Upstream information

CVE-2024-26629 at MITRE

Description

In the Linux kernel, the following vulnerability has been resolved:

nfsd: fix RELEASE_LOCKOWNER

The test on so_count in nfsd4_release_lockowner() is nonsense and
harmful. Revert to using check_for_locks(), changing that to not sleep.

First: harmful.
As is documented in the kdoc comment for nfsd4_release_lockowner(), the
test on so_count can transiently return a false positive resulting in a
return of NFS4ERR_LOCKS_HELD when in fact no locks are held. This is
clearly a protocol violation and with the Linux NFS client it can cause
incorrect behaviour.

If RELEASE_LOCKOWNER is sent while some other thread is still
processing a LOCK request which failed because, at the time that request
was received, the given owner held a conflicting lock, then the nfsd
thread processing that LOCK request can hold a reference (conflock) to
the lock owner that causes nfsd4_release_lockowner() to return an
incorrect error.

The Linux NFS client ignores that NFS4ERR_LOCKS_HELD error because it
never sends NFS4_RELEASE_LOCKOWNER without first releasing any locks, so
it knows that the error is impossible. It assumes the lock owner was in
fact released so it feels free to use the same lock owner identifier in
some later locking request.

When it does reuse a lock owner identifier for which a previous RELEASE
failed, it will naturally use a lock_seqid of zero. However the server,
which didn't release the lock owner, will expect a larger lock_seqid and
so will respond with NFS4ERR_BAD_SEQID.

So clearly it is harmful to allow a false positive, which testing
so_count allows.

The test is nonsense because ... well... it doesn't mean anything.

so_count is the sum of three different counts.
1/ the set of states listed on so_stateids
2/ the set of active vfs locks owned by any of those states
3/ various transient counts such as for conflicting locks.

When it is tested against '2' it is clear that one of these is the
transient reference obtained by find_lockowner_str_locked(). It is not
clear what the other one is expected to be.

In practice, the count is often 2 because there is precisely one state
on so_stateids. If there were more, this would fail.

In my testing I see two circumstances when RELEASE_LOCKOWNER is called.
In one case, CLOSE is called before RELEASE_LOCKOWNER. That results in
all the lock states being removed, and so the lockowner being discarded
(it is removed when there are no more references which usually happens
when the lock state is discarded). When nfsd4_release_lockowner() finds
that the lock owner doesn't exist, it returns success.

The other case shows an so_count of '2' and precisely one state listed
in so_stateid. It appears that the Linux client uses a separate lock
owner for each file resulting in one lock state per lock owner, so this
test on '2' is safe. For another client it might not be safe.

So this patch changes check_for_locks() to use the (newish)
find_any_file_locked() so that it doesn't take a reference on the
nfs4_file and so never calls nfsd_file_put(), and so never sleeps. With
this check is it safe to restore the use of check_for_locks() rather
than testing so_count against the mysterious '2'.

SUSE information

Overall state of this security issue: Resolved

This issue is currently rated as having low severity.

CVSS v3 Scores
  SUSE
Base Score 3.3
Vector CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality Impact None
Integrity Impact None
Availability Impact Low
CVSSv3 Version 3.1

Note from the SUSE Security Team on the kernel-default package

SUSE will no longer fix all CVEs in the Linux Kernel anymore, but declare some bug classes as won't fix. Please refer to TID 21496 for more details.

SUSE Bugzilla entry: 1221379 [RESOLVED / FIXED]

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
Container bci/bci-sle15-kernel-module-devel:15.5
  • kernel-default-devel >= 5.14.21-150500.55.59.1
  • kernel-devel >= 5.14.21-150500.55.59.1
  • kernel-macros >= 5.14.21-150500.55.59.1
  • kernel-syms >= 5.14.21-150500.55.59.1
Container suse/sle-micro/base-5.5:2.0.4-5.8.118
Image SLES15-SP5-BYOS-Azure
Image SLES15-SP5-BYOS-EC2
Image SLES15-SP5-BYOS-GCE
Image SLES15-SP5-CHOST-BYOS-Aliyun
Image SLES15-SP5-CHOST-BYOS-Azure
Image SLES15-SP5-CHOST-BYOS-EC2
Image SLES15-SP5-CHOST-BYOS-GCE
Image SLES15-SP5-CHOST-BYOS-GDC
Image SLES15-SP5-CHOST-BYOS-SAP-CCloud
Image SLES15-SP5-EC2
Image SLES15-SP5-GCE
Image SLES15-SP5-HPC-BYOS-Azure
Image SLES15-SP5-HPC-BYOS-EC2
Image SLES15-SP5-HPC-BYOS-GCE
Image SLES15-SP5-Hardened-BYOS-Azure
Image SLES15-SP5-Hardened-BYOS-GCE
Image SLES15-SP5-Manager-Proxy-5-0-BYOS
Image SLES15-SP5-Manager-Proxy-5-0-BYOS-Azure
Image SLES15-SP5-Manager-Proxy-5-0-BYOS-EC2
Image SLES15-SP5-Manager-Proxy-5-0-BYOS-GCE
Image SLES15-SP5-Manager-Server-5-0-BYOS
Image SLES15-SP5-Manager-Server-5-0-BYOS-Azure
Image SLES15-SP5-Manager-Server-5-0-BYOS-EC2
Image SLES15-SP5-Manager-Server-5-0-BYOS-GCE
Image SLES15-SP5-Micro-5-5
Image SLES15-SP5-Micro-5-5-Azure
Image SLES15-SP5-Micro-5-5-BYOS
Image SLES15-SP5-Micro-5-5-BYOS-Azure
Image SLES15-SP5-Micro-5-5-BYOS-EC2
Image SLES15-SP5-Micro-5-5-BYOS-GCE
Image SLES15-SP5-Micro-5-5-EC2
Image SLES15-SP5-Micro-5-5-GCE
Image SLES15-SP5-SAPCAL-Azure
Image SLES15-SP5-SAPCAL-EC2
Image SLES15-SP5-SAPCAL-GCE
  • kernel-default >= 5.14.21-150500.55.59.1
Container suse/sle-micro/kvm-5.5:2.0.2-2.2.115
  • kernel-default-base >= 5.14.21-150500.55.59.1.150500.6.25.7
Container suse/sle-micro/rt-5.5:2.0.2-3.2.119
  • kernel-rt >= 5.14.21-150500.13.47.1
Image SLES15-SP5-Azure-Basic
Image SLES15-SP5-Azure-Standard
Image SLES15-SP5-HPC-Azure
  • kernel-azure >= 5.14.21-150500.33.48.1
Image SLES15-SP5-SAP-Azure-LI-BYOS
Image SLES15-SP5-SAP-Azure-LI-BYOS-Production
Image SLES15-SP5-SAP-Azure-VLI-BYOS
Image SLES15-SP5-SAP-Azure-VLI-BYOS-Production
Image SLES15-SP5-SAP-BYOS-Azure
Image SLES15-SP5-SAP-BYOS-EC2
Image SLES15-SP5-SAP-BYOS-GCE
Image SLES15-SP5-SAP-Hardened-Azure
Image SLES15-SP5-SAP-Hardened-BYOS-Azure
Image SLES15-SP5-SAP-Hardened-BYOS-EC2
Image SLES15-SP5-SAP-Hardened-BYOS-GCE
Image SLES15-SP5-SAP-Hardened-GCE
  • cluster-md-kmp-default >= 5.14.21-150500.55.59.1
  • dlm-kmp-default >= 5.14.21-150500.55.59.1
  • gfs2-kmp-default >= 5.14.21-150500.55.59.1
  • kernel-default >= 5.14.21-150500.55.59.1
  • ocfs2-kmp-default >= 5.14.21-150500.55.59.1
SUSE Liberty Linux 9
  • bpftool >= 7.3.0-427.35.1.el9_4
  • kernel >= 5.14.0-427.35.1.el9_4
  • kernel-abi-stablelists >= 5.14.0-427.35.1.el9_4
  • kernel-core >= 5.14.0-427.35.1.el9_4
  • kernel-cross-headers >= 5.14.0-427.35.1.el9_4
  • kernel-debug >= 5.14.0-427.35.1.el9_4
  • kernel-debug-core >= 5.14.0-427.35.1.el9_4
  • kernel-debug-devel >= 5.14.0-427.35.1.el9_4
  • kernel-debug-devel-matched >= 5.14.0-427.35.1.el9_4
  • kernel-debug-modules >= 5.14.0-427.35.1.el9_4
  • kernel-debug-modules-core >= 5.14.0-427.35.1.el9_4
  • kernel-debug-modules-extra >= 5.14.0-427.35.1.el9_4
  • kernel-debug-uki-virt >= 5.14.0-427.35.1.el9_4
  • kernel-devel >= 5.14.0-427.35.1.el9_4
  • kernel-devel-matched >= 5.14.0-427.35.1.el9_4
  • kernel-doc >= 5.14.0-427.35.1.el9_4
  • kernel-headers >= 5.14.0-427.35.1.el9_4
  • kernel-modules >= 5.14.0-427.35.1.el9_4
  • kernel-modules-core >= 5.14.0-427.35.1.el9_4
  • kernel-modules-extra >= 5.14.0-427.35.1.el9_4
  • kernel-tools >= 5.14.0-427.35.1.el9_4
  • kernel-tools-libs >= 5.14.0-427.35.1.el9_4
  • kernel-tools-libs-devel >= 5.14.0-427.35.1.el9_4
  • kernel-uki-virt >= 5.14.0-427.35.1.el9_4
  • libperf >= 5.14.0-427.35.1.el9_4
  • perf >= 5.14.0-427.35.1.el9_4
  • python3-perf >= 5.14.0-427.35.1.el9_4
  • rtla >= 5.14.0-427.35.1.el9_4
  • rv >= 5.14.0-427.35.1.el9_4
Patchnames:
RHSA-2024:6567
SUSE Linux Enterprise Desktop 15 SP5
  • kernel-64kb >= 5.14.21-150500.55.59.1
  • kernel-64kb-devel >= 5.14.21-150500.55.59.1
  • kernel-default >= 5.14.21-150500.55.59.1
  • kernel-default-base >= 5.14.21-150500.55.59.1.150500.6.25.7
  • kernel-default-devel >= 5.14.21-150500.55.59.1
  • kernel-default-extra >= 5.14.21-150500.55.59.1
  • kernel-devel >= 5.14.21-150500.55.59.1
  • kernel-docs >= 5.14.21-150500.55.59.1
  • kernel-macros >= 5.14.21-150500.55.59.1
  • kernel-obs-build >= 5.14.21-150500.55.59.1
  • kernel-source >= 5.14.21-150500.55.59.1
  • kernel-syms >= 5.14.21-150500.55.59.1
  • kernel-zfcpdump >= 5.14.21-150500.55.59.1
Patchnames:
SUSE-SLE-Module-Basesystem-15-SP5-2024-1480
SUSE-SLE-Module-Development-Tools-15-SP5-2024-1480
SUSE-SLE-Product-WE-15-SP5-2024-1480
SUSE Linux Enterprise Desktop 15 SP6
  • kernel-64kb >= 6.4.0-150600.21.2
  • kernel-64kb-devel >= 6.4.0-150600.21.2
  • kernel-default >= 6.4.0-150600.21.3
  • kernel-default-devel >= 6.4.0-150600.21.3
  • kernel-devel >= 6.4.0-150600.21.2
  • kernel-docs >= 6.4.0-150600.21.1
  • kernel-macros >= 6.4.0-150600.21.2
  • kernel-obs-build >= 6.4.0-150600.21.2
  • kernel-source >= 6.4.0-150600.21.2
  • kernel-syms >= 6.4.0-150600.21.1
  • kernel-zfcpdump >= 6.4.0-150600.21.2
Patchnames:
SUSE Linux Enterprise Module for Basesystem 15 SP6 GA kernel-64kb-6.4.0-150600.21.2
SUSE Linux Enterprise Module for Development Tools 15 SP6 GA kernel-docs-6.4.0-150600.21.1
SUSE Linux Enterprise High Availability Extension 15 SP5
  • cluster-md-kmp-default >= 5.14.21-150500.55.59.1
  • dlm-kmp-default >= 5.14.21-150500.55.59.1
  • gfs2-kmp-default >= 5.14.21-150500.55.59.1
  • ocfs2-kmp-default >= 5.14.21-150500.55.59.1
Patchnames:
SUSE-SLE-Product-HA-15-SP5-2024-1480
SUSE Linux Enterprise High Performance Computing 15 SP5
  • kernel-64kb >= 5.14.21-150500.55.59.1
  • kernel-64kb-devel >= 5.14.21-150500.55.59.1
  • kernel-azure >= 5.14.21-150500.33.48.1
  • kernel-azure-devel >= 5.14.21-150500.33.48.1
  • kernel-default >= 5.14.21-150500.55.59.1
  • kernel-default-base >= 5.14.21-150500.55.59.1.150500.6.25.7
  • kernel-default-devel >= 5.14.21-150500.55.59.1
  • kernel-devel >= 5.14.21-150500.55.59.1
  • kernel-devel-azure >= 5.14.21-150500.33.48.1
  • kernel-docs >= 5.14.21-150500.55.59.1
  • kernel-macros >= 5.14.21-150500.55.59.1
  • kernel-obs-build >= 5.14.21-150500.55.59.1
  • kernel-source >= 5.14.21-150500.55.59.1
  • kernel-source-azure >= 5.14.21-150500.33.48.1
  • kernel-syms >= 5.14.21-150500.55.59.1
  • kernel-syms-azure >= 5.14.21-150500.33.48.1
  • kernel-zfcpdump >= 5.14.21-150500.55.59.1
  • reiserfs-kmp-default >= 5.14.21-150500.55.59.1
Patchnames:
SUSE-SLE-Module-Basesystem-15-SP5-2024-1480
SUSE-SLE-Module-Development-Tools-15-SP5-2024-1480
SUSE-SLE-Module-Legacy-15-SP5-2024-1480
SUSE-SLE-Module-Public-Cloud-15-SP5-2024-1490
SUSE Linux Enterprise High Performance Computing 15 SP6
SUSE Linux Enterprise Server 15 SP6
SUSE Linux Enterprise Server for SAP Applications 15 SP6
  • kernel-64kb >= 6.4.0-150600.21.2
  • kernel-64kb-devel >= 6.4.0-150600.21.2
  • kernel-azure >= 6.4.0-150600.6.3
  • kernel-azure-devel >= 6.4.0-150600.6.3
  • kernel-default >= 6.4.0-150600.21.3
  • kernel-default-devel >= 6.4.0-150600.21.3
  • kernel-devel >= 6.4.0-150600.21.2
  • kernel-devel-azure >= 6.4.0-150600.6.2
  • kernel-docs >= 6.4.0-150600.21.1
  • kernel-macros >= 6.4.0-150600.21.2
  • kernel-obs-build >= 6.4.0-150600.21.2
  • kernel-source >= 6.4.0-150600.21.2
  • kernel-source-azure >= 6.4.0-150600.6.2
  • kernel-syms >= 6.4.0-150600.21.1
  • kernel-syms-azure >= 6.4.0-150600.6.1
  • kernel-zfcpdump >= 6.4.0-150600.21.2
  • reiserfs-kmp-default >= 6.4.0-150600.21.3
Patchnames:
SUSE Linux Enterprise Module for Basesystem 15 SP6 GA kernel-64kb-6.4.0-150600.21.2
SUSE Linux Enterprise Module for Development Tools 15 SP6 GA kernel-docs-6.4.0-150600.21.1
SUSE Linux Enterprise Module for Legacy 15 SP6 GA reiserfs-kmp-default-6.4.0-150600.21.3
SUSE Linux Enterprise Module for Public Cloud 15 SP6 GA kernel-azure-6.4.0-150600.6.3
SUSE Linux Enterprise Live Patching 15 SP5
    Patchnames:
    SUSE-SLE-Module-Live-Patching-15-SP5-2024-1466
    SUSE-SLE-Module-Live-Patching-15-SP5-2024-1480
    SUSE Linux Enterprise Micro 5.5
    • kernel-default >= 5.14.21-150500.55.59.1
    • kernel-default-base >= 5.14.21-150500.55.59.1.150500.6.25.7
    • kernel-rt >= 5.14.21-150500.13.47.1
    • kernel-source-rt >= 5.14.21-150500.13.47.1
    Patchnames:
    SUSE-SLE-Micro-5.5-2024-1466
    SUSE-SLE-Micro-5.5-2024-1480
    SUSE Linux Enterprise Module for Basesystem 15 SP5
    • kernel-64kb >= 5.14.21-150500.55.59.1
    • kernel-64kb-devel >= 5.14.21-150500.55.59.1
    • kernel-default >= 5.14.21-150500.55.59.1
    • kernel-default-base >= 5.14.21-150500.55.59.1.150500.6.25.7
    • kernel-default-devel >= 5.14.21-150500.55.59.1
    • kernel-devel >= 5.14.21-150500.55.59.1
    • kernel-macros >= 5.14.21-150500.55.59.1
    • kernel-zfcpdump >= 5.14.21-150500.55.59.1
    Patchnames:
    SUSE-SLE-Module-Basesystem-15-SP5-2024-1480
    SUSE Linux Enterprise Module for Basesystem 15 SP6
    • kernel-64kb >= 6.4.0-150600.21.2
    • kernel-64kb-devel >= 6.4.0-150600.21.2
    • kernel-default >= 6.4.0-150600.21.3
    • kernel-default-devel >= 6.4.0-150600.21.3
    • kernel-devel >= 6.4.0-150600.21.2
    • kernel-macros >= 6.4.0-150600.21.2
    • kernel-zfcpdump >= 6.4.0-150600.21.2
    Patchnames:
    SUSE Linux Enterprise Module for Basesystem 15 SP6 GA kernel-64kb-6.4.0-150600.21.2
    SUSE Linux Enterprise Module for Development Tools 15 SP5
    • kernel-docs >= 5.14.21-150500.55.59.1
    • kernel-obs-build >= 5.14.21-150500.55.59.1
    • kernel-source >= 5.14.21-150500.55.59.1
    • kernel-syms >= 5.14.21-150500.55.59.1
    Patchnames:
    SUSE-SLE-Module-Development-Tools-15-SP5-2024-1480
    SUSE Linux Enterprise Module for Development Tools 15 SP6
    • kernel-docs >= 6.4.0-150600.21.1
    • kernel-obs-build >= 6.4.0-150600.21.2
    • kernel-source >= 6.4.0-150600.21.2
    • kernel-syms >= 6.4.0-150600.21.1
    Patchnames:
    SUSE Linux Enterprise Module for Development Tools 15 SP6 GA kernel-docs-6.4.0-150600.21.1
    SUSE Linux Enterprise Module for Legacy 15 SP5
    • reiserfs-kmp-default >= 5.14.21-150500.55.59.1
    Patchnames:
    SUSE-SLE-Module-Legacy-15-SP5-2024-1480
    SUSE Linux Enterprise Module for Legacy 15 SP6
    • reiserfs-kmp-default >= 6.4.0-150600.21.3
    Patchnames:
    SUSE Linux Enterprise Module for Legacy 15 SP6 GA reiserfs-kmp-default-6.4.0-150600.21.3
    SUSE Linux Enterprise Module for Public Cloud 15 SP5
    • kernel-azure >= 5.14.21-150500.33.48.1
    • kernel-azure-devel >= 5.14.21-150500.33.48.1
    • kernel-devel-azure >= 5.14.21-150500.33.48.1
    • kernel-source-azure >= 5.14.21-150500.33.48.1
    • kernel-syms-azure >= 5.14.21-150500.33.48.1
    Patchnames:
    SUSE-SLE-Module-Public-Cloud-15-SP5-2024-1490
    SUSE Linux Enterprise Module for Public Cloud 15 SP6
    • kernel-azure >= 6.4.0-150600.6.3
    • kernel-azure-devel >= 6.4.0-150600.6.3
    • kernel-devel-azure >= 6.4.0-150600.6.2
    • kernel-source-azure >= 6.4.0-150600.6.2
    • kernel-syms-azure >= 6.4.0-150600.6.1
    Patchnames:
    SUSE Linux Enterprise Module for Public Cloud 15 SP6 GA kernel-azure-6.4.0-150600.6.3
    SUSE Linux Enterprise Real Time 15 SP5
    SUSE Real Time Module 15 SP5
    • cluster-md-kmp-rt >= 5.14.21-150500.13.47.1
    • dlm-kmp-rt >= 5.14.21-150500.13.47.1
    • gfs2-kmp-rt >= 5.14.21-150500.13.47.1
    • kernel-devel-rt >= 5.14.21-150500.13.47.1
    • kernel-rt >= 5.14.21-150500.13.47.1
    • kernel-rt-devel >= 5.14.21-150500.13.47.1
    • kernel-rt-vdso >= 5.14.21-150500.13.47.1
    • kernel-rt_debug >= 5.14.21-150500.13.47.1
    • kernel-rt_debug-devel >= 5.14.21-150500.13.47.1
    • kernel-rt_debug-vdso >= 5.14.21-150500.13.47.1
    • kernel-source-rt >= 5.14.21-150500.13.47.1
    • kernel-syms-rt >= 5.14.21-150500.13.47.1
    • ocfs2-kmp-rt >= 5.14.21-150500.13.47.1
    Patchnames:
    SUSE-SLE-Module-RT-15-SP5-2024-1466
    SUSE Linux Enterprise Server 15 SP5
    SUSE Linux Enterprise Server for SAP Applications 15 SP5
    • kernel-64kb >= 5.14.21-150500.55.59.1
    • kernel-64kb-devel >= 5.14.21-150500.55.59.1
    • kernel-azure >= 5.14.21-150500.33.48.1
    • kernel-azure-devel >= 5.14.21-150500.33.48.1
    • kernel-default >= 5.14.21-150500.55.59.1
    • kernel-default-base >= 5.14.21-150500.55.59.1.150500.6.25.7
    • kernel-default-devel >= 5.14.21-150500.55.59.1
    • kernel-default-extra >= 5.14.21-150500.55.59.1
    • kernel-devel >= 5.14.21-150500.55.59.1
    • kernel-devel-azure >= 5.14.21-150500.33.48.1
    • kernel-docs >= 5.14.21-150500.55.59.1
    • kernel-macros >= 5.14.21-150500.55.59.1
    • kernel-obs-build >= 5.14.21-150500.55.59.1
    • kernel-source >= 5.14.21-150500.55.59.1
    • kernel-source-azure >= 5.14.21-150500.33.48.1
    • kernel-syms >= 5.14.21-150500.55.59.1
    • kernel-syms-azure >= 5.14.21-150500.33.48.1
    • kernel-zfcpdump >= 5.14.21-150500.55.59.1
    • reiserfs-kmp-default >= 5.14.21-150500.55.59.1
    Patchnames:
    SUSE-SLE-Module-Basesystem-15-SP5-2024-1480
    SUSE-SLE-Module-Development-Tools-15-SP5-2024-1480
    SUSE-SLE-Module-Legacy-15-SP5-2024-1480
    SUSE-SLE-Module-Public-Cloud-15-SP5-2024-1490
    SUSE-SLE-Product-WE-15-SP5-2024-1480
    SUSE Linux Enterprise Workstation Extension 15 SP5
    • kernel-default-extra >= 5.14.21-150500.55.59.1
    Patchnames:
    SUSE-SLE-Product-WE-15-SP5-2024-1480
    SUSE Linux Micro 6.0
    • kernel-default >= 6.4.0-17.1
    • kernel-default-extra >= 6.4.0-17.1
    • kernel-rt >= 6.4.0-8.1
    Patchnames:
    SUSE Linux Micro 6.0 GA kernel-default-6.4.0-17.1
    SUSE Linux Micro 6.0 GA kernel-rt-6.4.0-8.1
    SUSE Linux Micro 6.1
    • kernel-default >= 6.4.0-19.1
    • kernel-default-devel >= 6.4.0-19.1
    • kernel-default-extra >= 6.4.0-19.1
    • kernel-default-livepatch >= 6.4.0-19.1
    • kernel-devel >= 6.4.0-19.1
    • kernel-devel-rt >= 6.4.0-10.1
    • kernel-kvmsmall >= 6.4.0-19.1
    • kernel-macros >= 6.4.0-19.1
    • kernel-rt >= 6.4.0-10.1
    • kernel-rt-devel >= 6.4.0-10.1
    • kernel-source >= 6.4.0-19.1
    • kernel-source-rt >= 6.4.0-10.1
    Patchnames:
    SUSE Linux Micro 6.1 GA kernel-default-6.4.0-19.1
    openSUSE Leap 15.5
    • cluster-md-kmp-64kb >= 5.14.21-150500.55.59.1
    • cluster-md-kmp-azure >= 5.14.21-150500.33.48.1
    • cluster-md-kmp-default >= 5.14.21-150500.55.59.1
    • cluster-md-kmp-rt >= 5.14.21-150500.13.47.1
    • dlm-kmp-64kb >= 5.14.21-150500.55.59.1
    • dlm-kmp-azure >= 5.14.21-150500.33.48.1
    • dlm-kmp-default >= 5.14.21-150500.55.59.1
    • dlm-kmp-rt >= 5.14.21-150500.13.47.1
    • dtb-allwinner >= 5.14.21-150500.55.59.1
    • dtb-altera >= 5.14.21-150500.55.59.1
    • dtb-amazon >= 5.14.21-150500.55.59.1
    • dtb-amd >= 5.14.21-150500.55.59.1
    • dtb-amlogic >= 5.14.21-150500.55.59.1
    • dtb-apm >= 5.14.21-150500.55.59.1
    • dtb-apple >= 5.14.21-150500.55.59.1
    • dtb-arm >= 5.14.21-150500.55.59.1
    • dtb-broadcom >= 5.14.21-150500.55.59.1
    • dtb-cavium >= 5.14.21-150500.55.59.1
    • dtb-exynos >= 5.14.21-150500.55.59.1
    • dtb-freescale >= 5.14.21-150500.55.59.1
    • dtb-hisilicon >= 5.14.21-150500.55.59.1
    • dtb-lg >= 5.14.21-150500.55.59.1
    • dtb-marvell >= 5.14.21-150500.55.59.1
    • dtb-mediatek >= 5.14.21-150500.55.59.1
    • dtb-nvidia >= 5.14.21-150500.55.59.1
    • dtb-qcom >= 5.14.21-150500.55.59.1
    • dtb-renesas >= 5.14.21-150500.55.59.1
    • dtb-rockchip >= 5.14.21-150500.55.59.1
    • dtb-socionext >= 5.14.21-150500.55.59.1
    • dtb-sprd >= 5.14.21-150500.55.59.1
    • dtb-xilinx >= 5.14.21-150500.55.59.1
    • gfs2-kmp-64kb >= 5.14.21-150500.55.59.1
    • gfs2-kmp-azure >= 5.14.21-150500.33.48.1
    • gfs2-kmp-default >= 5.14.21-150500.55.59.1
    • gfs2-kmp-rt >= 5.14.21-150500.13.47.1
    • kernel-64kb >= 5.14.21-150500.55.59.1
    • kernel-64kb-devel >= 5.14.21-150500.55.59.1
    • kernel-64kb-extra >= 5.14.21-150500.55.59.1
    • kernel-64kb-livepatch-devel >= 5.14.21-150500.55.59.1
    • kernel-64kb-optional >= 5.14.21-150500.55.59.1
    • kernel-azure >= 5.14.21-150500.33.48.1
    • kernel-azure-devel >= 5.14.21-150500.33.48.1
    • kernel-azure-extra >= 5.14.21-150500.33.48.1
    • kernel-azure-livepatch-devel >= 5.14.21-150500.33.48.1
    • kernel-azure-optional >= 5.14.21-150500.33.48.1
    • kernel-azure-vdso >= 5.14.21-150500.33.48.1
    • kernel-debug >= 5.14.21-150500.55.59.1
    • kernel-debug-devel >= 5.14.21-150500.55.59.1
    • kernel-debug-livepatch-devel >= 5.14.21-150500.55.59.1
    • kernel-debug-vdso >= 5.14.21-150500.55.59.1
    • kernel-default >= 5.14.21-150500.55.59.1
    • kernel-default-base >= 5.14.21-150500.55.59.1.150500.6.25.7
    • kernel-default-base-rebuild >= 5.14.21-150500.55.59.1.150500.6.25.7
    • kernel-default-devel >= 5.14.21-150500.55.59.1
    • kernel-default-extra >= 5.14.21-150500.55.59.1
    • kernel-default-livepatch >= 5.14.21-150500.55.59.1
    • kernel-default-livepatch-devel >= 5.14.21-150500.55.59.1
    • kernel-default-optional >= 5.14.21-150500.55.59.1
    • kernel-default-vdso >= 5.14.21-150500.55.59.1
    • kernel-devel >= 5.14.21-150500.55.59.1
    • kernel-devel-azure >= 5.14.21-150500.33.48.1
    • kernel-devel-rt >= 5.14.21-150500.13.47.1
    • kernel-docs >= 5.14.21-150500.55.59.1
    • kernel-docs-html >= 5.14.21-150500.55.59.1
    • kernel-kvmsmall >= 5.14.21-150500.55.59.1
    • kernel-kvmsmall-devel >= 5.14.21-150500.55.59.1
    • kernel-kvmsmall-livepatch-devel >= 5.14.21-150500.55.59.1
    • kernel-kvmsmall-vdso >= 5.14.21-150500.55.59.1
    • kernel-macros >= 5.14.21-150500.55.59.1
    • kernel-obs-build >= 5.14.21-150500.55.59.1
    • kernel-obs-qa >= 5.14.21-150500.55.59.1
    • kernel-rt >= 5.14.21-150500.13.47.1
    • kernel-rt-devel >= 5.14.21-150500.13.47.1
    • kernel-rt-extra >= 5.14.21-150500.13.47.1
    • kernel-rt-livepatch >= 5.14.21-150500.13.47.1
    • kernel-rt-livepatch-devel >= 5.14.21-150500.13.47.1
    • kernel-rt-optional >= 5.14.21-150500.13.47.1
    • kernel-rt-vdso >= 5.14.21-150500.13.47.1
    • kernel-rt_debug >= 5.14.21-150500.13.47.1
    • kernel-rt_debug-devel >= 5.14.21-150500.13.47.1
    • kernel-rt_debug-livepatch-devel >= 5.14.21-150500.13.47.1
    • kernel-rt_debug-vdso >= 5.14.21-150500.13.47.1
    • kernel-source >= 5.14.21-150500.55.59.1
    • kernel-source-azure >= 5.14.21-150500.33.48.1
    • kernel-source-rt >= 5.14.21-150500.13.47.1
    • kernel-source-vanilla >= 5.14.21-150500.55.59.1
    • kernel-syms >= 5.14.21-150500.55.59.1
    • kernel-syms-azure >= 5.14.21-150500.33.48.1
    • kernel-syms-rt >= 5.14.21-150500.13.47.1
    • kernel-zfcpdump >= 5.14.21-150500.55.59.1
    • kselftests-kmp-64kb >= 5.14.21-150500.55.59.1
    • kselftests-kmp-azure >= 5.14.21-150500.33.48.1
    • kselftests-kmp-default >= 5.14.21-150500.55.59.1
    • kselftests-kmp-rt >= 5.14.21-150500.13.47.1
    • ocfs2-kmp-64kb >= 5.14.21-150500.55.59.1
    • ocfs2-kmp-azure >= 5.14.21-150500.33.48.1
    • ocfs2-kmp-default >= 5.14.21-150500.55.59.1
    • ocfs2-kmp-rt >= 5.14.21-150500.13.47.1
    • reiserfs-kmp-64kb >= 5.14.21-150500.55.59.1
    • reiserfs-kmp-azure >= 5.14.21-150500.33.48.1
    • reiserfs-kmp-default >= 5.14.21-150500.55.59.1
    • reiserfs-kmp-rt >= 5.14.21-150500.13.47.1
    Patchnames:
    openSUSE-SLE-15.5-2024-1466
    openSUSE-SLE-15.5-2024-1480
    openSUSE-SLE-15.5-2024-1490
    openSUSE Leap Micro 5.5
    • kernel-default >= 5.14.21-150500.55.59.1
    • kernel-default-base >= 5.14.21-150500.55.59.1.150500.6.25.7
    • kernel-rt >= 5.14.21-150500.13.47.1
    Patchnames:
    openSUSE-Leap-Micro-5.5-2024-1466
    openSUSE-Leap-Micro-5.5-2024-1480


    First public cloud image revisions this CVE is fixed in:


    Status of this issue by product and package

    Please note that this evaluation state might be work in progress, incomplete or outdated. Also information for service packs in the LTSS phase is only included for issues meeting the LTSS criteria. If in doubt, feel free to contact us for clarification. The updates are grouped by state of their lifecycle. SUSE product lifecycles are documented on the lifecycle page.

    Product(s) Source package State
    Products under general support and receiving all security fixes.
    SLES15-SP5-CHOST-BYOS-Aliyun kernel-default Released
    SLES15-SP5-CHOST-BYOS-Azure kernel-default Released
    SLES15-SP5-CHOST-BYOS-EC2 kernel-default Released
    SLES15-SP5-CHOST-BYOS-GCE kernel-default Released
    SLES15-SP5-CHOST-BYOS-SAP-CCloud kernel-default Released
    SUSE Linux Enterprise Desktop 15 SP5 kernel-64kb Released
    SUSE Linux Enterprise Desktop 15 SP5 kernel-default Released
    SUSE Linux Enterprise Desktop 15 SP5 kernel-default-base Released
    SUSE Linux Enterprise Desktop 15 SP5 kernel-docs Released
    SUSE Linux Enterprise Desktop 15 SP5 kernel-obs-build Released
    SUSE Linux Enterprise Desktop 15 SP5 kernel-source Released
    SUSE Linux Enterprise Desktop 15 SP5 kernel-syms Released
    SUSE Linux Enterprise Desktop 15 SP5 kernel-zfcpdump Released
    SUSE Linux Enterprise Desktop 15 SP6 kernel-default Already fixed
    SUSE Linux Enterprise Desktop 15 SP6 kernel-source Already fixed
    SUSE Linux Enterprise High Availability Extension 15 SP5 kernel-default Released
    SUSE Linux Enterprise High Performance Computing 15 SP5 kernel-64kb Released
    SUSE Linux Enterprise High Performance Computing 15 SP5 kernel-azure Released
    SUSE Linux Enterprise High Performance Computing 15 SP5 kernel-default Released
    SUSE Linux Enterprise High Performance Computing 15 SP5 kernel-default-base Released
    SUSE Linux Enterprise High Performance Computing 15 SP5 kernel-docs Released
    SUSE Linux Enterprise High Performance Computing 15 SP5 kernel-obs-build Released
    SUSE Linux Enterprise High Performance Computing 15 SP5 kernel-source Released
    SUSE Linux Enterprise High Performance Computing 15 SP5 kernel-source-azure Released
    SUSE Linux Enterprise High Performance Computing 15 SP5 kernel-syms Released
    SUSE Linux Enterprise High Performance Computing 15 SP5 kernel-syms-azure Released
    SUSE Linux Enterprise High Performance Computing 15 SP5 kernel-zfcpdump Released
    SUSE Linux Enterprise High Performance Computing 15 SP6 kernel-default Already fixed
    SUSE Linux Enterprise High Performance Computing 15 SP6 kernel-source Already fixed
    SUSE Linux Enterprise High Performance Computing 15 SP6 kernel-source-azure Already fixed
    SUSE Linux Enterprise Live Patching 15 SP5 kernel-default Released
    SUSE Linux Enterprise Live Patching 15 SP5 kernel-livepatch-SLE15-SP5-RT_Update_13 Released
    SUSE Linux Enterprise Live Patching 15 SP5 kernel-livepatch-SLE15-SP5_Update_12 Released
    SUSE Linux Enterprise Micro 5.1 kernel-default Affected
    SUSE Linux Enterprise Micro 5.1 kernel-rt Unsupported
    SUSE Linux Enterprise Micro 5.1 kernel-source-rt Unsupported
    SUSE Linux Enterprise Micro 5.2 kernel-default Affected
    SUSE Linux Enterprise Micro 5.2 kernel-rt Unsupported
    SUSE Linux Enterprise Micro 5.2 kernel-source-rt Unsupported
    SUSE Linux Enterprise Micro 5.3 kernel-default Already fixed
    SUSE Linux Enterprise Micro 5.3 kernel-rt Already fixed
    SUSE Linux Enterprise Micro 5.3 kernel-source-rt Already fixed
    SUSE Linux Enterprise Micro 5.4 kernel-default Already fixed
    SUSE Linux Enterprise Micro 5.4 kernel-rt Already fixed
    SUSE Linux Enterprise Micro 5.4 kernel-source-rt Already fixed
    SUSE Linux Enterprise Micro 5.5 kernel-default Released
    SUSE Linux Enterprise Micro 5.5 kernel-default-base Released
    SUSE Linux Enterprise Micro 5.5 kernel-rt Released
    SUSE Linux Enterprise Micro 5.5 kernel-source-rt Released
    SUSE Linux Enterprise Module for Basesystem 15 SP5 kernel-64kb Released
    SUSE Linux Enterprise Module for Basesystem 15 SP5 kernel-default Released
    SUSE Linux Enterprise Module for Basesystem 15 SP5 kernel-default-base Released
    SUSE Linux Enterprise Module for Basesystem 15 SP5 kernel-source Released
    SUSE Linux Enterprise Module for Basesystem 15 SP5 kernel-zfcpdump Released
    SUSE Linux Enterprise Module for Basesystem 15 SP6 kernel-default Already fixed
    SUSE Linux Enterprise Module for Basesystem 15 SP6 kernel-source Already fixed
    SUSE Linux Enterprise Module for Development Tools 15 SP5 kernel-default Released
    SUSE Linux Enterprise Module for Development Tools 15 SP5 kernel-docs Released
    SUSE Linux Enterprise Module for Development Tools 15 SP5 kernel-obs-build Released
    SUSE Linux Enterprise Module for Development Tools 15 SP5 kernel-source Released
    SUSE Linux Enterprise Module for Development Tools 15 SP5 kernel-syms Released
    SUSE Linux Enterprise Module for Development Tools 15 SP6 kernel-default Already fixed
    SUSE Linux Enterprise Module for Development Tools 15 SP6 kernel-source Already fixed
    SUSE Linux Enterprise Module for Legacy 15 SP5 kernel-default Released
    SUSE Linux Enterprise Module for Public Cloud 15 SP5 kernel-azure Released
    SUSE Linux Enterprise Module for Public Cloud 15 SP5 kernel-source-azure Released
    SUSE Linux Enterprise Module for Public Cloud 15 SP5 kernel-syms-azure Released
    SUSE Linux Enterprise Module for Public Cloud 15 SP6 kernel-source-azure Already fixed
    SUSE Linux Enterprise Real Time 15 SP5 kernel-rt Released
    SUSE Linux Enterprise Real Time 15 SP5 kernel-rt_debug Released
    SUSE Linux Enterprise Real Time 15 SP5 kernel-source-rt Released
    SUSE Linux Enterprise Real Time 15 SP5 kernel-syms-rt Released
    SUSE Linux Enterprise Real Time 15 SP6 kernel-source-rt Already fixed
    SUSE Linux Enterprise Server 15 SP5 kernel-64kb Released
    SUSE Linux Enterprise Server 15 SP5 kernel-azure Released
    SUSE Linux Enterprise Server 15 SP5 kernel-default Released
    SUSE Linux Enterprise Server 15 SP5 kernel-default-base Released
    SUSE Linux Enterprise Server 15 SP5 kernel-docs Released
    SUSE Linux Enterprise Server 15 SP5 kernel-obs-build Released
    SUSE Linux Enterprise Server 15 SP5 kernel-source Released
    SUSE Linux Enterprise Server 15 SP5 kernel-source-azure Released
    SUSE Linux Enterprise Server 15 SP5 kernel-syms Released
    SUSE Linux Enterprise Server 15 SP5 kernel-syms-azure Released
    SUSE Linux Enterprise Server 15 SP5 kernel-zfcpdump Released
    SUSE Linux Enterprise Server 15 SP6 kernel-default Already fixed
    SUSE Linux Enterprise Server 15 SP6 kernel-source Already fixed
    SUSE Linux Enterprise Server 15 SP6 kernel-source-azure Already fixed
    SUSE Linux Enterprise Server for SAP Applications 15 SP5 kernel-64kb Released
    SUSE Linux Enterprise Server for SAP Applications 15 SP5 kernel-azure Released
    SUSE Linux Enterprise Server for SAP Applications 15 SP5 kernel-default Released
    SUSE Linux Enterprise Server for SAP Applications 15 SP5 kernel-default-base Released
    SUSE Linux Enterprise Server for SAP Applications 15 SP5 kernel-docs Released
    SUSE Linux Enterprise Server for SAP Applications 15 SP5 kernel-obs-build Released
    SUSE Linux Enterprise Server for SAP Applications 15 SP5 kernel-source Released
    SUSE Linux Enterprise Server for SAP Applications 15 SP5 kernel-source-azure Released
    SUSE Linux Enterprise Server for SAP Applications 15 SP5 kernel-syms Released
    SUSE Linux Enterprise Server for SAP Applications 15 SP5 kernel-syms-azure Released
    SUSE Linux Enterprise Server for SAP Applications 15 SP5 kernel-zfcpdump Released
    SUSE Linux Enterprise Server for SAP Applications 15 SP6 kernel-default Already fixed
    SUSE Linux Enterprise Server for SAP Applications 15 SP6 kernel-source Already fixed
    SUSE Linux Enterprise Server for SAP Applications 15 SP6 kernel-source-azure Already fixed
    SUSE Linux Enterprise Workstation Extension 15 SP5 kernel-default Released
    SUSE Linux Micro 6.0 kernel-default Released
    SUSE Linux Micro 6.0 kernel-source Released
    SUSE Linux Micro 6.0 kernel-source-rt Released
    SUSE Manager Proxy 4.3 kernel-default Already fixed
    SUSE Manager Proxy 4.3 kernel-source Already fixed
    SUSE Manager Proxy 4.3 kernel-source-azure Already fixed
    SUSE Manager Retail Branch Server 4.3 kernel-default Already fixed
    SUSE Manager Retail Branch Server 4.3 kernel-source Already fixed
    SUSE Manager Retail Branch Server 4.3 kernel-source-azure Already fixed
    SUSE Manager Server 4.3 kernel-default Already fixed
    SUSE Manager Server 4.3 kernel-source Already fixed
    SUSE Manager Server 4.3 kernel-source-azure Already fixed
    SUSE Real Time Module 15 SP5 kernel-rt Released
    SUSE Real Time Module 15 SP5 kernel-rt_debug Released
    SUSE Real Time Module 15 SP5 kernel-source-rt Released
    SUSE Real Time Module 15 SP5 kernel-syms-rt Released
    SUSE Real Time Module 15 SP6 kernel-source-rt Already fixed
    openSUSE Leap 15.5 kernel-default Released
    openSUSE Leap 15.5 kernel-source Released
    openSUSE Leap 15.5 kernel-source-azure Released
    openSUSE Leap 15.5 kernel-source-rt Released
    openSUSE Leap 15.6 kernel-default Already fixed
    openSUSE Leap 15.6 kernel-source Already fixed
    openSUSE Leap 15.6 kernel-source-azure Already fixed
    openSUSE Leap 15.6 kernel-source-rt Already fixed
    openSUSE Leap Micro 5.5 kernel-default Affected
    Products under Long Term Service Pack support and receiving important and critical security fixes.
    SUSE Linux Enterprise Desktop 15 SP4 kernel-source Already fixed
    SUSE Linux Enterprise High Performance Computing 12 SP5 kernel-default Not affected
    SUSE Linux Enterprise High Performance Computing 12 SP5 kernel-source Not affected
    SUSE Linux Enterprise High Performance Computing 12 SP5 kernel-source-azure Not affected
    SUSE Linux Enterprise High Performance Computing 15 SP2 kernel-source Not affected
    SUSE Linux Enterprise High Performance Computing 15 SP2 kernel-source-azure Not affected
    SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS kernel-source Not affected
    SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS kernel-default Not affected
    SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS kernel-source Not affected
    SUSE Linux Enterprise High Performance Computing 15 SP3 kernel-source Affected
    SUSE Linux Enterprise High Performance Computing 15 SP3 kernel-source-azure Unsupported
    SUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS kernel-source Affected
    SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS kernel-default Affected
    SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS kernel-source Affected
    SUSE Linux Enterprise High Performance Computing 15 SP4 kernel-source Already fixed
    SUSE Linux Enterprise High Performance Computing 15 SP4 kernel-source-azure Already fixed
    SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS kernel-default Already fixed
    SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS kernel-source Already fixed
    SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS kernel-default Already fixed
    SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS kernel-source Already fixed
    SUSE Linux Enterprise Module for Basesystem 15 SP2 kernel-source Not affected
    SUSE Linux Enterprise Module for Basesystem 15 SP3 kernel-source Affected
    SUSE Linux Enterprise Module for Basesystem 15 SP4 kernel-source Already fixed
    SUSE Linux Enterprise Module for Development Tools 15 SP2 kernel-source Not affected
    SUSE Linux Enterprise Module for Development Tools 15 SP3 kernel-source Affected
    SUSE Linux Enterprise Module for Development Tools 15 SP4 kernel-source Already fixed
    SUSE Linux Enterprise Module for Public Cloud 15 SP4 kernel-source-azure Already fixed
    SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE kernel-default Not affected
    SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE kernel-source Not affected
    SUSE Linux Enterprise Server 12 SP5 kernel-default Not affected
    SUSE Linux Enterprise Server 12 SP5 kernel-source Not affected
    SUSE Linux Enterprise Server 12 SP5 kernel-source-azure Not affected
    SUSE Linux Enterprise Server 12 SP5-LTSS kernel-source Not affected
    SUSE Linux Enterprise Server 12 SP5-LTSS kernel-source-azure Not affected
    SUSE Linux Enterprise Server 15 SP2 kernel-source Not affected
    SUSE Linux Enterprise Server 15 SP2 kernel-source-azure Not affected
    SUSE Linux Enterprise Server 15 SP2-LTSS kernel-default Not affected
    SUSE Linux Enterprise Server 15 SP2-LTSS kernel-source Not affected
    SUSE Linux Enterprise Server 15 SP3 kernel-source Affected
    SUSE Linux Enterprise Server 15 SP3 kernel-source-azure Unsupported
    SUSE Linux Enterprise Server 15 SP3-LTSS kernel-default Affected
    SUSE Linux Enterprise Server 15 SP3-LTSS kernel-source Affected
    SUSE Linux Enterprise Server 15 SP4 kernel-source Already fixed
    SUSE Linux Enterprise Server 15 SP4 kernel-source-azure Already fixed
    SUSE Linux Enterprise Server 15 SP4-LTSS kernel-default Already fixed
    SUSE Linux Enterprise Server 15 SP4-LTSS kernel-source Already fixed
    SUSE Linux Enterprise Server LTSS Extended Security 12 SP5 kernel-source Not affected
    SUSE Linux Enterprise Server LTSS Extended Security 12 SP5 kernel-source-azure Not affected
    SUSE Linux Enterprise Server for SAP Applications 12 SP5 kernel-default Not affected
    SUSE Linux Enterprise Server for SAP Applications 12 SP5 kernel-source Not affected
    SUSE Linux Enterprise Server for SAP Applications 12 SP5 kernel-source-azure Not affected
    SUSE Linux Enterprise Server for SAP Applications 15 SP2 kernel-default Not affected
    SUSE Linux Enterprise Server for SAP Applications 15 SP2 kernel-source Not affected
    SUSE Linux Enterprise Server for SAP Applications 15 SP2 kernel-source-azure Not affected
    SUSE Linux Enterprise Server for SAP Applications 15 SP3 kernel-default Affected
    SUSE Linux Enterprise Server for SAP Applications 15 SP3 kernel-source Affected
    SUSE Linux Enterprise Server for SAP Applications 15 SP3 kernel-source-azure Unsupported
    SUSE Linux Enterprise Server for SAP Applications 15 SP4 kernel-default Already fixed
    SUSE Linux Enterprise Server for SAP Applications 15 SP4 kernel-source Already fixed
    SUSE Linux Enterprise Server for SAP Applications 15 SP4 kernel-source-azure Already fixed
    Products past their end of life and not receiving proactive updates anymore.
    HPE Helion OpenStack 8 kernel-source Not affected
    SUSE CaaS Platform 4.0 kernel-source Not affected
    SUSE CaaS Platform Toolchain 3 kernel-source Not affected
    SUSE Enterprise Storage 6 kernel-source Not affected
    SUSE Enterprise Storage 7 kernel-source Not affected
    SUSE Enterprise Storage 7 kernel-source-azure Not affected
    SUSE Enterprise Storage 7.1 kernel-default Affected
    SUSE Enterprise Storage 7.1 kernel-source Affected
    SUSE Enterprise Storage 7.1 kernel-source-azure Unsupported
    SUSE Linux Enterprise Desktop 11 SP4 kernel-source Not affected
    SUSE Linux Enterprise Desktop 12 SP2 kernel-source Not affected
    SUSE Linux Enterprise Desktop 12 SP3 kernel-source Not affected
    SUSE Linux Enterprise Desktop 12 SP4 kernel-source Not affected
    SUSE Linux Enterprise Desktop 15 kernel-source Not affected
    SUSE Linux Enterprise Desktop 15 SP1 kernel-source Not affected
    SUSE Linux Enterprise Desktop 15 SP2 kernel-source Not affected
    SUSE Linux Enterprise Desktop 15 SP3 kernel-source Affected
    SUSE Linux Enterprise High Performance Computing 15 kernel-source Not affected
    SUSE Linux Enterprise High Performance Computing 15 SP1 kernel-source Not affected
    SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS kernel-source Not affected
    SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS kernel-source Not affected
    SUSE Linux Enterprise High Performance Computing 15-ESPOS kernel-source Not affected
    SUSE Linux Enterprise High Performance Computing 15-LTSS kernel-source Not affected
    SUSE Linux Enterprise Micro 5.0 kernel-default Not affected
    SUSE Linux Enterprise Module for Basesystem 15 kernel-source Not affected
    SUSE Linux Enterprise Module for Basesystem 15 SP1 kernel-source Not affected
    SUSE Linux Enterprise Module for Development Tools 15 kernel-source Not affected
    SUSE Linux Enterprise Module for Development Tools 15 SP1 kernel-source Not affected
    SUSE Linux Enterprise Module for Public Cloud 15 SP2 kernel-source-azure Not affected
    SUSE Linux Enterprise Module for Public Cloud 15 SP3 kernel-source-azure Unsupported
    SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT kernel-source Not affected
    SUSE Linux Enterprise Real Time 12 SP5 kernel-source-rt Not affected
    SUSE Linux Enterprise Real Time 15 SP2 kernel-source Not affected
    SUSE Linux Enterprise Real Time 15 SP3 kernel-source Affected
    SUSE Linux Enterprise Real Time 15 SP3 kernel-source-rt Unsupported
    SUSE Linux Enterprise Real Time 15 SP4 kernel-source Already fixed
    SUSE Linux Enterprise Real Time 15 SP4 kernel-source-rt Already fixed
    SUSE Linux Enterprise Server 11 SP4 kernel-source Not affected
    SUSE Linux Enterprise Server 11 SP4 LTSS kernel-default Not affected
    SUSE Linux Enterprise Server 11 SP4 LTSS kernel-source Not affected
    SUSE Linux Enterprise Server 11 SP4-LTSS kernel-source Not affected
    SUSE Linux Enterprise Server 12 SP2 kernel-source Not affected
    SUSE Linux Enterprise Server 12 SP2-BCL kernel-source Not affected
    SUSE Linux Enterprise Server 12 SP2-ESPOS kernel-source Not affected
    SUSE Linux Enterprise Server 12 SP2-LTSS kernel-default Not affected
    SUSE Linux Enterprise Server 12 SP2-LTSS kernel-source Not affected
    SUSE Linux Enterprise Server 12 SP3 kernel-source Not affected
    SUSE Linux Enterprise Server 12 SP3-BCL kernel-source Not affected
    SUSE Linux Enterprise Server 12 SP3-ESPOS kernel-source Not affected
    SUSE Linux Enterprise Server 12 SP3-LTSS kernel-source Not affected
    SUSE Linux Enterprise Server 12 SP4 kernel-source Not affected
    SUSE Linux Enterprise Server 12 SP4-ESPOS kernel-source Not affected
    SUSE Linux Enterprise Server 12 SP4-LTSS kernel-default Not affected
    SUSE Linux Enterprise Server 12 SP4-LTSS kernel-source Not affected
    SUSE Linux Enterprise Server 15 kernel-source Not affected
    SUSE Linux Enterprise Server 15 SP1 kernel-source Not affected
    SUSE Linux Enterprise Server 15 SP1-BCL kernel-source Not affected
    SUSE Linux Enterprise Server 15 SP1-LTSS kernel-default Not affected
    SUSE Linux Enterprise Server 15 SP1-LTSS kernel-source Not affected
    SUSE Linux Enterprise Server 15 SP2-BCL kernel-source Not affected
    SUSE Linux Enterprise Server 15 SP3-BCL kernel-source Affected
    SUSE Linux Enterprise Server 15-LTSS kernel-default Not affected
    SUSE Linux Enterprise Server 15-LTSS kernel-source Not affected
    SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 kernel-source Not affected
    SUSE Linux Enterprise Server for SAP Applications 12 SP2 kernel-default Not affected
    SUSE Linux Enterprise Server for SAP Applications 12 SP2 kernel-source Not affected
    SUSE Linux Enterprise Server for SAP Applications 12 SP3 kernel-source Not affected
    SUSE Linux Enterprise Server for SAP Applications 12 SP4 kernel-default Not affected
    SUSE Linux Enterprise Server for SAP Applications 12 SP4 kernel-source Not affected
    SUSE Linux Enterprise Server for SAP Applications 15 kernel-source Not affected
    SUSE Linux Enterprise Server for SAP Applications 15 SP1 kernel-source Not affected
    SUSE Manager Proxy 4.0 kernel-source Not affected
    SUSE Manager Proxy 4.1 kernel-source Not affected
    SUSE Manager Proxy 4.1 kernel-source-azure Not affected
    SUSE Manager Proxy 4.2 kernel-source Affected
    SUSE Manager Proxy 4.2 kernel-source-azure Unsupported
    SUSE Manager Retail Branch Server 4.0 kernel-source Not affected
    SUSE Manager Retail Branch Server 4.1 kernel-source Not affected
    SUSE Manager Retail Branch Server 4.1 kernel-source-azure Not affected
    SUSE Manager Retail Branch Server 4.2 kernel-source Affected
    SUSE Manager Retail Branch Server 4.2 kernel-source-azure Unsupported
    SUSE Manager Server 4.0 kernel-source Not affected
    SUSE Manager Server 4.1 kernel-source Not affected
    SUSE Manager Server 4.1 kernel-source-azure Not affected
    SUSE Manager Server 4.2 kernel-source Affected
    SUSE Manager Server 4.2 kernel-source-azure Unsupported
    SUSE OpenStack Cloud 7 kernel-source Not affected
    SUSE OpenStack Cloud 8 kernel-source Not affected
    SUSE OpenStack Cloud 9 kernel-default Not affected
    SUSE OpenStack Cloud 9 kernel-source Not affected
    SUSE OpenStack Cloud Crowbar 8 kernel-source Not affected
    SUSE OpenStack Cloud Crowbar 9 kernel-default Not affected
    SUSE OpenStack Cloud Crowbar 9 kernel-source Not affected
    SUSE Real Time Module 15 SP3 kernel-source-rt Unsupported
    SUSE Real Time Module 15 SP4 kernel-source-rt Already fixed
    openSUSE Leap 15.3 kernel-source Affected
    openSUSE Leap 15.3 kernel-source-azure Unsupported
    openSUSE Leap 15.3 kernel-source-rt Unsupported
    openSUSE Leap 15.4 kernel-source Already fixed
    openSUSE Leap 15.4 kernel-source-azure Already fixed
    openSUSE Leap 15.4 kernel-source-rt Already fixed
    Products at an unknown state of their lifecycle.
    SLES15-SP5-CHOST-BYOS-GDC kernel-default Released
    Container Status
    suse/sle-micro/base-5.5 kernel-defaultReleased
    suse/hpc/warewulf4-x86_64/sle-hpc-node kernel-defaultIn progress


    SUSE Timeline for this CVE

    CVE page created: Wed Mar 13 17:03:13 2024
    CVE page last modified: Tue Dec 17 18:54:33 2024