Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP4 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2024-50199: mm/swapfile: skip HugeTLB pages for unusevma bsc1233112. CVE-2024-53104: media: uvcvideo: Skip parsing frames of type UVCVSUNDEFINED in uvcparseformat...

CLSA-2025-1739525834 kernel: Fix of 24 CVEs

media: uvcvideo: Skip parsing frames of type UVCVSUNDEFINED in uvcparseformat CVE-2024-53104 - wifi: ath9k: add range check for connrspepid in htcconnectservice CVE-2024-53156 - xsk: fix OOB map writes when deleting elements CVE-2024-56614 - hvsock: Initializing vsk-trans to NULL to prevent a...

CLSA-2025-1739525795 kernel: Fix of 24 CVEs

media: uvcvideo: Skip parsing frames of type UVCVSUNDEFINED in uvcparseformat CVE-2024-53104 - wifi: ath9k: add range check for connrspepid in htcconnectservice CVE-2024-53156 - xsk: fix OOB map writes when deleting elements CVE-2024-56614 - hvsock: Initializing vsk-trans to NULL to prevent a...

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2024-35863: Fixed potential UAF in isvalidoplockbreak bsc1224763. CVE-2024-50199: mm/swapfile: skip HugeTLB pages for unusevma bsc1233112. CVE-2024-53104: media:...

WordPress iNET Webkit Plugin <= 1.2.2 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by thiennv Patchstack Alliance in WordPress Plugin iNET Webkit versions = 1.2.2...

CLSA-2025-1738958068 Fix of 49 CVEs

CVE-url: https://ubuntu.com/security/CVE-2024-38553/CVE-2024-38597 - netpoll: make ndopollcontroller optional - bonding: use netpollpolldev helper - netpoll: do not test NAPISTATESCHED in pollonenapi CVE-url: https://ubuntu.com/security/CVE-2024-38597 - eth: sungem: remove .ndopollcontroller to...

bpf: Add sk_is_inet and IS_ICSK check in tls_sw_has_ctx_tx/rx

...

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: CDC-NCM: avoid overflow in sanity checking CVE-2022-48938 In the Linux kernel, the following vulnerability has been resolved: inet: inetdefrag: prevent sk release while still in use CVE-2024-26921 In the Linux...

SUSE CVE-2024-57841

In the Linux kernel, the following vulnerability has been resolved: net: fix memory leak in tcpconnrequest If inetcskreqskqueuehashadd return false, tcpconnrequest will return without free the dst memory, which allocated in afops-routereq. Here is the kmemleak stack: unreferenced object...

SUSE CVE-2024-57903

In the Linux kernel, the following vulnerability has been resolved: net: restrict SOREUSEPORT to inet sockets After blamed commit, crypto sockets could accidentally be destroyed from RCU call back, as spotted by zyzbot 1. Trying to acquire a mutex in RCU callback is not allowed. Restrict...

CVE-2024-57903

In the Linux kernel, the following vulnerability has been resolved: net: restrict SOREUSEPORT to inet sockets After blamed commit, crypto sockets could accidentally be destroyed from RCU call back, as spotted by zyzbot 1. Trying to acquire a mutex in RCU callback is not allowed. Restrict...

DEBIAN-CVE-2024-57903

In the Linux kernel, the following vulnerability has been resolved: net: restrict SOREUSEPORT to inet sockets After blamed commit, crypto sockets could accidentally be destroyed from RCU call back, as spotted by zyzbot 1. Trying to acquire a mutex in RCU callback is not allowed. Restrict...

CVE-2024-57903

In the Linux kernel, the following vulnerability has been resolved: net: restrict SOREUSEPORT to inet sockets After blamed commit, crypto sockets could accidentally be destroyed from RCU call back, as spotted by zyzbot 1. Trying to acquire a mutex in RCU callback is not allowed. Restrict...

AZL-55869 CVE-2024-57841 affecting package kernel for versions less than 5.15.176.3-1

In the Linux kernel, the following vulnerability has been resolved: net: fix memory leak in tcpconnrequest If inetcskreqskqueuehashadd return false, tcpconnrequest will return without free the dst memory, which allocated in afops-routereq. Here is the kmemleak stack: unreferenced object...

UBUNTU-CVE-2024-57903

In the Linux kernel, the following vulnerability has been resolved: net: restrict SOREUSEPORT to inet sockets After blamed commit, crypto sockets could accidentally be destroyed from RCU call back, as spotted by zyzbot 1. Trying to acquire a mutex in RCU callback is not allowed. Restrict...

CVE-2024-57903

CVE-2024-57903 is a Linux kernel vulnerability affecting the net module: SO_REUSEPORT was restricted to inet sockets after a blamed commit. The issue could involve destroying crypto sockets via an RCU callback and attempted mutex acquisition within that context. The description notes that the pat...

CVE-2024-57903 net: restrict SO_REUSEPORT to inet sockets

In the Linux kernel, the following vulnerability has been resolved: net: restrict SOREUSEPORT to inet sockets After blamed commit, crypto sockets could accidentally be destroyed from RCU call back, as spotted by zyzbot 1. Trying to acquire a mutex in RCU callback is not allowed. Restrict...

CVE-2024-57903 net: restrict SO_REUSEPORT to inet sockets

In the Linux kernel, the following vulnerability has been resolved: net: restrict SOREUSEPORT to inet sockets After blamed commit, crypto sockets could accidentally be destroyed from RCU call back, as spotted by zyzbot 1. Trying to acquire a mutex in RCU callback is not allowed. Restrict...

CLSA-2025-1736469452 Fix of 35 CVEs

CVE-url: https://ubuntu.com/security/CVE-2023-52664 - net: atlantic: eliminate double free in error handling logic CVE-url: https://ubuntu.com/security/CVE-2023-52698 - calipso: fix memory leak in netlblcalipsoaddpass CVE-url: https://ubuntu.com/security/CVE-2021-47466 - mm, slub: fix potential...

CLSA-2025-1736469006 Fix of 35 CVEs

CVE-url: https://ubuntu.com/security/CVE-2023-52664 - net: atlantic: eliminate double free in error handling logic CVE-url: https://ubuntu.com/security/CVE-2023-52698 - calipso: fix memory leak in netlblcalipsoaddpass CVE-url: https://ubuntu.com/security/CVE-2021-47466 - mm, slub: fix potential...