CVE-2024-56600: net: inet6: do not leave a dangling sk pointer in inet6_create() (bsc#1235217).
- CVE-2024-56601: net: inet: do not leave a dangling sk pointer in inet_create() (bsc#1235230).
- CVE-2024-56602: net: ieee802154: do not leave a dangling sk pointer in ieee802154_create() (bsc#1235521).
- CVE-2024-56623: scsi: qla2xxx: Fix use after free on unload (bsc#1235466).
- CVE-2024-56631: scsi: sg: Fix slab-use-after-free read in sg_release() (bsc#1235480).
- CVE-2024-56642: tipc: Fix use-after-free of kernel socket in cleanup_bearer() (bsc#1235433).
- CVE-2024-56645: can: j1939: j1939sessionnew(): fix skb reference counting (bsc#1235134).
- CVE-2024-56648: net: hsr: avoid potential out-of-bound access in fillframeinfo() (bsc#1235451).
- CVE-2024-56650: netfilter: xtables: fix LED ID check in ledtg_check() (bsc#1235430).
- CVE-2024-56658: net: defer final 'struct net' free in netns dismantle (bsc#1235441).
- CVE-2024-56664: bpf, sockmap: Fix race between element replace and close() (bsc#1235249).
- CVE-2024-56704: 9p/xen: fix release of IRQ (bsc#1235584).
- CVE-2024-56759: btrfs: fix use-after-free when COWing tree bock and tracing is enabled (bsc#1235645).
- CVE-2024-57791: net/smc: check return value of sock_recvmsg when draining clc data (bsc#1235759).
- CVE-2024-57792: power: supply: gpio-charger: Fix set charge current limits (bsc#1235764).
- CVE-2024-57798: drm/dpmst: Ensure mstprimary pointer is valid in drmdpmsthandleup_req() (bsc#1235818).
- CVE-2024-57849: s390/cpum_sf: Handle CPU hotplug remove during sampling (bsc#1235814).
- CVE-2024-57893: ALSA: seq: oss: Fix races at processing SysEx messages (bsc#1235920).
- CVE-2024-57897: drm/amdkfd: Correct the migration DMA map direction (bsc#1235969).
The following non-security bugs were fixed:
- NFS: Adjust the amount of readahead performed by NFS readdir (bsc#1231847).
- NFS: Do not flush the readdir cache in nfsdentryiput() (bsc#1231847).
- NFS: Improve heuristic for readdirplus (bsc#1231847).
- NFS: Trigger the 'ls -l' readdir heuristic sooner (bsc#1231847).
- tipc: fix NULL deref in cleanup_bearer() (bsc#1235433).
- x86/static-call: Remove earlybootirqs_disabled check to fix Xen PVH dom0 (git-fixes).
- References
-
- https://www.suse.com/support/update/announcement/2025/suse-su-20250555-1/
- https://bugzilla.suse.com/1230697
- https://bugzilla.suse.com/1231847
- https://bugzilla.suse.com/1233112
- https://bugzilla.suse.com/1233642
- https://bugzilla.suse.com/1234025
- https://bugzilla.suse.com/1234690
- https://bugzilla.suse.com/1234884
- https://bugzilla.suse.com/1234896
- https://bugzilla.suse.com/1234931
- https://bugzilla.suse.com/1235134
- https://bugzilla.suse.com/1235217
- https://bugzilla.suse.com/1235230
- https://bugzilla.suse.com/1235249
- https://bugzilla.suse.com/1235430
- https://bugzilla.suse.com/1235433
- https://bugzilla.suse.com/1235441
- https://bugzilla.suse.com/1235451
- https://bugzilla.suse.com/1235466
- https://bugzilla.suse.com/1235480
- https://bugzilla.suse.com/1235521
- https://bugzilla.suse.com/1235584
- https://bugzilla.suse.com/1235645
- https://bugzilla.suse.com/1235723
- https://bugzilla.suse.com/1235759
- https://bugzilla.suse.com/1235764
- https://bugzilla.suse.com/1235814
- https://bugzilla.suse.com/1235818
- https://bugzilla.suse.com/1235920
- https://bugzilla.suse.com/1235969
- https://bugzilla.suse.com/1236628
- https://www.suse.com/security/cve/CVE-2024-50199
- https://www.suse.com/security/cve/CVE-2024-53095
- https://www.suse.com/security/cve/CVE-2024-53104
- https://www.suse.com/security/cve/CVE-2024-53144
- https://www.suse.com/security/cve/CVE-2024-53166
- https://www.suse.com/security/cve/CVE-2024-53177
- https://www.suse.com/security/cve/CVE-2024-54680
- https://www.suse.com/security/cve/CVE-2024-56600
- https://www.suse.com/security/cve/CVE-2024-56601
- https://www.suse.com/security/cve/CVE-2024-56602
- https://www.suse.com/security/cve/CVE-2024-56623
- https://www.suse.com/security/cve/CVE-2024-56631
- https://www.suse.com/security/cve/CVE-2024-56642
- https://www.suse.com/security/cve/CVE-2024-56645
- https://www.suse.com/security/cve/CVE-2024-56648
- https://www.suse.com/security/cve/CVE-2024-56650
- https://www.suse.com/security/cve/CVE-2024-56658
- https://www.suse.com/security/cve/CVE-2024-56661
- https://www.suse.com/security/cve/CVE-2024-56664
- https://www.suse.com/security/cve/CVE-2024-56704
- https://www.suse.com/security/cve/CVE-2024-56759
- https://www.suse.com/security/cve/CVE-2024-57791
- https://www.suse.com/security/cve/CVE-2024-57792
- https://www.suse.com/security/cve/CVE-2024-57798
- https://www.suse.com/security/cve/CVE-2024-57849
- https://www.suse.com/security/cve/CVE-2024-57893
- https://www.suse.com/security/cve/CVE-2024-57897
- https://www.suse.com/security/cve/CVE-2024-8805
Affected packages
SUSE:Linux Enterprise Micro 5.3 / kernel-rt
Package
- Name
- kernel-rt
- Purl
- pkg:rpm/suse/kernel-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.3
SUSE:Linux Enterprise Micro 5.3 / kernel-source-rt
Package
- Name
- kernel-source-rt
- Purl
- pkg:rpm/suse/kernel-source-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.3
SUSE:Linux Enterprise Micro 5.4 / kernel-rt
Package
- Name
- kernel-rt
- Purl
- pkg:rpm/suse/kernel-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.4