CVE-2024-26629 Common Vulnerabilities and Exposures

Upstream information

CVE-2024-26629 at MITRE

Description

In the Linux kernel, the following vulnerability has been resolved: nfsd: fix RELEASE_LOCKOWNER The test on so_count in nfsd4_release_lockowner() is nonsense and harmful. Revert to using check_for_locks(), changing that to not sleep. First: harmful. As is documented in the kdoc comment for nfsd4_release_lockowner(), the test on so_count can transiently return a false positive resulting in a return of NFS4ERR_LOCKS_HELD when in fact no locks are held. This is clearly a protocol violation and with the Linux NFS client it can cause incorrect behaviour. If RELEASE_LOCKOWNER is sent while some other thread is still processing a LOCK request which failed because, at the time that request was received, the given owner held a conflicting lock, then the nfsd thread processing that LOCK request can hold a reference (conflock) to the lock owner that causes nfsd4_release_lockowner() to return an incorrect error. The Linux NFS client ignores that NFS4ERR_LOCKS_HELD error because it never sends NFS4_RELEASE_LOCKOWNER without first releasing any locks, so it knows that the error is impossible. It assumes the lock owner was in fact released so it feels free to use the same lock owner identifier in some later locking request. When it does reuse a lock owner identifier for which a previous RELEASE failed, it will naturally use a lock_seqid of zero. However the server, which didn't release the lock owner, will expect a larger lock_seqid and so will respond with NFS4ERR_BAD_SEQID. So clearly it is harmful to allow a false positive, which testing so_count allows. The test is nonsense because ... well... it doesn't mean anything. so_count is the sum of three different counts. 1/ the set of states listed on so_stateids 2/ the set of active vfs locks owned by any of those states 3/ various transient counts such as for conflicting locks. When it is tested against '2' it is clear that one of these is the transient reference obtained by find_lockowner_str_locked(). It is not clear what the other one is expected to be. In practice, the count is often 2 because there is precisely one state on so_stateids. If there were more, this would fail. In my testing I see two circumstances when RELEASE_LOCKOWNER is called. In one case, CLOSE is called before RELEASE_LOCKOWNER. That results in all the lock states being removed, and so the lockowner being discarded (it is removed when there are no more references which usually happens when the lock state is discarded). When nfsd4_release_lockowner() finds that the lock owner doesn't exist, it returns success. The other case shows an so_count of '2' and precisely one state listed in so_stateid. It appears that the Linux client uses a separate lock owner for each file resulting in one lock state per lock owner, so this test on '2' is safe. For another client it might not be safe. So this patch changes check_for_locks() to use the (newish) find_any_file_locked() so that it doesn't take a reference on the nfs4_file and so never calls nfsd_file_put(), and so never sleeps. With this check is it safe to restore the use of check_for_locks() rather than testing so_count against the mysterious '2'.

SUSE information

Overall state of this security issue: Pending

This issue is currently rated as having low severity.

CVSS v3 Scores
	SUSE
Base Score	3.3
Vector	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
Attack Vector	Local
Attack Complexity	Low
Privileges Required	Low
User Interaction	None
Scope	Unchanged
Confidentiality Impact	None
Integrity Impact	None
Availability Impact	Low
CVSSv3 Version	3.1

SUSE Bugzilla entry: 1221379 [NEW]

SUSE Security Advisories:

SUSE-SU-2024:1322-1, published Wed Apr 17 08:30:31 UTC 2024
SUSE-SU-2024:1322-2, published Thu Apr 18 16:30:27 UTC 2024
SUSE-SU-2024:1332-1, published Thu Apr 18 12:30:32 UTC 2024
SUSE-SU-2024:1332-2, published Thu Apr 18 16:31:04 UTC 2024

List of packages in QA

Product(s)	Package(s)
SUSE Linux Enterprise High Availability Extension 15 SP5	`cluster-md-kmp-default >= 5.14.21-150500.55.59.1` `dlm-kmp-default >= 5.14.21-150500.55.59.1` `gfs2-kmp-default >= 5.14.21-150500.55.59.1` `ocfs2-kmp-default >= 5.14.21-150500.55.59.1`
SUSE Linux Enterprise Live Patching 15 SP5	`kernel-default-livepatch >= 5.14.21-150500.55.59.1` `kernel-default-livepatch-devel >= 5.14.21-150500.55.59.1` `kernel-livepatch-5_14_21-150500_13_47-rt >= 1-150500.11.3.1` `kernel-livepatch-5_14_21-150500_55_59-default >= 1-150500.11.7.1`
SUSE Linux Enterprise Micro 5.5	`kernel-default >= 5.14.21-150500.55.59.1` `kernel-default-base >= 5.14.21-150500.55.59.1.150500.6.25.7` `kernel-rt >= 5.14.21-150500.13.47.1` `kernel-source-rt >= 5.14.21-150500.13.47.1`
SUSE Linux Enterprise Module for Basesystem 15 SP5	`kernel-64kb >= 5.14.21-150500.55.59.1` `kernel-64kb-devel >= 5.14.21-150500.55.59.1` `kernel-default >= 5.14.21-150500.55.59.1` `kernel-default-base >= 5.14.21-150500.55.59.1.150500.6.25.7` `kernel-default-devel >= 5.14.21-150500.55.59.1` `kernel-devel >= 5.14.21-150500.55.59.1` `kernel-macros >= 5.14.21-150500.55.59.1` `kernel-zfcpdump >= 5.14.21-150500.55.59.1`
SUSE Linux Enterprise Server 15 SP5	`kernel-64kb >= 5.14.21-150500.55.59.1` `kernel-64kb-devel >= 5.14.21-150500.55.59.1` `kernel-default >= 5.14.21-150500.55.59.1` `kernel-default-base >= 5.14.21-150500.55.59.1.150500.6.25.7` `kernel-default-devel >= 5.14.21-150500.55.59.1` `kernel-devel >= 5.14.21-150500.55.59.1` `kernel-macros >= 5.14.21-150500.55.59.1` `kernel-zfcpdump >= 5.14.21-150500.55.59.1`
SUSE Linux Enterprise Desktop 15 SP5	`kernel-64kb >= 5.14.21-150500.55.59.1` `kernel-64kb-devel >= 5.14.21-150500.55.59.1` `kernel-default >= 5.14.21-150500.55.59.1` `kernel-default-base >= 5.14.21-150500.55.59.1.150500.6.25.7` `kernel-default-devel >= 5.14.21-150500.55.59.1` `kernel-devel >= 5.14.21-150500.55.59.1` `kernel-macros >= 5.14.21-150500.55.59.1` `kernel-zfcpdump >= 5.14.21-150500.55.59.1`
SUSE Linux Enterprise Server for SAP Applications 15 SP5	`kernel-64kb >= 5.14.21-150500.55.59.1` `kernel-64kb-devel >= 5.14.21-150500.55.59.1` `kernel-default >= 5.14.21-150500.55.59.1` `kernel-default-base >= 5.14.21-150500.55.59.1.150500.6.25.7` `kernel-default-devel >= 5.14.21-150500.55.59.1` `kernel-devel >= 5.14.21-150500.55.59.1` `kernel-macros >= 5.14.21-150500.55.59.1` `kernel-zfcpdump >= 5.14.21-150500.55.59.1`
SUSE Linux Enterprise High Performance Computing 15 SP5	`kernel-64kb >= 5.14.21-150500.55.59.1` `kernel-64kb-devel >= 5.14.21-150500.55.59.1` `kernel-default >= 5.14.21-150500.55.59.1` `kernel-default-base >= 5.14.21-150500.55.59.1.150500.6.25.7` `kernel-default-devel >= 5.14.21-150500.55.59.1` `kernel-devel >= 5.14.21-150500.55.59.1` `kernel-macros >= 5.14.21-150500.55.59.1` `kernel-zfcpdump >= 5.14.21-150500.55.59.1`
SUSE Linux Enterprise Module for Development Tools 15 SP5	`kernel-docs >= 5.14.21-150500.55.59.1` `kernel-obs-build >= 5.14.21-150500.55.59.1` `kernel-source >= 5.14.21-150500.55.59.1` `kernel-syms >= 5.14.21-150500.55.59.1`
SUSE Linux Enterprise Server 15 SP5	`kernel-docs >= 5.14.21-150500.55.59.1` `kernel-obs-build >= 5.14.21-150500.55.59.1` `kernel-source >= 5.14.21-150500.55.59.1` `kernel-syms >= 5.14.21-150500.55.59.1`
SUSE Linux Enterprise Desktop 15 SP5	`kernel-docs >= 5.14.21-150500.55.59.1` `kernel-obs-build >= 5.14.21-150500.55.59.1` `kernel-source >= 5.14.21-150500.55.59.1` `kernel-syms >= 5.14.21-150500.55.59.1`
SUSE Linux Enterprise Server for SAP Applications 15 SP5	`kernel-docs >= 5.14.21-150500.55.59.1` `kernel-obs-build >= 5.14.21-150500.55.59.1` `kernel-source >= 5.14.21-150500.55.59.1` `kernel-syms >= 5.14.21-150500.55.59.1`
SUSE Linux Enterprise High Performance Computing 15 SP5	`kernel-docs >= 5.14.21-150500.55.59.1` `kernel-obs-build >= 5.14.21-150500.55.59.1` `kernel-source >= 5.14.21-150500.55.59.1` `kernel-syms >= 5.14.21-150500.55.59.1`
SUSE Linux Enterprise Module for Legacy 15 SP5	`reiserfs-kmp-default >= 5.14.21-150500.55.59.1`
SUSE Linux Enterprise Server 15 SP5	`reiserfs-kmp-default >= 5.14.21-150500.55.59.1`
SUSE Linux Enterprise Server for SAP Applications 15 SP5	`reiserfs-kmp-default >= 5.14.21-150500.55.59.1`
SUSE Linux Enterprise High Performance Computing 15 SP5	`reiserfs-kmp-default >= 5.14.21-150500.55.59.1`
SUSE Linux Enterprise Workstation Extension 15 SP5	`kernel-default-extra >= 5.14.21-150500.55.59.1`
SUSE Linux Enterprise Server 15 SP5	`kernel-default-extra >= 5.14.21-150500.55.59.1`
SUSE Linux Enterprise Server for SAP Applications 15 SP5	`kernel-default-extra >= 5.14.21-150500.55.59.1`
SUSE Linux Enterprise Desktop 15 SP5	`kernel-default-extra >= 5.14.21-150500.55.59.1`
SUSE Real Time Module 15 SP5	`cluster-md-kmp-rt >= 5.14.21-150500.13.47.1` `dlm-kmp-rt >= 5.14.21-150500.13.47.1` `gfs2-kmp-rt >= 5.14.21-150500.13.47.1` `kernel-devel-rt >= 5.14.21-150500.13.47.1` `kernel-rt >= 5.14.21-150500.13.47.1` `kernel-rt-devel >= 5.14.21-150500.13.47.1` `kernel-rt-vdso >= 5.14.21-150500.13.47.1` `kernel-rt_debug >= 5.14.21-150500.13.47.1` `kernel-rt_debug-devel >= 5.14.21-150500.13.47.1` `kernel-rt_debug-vdso >= 5.14.21-150500.13.47.1` `kernel-source-rt >= 5.14.21-150500.13.47.1` `kernel-syms-rt >= 5.14.21-150500.13.47.1` `ocfs2-kmp-rt >= 5.14.21-150500.13.47.1`
SUSE Linux Enterprise Real Time 15 SP5	`cluster-md-kmp-rt >= 5.14.21-150500.13.47.1` `dlm-kmp-rt >= 5.14.21-150500.13.47.1` `gfs2-kmp-rt >= 5.14.21-150500.13.47.1` `kernel-devel-rt >= 5.14.21-150500.13.47.1` `kernel-rt >= 5.14.21-150500.13.47.1` `kernel-rt-devel >= 5.14.21-150500.13.47.1` `kernel-rt-vdso >= 5.14.21-150500.13.47.1` `kernel-rt_debug >= 5.14.21-150500.13.47.1` `kernel-rt_debug-devel >= 5.14.21-150500.13.47.1` `kernel-rt_debug-vdso >= 5.14.21-150500.13.47.1` `kernel-source-rt >= 5.14.21-150500.13.47.1` `kernel-syms-rt >= 5.14.21-150500.13.47.1` `ocfs2-kmp-rt >= 5.14.21-150500.13.47.1`

Status of this issue by product and package

Please note that this evaluation state might be work in progress, incomplete or outdated. Also information for service packs in the LTSS phase is only included for issues meeting the LTSS criteria. If in doubt, feel free to contact us for clarification. The updates are grouped by state of their lifecycle. SUSE product lifecycles are documented on the lifecycle page.

Product(s)	Source package	State
Products under general support and receiving all security fixes.
SUSE Enterprise Storage 7.1	kernel-default	Affected
SUSE Enterprise Storage 7.1	kernel-source	Affected
SUSE Enterprise Storage 7.1	kernel-source-azure	Affected
SUSE Linux Enterprise Desktop 15 SP5	kernel-64kb	In progress
SUSE Linux Enterprise Desktop 15 SP5	kernel-default	In progress
SUSE Linux Enterprise Desktop 15 SP5	kernel-default-base	In progress
SUSE Linux Enterprise Desktop 15 SP5	kernel-docs	In progress
SUSE Linux Enterprise Desktop 15 SP5	kernel-obs-build	In progress
SUSE Linux Enterprise Desktop 15 SP5	kernel-source	In progress
SUSE Linux Enterprise Desktop 15 SP5	kernel-syms	In progress
SUSE Linux Enterprise Desktop 15 SP5	kernel-zfcpdump	In progress
SUSE Linux Enterprise Desktop 15 SP6	kernel-default	Already fixed
SUSE Linux Enterprise Desktop 15 SP6	kernel-source	Already fixed
SUSE Linux Enterprise High Availability Extension 15 SP5	kernel-default	In progress
SUSE Linux Enterprise High Performance Computing 12 SP5	kernel-default	Not affected
SUSE Linux Enterprise High Performance Computing 12 SP5	kernel-source	Not affected
SUSE Linux Enterprise High Performance Computing 12 SP5	kernel-source-azure	Not affected
SUSE Linux Enterprise High Performance Computing 15 SP5	kernel-64kb	In progress
SUSE Linux Enterprise High Performance Computing 15 SP5	kernel-azure	Released
SUSE Linux Enterprise High Performance Computing 15 SP5	kernel-default	In progress
SUSE Linux Enterprise High Performance Computing 15 SP5	kernel-default-base	In progress
SUSE Linux Enterprise High Performance Computing 15 SP5	kernel-docs	In progress
SUSE Linux Enterprise High Performance Computing 15 SP5	kernel-obs-build	In progress
SUSE Linux Enterprise High Performance Computing 15 SP5	kernel-source	In progress
SUSE Linux Enterprise High Performance Computing 15 SP5	kernel-source-azure	Released
SUSE Linux Enterprise High Performance Computing 15 SP5	kernel-syms	In progress
SUSE Linux Enterprise High Performance Computing 15 SP5	kernel-syms-azure	Released
SUSE Linux Enterprise High Performance Computing 15 SP5	kernel-zfcpdump	In progress
SUSE Linux Enterprise High Performance Computing 15 SP6	kernel-default	Already fixed
SUSE Linux Enterprise High Performance Computing 15 SP6	kernel-source	Already fixed
SUSE Linux Enterprise High Performance Computing 15 SP6	kernel-source-azure	Already fixed
SUSE Linux Enterprise Live Patching 15 SP5	kernel-default	In progress
SUSE Linux Enterprise Live Patching 15 SP5	kernel-livepatch-SLE15-SP5-RT_Update_13	In progress
SUSE Linux Enterprise Live Patching 15 SP5	kernel-livepatch-SLE15-SP5_Update_12	In progress
SUSE Linux Enterprise Micro 5.1	kernel-default	Affected
SUSE Linux Enterprise Micro 5.1	kernel-rt	Affected
SUSE Linux Enterprise Micro 5.1	kernel-source-rt	Affected
SUSE Linux Enterprise Micro 5.2	kernel-default	Affected
SUSE Linux Enterprise Micro 5.2	kernel-rt	Affected
SUSE Linux Enterprise Micro 5.2	kernel-source-rt	Affected
SUSE Linux Enterprise Micro 5.3	kernel-default	Already fixed
SUSE Linux Enterprise Micro 5.3	kernel-rt	Already fixed
SUSE Linux Enterprise Micro 5.3	kernel-source-rt	Already fixed
SUSE Linux Enterprise Micro 5.4	kernel-default	Already fixed
SUSE Linux Enterprise Micro 5.4	kernel-rt	Already fixed
SUSE Linux Enterprise Micro 5.4	kernel-source-rt	Already fixed
SUSE Linux Enterprise Micro 5.5	kernel-default	In progress
SUSE Linux Enterprise Micro 5.5	kernel-default-base	In progress
SUSE Linux Enterprise Micro 5.5	kernel-rt	In progress
SUSE Linux Enterprise Micro 5.5	kernel-source-rt	In progress
SUSE Linux Enterprise Module for Basesystem 15 SP5	kernel-64kb	In progress
SUSE Linux Enterprise Module for Basesystem 15 SP5	kernel-default	In progress
SUSE Linux Enterprise Module for Basesystem 15 SP5	kernel-default-base	In progress
SUSE Linux Enterprise Module for Basesystem 15 SP5	kernel-source	In progress
SUSE Linux Enterprise Module for Basesystem 15 SP5	kernel-zfcpdump	In progress
SUSE Linux Enterprise Module for Basesystem 15 SP6	kernel-default	Already fixed
SUSE Linux Enterprise Module for Basesystem 15 SP6	kernel-source	Already fixed
SUSE Linux Enterprise Module for Development Tools 15 SP5	kernel-default	Already fixed
SUSE Linux Enterprise Module for Development Tools 15 SP5	kernel-docs	In progress
SUSE Linux Enterprise Module for Development Tools 15 SP5	kernel-obs-build	In progress
SUSE Linux Enterprise Module for Development Tools 15 SP5	kernel-source	In progress
SUSE Linux Enterprise Module for Development Tools 15 SP5	kernel-syms	In progress
SUSE Linux Enterprise Module for Development Tools 15 SP6	kernel-default	Already fixed
SUSE Linux Enterprise Module for Development Tools 15 SP6	kernel-source	Already fixed
SUSE Linux Enterprise Module for Legacy 15 SP5	kernel-default	In progress
SUSE Linux Enterprise Module for Public Cloud 15 SP5	kernel-azure	Released
SUSE Linux Enterprise Module for Public Cloud 15 SP5	kernel-source-azure	Released
SUSE Linux Enterprise Module for Public Cloud 15 SP5	kernel-syms-azure	Released
SUSE Linux Enterprise Module for Public Cloud 15 SP6	kernel-source-azure	Already fixed
SUSE Linux Enterprise Real Time 12 SP5	kernel-source-rt	Not affected
SUSE Linux Enterprise Real Time 15 SP3	kernel-source	Affected
SUSE Linux Enterprise Real Time 15 SP3	kernel-source-rt	Affected
SUSE Linux Enterprise Real Time 15 SP5	kernel-rt	In progress
SUSE Linux Enterprise Real Time 15 SP5	kernel-rt_debug	In progress
SUSE Linux Enterprise Real Time 15 SP5	kernel-source-rt	In progress
SUSE Linux Enterprise Real Time 15 SP5	kernel-syms-rt	In progress
SUSE Linux Enterprise Real Time 15 SP6	kernel-source-rt	Already fixed
SUSE Linux Enterprise Server 12 SP5	kernel-default	Not affected
SUSE Linux Enterprise Server 12 SP5	kernel-source	Not affected
SUSE Linux Enterprise Server 12 SP5	kernel-source-azure	Not affected
SUSE Linux Enterprise Server 15 SP5	kernel-64kb	In progress
SUSE Linux Enterprise Server 15 SP5	kernel-azure	Released
SUSE Linux Enterprise Server 15 SP5	kernel-default	In progress
SUSE Linux Enterprise Server 15 SP5	kernel-default-base	In progress
SUSE Linux Enterprise Server 15 SP5	kernel-docs	In progress
SUSE Linux Enterprise Server 15 SP5	kernel-obs-build	In progress
SUSE Linux Enterprise Server 15 SP5	kernel-source	In progress
SUSE Linux Enterprise Server 15 SP5	kernel-source-azure	Released
SUSE Linux Enterprise Server 15 SP5	kernel-syms	In progress
SUSE Linux Enterprise Server 15 SP5	kernel-syms-azure	Released
SUSE Linux Enterprise Server 15 SP5	kernel-zfcpdump	In progress
SUSE Linux Enterprise Server 15 SP6	kernel-default	Already fixed
SUSE Linux Enterprise Server 15 SP6	kernel-source	Already fixed
SUSE Linux Enterprise Server 15 SP6	kernel-source-azure	Already fixed
SUSE Linux Enterprise Server for SAP Applications 12 SP5	kernel-default	Not affected
SUSE Linux Enterprise Server for SAP Applications 12 SP5	kernel-source	Not affected
SUSE Linux Enterprise Server for SAP Applications 12 SP5	kernel-source-azure	Not affected
SUSE Linux Enterprise Server for SAP Applications 15 SP5	kernel-64kb	In progress
SUSE Linux Enterprise Server for SAP Applications 15 SP5	kernel-azure	Released
SUSE Linux Enterprise Server for SAP Applications 15 SP5	kernel-default	In progress
SUSE Linux Enterprise Server for SAP Applications 15 SP5	kernel-default-base	In progress
SUSE Linux Enterprise Server for SAP Applications 15 SP5	kernel-docs	In progress
SUSE Linux Enterprise Server for SAP Applications 15 SP5	kernel-obs-build	In progress
SUSE Linux Enterprise Server for SAP Applications 15 SP5	kernel-source	In progress
SUSE Linux Enterprise Server for SAP Applications 15 SP5	kernel-source-azure	Released
SUSE Linux Enterprise Server for SAP Applications 15 SP5	kernel-syms	In progress
SUSE Linux Enterprise Server for SAP Applications 15 SP5	kernel-syms-azure	Released
SUSE Linux Enterprise Server for SAP Applications 15 SP5	kernel-zfcpdump	In progress
SUSE Linux Enterprise Server for SAP Applications 15 SP6	kernel-default	Already fixed
SUSE Linux Enterprise Server for SAP Applications 15 SP6	kernel-source	Already fixed
SUSE Linux Enterprise Server for SAP Applications 15 SP6	kernel-source-azure	Already fixed
SUSE Linux Enterprise Workstation Extension 15 SP5	kernel-default	In progress
SUSE Manager Proxy 4.3	kernel-default	Already fixed
SUSE Manager Proxy 4.3	kernel-source	Already fixed
SUSE Manager Proxy 4.3	kernel-source-azure	Already fixed
SUSE Manager Retail Branch Server 4.3	kernel-default	Already fixed
SUSE Manager Retail Branch Server 4.3	kernel-source	Already fixed
SUSE Manager Retail Branch Server 4.3	kernel-source-azure	Already fixed
SUSE Manager Server 4.3	kernel-default	Already fixed
SUSE Manager Server 4.3	kernel-source	Already fixed
SUSE Manager Server 4.3	kernel-source-azure	Already fixed
SUSE Real Time Module 15 SP5	kernel-rt	In progress
SUSE Real Time Module 15 SP5	kernel-rt_debug	In progress
SUSE Real Time Module 15 SP5	kernel-source-rt	In progress
SUSE Real Time Module 15 SP5	kernel-syms-rt	In progress
SUSE Real Time Module 15 SP6	kernel-source-rt	Already fixed
openSUSE Leap 15.5	kernel-azure	Released
openSUSE Leap 15.5	kernel-rt	Released
openSUSE Leap 15.5	kernel-rt_debug	Released
openSUSE Leap 15.5	kernel-source-azure	Released
openSUSE Leap 15.5	kernel-source-rt	Released
openSUSE Leap 15.5	kernel-syms-azure	Released
openSUSE Leap 15.5	kernel-syms-rt	Released
Products under Long Term Service Pack support and receiving important and critical security fixes.
SUSE Linux Enterprise Desktop 15 SP4	kernel-source	Already fixed
SUSE Linux Enterprise High Performance Computing 15	kernel-source	Not affected
SUSE Linux Enterprise High Performance Computing 15 SP1	kernel-source	Not affected
SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS	kernel-source	Not affected
SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS	kernel-source	Not affected
SUSE Linux Enterprise High Performance Computing 15 SP2	kernel-source	Not affected
SUSE Linux Enterprise High Performance Computing 15 SP2	kernel-source-azure	Not affected
SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS	kernel-source	Not affected
SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS	kernel-default	Not affected
SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS	kernel-source	Not affected
SUSE Linux Enterprise High Performance Computing 15 SP3	kernel-source	Affected
SUSE Linux Enterprise High Performance Computing 15 SP3	kernel-source-azure	Affected
SUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS	kernel-source	Affected
SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS	kernel-default	Affected
SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS	kernel-source	Affected
SUSE Linux Enterprise High Performance Computing 15 SP4	kernel-source	Already fixed
SUSE Linux Enterprise High Performance Computing 15 SP4	kernel-source-azure	Already fixed
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS	kernel-default	Already fixed
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS	kernel-source	Already fixed
SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS	kernel-default	Already fixed
SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS	kernel-source	Already fixed
SUSE Linux Enterprise High Performance Computing 15-ESPOS	kernel-source	Not affected
SUSE Linux Enterprise High Performance Computing 15-LTSS	kernel-source	Not affected
SUSE Linux Enterprise Module for Basesystem 15 SP2	kernel-source	Not affected
SUSE Linux Enterprise Module for Basesystem 15 SP3	kernel-source	Affected
SUSE Linux Enterprise Module for Basesystem 15 SP4	kernel-source	Already fixed
SUSE Linux Enterprise Module for Development Tools 15 SP2	kernel-source	Not affected
SUSE Linux Enterprise Module for Development Tools 15 SP3	kernel-source	Affected
SUSE Linux Enterprise Module for Development Tools 15 SP4	kernel-source	Already fixed
SUSE Linux Enterprise Module for Public Cloud 15 SP4	kernel-source-azure	Already fixed
SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE	kernel-default	Not affected
SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE	kernel-source	Not affected
SUSE Linux Enterprise Server 15 SP2	kernel-source	Not affected
SUSE Linux Enterprise Server 15 SP2	kernel-source-azure	Not affected
SUSE Linux Enterprise Server 15 SP2-LTSS	kernel-default	Not affected
SUSE Linux Enterprise Server 15 SP2-LTSS	kernel-source	Not affected
SUSE Linux Enterprise Server 15 SP3	kernel-source	Affected
SUSE Linux Enterprise Server 15 SP3	kernel-source-azure	Affected
SUSE Linux Enterprise Server 15 SP3-LTSS	kernel-default	Affected
SUSE Linux Enterprise Server 15 SP3-LTSS	kernel-source	Affected
SUSE Linux Enterprise Server 15 SP4	kernel-source	Already fixed
SUSE Linux Enterprise Server 15 SP4	kernel-source-azure	Already fixed
SUSE Linux Enterprise Server 15 SP4-LTSS	kernel-default	Already fixed
SUSE Linux Enterprise Server 15 SP4-LTSS	kernel-source	Already fixed
SUSE Linux Enterprise Server for SAP Applications 15 SP2	kernel-default	Not affected
SUSE Linux Enterprise Server for SAP Applications 15 SP2	kernel-source	Not affected
SUSE Linux Enterprise Server for SAP Applications 15 SP2	kernel-source-azure	Not affected
SUSE Linux Enterprise Server for SAP Applications 15 SP3	kernel-default	Affected
SUSE Linux Enterprise Server for SAP Applications 15 SP3	kernel-source	Affected
SUSE Linux Enterprise Server for SAP Applications 15 SP3	kernel-source-azure	Affected
SUSE Linux Enterprise Server for SAP Applications 15 SP4	kernel-default	Already fixed
SUSE Linux Enterprise Server for SAP Applications 15 SP4	kernel-source	Already fixed
SUSE Linux Enterprise Server for SAP Applications 15 SP4	kernel-source-azure	Already fixed
SUSE OpenStack Cloud 8	kernel-source	Not affected
SUSE OpenStack Cloud 9	kernel-default	Not affected
SUSE OpenStack Cloud 9	kernel-source	Not affected
Products past their end of life and not receiving proactive updates anymore.
HPE Helion OpenStack 8	kernel-source	Not affected
SUSE CaaS Platform 4.0	kernel-source	Not affected
SUSE Enterprise Storage 6	kernel-source	Not affected
SUSE Enterprise Storage 7	kernel-source	Not affected
SUSE Enterprise Storage 7	kernel-source-azure	Not affected
SUSE Linux Enterprise Desktop 12 SP2	kernel-source	Not affected
SUSE Linux Enterprise Desktop 12 SP3	kernel-source	Not affected
SUSE Linux Enterprise Desktop 12 SP4	kernel-source	Not affected
SUSE Linux Enterprise Desktop 15	kernel-source	Not affected
SUSE Linux Enterprise Desktop 15 SP1	kernel-source	Not affected
SUSE Linux Enterprise Desktop 15 SP2	kernel-source	Not affected
SUSE Linux Enterprise Desktop 15 SP3	kernel-source	Affected
SUSE Linux Enterprise Micro 5.0	kernel-default	Not affected
SUSE Linux Enterprise Module for Basesystem 15	kernel-source	Not affected
SUSE Linux Enterprise Module for Basesystem 15 SP1	kernel-source	Not affected
SUSE Linux Enterprise Module for Development Tools 15	kernel-source	Not affected
SUSE Linux Enterprise Module for Development Tools 15 SP1	kernel-source	Not affected
SUSE Linux Enterprise Module for Public Cloud 15 SP2	kernel-source-azure	Not affected
SUSE Linux Enterprise Module for Public Cloud 15 SP3	kernel-source-azure	Affected
SUSE Linux Enterprise Real Time 15 SP2	kernel-source	Not affected
SUSE Linux Enterprise Real Time 15 SP4	kernel-source	Already fixed
SUSE Linux Enterprise Real Time 15 SP4	kernel-source-rt	Already fixed
SUSE Linux Enterprise Server 11 SP4	kernel-source	Not affected
SUSE Linux Enterprise Server 11 SP4 LTSS	kernel-default	Not affected
SUSE Linux Enterprise Server 11 SP4 LTSS	kernel-source	Not affected
SUSE Linux Enterprise Server 11 SP4-LTSS	kernel-source	Not affected
SUSE Linux Enterprise Server 12 SP2	kernel-source	Not affected
SUSE Linux Enterprise Server 12 SP2-BCL	kernel-source	Not affected
SUSE Linux Enterprise Server 12 SP2-ESPOS	kernel-source	Not affected
SUSE Linux Enterprise Server 12 SP2-LTSS	kernel-default	Not affected
SUSE Linux Enterprise Server 12 SP2-LTSS	kernel-source	Not affected
SUSE Linux Enterprise Server 12 SP3	kernel-source	Not affected
SUSE Linux Enterprise Server 12 SP3-BCL	kernel-source	Not affected
SUSE Linux Enterprise Server 12 SP3-ESPOS	kernel-source	Not affected
SUSE Linux Enterprise Server 12 SP3-LTSS	kernel-source	Not affected
SUSE Linux Enterprise Server 12 SP4	kernel-source	Not affected
SUSE Linux Enterprise Server 12 SP4-ESPOS	kernel-source	Not affected
SUSE Linux Enterprise Server 12 SP4-LTSS	kernel-default	Not affected
SUSE Linux Enterprise Server 12 SP4-LTSS	kernel-source	Not affected
SUSE Linux Enterprise Server 15	kernel-source	Not affected
SUSE Linux Enterprise Server 15 SP1	kernel-source	Not affected
SUSE Linux Enterprise Server 15 SP1-BCL	kernel-source	Not affected
SUSE Linux Enterprise Server 15 SP1-LTSS	kernel-default	Not affected
SUSE Linux Enterprise Server 15 SP1-LTSS	kernel-source	Not affected
SUSE Linux Enterprise Server 15 SP2-BCL	kernel-source	Not affected
SUSE Linux Enterprise Server 15 SP3-BCL	kernel-source	Affected
SUSE Linux Enterprise Server 15-LTSS	kernel-default	Not affected
SUSE Linux Enterprise Server 15-LTSS	kernel-source	Not affected
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2	kernel-source	Not affected
SUSE Linux Enterprise Server for SAP Applications 12 SP2	kernel-default	Not affected
SUSE Linux Enterprise Server for SAP Applications 12 SP2	kernel-source	Not affected
SUSE Linux Enterprise Server for SAP Applications 12 SP3	kernel-source	Not affected
SUSE Linux Enterprise Server for SAP Applications 12 SP4	kernel-default	Not affected
SUSE Linux Enterprise Server for SAP Applications 12 SP4	kernel-source	Not affected
SUSE Linux Enterprise Server for SAP Applications 15	kernel-source	Not affected
SUSE Linux Enterprise Server for SAP Applications 15 SP1	kernel-source	Not affected
SUSE Manager Proxy 4.0	kernel-source	Not affected
SUSE Manager Proxy 4.1	kernel-source	Not affected
SUSE Manager Proxy 4.1	kernel-source-azure	Not affected
SUSE Manager Proxy 4.2	kernel-source	Affected
SUSE Manager Proxy 4.2	kernel-source-azure	Affected
SUSE Manager Retail Branch Server 4.0	kernel-source	Not affected
SUSE Manager Retail Branch Server 4.1	kernel-source	Not affected
SUSE Manager Retail Branch Server 4.1	kernel-source-azure	Not affected
SUSE Manager Retail Branch Server 4.2	kernel-source	Affected
SUSE Manager Retail Branch Server 4.2	kernel-source-azure	Affected
SUSE Manager Server 4.0	kernel-source	Not affected
SUSE Manager Server 4.1	kernel-source	Not affected
SUSE Manager Server 4.1	kernel-source-azure	Not affected
SUSE Manager Server 4.2	kernel-source	Affected
SUSE Manager Server 4.2	kernel-source-azure	Affected
SUSE OpenStack Cloud 7	kernel-source	Not affected
SUSE OpenStack Cloud Crowbar 8	kernel-source	Not affected
SUSE OpenStack Cloud Crowbar 9	kernel-default	Not affected
SUSE OpenStack Cloud Crowbar 9	kernel-source	Not affected
SUSE Real Time Module 15 SP3	kernel-source-rt	Affected
SUSE Real Time Module 15 SP4	kernel-source-rt	Already fixed
Container Status
suse/sle-micro/rt-5.5	kernel-rt	In progress

SUSE Timeline for this CVE

CVE page created: Wed Mar 13 17:03:13 2024
CVE page last modified: Wed Apr 24 19:29:16 2024