SUSE-SU-2025:20186-1 Security update for kernel-livepatch-MICRO-6-0-RT_Update_2

This update for kernel-livepatch-MICRO-6-0-RTUpdate2 fixes the following issues: - CVE-2024-57882: Fixed mptcp: fix TCP options overflow. bsc1235916 - CVE-2024-46818: Fixed drm/amd/display: check gpioid before used as array index bsc1231204 - CVE-2024-46815: Fixed drm/amd/display: check...

PT-2025-27750

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A panic in the Linux kernel can be triggered by executing a specific command, resulting in a kernel bug. The issue originates from the assertion BUG ONskb sharedskb in skb linearize. A...

Important: kernel-livepatch-5.10.234-225.895

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: sched: schcake: add bounds checks to host bulk flow fairness counts CVE-2025-21647 In the Linux kernel, the following vulnerability has been resolved: pfifotailenqueue: Drop new packet when sch-limit == 0...

Important: kernel-livepatch-5.10.234-225.910

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: pfifotailenqueue: Drop new packet when sch-limit == 0 CVE-2025-21702 Affected Packages: kernel-livepatch-5.10.234-225.910 Issue Correction: Please ensure you have live patching enabled. Run yum update...

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: netfilter: allow exp not to be removed in nfctfindexpectation CVE-2023-52927 In the Linux kernel, the following vulnerability has been resolved: smb: client: fix use-after-free of signing key CVE-2024-53179 In the...

Amazon Linux 2 : kernel (ALASKERNEL-5.10-2025-085)

The version of kernel installed on the remote host is prior to 5.10.234-225.917. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2KERNEL-5.10-2025-085 advisory. Insufficient control flow management for the IntelR 82599 Ethernet Controllers and Adapters may allow an...

Important: kernel

Issue Overview: Insufficient control flow management for the IntelR 82599 Ethernet Controllers and Adapters may allow an authenticated user to potentially enable denial of service via local access. CVE-2021-33061 In the Linux kernel, the following vulnerability has been resolved: smb: client: fix...

SUSE CVE-2022-49202

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hciuart: add missing NULL check in h5enqueue Syzbot hit general protection fault in pmruntimeresume. The problem was in missing NULL check. hu-serdev can be NULL and we should not blindly pass &serdev-dev somewhere,...

DEBIAN-CVE-2022-49202

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hciuart: add missing NULL check in h5enqueue Syzbot hit general protection fault in pmruntimeresume. The problem was in missing NULL check. hu-serdev can be NULL and we should not blindly pass &serdev-dev somewhere,...

SUSE CVE-2025-21702

In the Linux kernel, the following vulnerability has been resolved: pfifotailenqueue: Drop new packet when sch-limit == 0 Expected behaviour: In case we reach scheduler's limit, pfifotailenqueue will drop a packet in scheduler's queue and decrease scheduler's qlen by one. Then, pfifotailenqueue...

UBUNTU-CVE-2025-21702

In the Linux kernel, the following vulnerability has been resolved: pfifotailenqueue: Drop new packet when sch-limit == 0 Expected behaviour: In case we reach scheduler's limit, pfifotailenqueue will drop a packet in scheduler's queue and decrease scheduler's qlen by one. Then, pfifotailenqueue...

CVE-2025-21702 pfifo_tail_enqueue: Drop new packet when sch->limit == 0

In the Linux kernel, the following vulnerability has been resolved: pfifotailenqueue: Drop new packet when sch-limit == 0 Expected behaviour: In case we reach scheduler's limit, pfifotailenqueue will drop a packet in scheduler's queue and decrease scheduler's qlen by one. Then, pfifotailenqueue...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the pfifotailenqueue function not properly validating input when processing queues. An attacker exploiting...

Security update for the Linux Kernel (Live Patch 17 for SLE 15 SP5)

This update for the Linux Kernel 5.14.21-1505005573 fixes several issues. The following security issues were fixed: CVE-2024-45016: netem: fix return value if duplicate enqueue fails bsc1230998. CVE-2022-48912: Fix use-after-free in nfregisternethook bsc1229641 CVE-2024-47684: tcp: check skb is...

Security update for the Linux Kernel (Live Patch 14 for SLE 15 SP5)

This update for the Linux Kernel 5.14.21-1505005565 fixes several issues. The following security issues were fixed: CVE-2024-45016: netem: fix return value if duplicate enqueue fails bsc1230998. CVE-2022-48912: Fix use-after-free in nfregisternethook bsc1229641 CVE-2022-48923: btrfs: prevent...

SUSE-SU-2025:0414-1 Security update for the Linux Kernel (Live Patch 62 for SLE 12 SP5)

This update for the Linux Kernel 4.12.14-122234 fixes one issue. The following security issue was fixed: - CVE-2024-45016: netem: fix return value if duplicate enqueue fails bsc1230998...

AZL-55431 CVE-2024-56770 affecting package kernel for versions less than 6.6.76.1-1

In the Linux kernel, the following vulnerability has been resolved: net/sched: netem: account for backlog updates from child qdisc In general, 'qlen' of any classful qdisc should keep track of the number of packets that the qdisc itself and all of its children holds. In case of netem, 'qlen' only...

CVE-2024-56770 net/sched: netem: account for backlog updates from child qdisc

In the Linux kernel, the following vulnerability has been resolved: net/sched: netem: account for backlog updates from child qdisc In general, 'qlen' of any classful qdisc should keep track of the number of packets that the qdisc itself and all of its children holds. In case of netem, 'qlen' only...

CVE-2024-56583 sched/deadline: Fix warning in migrate_enable for boosted tasks

In the Linux kernel, the following vulnerability has been resolved: sched/deadline: Fix warning in migrateenable for boosted tasks When running the following command: while true; do stress-ng --cyclic 30 --timeout 30s --minimize --quiet done a warning is eventually triggered: WARNING: CPU: 43 PID...

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP4 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2022-48879: efi: fix NULL-deref in init error path bsc1229556. CVE-2022-48956: ipv6: avoid use-after-free in ip6fragment bsc1231893. CVE-2022-48959: net: dsa:...