GoogleOSV:SUSE-SU-2024:2929-1Security update for the Linux Kernel
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
The SUSE Linux Enterprise 15 SP4 kernel was updated to receive various security bugfixes.
The following security bugs were fixed:
- CVE-2024-39494: ima: Fix use-after-free on a dentry’s dname.name (bsc#1227716).
- CVE-2024-41069: ASoC: topology: Fix route memory corruption (bsc#1228644).
- CVE-2024-40954: net: do not leave a dangling sk pointer, when socket creation fails (bsc#1227808)
- CVE-2024-42145: IB/core: Implement a limit on UMAD receive List (bsc#1228743)
- CVE-2024-40994: ptp: fix integer overflow in max_vclocks_store (bsc#1227829).
- CVE-2024-41012: filelock: Remove locks reliably when fcntl/close race is detected (bsc#1228247).
- CVE-2024-42093: net/dpaa2: Avoid explicit cpumask var allocation on stack (bsc#1228680).
- CVE-2024-40989: KVM: arm64: Disassociate vcpus from redistributor region on teardown (bsc#1227823).
- CVE-2024-41059: hfsplus: fix uninit-value in copy_name (bsc#1228561).
- CVE-2024-40956: dmaengine: idxd: Fix possible Use-After-Free in irq_process_work_list (bsc#1227810).
- CVE-2024-41090: tap: add missing verification for short frame (bsc#1228328).
- CVE-2024-41011: drm/amdkfd: do not allow mapping the MMIO HDP page with large pages (bsc#1228114).
- CVE-2024-39463: 9p: add missing locking around taking dentry fid list (bsc#1227090).
- CVE-2021-47598: sch_cake: do not call cake_destroy() from cake_init() (bsc#1226574).
- CVE-2024-40937: gve: Clear napi->skb before dev_kfree_skb_any() (bsc#1227836).
- CVE-2024-35901: net: mana: Fix Rx DMA datasize and skb_over_panic (bsc#1224495).
- CVE-2024-42230: powerpc/pseries: Fix scv instruction crash with kexec (bsc#1194869).
- CVE-2024-26585: Fixed race between tx work scheduling and socket close (bsc#1220187).
- CVE-2024-36974: net/sched: taprio: always validate TCA_TAPRIO_ATTR_PRIOMAP (bsc#1226519).
- CVE-2024-38555: net/mlx5: Discard command completions in internal error (bsc#1226607).
The following non-security bugs were fixed:
- NFS: Do not re-read the entire page cache to find the next cookie (bsc#1226662).
- NFS: Reduce use of uncached readdir (bsc#1226662).
- NFSv4.x: by default serialize open/close operations (bsc#1226226 bsc#1223863).
- X.509: Fix the parser of extended key usage for length (bsc#1218820).
- btrfs: sysfs: update fs features directory asynchronously (bsc#1226168).
- cgroup/cpuset: Prevent UAF in proc_cpuset_show() (bsc#1228801).
- jfs: xattr: fix buffer overflow for invalid xattr (bsc#1227383).
- kABI: rtas: Workaround false positive due to lost definition (bsc#1227487).
- kernel-binary: vdso: Own module_dir
- net/dcb: check for detached device before executing callbacks (bsc#1215587).
- ocfs2: fix DIO failure due to insufficient transaction credits (bsc#1216834).
- powerpc/rtas: Prevent Spectre v1 gadget construction in sys_rtas() (bsc#1227487).
- powerpc/rtas: clean up includes (bsc#1227487).
- workqueue: Improve scalability of workqueue watchdog touch (bsc#1193454).
- workqueue: wq_watchdog_touch is always called with valid CPU (bsc#1193454).
References
bugzilla.suse.com/1156395
bugzilla.suse.com/1190336
bugzilla.suse.com/1191958
bugzilla.suse.com/1193454
bugzilla.suse.com/1193554
bugzilla.suse.com/1193787
bugzilla.suse.com/1193883
bugzilla.suse.com/1194324
bugzilla.suse.com/1194826
bugzilla.suse.com/1194869
bugzilla.suse.com/1195065
bugzilla.suse.com/1195254
bugzilla.suse.com/1195341
bugzilla.suse.com/1195349
bugzilla.suse.com/1195357
bugzilla.suse.com/1195668
bugzilla.suse.com/1195927
bugzilla.suse.com/1195957
bugzilla.suse.com/1196018
bugzilla.suse.com/1196746
bugzilla.suse.com/1196823
bugzilla.suse.com/1197146
bugzilla.suse.com/1197246
bugzilla.suse.com/1197762
bugzilla.suse.com/1197915
bugzilla.suse.com/1198014
bugzilla.suse.com/1199295
bugzilla.suse.com/1202346
bugzilla.suse.com/1202686
bugzilla.suse.com/1202767
bugzilla.suse.com/1202780
bugzilla.suse.com/1209636
bugzilla.suse.com/1213123
bugzilla.suse.com/1215587
bugzilla.suse.com/1216834
bugzilla.suse.com/1218820
bugzilla.suse.com/1220185
bugzilla.suse.com/1220186
bugzilla.suse.com/1220187
bugzilla.suse.com/1221044
bugzilla.suse.com/1222011
bugzilla.suse.com/1222728
bugzilla.suse.com/1222809
bugzilla.suse.com/1222810
bugzilla.suse.com/1223635
bugzilla.suse.com/1223863
bugzilla.suse.com/1224488
bugzilla.suse.com/1224495
bugzilla.suse.com/1224671
bugzilla.suse.com/1225573
bugzilla.suse.com/1225829
bugzilla.suse.com/1226168
bugzilla.suse.com/1226226
bugzilla.suse.com/1226519
bugzilla.suse.com/1226537
bugzilla.suse.com/1226539
bugzilla.suse.com/1226550
bugzilla.suse.com/1226553
bugzilla.suse.com/1226554
bugzilla.suse.com/1226556
bugzilla.suse.com/1226557
bugzilla.suse.com/1226558
bugzilla.suse.com/1226559
bugzilla.suse.com/1226561
bugzilla.suse.com/1226562
bugzilla.suse.com/1226563
bugzilla.suse.com/1226564
bugzilla.suse.com/1226567
bugzilla.suse.com/1226569
bugzilla.suse.com/1226572
bugzilla.suse.com/1226574
bugzilla.suse.com/1226575
bugzilla.suse.com/1226576
bugzilla.suse.com/1226577
bugzilla.suse.com/1226580
bugzilla.suse.com/1226583
bugzilla.suse.com/1226585
bugzilla.suse.com/1226587
bugzilla.suse.com/1226601
bugzilla.suse.com/1226602
bugzilla.suse.com/1226603
bugzilla.suse.com/1226607
bugzilla.suse.com/1226614
bugzilla.suse.com/1226617
bugzilla.suse.com/1226618
bugzilla.suse.com/1226619
bugzilla.suse.com/1226621
bugzilla.suse.com/1226624
bugzilla.suse.com/1226626
bugzilla.suse.com/1226628
bugzilla.suse.com/1226629
bugzilla.suse.com/1226643
bugzilla.suse.com/1226644
bugzilla.suse.com/1226645
bugzilla.suse.com/1226650
bugzilla.suse.com/1226653
bugzilla.suse.com/1226662
bugzilla.suse.com/1226669
bugzilla.suse.com/1226670
bugzilla.suse.com/1226672
bugzilla.suse.com/1226673
bugzilla.suse.com/1226674
bugzilla.suse.com/1226675
bugzilla.suse.com/1226679
bugzilla.suse.com/1226683
bugzilla.suse.com/1226685
bugzilla.suse.com/1226686
bugzilla.suse.com/1226690
bugzilla.suse.com/1226691
bugzilla.suse.com/1226692
bugzilla.suse.com/1226696
bugzilla.suse.com/1226697
bugzilla.suse.com/1226698
bugzilla.suse.com/1226699
bugzilla.suse.com/1226701
bugzilla.suse.com/1226702
bugzilla.suse.com/1226703
bugzilla.suse.com/1226705
bugzilla.suse.com/1226708
bugzilla.suse.com/1226709
bugzilla.suse.com/1226710
bugzilla.suse.com/1226711
bugzilla.suse.com/1226712
bugzilla.suse.com/1226713
bugzilla.suse.com/1226715
bugzilla.suse.com/1226716
bugzilla.suse.com/1226719
bugzilla.suse.com/1226720
bugzilla.suse.com/1226721
bugzilla.suse.com/1226732
bugzilla.suse.com/1226758
bugzilla.suse.com/1226762
bugzilla.suse.com/1226785
bugzilla.suse.com/1227090
bugzilla.suse.com/1227383
bugzilla.suse.com/1227487
bugzilla.suse.com/1227549
bugzilla.suse.com/1227716
bugzilla.suse.com/1227750
bugzilla.suse.com/1227764
bugzilla.suse.com/1227808
bugzilla.suse.com/1227810
bugzilla.suse.com/1227823
bugzilla.suse.com/1227829
bugzilla.suse.com/1227836
bugzilla.suse.com/1227917
bugzilla.suse.com/1227920
bugzilla.suse.com/1227921
bugzilla.suse.com/1227922
bugzilla.suse.com/1227923
bugzilla.suse.com/1227924
bugzilla.suse.com/1227925
bugzilla.suse.com/1227928
bugzilla.suse.com/1227931
bugzilla.suse.com/1227932
bugzilla.suse.com/1227933
bugzilla.suse.com/1227935
bugzilla.suse.com/1227938
bugzilla.suse.com/1227941
bugzilla.suse.com/1227942
bugzilla.suse.com/1227944
bugzilla.suse.com/1227945
bugzilla.suse.com/1227948
bugzilla.suse.com/1227949
bugzilla.suse.com/1227952
bugzilla.suse.com/1227953
bugzilla.suse.com/1227954
bugzilla.suse.com/1227956
bugzilla.suse.com/1227963
bugzilla.suse.com/1227964
bugzilla.suse.com/1227965
bugzilla.suse.com/1227968
bugzilla.suse.com/1227969
bugzilla.suse.com/1227970
bugzilla.suse.com/1227971
bugzilla.suse.com/1227972
bugzilla.suse.com/1227975
bugzilla.suse.com/1227976
bugzilla.suse.com/1227981
bugzilla.suse.com/1227982
bugzilla.suse.com/1227985
bugzilla.suse.com/1227986
bugzilla.suse.com/1227987
bugzilla.suse.com/1227988
bugzilla.suse.com/1227989
bugzilla.suse.com/1227990
bugzilla.suse.com/1227991
bugzilla.suse.com/1227993
bugzilla.suse.com/1227995
bugzilla.suse.com/1227996
bugzilla.suse.com/1227997
bugzilla.suse.com/1228000
bugzilla.suse.com/1228002
bugzilla.suse.com/1228004
bugzilla.suse.com/1228005
bugzilla.suse.com/1228006
bugzilla.suse.com/1228007
bugzilla.suse.com/1228008
bugzilla.suse.com/1228009
bugzilla.suse.com/1228010
bugzilla.suse.com/1228013
bugzilla.suse.com/1228014
bugzilla.suse.com/1228015
bugzilla.suse.com/1228019
bugzilla.suse.com/1228025
bugzilla.suse.com/1228028
bugzilla.suse.com/1228035
bugzilla.suse.com/1228037
bugzilla.suse.com/1228038
bugzilla.suse.com/1228039
bugzilla.suse.com/1228040
bugzilla.suse.com/1228045
bugzilla.suse.com/1228054
bugzilla.suse.com/1228055
bugzilla.suse.com/1228056
bugzilla.suse.com/1228060
bugzilla.suse.com/1228061
bugzilla.suse.com/1228062
bugzilla.suse.com/1228063
bugzilla.suse.com/1228064
bugzilla.suse.com/1228066
bugzilla.suse.com/1228114
bugzilla.suse.com/1228247
bugzilla.suse.com/1228328
bugzilla.suse.com/1228440
bugzilla.suse.com/1228561
bugzilla.suse.com/1228644
bugzilla.suse.com/1228680
bugzilla.suse.com/1228743
bugzilla.suse.com/1228801
www.suse.com/security/cve/CVE-2021-4439
www.suse.com/security/cve/CVE-2021-47534
www.suse.com/security/cve/CVE-2021-47576
www.suse.com/security/cve/CVE-2021-47578
www.suse.com/security/cve/CVE-2021-47580
www.suse.com/security/cve/CVE-2021-47582
www.suse.com/security/cve/CVE-2021-47583
www.suse.com/security/cve/CVE-2021-47584
www.suse.com/security/cve/CVE-2021-47585
www.suse.com/security/cve/CVE-2021-47586
www.suse.com/security/cve/CVE-2021-47587
www.suse.com/security/cve/CVE-2021-47589
www.suse.com/security/cve/CVE-2021-47592
www.suse.com/security/cve/CVE-2021-47596
www.suse.com/security/cve/CVE-2021-47597
www.suse.com/security/cve/CVE-2021-47598
www.suse.com/security/cve/CVE-2021-47600
www.suse.com/security/cve/CVE-2021-47601
www.suse.com/security/cve/CVE-2021-47602
www.suse.com/security/cve/CVE-2021-47603
www.suse.com/security/cve/CVE-2021-47607
www.suse.com/security/cve/CVE-2021-47608
www.suse.com/security/cve/CVE-2021-47609
www.suse.com/security/cve/CVE-2021-47611
www.suse.com/security/cve/CVE-2021-47612
www.suse.com/security/cve/CVE-2021-47614
www.suse.com/security/cve/CVE-2021-47615
www.suse.com/security/cve/CVE-2021-47616
www.suse.com/security/cve/CVE-2021-47617
www.suse.com/security/cve/CVE-2021-47618
www.suse.com/security/cve/CVE-2021-47619
www.suse.com/security/cve/CVE-2021-47620
www.suse.com/security/cve/CVE-2021-47622
www.suse.com/security/cve/CVE-2021-47624
www.suse.com/security/cve/CVE-2022-0854
www.suse.com/security/cve/CVE-2022-20368
www.suse.com/security/cve/CVE-2022-28748
www.suse.com/security/cve/CVE-2022-2964
www.suse.com/security/cve/CVE-2022-48711
www.suse.com/security/cve/CVE-2022-48712
www.suse.com/security/cve/CVE-2022-48713
www.suse.com/security/cve/CVE-2022-48715
www.suse.com/security/cve/CVE-2022-48717
www.suse.com/security/cve/CVE-2022-48720
www.suse.com/security/cve/CVE-2022-48721
www.suse.com/security/cve/CVE-2022-48722
www.suse.com/security/cve/CVE-2022-48723
www.suse.com/security/cve/CVE-2022-48724
www.suse.com/security/cve/CVE-2022-48725
www.suse.com/security/cve/CVE-2022-48726
www.suse.com/security/cve/CVE-2022-48727
www.suse.com/security/cve/CVE-2022-48728
www.suse.com/security/cve/CVE-2022-48729
www.suse.com/security/cve/CVE-2022-48730
www.suse.com/security/cve/CVE-2022-48732
www.suse.com/security/cve/CVE-2022-48734
www.suse.com/security/cve/CVE-2022-48735
www.suse.com/security/cve/CVE-2022-48736
www.suse.com/security/cve/CVE-2022-48737
www.suse.com/security/cve/CVE-2022-48738
www.suse.com/security/cve/CVE-2022-48739
www.suse.com/security/cve/CVE-2022-48740
www.suse.com/security/cve/CVE-2022-48743
www.suse.com/security/cve/CVE-2022-48744
www.suse.com/security/cve/CVE-2022-48745
www.suse.com/security/cve/CVE-2022-48746
www.suse.com/security/cve/CVE-2022-48747
www.suse.com/security/cve/CVE-2022-48749
www.suse.com/security/cve/CVE-2022-48751
www.suse.com/security/cve/CVE-2022-48752
www.suse.com/security/cve/CVE-2022-48754
www.suse.com/security/cve/CVE-2022-48756
www.suse.com/security/cve/CVE-2022-48758
www.suse.com/security/cve/CVE-2022-48759
www.suse.com/security/cve/CVE-2022-48760
www.suse.com/security/cve/CVE-2022-48761
www.suse.com/security/cve/CVE-2022-48763
www.suse.com/security/cve/CVE-2022-48765
www.suse.com/security/cve/CVE-2022-48767
www.suse.com/security/cve/CVE-2022-48768
www.suse.com/security/cve/CVE-2022-48769
www.suse.com/security/cve/CVE-2022-48771
www.suse.com/security/cve/CVE-2022-48773
www.suse.com/security/cve/CVE-2022-48774
www.suse.com/security/cve/CVE-2022-48775
www.suse.com/security/cve/CVE-2022-48776
www.suse.com/security/cve/CVE-2022-48777
www.suse.com/security/cve/CVE-2022-48778
www.suse.com/security/cve/CVE-2022-48780
www.suse.com/security/cve/CVE-2022-48783
www.suse.com/security/cve/CVE-2022-48784
www.suse.com/security/cve/CVE-2022-48786
www.suse.com/security/cve/CVE-2022-48787
www.suse.com/security/cve/CVE-2022-48788
www.suse.com/security/cve/CVE-2022-48789
www.suse.com/security/cve/CVE-2022-48790
www.suse.com/security/cve/CVE-2022-48791
www.suse.com/security/cve/CVE-2022-48792
www.suse.com/security/cve/CVE-2022-48793
www.suse.com/security/cve/CVE-2022-48794
www.suse.com/security/cve/CVE-2022-48796
www.suse.com/security/cve/CVE-2022-48797
www.suse.com/security/cve/CVE-2022-48798
www.suse.com/security/cve/CVE-2022-48799
www.suse.com/security/cve/CVE-2022-48800
www.suse.com/security/cve/CVE-2022-48801
www.suse.com/security/cve/CVE-2022-48802
www.suse.com/security/cve/CVE-2022-48803
www.suse.com/security/cve/CVE-2022-48804
www.suse.com/security/cve/CVE-2022-48805
www.suse.com/security/cve/CVE-2022-48806
www.suse.com/security/cve/CVE-2022-48807
www.suse.com/security/cve/CVE-2022-48811
www.suse.com/security/cve/CVE-2022-48812
www.suse.com/security/cve/CVE-2022-48813
www.suse.com/security/cve/CVE-2022-48814
www.suse.com/security/cve/CVE-2022-48815
www.suse.com/security/cve/CVE-2022-48816
www.suse.com/security/cve/CVE-2022-48817
www.suse.com/security/cve/CVE-2022-48818
www.suse.com/security/cve/CVE-2022-48820
www.suse.com/security/cve/CVE-2022-48821
www.suse.com/security/cve/CVE-2022-48822
www.suse.com/security/cve/CVE-2022-48823
www.suse.com/security/cve/CVE-2022-48824
www.suse.com/security/cve/CVE-2022-48825
www.suse.com/security/cve/CVE-2022-48826
www.suse.com/security/cve/CVE-2022-48827
www.suse.com/security/cve/CVE-2022-48828
www.suse.com/security/cve/CVE-2022-48829
www.suse.com/security/cve/CVE-2022-48830
www.suse.com/security/cve/CVE-2022-48831
www.suse.com/security/cve/CVE-2022-48834
www.suse.com/security/cve/CVE-2022-48835
www.suse.com/security/cve/CVE-2022-48836
www.suse.com/security/cve/CVE-2022-48837
www.suse.com/security/cve/CVE-2022-48838
www.suse.com/security/cve/CVE-2022-48839
www.suse.com/security/cve/CVE-2022-48840
www.suse.com/security/cve/CVE-2022-48841
www.suse.com/security/cve/CVE-2022-48842
www.suse.com/security/cve/CVE-2022-48843
www.suse.com/security/cve/CVE-2022-48847
www.suse.com/security/cve/CVE-2022-48849
www.suse.com/security/cve/CVE-2022-48851
www.suse.com/security/cve/CVE-2022-48853
www.suse.com/security/cve/CVE-2022-48856
www.suse.com/security/cve/CVE-2022-48857
www.suse.com/security/cve/CVE-2022-48858
www.suse.com/security/cve/CVE-2022-48859
www.suse.com/security/cve/CVE-2022-48860
www.suse.com/security/cve/CVE-2022-48861
www.suse.com/security/cve/CVE-2022-48862
www.suse.com/security/cve/CVE-2022-48863
www.suse.com/security/cve/CVE-2022-48866
www.suse.com/security/cve/CVE-2023-1582
www.suse.com/security/cve/CVE-2023-37453
www.suse.com/security/cve/CVE-2023-52591
www.suse.com/security/cve/CVE-2023-52762
www.suse.com/security/cve/CVE-2023-52766
www.suse.com/security/cve/CVE-2023-52800
www.suse.com/security/cve/CVE-2023-52885
www.suse.com/security/cve/CVE-2023-52886
www.suse.com/security/cve/CVE-2024-26583
www.suse.com/security/cve/CVE-2024-26584
www.suse.com/security/cve/CVE-2024-26585
www.suse.com/security/cve/CVE-2024-26800
www.suse.com/security/cve/CVE-2024-26813
www.suse.com/security/cve/CVE-2024-26814
www.suse.com/security/cve/CVE-2024-26976
www.suse.com/security/cve/CVE-2024-35878
www.suse.com/security/cve/CVE-2024-35901
www.suse.com/security/cve/CVE-2024-35905
www.suse.com/security/cve/CVE-2024-36926
www.suse.com/security/cve/CVE-2024-36974
www.suse.com/security/cve/CVE-2024-38541
www.suse.com/security/cve/CVE-2024-38555
www.suse.com/security/cve/CVE-2024-38559
www.suse.com/security/cve/CVE-2024-39463
www.suse.com/security/cve/CVE-2024-39494
www.suse.com/security/cve/CVE-2024-40902
www.suse.com/security/cve/CVE-2024-40937
www.suse.com/security/cve/CVE-2024-40954
www.suse.com/security/cve/CVE-2024-40956
www.suse.com/security/cve/CVE-2024-40989
www.suse.com/security/cve/CVE-2024-40994
www.suse.com/security/cve/CVE-2024-41011
www.suse.com/security/cve/CVE-2024-41012
www.suse.com/security/cve/CVE-2024-41059
www.suse.com/security/cve/CVE-2024-41069
www.suse.com/security/cve/CVE-2024-41090
www.suse.com/security/cve/CVE-2024-42093
www.suse.com/security/cve/CVE-2024-42145
www.suse.com/security/cve/CVE-2024-42230
www.suse.com/support/update/announcement/2024/suse-su-20242929-1/
Related
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High