SUSE-SU-2025:20527-1 Security update for kernel-livepatch-MICRO-6-0_Update_4

This update for kernel-livepatch-MICRO-6-0Update4 fixes the following issues: - CVE-2024-53146: NFSD: prevent a potential integer overflow bsc1234854 - CVE-2024-53166: block, bfq: fix bfqq uaf in bfqlimitdepth bsc1234885 - CVE-2024-53173: NFSv4.0: Fix a use-after-free problem in the asynchronous...

SUSE CVE-2024-53214

In the Linux kernel, the following vulnerability has been resolved: vfio/pci: Properly hide first-in-list PCIe extended capability There are cases where a PCIe extended capability should be hidden from the user. For example, an unknown capability i.e., capability with ID greater than PCIEXTCAPIDM...

UBUNTU-CVE-2024-53214

In the Linux kernel, the following vulnerability has been resolved: vfio/pci: Properly hide first-in-list PCIe extended capability There are cases where a PCIe extended capability should be hidden from the user. For example, an unknown capability i.e., capability with ID greater than PCIEXTCAPIDM...

CVE-2024-53214

CVE-2024-53214 concerns the Linux kernel VFIO/PCI logic for hiding PCIe extended capabilities. The issue occurred when hiding the first-in-list capability (unknown or hidden on purpose) by zeroing the capability ID/version while preserving Next, which is safe in general but failed if cap_id excee...