SUSE-SU-2025:20527-1

See a problem?
Please try reporting it to the source first.
Source
https://www.suse.com/support/update/announcement/2025/suse-su-202520527-1/
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2025:20527-1.json
JSON Data
https://api.osv.dev/v1/vulns/SUSE-SU-2025:20527-1
Upstream
Related
Published
2025-08-01T08:37:43Z
Modified
2026-03-23T04:48:58.304608Z
Summary
Security update for kernel-livepatch-MICRO-6-0_Update_4
Details

This update for kernel-livepatch-MICRO-6-0Update4 fixes the following issues:

  • CVE-2024-53146: NFSD: prevent a potential integer overflow (bsc#1234854)
  • CVE-2024-53166: block, bfq: fix bfqq uaf in bfqlimitdepth() (bsc#1234885)
  • CVE-2024-53173: NFSv4.0: Fix a use-after-free problem in the asynchronous open() (bsc#1234892)
  • CVE-2024-53214: vfio/pci: properly hide first-in-list PCIe extended capability (bsc#1235005)
  • CVE-2024-57793: virt: tdx-guest: just leak decrypted memory on unrecoverable errors (bsc#1235769)
  • CVE-2024-57893: ALSA: seq: oss: fix races at processing SysEx messages (bsc#1235921)
  • CVE-2025-21772: partitions: mac: fix handling of bogus partition table (bsc#1238912)
  • CVE-2025-22115: btrfs: fix block group refcount race in btrfscreatependingblockgroups() (bsc#1241579)
  • CVE-2024-56558: nfsd: make sure exp active before svcexportshow (bsc#1243648)
References

Affected packages

SUSE:Linux Micro 6.0 / kernel-livepatch-MICRO-6-0_Update_4

Package

Name
kernel-livepatch-MICRO-6-0_Update_4
Purl
pkg:rpm/suse/kernel-livepatch-MICRO-6-0_Update_4&distro=SUSE%20Linux%20Micro%206.0

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
6-1.2

Ecosystem specific 

{
    "binaries": [
        {
            "kernel-livepatch-6_4_0-24-default": "6-1.2"
        }
    ]
}

Database specific

source 
"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2025:20527-1.json"