SUSE-SU-2021:3933-1

Source
https://www.suse.com/support/update/announcement/2021/suse-su-20213933-1/
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2021:3933-1.json
JSON Data
https://api.osv.dev/v1/vulns/SUSE-SU-2021:3933-1
Related
Published
2021-12-06T10:35:54Z
Modified
2021-12-06T10:35:54Z
Summary
Security update for the Linux Kernel
Details

The SUSE Linux Enterprise 15 SP2 kernel was updated to receive various security and bugfixes.

The following security bugs were fixed:

  • Unprivileged BPF has been disabled by default to reduce attack surface as too many security issues have happened in the past (jsc#SLE-22573)

    You can reenable via systemctl setting /proc/sys/kernel/unprivilegedbpfdisabled to 0. (kernel.unprivilegedbpfdisabled = 0)

  • CVE-2021-0941: In bpfskbchange_head of filter.c, there is a possible out of bounds read due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation (bnc#1192045).

  • CVE-2021-31916: An out-of-bounds (OOB) memory write flaw was found in listdevices in drivers/md/dm-ioctl.c in the Multi-device driver module in the Linux kernel A bound check failure allowed an attacker with special user (CAPSYS_ADMIN) privilege to gain access to out-of-bounds memory leading to a system crash or a leak of internal kernel information. The highest threat from this vulnerability is to system availability (bnc#1192781).
  • CVE-2021-20322: Make the ipv4 and ipv6 ICMP exception caches less predictive to avoid information leaks about UDP ports in use. (bsc#1191790)
  • CVE-2021-34981: Fixed file refcounting in cmtp when cmtpattachdevice fails (bsc#1191961).
  • CVE-2021-43389: There was an array-index-out-of-bounds flaw in the detachcapictr function in drivers/isdn/capi/kcapi.c (bnc#1191958).
  • CVE-2021-37159: hsofreenetdevice in drivers/net/usb/hso.c called unregisternetdev without checking for the NETREG_REGISTERED state, leading to a use-after-free and a double free (bnc#1188601).

The following non-security bugs were fixed:

  • ABI: sysfs-kernel-slab: Document some stats (git-fixes).
  • ALSA: hda: Reduce udelay() at SKL+ position reporting (git-fixes).
  • ALSA: ua101: fix division by zero at probe (git-fixes).
  • ALSA: usb-audio: Add Audient iD14 to mixer map quirk table (git-fixes).
  • ALSA: usb-audio: Add Schiit Hel device to mixer map quirk table (git-fixes).
  • ASoC: cs42l42: Correct some register default values (git-fixes).
  • ASoC: cs42l42: Defer probe if requestthreadedirq() returns EPROBE_DEFER (git-fixes).
  • ASoC: cs42l42: Do not set defaults for volatile registers (git-fixes).
  • ASoC: dt-bindings: cs42l42: Correct description of ts-inv (git-fixes).
  • ASoC: mediatek: mt8195: Remove unsued irqs_lock (git-fixes).
  • ASoC: rockchip: Use generic dmaengine code (git-fixes).
  • ata: satamv: Fix the error handling of mvchip_id() (git-fixes).
  • ath10k: fix control-message timeout (git-fixes).
  • ath10k: fix division by zero in send path (git-fixes).
  • ath10k: fix max antenna gain unit (git-fixes).
  • ath10k: Fix missing frame timestamp for beacon/probe-resp (git-fixes).
  • ath6kl: fix control-message timeout (git-fixes).
  • ath6kl: fix division by zero in send path (git-fixes).
  • ath9k: Fix potential interrupt storm on queue reset (git-fixes).
  • auxdisplay: ht16k33: Connect backlight to fbdev (git-fixes).
  • auxdisplay: ht16k33: Fix frame buffer device blanking (git-fixes).
  • auxdisplay: img-ascii-lcd: Fix lock-up when displaying empty string (git-fixes).
  • b43: fix a lower bounds test (git-fixes).
  • b43legacy: fix a lower bounds test (git-fixes).
  • Bluetooth: btmtkuart: fix a memleak in mtkhciwmt_sync (git-fixes).
  • Bluetooth: fix init and cleanup of scoconn.timeoutwork (git-fixes).
  • bpf: Add kconfig knob for disabling unpriv bpf by default (jsc#SLE-22573)
  • bpf: Disallow unprivileged bpf by default (jsc#SLE-22573).
  • bpf: Fix potential race in tail call compatibility check (git-fixes).
  • btrfs: block-group: Rework documentation of checksystemchunk function (bsc#1192896).
  • btrfs: fix deadlock between chunk allocation and chunk btree modifications (bsc#1192896).
  • btrfs: fix memory ordering between normal and ordered work functions (git-fixes).
  • btrfs: update comments for chunk allocation -ENOSPC cases (bsc#1192896).
  • cgroup/cpuset: Change references of cpusetmutex to cpusetrwsem (git-fixes).
  • config: disable unprivileged BPF by default (jsc#SLE-22573)
  • crypto: caam - disable pkc for non-E SoCs (git-fixes).
  • crypto: qat - detect PFVF collision after ACK (git-fixes).
  • crypto: qat - disregard spurious PFVF interrupts (git-fixes).
  • driver core: add a minalignmask field to struct devicedmaparameters (bsc#1191851).
  • drm/amdgpu: fix warning for overflow check (git-fixes).
  • drm/msm: Fix potential NULL dereference in DPU SSPP (git-fixes).
  • drm: prevent spectre issue in vmwexecbufioctl (bsc#1192802).
  • drm/sun4i: Fix macros in sun8i_csc.h (git-fixes).
  • drm/v3d: fix wait for TMU write combiner flush (git-fixes).
  • EDAC/sb_edac: Fix top-of-high-memory value for Broadwell/Haswell (bsc#1152489).
  • exfat: fix erroneous discard when clear cluster bit (git-fixes).
  • exfat: handle wrong stream entry size in exfat_readdir() (git-fixes).
  • exfat: properly set stimegran (bsc#1192328).
  • exfat: truncate atimes to 2s granularity (bsc#1192328).
  • firmware/psci: fix application of sizeof to pointer (git-fixes).
  • fuse: fix page stealing (bsc#1192718).
  • genirq: Provide IRQCHIPAFFINITYPRE_STARTUP (bsc#1152489).
  • gpio: mpc8xxx: Use 'devmgpiochipadd_data()' to simplify the code and avoid a leak (git-fixes).
  • HID: u2fzero: clarify error check and length calculations (git-fixes).
  • HID: u2fzero: properly handle timeouts in usbsubmiturb (git-fixes).
  • hwmon: Fix possible memleak in _hwmondevice_register() (git-fixes).
  • hwmon: (pmbus/lm25066) Add offset coefficients (git-fixes).
  • hwmon: (pmbus/lm25066) Let compiler determine outer dimension of lm25066_coeff (git-fixes).
  • hwrng: mtk - Force runtime pm ops for sleep ops (git-fixes).
  • ibmvnic: check failover_pending in login response (bsc#1190523 ltc#194510).
  • ibmvnic: delay complete() (bsc#1094840 ltc#167098 git-fixes).
  • ibmvnic: do not stop queue in xmit (bsc#1192273 ltc#194629).
  • ibmvnic: Process crqs after enabling interrupts (bsc#1192273 ltc#194629).
  • iio: dac: ad5446: Fix ad5622_write() return value (git-fixes).
  • Input: elantench - fix misreporting trackpoint coordinates (bsc#1192918).
  • Input: i8042 - Add quirk for Fujitsu Lifebook T725 (bsc#1191980).
  • kABI: Fix kABI after 36950f2da1ea (bsc#1191851).
  • kernel-*-subpackage: Add dependency on kernel scriptlets (bsc#1192740).
  • KVM: s390: extend kvms390shadow_fault to return entry pointer (bsc#1133021).
  • KVM: s390: index kvm->arch.idlemask by vcpuidx (bsc#1133021).
  • KVM: s390: split kvms390logicaltoeffective (bsc#1133021).
  • KVM: s390: VSIE: correctly handle MVPG when in VSIE (bsc#1133021).
  • libertas: Fix possible memory leak in probe and disconnect (git-fixes).
  • libertas_tf: Fix possible memory leak in probe and disconnect (git-fixes).
  • media: cedrus: Fix SUNXI tile size calculation (git-fixes).
  • media: cx23885: Fix sndcardfree call on null card pointer (git-fixes).
  • media: cxd2880-spi: Fix a null pointer dereference on error handling path (git-fixes).
  • media: dvb-frontends: mn88443x: Handle errors of clkprepareenable() (git-fixes).
  • media: dvb-usb: fix ununit-value in az6027rcquery (git-fixes).
  • media: em28xx: add missing em28xxcloseextension (git-fixes).
  • media: em28xx: Do not use ops->suspend if it is NULL (git-fixes).
  • media: i2c: ths8200 needs V4L2_ASYNC (git-fixes).
  • media: ite-cir: IR receiver stop working after receive overflow (git-fixes).
  • media: mtk-vpu: Fix a resource leak in the error handling path of 'mtkvpuprobe()' (git-fixes).
  • media: mxl111sf: change mutex_init() location (git-fixes).
  • media: radio-wl1273: Avoid card name truncation (git-fixes).
  • media: si470x: Avoid card name truncation (git-fixes).
  • media: staging/intel-ipu3: css: Fix wrong size comparison imgucssfw_init (git-fixes).
  • media: TDA1997x: handle short reads of hdmi info frame (git-fixes).
  • media: tm6000: Avoid card name truncation (git-fixes).
  • media: v4l2-ioctl: Fix checkextctrls (git-fixes).
  • media: v4l2-ioctl: S_CTRL output the right value (git-fixes).
  • memory: fslifc: fix leak of irq and nandirq in fslifcctrl_probe (git-fixes).
  • memstick: avoid out-of-range warning (git-fixes).
  • memstick: jmb38xms: use appropriate free function in jmb38xmsallochost() (git-fixes).
  • mmc: mxs-mmc: disable regulator on error and in the remove function (git-fixes).
  • mmc: sdhci: Map more voltage level to SDHCIPOWER330 (git-fixes).
  • mmc: sdhci-omap: Fix NULL pointer exception if regulator is not configured (git-fixes).
  • mm/hugetlb: initialize hugetlbusage in mminit (bsc#1192906).
  • mt76: mt76x02: fix endianness warnings in mt76x02_mac.c (git-fixes).
  • mwifiex: fix division by zero in fw download path (git-fixes).
  • mwifiex: Send DELBA requests according to spec (git-fixes).
  • net: dsa: felix: re-enable TX flow control in ocelotportflush() (git-fixes).
  • net: mscc: ocelot: fix hardware timestamp dequeue logic.
  • net: mscc: ocelot: warn when a PTP IRQ is raised for an unknown skb (git-fixes).
  • nvme-pci: set minalignmask (bsc#1191851).
  • ocfs2: do not zero pages beyond i_size (bsc#1190795).
  • ocfs2: fix data corruption on truncate (bsc#1190795).
  • PCI: aardvark: Do not clear status bits of masked interrupts (git-fixes).
  • PCI: aardvark: Do not spam about PIO Response Status (git-fixes).
  • PCI: aardvark: Do not unmask unused interrupts (git-fixes).
  • PCI: aardvark: Fix checking for link up via LTSSM state (git-fixes).
  • PCI: aardvark: Fix reporting Data Link Layer Link Active (git-fixes).
  • PCI: aardvark: Fix return value of MSI domain .alloc() method (git-fixes).
  • PCI: aardvark: Read all 16-bits from PCIEMSIPAYLOAD_REG (git-fixes).
  • PCI/ACPI: Check for OSC support in acpipciosccontrol_set() (bsc#1169263).
  • PCI/ACPI: Clarify message about _OSC failure (bsc#1169263).
  • PCI/ACPI: Move _OSC query checks to separate function (bsc#1169263).
  • PCI/ACPI: Move supported and control calculations to separate functions (bsc#1169263).
  • PCI/ACPI: Remove OSCPCISUPPORTMASKS and OSCPCICONTROLMASKS (bsc#1169263).
  • PCI/ACPI: Remove unnecessary osc_lock (bsc#1169263).
  • PCI: pci-bridge-emul: Fix emulation of W1C bits (git-fixes).
  • PCI: uniphier: Serialize INTx masking/unmasking and fix the bit operation (git-fixes).
  • pinctrl: core: fix possible memory leak in pinctrl_enable() (git-fixes).
  • platform/x86: thinkpad_acpi: Fix bitwise vs. logical warning (git-fixes).
  • power: supply: bq27xxx: Fix kernel crash on IRQ handler register error (git-fixes).
  • power: supply: max17042battery: Prevent int underflow in setsoc_threshold (git-fixes).
  • power: supply: max17042_battery: use VFSOC for capacity when no rsns (git-fixes).
  • power: supply: rt5033 battery: Change voltage values to ca 5V (git-fixes).
  • printk/console: Allow to disable console output by using console='' or console=null (bsc#1192753).
  • printk: handle blank console arguments passed in (bsc#1192753).
  • qtnfmac: fix potential Spectre vulnerabilities (bsc#1192802).
  • r8152: add a helper function about setting EEE (git-fixes).
  • r8152: Add macpassthru support for ThinkPad Thunderbolt 3 Dock Gen 2 (git-fixes).
  • r8152: Disable PLA MCU clock speed down (git-fixes).
  • r8152: disable U2P3 for RTL8153B (git-fixes).
  • r8152: divide the tx and rx bottom functions (git-fixes).
  • r8152: do not enable U1U2 with USBSPEEDHIGH for RTL8153B (git-fixes).
  • r8152: fix runtime resume for linking change (git-fixes).
  • r8152: replace array with linking list for rx information (git-fixes).
  • r8152: reset flow control patch when linking on for RTL8153B (git-fixes).
  • r8152: saving the settings of EEE (git-fixes).
  • r8152: separate the rx buffer size (git-fixes).
  • r8152: use alloc_pages for rx buffer (git-fixes).
  • regulator: dt-bindings: samsung,s5m8767: correct s5m8767,pmic-buck-default-dvs-idx property (git-fixes).
  • regulator: s5m8767: do not use reset value as DVS voltage if GPIO DVS is disabled (git-fixes).
  • Revert 'ibmvnic: check failover_pending in login response' (bsc#1190523 ltc#194510).
  • Revert 'platform/x86: i2c-multi-instantiate: Do not create platform device for INT3515 ACPI nodes' (git-fixes).
  • Revert 'r8152: adjust the settings about MAC clock speed down for RTL8153' (git-fixes).
  • Revert 'scsi: ufs: fix a missing check of devmresetcontrol_get' (git-fixes).
  • Revert 'x86/kvm: fix vcpu-id indexed array sizes' (git-fixes).
  • rndishost: set proper input size for OIDGENPHYSICALMEDIUM request (git-fixes).
  • rsi: fix control-message timeout (git-fixes).
  • rsi: Fix module devopermode parameter description (git-fixes).
  • rsi: stop thread firstly in rsi91xinit() error handling (git-fixes).
  • rtl8187: fix control-message timeouts (git-fixes).
  • s390/qeth: fix deadlock during failing recovery (git-fixes).
  • s390/qeth: Fix deadlock in remove_discipline (git-fixes).
  • s390/qeth: fix NULL deref in qethclearworkingpoollist() (git-fixes).
  • scsi: be2iscsi: Fix an error handling path in beiscsidevprobe() (git-fixes).
  • scsi: BusLogic: Fix missing pr_cont() use (git-fixes).
  • scsi: core: Fix spelling in a source code comment (git-fixes).
  • scsi: csiostor: Add module softdep on cxgb4 (git-fixes).
  • scsi: csiostor: Uninitialized data in csiolnvnpreadcbfn() (git-fixes).
  • scsi: dc395: Fix error case unwinding (git-fixes).
  • scsi: fdomain: Fix error return code in fdomain_probe() (git-fixes).
  • scsi: FlashPoint: Rename si_flags field (git-fixes).
  • scsi: iscsi: Fix iface sysfs attr detection (git-fixes).
  • scsi: libsas: Use safe() loop in sasresume_port() (git-fixes).
  • scsi: mpt3sas: Fix error return value in scsihexpander_add() (git-fixes).
  • scsi: qedf: Add pointer checks in qedfupdatelink_speed() (git-fixes).
  • scsi: qedf: Fix error codes in qedfallocglobal_queues() (git-fixes).
  • scsi: qedi: Fix error codes in qediallocglobal_queues() (git-fixes).
  • scsi: qla2xxx: Fix a memory leak in an error path of qla2x00processels() (git-fixes).
  • scsi: qla2xxx: Make sure that aborted commands are freed (git-fixes).
  • scsi: smartpqi: Fix an error code in pqigetraid_map() (git-fixes).
  • scsi: snic: Fix an error message (git-fixes).
  • scsi: ufs-pci: Add quirk for broken auto-hibernate for Intel EHL (git-fixes).
  • scsi: ufs: ufshcd-pltfrm: Fix memory leak due to probe defer (git-fixes).
  • serial: 8250dw: Drop wrong use of ACPIPTR() (git-fixes).
  • serial: xilinx_uartps: Fix race condition causing stuck TX (git-fixes).
  • staging: r8712u: fix control-message timeout (git-fixes).
  • staging: rtl8192u: fix control-message timeouts (git-fixes).
  • stmmac: platform: Fix signedness bug in stmmacprobeconfig_dt() (git-fixes).
  • swiotlb: add a IOTLBSIZE define (bsc#1191851).
  • swiotlb: clean up swiotlbtblunmap_single (bsc#1191851).
  • swiotlb: do not modify origaddr in swiotlbtblsyncsingle (bsc#1191851).
  • swiotlb: factor out an iotlboffset helper (bsc#1191851).
  • swiotlb: factor out a nr_slots helper (bsc#1191851).
  • swiotlb: refactor swiotlbtblmap_single (bsc#1191851).
  • swiotlb: respect minalignmask (bsc#1191851).
  • swiotlb: Split size parameter to map/unmap APIs (bsc#1191851).
  • tpm: Check for integer overflow in tpm2mapresponse_body() (git-fixes).
  • tracing: Increase PERFMAXTRACE_SIZE to handle Sentinel1 and docker together (bsc#1192745).
  • Update config files: Add CONFIGBPFUNPRIVDEFAULTOFF is not set
  • usb: gadget: hid: fix error code in do_config() (git-fixes).
  • usb: iowarrior: fix control-message timeouts (git-fixes).
  • usb: max-3421: Use driver data instead of maintaining a list of bound devices (git-fixes).
  • usb: musb: Balance list entry in musbgadgetqueue (git-fixes).
  • usbnet: fix error return code in usbnet_probe() (git-fixes).
  • usbnet: sanity check for maxpacket (git-fixes).
  • usb: serial: keyspan: fix memleak on probe errors (git-fixes).
  • video: fbdev: chipsfb: use memset_io() instead of memset() (git-fixes).
  • virtio-gpu: fix possible memory allocation failure (git-fixes).
  • wcn36xx: Add ability for wcn36xxsmddumpcmdreq to pass two's complement (git-fixes).
  • wcn36xx: add proper DMA memory barriers in rx path (git-fixes).
  • wcn36xx: Fix HT40 capability for 2Ghz band (git-fixes).
  • x86/ioapic: Force affinity setup before startup (bsc#1152489).
  • x86/msi: Force affinity setup before startup (bsc#1152489).
  • x86/sme: Use #define USEEARLYPGTABLEL5 in memencrypt_identity.c (bsc#1152489).
  • x86/xen: Mark cpubringupandidle() as deadend_function (git-fixes).
  • xen: Fix implicit type conversion (git-fixes).
  • xen-pciback: Fix return in pmctrlinit() (git-fixes).
  • xfs: do not allow log writes if the data device is readonly (bsc#1192229).
  • zram-avoid-race-between-zramremove-and-disksizesto.patch: (bsc#1170269).
  • zram-don-t-fail-to-remove-zram-during-unloading-modu.patch: (bsc#1170269).
  • zram-fix-race-between-zramresetdevice-and-disksize.patch: (bsc#1170269).
  • zram-replace-fsyncbdev-with-syncblockdev.patch: (bsc#1170269).
References

Affected packages

SUSE:Linux Enterprise Module for Basesystem 15 SP2 / kernel-default

Package

Name
kernel-default
Purl
pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.3.18-24.96.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-macros": "5.3.18-24.96.1",
            "kernel-devel": "5.3.18-24.96.1",
            "kernel-default-base": "5.3.18-24.96.1.9.44.1",
            "kernel-preempt": "5.3.18-24.96.1",
            "kernel-default-devel": "5.3.18-24.96.1",
            "kernel-default": "5.3.18-24.96.1"
        }
    ]
}

SUSE:Linux Enterprise Module for Basesystem 15 SP2 / kernel-default-base

Package

Name
kernel-default-base
Purl
pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.3.18-24.96.1.9.44.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-macros": "5.3.18-24.96.1",
            "kernel-devel": "5.3.18-24.96.1",
            "kernel-default-base": "5.3.18-24.96.1.9.44.1",
            "kernel-preempt": "5.3.18-24.96.1",
            "kernel-default-devel": "5.3.18-24.96.1",
            "kernel-default": "5.3.18-24.96.1"
        }
    ]
}

SUSE:Linux Enterprise Module for Basesystem 15 SP2 / kernel-preempt

Package

Name
kernel-preempt
Purl
pkg:rpm/suse/kernel-preempt&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.3.18-24.96.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-macros": "5.3.18-24.96.1",
            "kernel-devel": "5.3.18-24.96.1",
            "kernel-default-base": "5.3.18-24.96.1.9.44.1",
            "kernel-preempt": "5.3.18-24.96.1",
            "kernel-default-devel": "5.3.18-24.96.1",
            "kernel-default": "5.3.18-24.96.1"
        }
    ]
}

SUSE:Linux Enterprise Module for Basesystem 15 SP2 / kernel-source

Package

Name
kernel-source
Purl
pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.3.18-24.96.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-macros": "5.3.18-24.96.1",
            "kernel-devel": "5.3.18-24.96.1",
            "kernel-default-base": "5.3.18-24.96.1.9.44.1",
            "kernel-preempt": "5.3.18-24.96.1",
            "kernel-default-devel": "5.3.18-24.96.1",
            "kernel-default": "5.3.18-24.96.1"
        }
    ]
}

SUSE:Linux Enterprise Module for Development Tools 15 SP2 / kernel-docs

Package

Name
kernel-docs
Purl
pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.3.18-24.96.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-docs": "5.3.18-24.96.1",
            "kernel-syms": "5.3.18-24.96.1",
            "kernel-preempt-devel": "5.3.18-24.96.1",
            "kernel-source": "5.3.18-24.96.1",
            "kernel-obs-build": "5.3.18-24.96.1"
        }
    ]
}

SUSE:Linux Enterprise Module for Development Tools 15 SP2 / kernel-obs-build

Package

Name
kernel-obs-build
Purl
pkg:rpm/suse/kernel-obs-build&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.3.18-24.96.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-docs": "5.3.18-24.96.1",
            "kernel-syms": "5.3.18-24.96.1",
            "kernel-preempt-devel": "5.3.18-24.96.1",
            "kernel-source": "5.3.18-24.96.1",
            "kernel-obs-build": "5.3.18-24.96.1"
        }
    ]
}

SUSE:Linux Enterprise Module for Development Tools 15 SP2 / kernel-preempt

Package

Name
kernel-preempt
Purl
pkg:rpm/suse/kernel-preempt&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.3.18-24.96.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-docs": "5.3.18-24.96.1",
            "kernel-syms": "5.3.18-24.96.1",
            "kernel-preempt-devel": "5.3.18-24.96.1",
            "kernel-source": "5.3.18-24.96.1",
            "kernel-obs-build": "5.3.18-24.96.1"
        }
    ]
}

SUSE:Linux Enterprise Module for Development Tools 15 SP2 / kernel-source

Package

Name
kernel-source
Purl
pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.3.18-24.96.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-docs": "5.3.18-24.96.1",
            "kernel-syms": "5.3.18-24.96.1",
            "kernel-preempt-devel": "5.3.18-24.96.1",
            "kernel-source": "5.3.18-24.96.1",
            "kernel-obs-build": "5.3.18-24.96.1"
        }
    ]
}

SUSE:Linux Enterprise Module for Development Tools 15 SP2 / kernel-syms

Package

Name
kernel-syms
Purl
pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.3.18-24.96.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-docs": "5.3.18-24.96.1",
            "kernel-syms": "5.3.18-24.96.1",
            "kernel-preempt-devel": "5.3.18-24.96.1",
            "kernel-source": "5.3.18-24.96.1",
            "kernel-obs-build": "5.3.18-24.96.1"
        }
    ]
}

SUSE:Linux Enterprise Module for Legacy 15 SP2 / kernel-default

Package

Name
kernel-default
Purl
pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Legacy%2015%20SP2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.3.18-24.96.1

Ecosystem specific

{
    "binaries": [
        {
            "reiserfs-kmp-default": "5.3.18-24.96.1"
        }
    ]
}

SUSE:Linux Enterprise Live Patching 15 SP2 / kernel-default

Package

Name
kernel-default
Purl
pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.3.18-24.96.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-default-livepatch": "5.3.18-24.96.1",
            "kernel-default-livepatch-devel": "5.3.18-24.96.1",
            "kernel-livepatch-5_3_18-24_96-default": "1-5.3.1"
        }
    ]
}

SUSE:Linux Enterprise Live Patching 15 SP2 / kernel-livepatch-SLE15-SP2_Update_22

Package

Name
kernel-livepatch-SLE15-SP2_Update_22
Purl
pkg:rpm/suse/kernel-livepatch-SLE15-SP2_Update_22&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
1-5.3.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-default-livepatch": "5.3.18-24.96.1",
            "kernel-default-livepatch-devel": "5.3.18-24.96.1",
            "kernel-livepatch-5_3_18-24_96-default": "1-5.3.1"
        }
    ]
}

SUSE:Linux Enterprise High Availability Extension 15 SP2 / kernel-default

Package

Name
kernel-default
Purl
pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2015%20SP2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.3.18-24.96.1

Ecosystem specific

{
    "binaries": [
        {
            "dlm-kmp-default": "5.3.18-24.96.1",
            "gfs2-kmp-default": "5.3.18-24.96.1",
            "ocfs2-kmp-default": "5.3.18-24.96.1",
            "cluster-md-kmp-default": "5.3.18-24.96.1"
        }
    ]
}

SUSE:Linux Enterprise Workstation Extension 15 SP2 / kernel-default

Package

Name
kernel-default
Purl
pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.3.18-24.96.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-default-extra": "5.3.18-24.96.1",
            "kernel-preempt-extra": "5.3.18-24.96.1"
        }
    ]
}

SUSE:Linux Enterprise Workstation Extension 15 SP2 / kernel-preempt

Package

Name
kernel-preempt
Purl
pkg:rpm/suse/kernel-preempt&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP2

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.3.18-24.96.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-default-extra": "5.3.18-24.96.1",
            "kernel-preempt-extra": "5.3.18-24.96.1"
        }
    ]
}

SUSE:Linux Enterprise Micro 5.0 / kernel-default

Package

Name
kernel-default
Purl
pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Micro%205.0

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.3.18-24.96.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-default-base": "5.3.18-24.96.1.9.44.1",
            "kernel-default": "5.3.18-24.96.1"
        }
    ]
}

SUSE:Linux Enterprise Micro 5.0 / kernel-default-base

Package

Name
kernel-default-base
Purl
pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Micro%205.0

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
5.3.18-24.96.1.9.44.1

Ecosystem specific

{
    "binaries": [
        {
            "kernel-default-base": "5.3.18-24.96.1.9.44.1",
            "kernel-default": "5.3.18-24.96.1"
        }
    ]
}