SUSE-SU-2025:0152-1
- Source
- https://www.suse.com/support/update/announcement/2025/suse-su-20250152-1/
- Import Source
- https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2025:0152-1.json
- JSON Data
- https://api.osv.dev/v1/vulns/SUSE-SU-2025:0152-1
- Upstream
- Related
- Published
- 2025-01-17T09:13:58Z
- Modified
- 2025-05-02T04:29:43.101732Z
- Summary
- Security update for the Linux Kernel
- Details
-
The SUSE Linux Enterprise 11 SP4 kernel was updated to receive various security bugfixes.
The following security bugs were fixed:
- CVE-2017-14051: scsi/qla2xxx: Fix an integer overflow in sysfs code. (bsc#1056588)
- CVE-2024-53146: NFSD: Prevent a potential integer overflow (bsc#1234853).
- CVE-2024-53156: wifi: ath9k: add range check for connrspepid in htcconnectservice() (bsc#1234846).
- CVE-2024-53173: NFSv4.0: Fix a use-after-free problem in the asynchronous open() (bsc#1234891).
- CVE-2024-53239: ALSA: 6fire: Release resources at card release (bsc#1235054).
- CVE-2024-56539: wifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiexconfigscan() (bsc#1234963).
- CVE-2024-56548: hfsplus: do not query the device logical block size multiple times (bsc#1235073).
- CVE-2024-56598: jfs: array-index-out-of-bounds fix in dtReadFirst (bsc#1235220).
- CVE-2024-56604: Bluetooth: RFCOMM: avoid leaving dangling sk pointer in rfcommsockalloc() (bsc#1235056).
- CVE-2024-56605: Bluetooth: L2CAP: do not leave dangling sk pointer on error in l2capsockcreate() (bsc#1235061).
- CVE-2024-56619: nilfs2: fix potential out-of-bounds memory access in nilfsfindentry() (bsc#1235224).
The following non-security bugs were fixed:
- Enable CONFIGFIRMWARESIG ()
- r8169: check ALDPS bit and disable it if enabled for the 8168g (bnc#845352).
- rpm/kernel-binary.spec.in: Remove obsolete ext4-writeable. Needs to be handled differently. (bnc#830822)
- References
-
- https://www.suse.com/support/update/announcement/2025/suse-su-20250152-1/
- https://bugzilla.suse.com/1027565
- https://bugzilla.suse.com/1056588
- https://bugzilla.suse.com/1059525
- https://bugzilla.suse.com/1202346
- https://bugzilla.suse.com/1227985
- https://bugzilla.suse.com/1234846
- https://bugzilla.suse.com/1234853
- https://bugzilla.suse.com/1234891
- https://bugzilla.suse.com/1234963
- https://bugzilla.suse.com/1235054
- https://bugzilla.suse.com/1235056
- https://bugzilla.suse.com/1235061
- https://bugzilla.suse.com/1235073
- https://bugzilla.suse.com/1235220
- https://bugzilla.suse.com/1235224
- https://www.suse.com/security/cve/CVE-2017-1000253
- https://www.suse.com/security/cve/CVE-2017-14051
- https://www.suse.com/security/cve/CVE-2017-2636
- https://www.suse.com/security/cve/CVE-2022-20368
- https://www.suse.com/security/cve/CVE-2022-48839
- https://www.suse.com/security/cve/CVE-2024-53146
- https://www.suse.com/security/cve/CVE-2024-53156
- https://www.suse.com/security/cve/CVE-2024-53173
- https://www.suse.com/security/cve/CVE-2024-53239
- https://www.suse.com/security/cve/CVE-2024-56539
- https://www.suse.com/security/cve/CVE-2024-56548
- https://www.suse.com/security/cve/CVE-2024-56598
- https://www.suse.com/security/cve/CVE-2024-56604
- https://www.suse.com/security/cve/CVE-2024-56605
- https://www.suse.com/security/cve/CVE-2024-56619
Affected packages
SUSE:Linux Enterprise Server 11 SP4 LTSS EXTREME CORE
kernel-default
Package
- Name
- kernel-default
- Purl
- pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4%20LTSS%20EXTREME%20CORE
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed3.0.101-108.174.1
Ecosystem specific
{
"binaries": [
{
"kernel-source": "3.0.101-108.174.1",
"kernel-xen": "3.0.101-108.174.1",
"kernel-xen-base": "3.0.101-108.174.1",
"kernel-syms": "3.0.101-108.174.1",
"kernel-xen-devel": "3.0.101-108.174.1",
"kernel-default": "3.0.101-108.174.1",
"kernel-ec2-base": "3.0.101-108.174.1",
"kernel-ec2": "3.0.101-108.174.1",
"kernel-ec2-devel": "3.0.101-108.174.1",
"kernel-trace-devel": "3.0.101-108.174.1",
"kernel-default-devel": "3.0.101-108.174.1",
"kernel-trace-base": "3.0.101-108.174.1",
"kernel-default-base": "3.0.101-108.174.1",
"kernel-trace": "3.0.101-108.174.1"
}
]
}kernel-ec2
Package
- Name
- kernel-ec2
- Purl
- pkg:rpm/suse/kernel-ec2&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4%20LTSS%20EXTREME%20CORE
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed3.0.101-108.174.1
Ecosystem specific
{
"binaries": [
{
"kernel-source": "3.0.101-108.174.1",
"kernel-xen": "3.0.101-108.174.1",
"kernel-xen-base": "3.0.101-108.174.1",
"kernel-syms": "3.0.101-108.174.1",
"kernel-xen-devel": "3.0.101-108.174.1",
"kernel-default": "3.0.101-108.174.1",
"kernel-ec2-base": "3.0.101-108.174.1",
"kernel-ec2": "3.0.101-108.174.1",
"kernel-ec2-devel": "3.0.101-108.174.1",
"kernel-trace-devel": "3.0.101-108.174.1",
"kernel-default-devel": "3.0.101-108.174.1",
"kernel-trace-base": "3.0.101-108.174.1",
"kernel-default-base": "3.0.101-108.174.1",
"kernel-trace": "3.0.101-108.174.1"
}
]
}kernel-source
Package
- Name
- kernel-source
- Purl
- pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4%20LTSS%20EXTREME%20CORE
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed3.0.101-108.174.1
Ecosystem specific
{
"binaries": [
{
"kernel-source": "3.0.101-108.174.1",
"kernel-xen": "3.0.101-108.174.1",
"kernel-xen-base": "3.0.101-108.174.1",
"kernel-syms": "3.0.101-108.174.1",
"kernel-xen-devel": "3.0.101-108.174.1",
"kernel-default": "3.0.101-108.174.1",
"kernel-ec2-base": "3.0.101-108.174.1",
"kernel-ec2": "3.0.101-108.174.1",
"kernel-ec2-devel": "3.0.101-108.174.1",
"kernel-trace-devel": "3.0.101-108.174.1",
"kernel-default-devel": "3.0.101-108.174.1",
"kernel-trace-base": "3.0.101-108.174.1",
"kernel-default-base": "3.0.101-108.174.1",
"kernel-trace": "3.0.101-108.174.1"
}
]
}kernel-syms
Package
- Name
- kernel-syms
- Purl
- pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4%20LTSS%20EXTREME%20CORE
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed3.0.101-108.174.1
Ecosystem specific
{
"binaries": [
{
"kernel-source": "3.0.101-108.174.1",
"kernel-xen": "3.0.101-108.174.1",
"kernel-xen-base": "3.0.101-108.174.1",
"kernel-syms": "3.0.101-108.174.1",
"kernel-xen-devel": "3.0.101-108.174.1",
"kernel-default": "3.0.101-108.174.1",
"kernel-ec2-base": "3.0.101-108.174.1",
"kernel-ec2": "3.0.101-108.174.1",
"kernel-ec2-devel": "3.0.101-108.174.1",
"kernel-trace-devel": "3.0.101-108.174.1",
"kernel-default-devel": "3.0.101-108.174.1",
"kernel-trace-base": "3.0.101-108.174.1",
"kernel-default-base": "3.0.101-108.174.1",
"kernel-trace": "3.0.101-108.174.1"
}
]
}kernel-trace
Package
- Name
- kernel-trace
- Purl
- pkg:rpm/suse/kernel-trace&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4%20LTSS%20EXTREME%20CORE
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed3.0.101-108.174.1
Ecosystem specific
{
"binaries": [
{
"kernel-source": "3.0.101-108.174.1",
"kernel-xen": "3.0.101-108.174.1",
"kernel-xen-base": "3.0.101-108.174.1",
"kernel-syms": "3.0.101-108.174.1",
"kernel-xen-devel": "3.0.101-108.174.1",
"kernel-default": "3.0.101-108.174.1",
"kernel-ec2-base": "3.0.101-108.174.1",
"kernel-ec2": "3.0.101-108.174.1",
"kernel-ec2-devel": "3.0.101-108.174.1",
"kernel-trace-devel": "3.0.101-108.174.1",
"kernel-default-devel": "3.0.101-108.174.1",
"kernel-trace-base": "3.0.101-108.174.1",
"kernel-default-base": "3.0.101-108.174.1",
"kernel-trace": "3.0.101-108.174.1"
}
]
}kernel-xen
Package
- Name
- kernel-xen
- Purl
- pkg:rpm/suse/kernel-xen&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4%20LTSS%20EXTREME%20CORE
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed3.0.101-108.174.1
Ecosystem specific
{
"binaries": [
{
"kernel-source": "3.0.101-108.174.1",
"kernel-xen": "3.0.101-108.174.1",
"kernel-xen-base": "3.0.101-108.174.1",
"kernel-syms": "3.0.101-108.174.1",
"kernel-xen-devel": "3.0.101-108.174.1",
"kernel-default": "3.0.101-108.174.1",
"kernel-ec2-base": "3.0.101-108.174.1",
"kernel-ec2": "3.0.101-108.174.1",
"kernel-ec2-devel": "3.0.101-108.174.1",
"kernel-trace-devel": "3.0.101-108.174.1",
"kernel-default-devel": "3.0.101-108.174.1",
"kernel-trace-base": "3.0.101-108.174.1",
"kernel-default-base": "3.0.101-108.174.1",
"kernel-trace": "3.0.101-108.174.1"
}
]
}