Upstream information

CVE-2021-46989 at MITRE

Description

In the Linux kernel, the following vulnerability has been resolved:

hfsplus: prevent corruption in shrinking truncate

I believe there are some issues introduced by commit 31651c607151
("hfsplus: avoid deadlock on file truncation")

HFS+ has extent records which always contains 8 extents. In case the
first extent record in catalog file gets full, new ones are allocated from
extents overflow file.

In case shrinking truncate happens to middle of an extent record which
locates in extents overflow file, the logic in hfsplus_file_truncate() was
changed so that call to hfs_brec_remove() is not guarded any more.

Right action would be just freeing the extents that exceed the new size
inside extent record by calling hfsplus_free_extents(), and then check if
the whole extent record should be removed. However since the guard
(blk_cnt > start) is now after the call to hfs_brec_remove(), this has
unfortunate effect that the last matching extent record is removed
unconditionally.

To reproduce this issue, create a file which has at least 10 extents, and
then perform shrinking truncate into middle of the last extent record, so
that the number of remaining extents is not under or divisible by 8. This
causes the last extent record (8 extents) to be removed totally instead of
truncating into middle of it. Thus this causes corruption, and lost data.

Fix for this is simply checking if the new truncated end is below the
start of this extent record, making it safe to remove the full extent
record. However call to hfs_brec_remove() can't be moved to it's previous
place since we're dropping ->tree_lock and it can cause a race condition
and the cached info being invalidated possibly corrupting the node data.

Another issue is related to this one. When entering into the block
(blk_cnt > start) we are not holding the ->tree_lock. We break out from
the loop not holding the lock, but hfs_find_exit() does unlock it. Not
sure if it's possible for someone else to take the lock under our feet,
but it can cause hard to debug errors and premature unlocking. Even if
there's no real risk of it, the locking should still always be kept in
balance. Thus taking the lock now just before the check.

SUSE information

Overall state of this security issue: Resolved

This issue is currently rated as having moderate severity.

CVSS v3 Scores
  CNA (CISA-ADP) SUSE
Base Score 5.5 5.5
Vector CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local Local
Attack Complexity Low Low
Privileges Required Low Low
User Interaction None None
Scope Unchanged Unchanged
Confidentiality Impact None None
Integrity Impact None None
Availability Impact High High
CVSSv3 Version 3.1 3.1

Note from the SUSE Security Team on the kernel-default package

SUSE will no longer fix all CVEs in the Linux Kernel anymore, but declare some bug classes as won't fix. Please refer to TID 21496 for more details.

SUSE Bugzilla entry: 1220737 [RESOLVED / FIXED]

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
Container suse/sle-micro-rancher/5.2:latest
Image SLES15-SP3-BYOS-Azure
Image SLES15-SP3-BYOS-EC2-HVM
Image SLES15-SP3-BYOS-GCE
Image SLES15-SP3-CHOST-BYOS-Aliyun
Image SLES15-SP3-CHOST-BYOS-Azure
Image SLES15-SP3-CHOST-BYOS-EC2
Image SLES15-SP3-CHOST-BYOS-GCE
Image SLES15-SP3-CHOST-BYOS-SAP-CCloud
Image SLES15-SP3-HPC-BYOS-Azure
Image SLES15-SP3-HPC-BYOS-EC2-HVM
Image SLES15-SP3-HPC-BYOS-GCE
Image SLES15-SP3-Micro-5-1-BYOS-Azure
Image SLES15-SP3-Micro-5-1-BYOS-EC2-HVM
Image SLES15-SP3-Micro-5-1-BYOS-GCE
Image SLES15-SP3-Micro-5-2-BYOS-Azure
Image SLES15-SP3-Micro-5-2-BYOS-EC2-HVM
Image SLES15-SP3-Micro-5-2-BYOS-GCE
Image SLES15-SP3-SAPCAL-Azure
Image SLES15-SP3-SAPCAL-EC2-HVM
Image SLES15-SP3-SAPCAL-GCE
  • kernel-default >= 5.3.18-150300.59.153.2
Image SLES15-SP2-SAP-Azure-LI-BYOS-Production
Image SLES15-SP2-SAP-Azure-VLI-BYOS-Production
  • cluster-md-kmp-default >= 5.3.18-150200.24.183.1
  • dlm-kmp-default >= 5.3.18-150200.24.183.1
  • gfs2-kmp-default >= 5.3.18-150200.24.183.1
  • kernel-default >= 5.3.18-150200.24.183.1
  • ocfs2-kmp-default >= 5.3.18-150200.24.183.1
Image SLES15-SP3-SAP-Azure-LI-BYOS-Production
Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production
Image SLES15-SP3-SAP-BYOS-Azure
Image SLES15-SP3-SAP-BYOS-EC2-HVM
Image SLES15-SP3-SAP-BYOS-GCE
  • cluster-md-kmp-default >= 5.3.18-150300.59.153.2
  • dlm-kmp-default >= 5.3.18-150300.59.153.2
  • gfs2-kmp-default >= 5.3.18-150300.59.153.2
  • kernel-default >= 5.3.18-150300.59.153.2
  • ocfs2-kmp-default >= 5.3.18-150300.59.153.2
SUSE Enterprise Storage 7.1
  • kernel-64kb >= 5.3.18-150300.59.153.2
  • kernel-64kb-devel >= 5.3.18-150300.59.153.2
  • kernel-default >= 5.3.18-150300.59.153.2
  • kernel-default-base >= 5.3.18-150300.59.153.2.150300.18.90.2
  • kernel-default-devel >= 5.3.18-150300.59.153.2
  • kernel-devel >= 5.3.18-150300.59.153.2
  • kernel-docs >= 5.3.18-150300.59.153.2
  • kernel-macros >= 5.3.18-150300.59.153.2
  • kernel-obs-build >= 5.3.18-150300.59.153.2
  • kernel-preempt >= 5.3.18-150300.59.153.2
  • kernel-preempt-devel >= 5.3.18-150300.59.153.2
  • kernel-source >= 5.3.18-150300.59.153.2
  • kernel-syms >= 5.3.18-150300.59.153.1
  • reiserfs-kmp-default >= 5.3.18-150300.59.153.2
Patchnames:
SUSE-Storage-7.1-2024-857
SUSE Linux Enterprise High Availability Extension 15 SP2
  • cluster-md-kmp-default >= 5.3.18-150200.24.183.1
  • dlm-kmp-default >= 5.3.18-150200.24.183.1
  • gfs2-kmp-default >= 5.3.18-150200.24.183.1
  • ocfs2-kmp-default >= 5.3.18-150200.24.183.1
Patchnames:
SUSE-SLE-Product-HA-15-SP2-2024-926
SUSE Linux Enterprise High Availability Extension 15 SP3
  • cluster-md-kmp-default >= 5.3.18-150300.59.153.2
  • dlm-kmp-default >= 5.3.18-150300.59.153.2
  • gfs2-kmp-default >= 5.3.18-150300.59.153.2
  • ocfs2-kmp-default >= 5.3.18-150300.59.153.2
Patchnames:
SUSE-SLE-Product-HA-15-SP3-2024-857
SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS
  • kernel-default >= 5.3.18-150200.24.183.1
  • kernel-default-base >= 5.3.18-150200.24.183.1.150200.9.93.2
  • kernel-default-devel >= 5.3.18-150200.24.183.1
  • kernel-devel >= 5.3.18-150200.24.183.1
  • kernel-docs >= 5.3.18-150200.24.183.1
  • kernel-macros >= 5.3.18-150200.24.183.1
  • kernel-obs-build >= 5.3.18-150200.24.183.1
  • kernel-preempt >= 5.3.18-150200.24.183.1
  • kernel-preempt-devel >= 5.3.18-150200.24.183.1
  • kernel-source >= 5.3.18-150200.24.183.1
  • kernel-syms >= 5.3.18-150200.24.183.1
Patchnames:
SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-926
SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS
  • kernel-64kb >= 5.3.18-150300.59.153.2
  • kernel-64kb-devel >= 5.3.18-150300.59.153.2
  • kernel-default >= 5.3.18-150300.59.153.2
  • kernel-default-base >= 5.3.18-150300.59.153.2.150300.18.90.2
  • kernel-default-devel >= 5.3.18-150300.59.153.2
  • kernel-devel >= 5.3.18-150300.59.153.2
  • kernel-docs >= 5.3.18-150300.59.153.2
  • kernel-macros >= 5.3.18-150300.59.153.2
  • kernel-obs-build >= 5.3.18-150300.59.153.2
  • kernel-preempt >= 5.3.18-150300.59.153.2
  • kernel-preempt-devel >= 5.3.18-150300.59.153.2
  • kernel-source >= 5.3.18-150300.59.153.2
  • kernel-syms >= 5.3.18-150300.59.153.1
  • reiserfs-kmp-default >= 5.3.18-150300.59.153.2
Patchnames:
SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-857
SUSE Linux Enterprise Live Patching 15 SP2
    Patchnames:
    SUSE-SLE-Module-Live-Patching-15-SP2-2024-926
    SUSE Linux Enterprise Live Patching 15 SP3
      Patchnames:
      SUSE-SLE-Module-Live-Patching-15-SP3-2024-857
      SUSE Linux Enterprise Micro 5.1
      • kernel-default >= 5.3.18-150300.59.153.2
      • kernel-default-base >= 5.3.18-150300.59.153.2.150300.18.90.2
      • kernel-rt >= 5.3.18-150300.161.1
      • kernel-source-rt >= 5.3.18-150300.161.1
      Patchnames:
      SUSE-SUSE-MicroOS-5.1-2024-856
      SUSE-SUSE-MicroOS-5.1-2024-857
      SUSE Linux Enterprise Micro 5.2
      • kernel-default >= 5.3.18-150300.59.153.2
      • kernel-default-base >= 5.3.18-150300.59.153.2.150300.18.90.2
      • kernel-rt >= 5.3.18-150300.161.1
      • kernel-source-rt >= 5.3.18-150300.161.1
      Patchnames:
      SUSE-SUSE-MicroOS-5.2-2024-856
      SUSE-SUSE-MicroOS-5.2-2024-857
      SUSE Linux Enterprise Server 15 SP2-LTSS
      • kernel-default >= 5.3.18-150200.24.183.1
      • kernel-default-base >= 5.3.18-150200.24.183.1.150200.9.93.2
      • kernel-default-devel >= 5.3.18-150200.24.183.1
      • kernel-devel >= 5.3.18-150200.24.183.1
      • kernel-docs >= 5.3.18-150200.24.183.1
      • kernel-macros >= 5.3.18-150200.24.183.1
      • kernel-obs-build >= 5.3.18-150200.24.183.1
      • kernel-preempt >= 5.3.18-150200.24.183.1
      • kernel-preempt-devel >= 5.3.18-150200.24.183.1
      • kernel-source >= 5.3.18-150200.24.183.1
      • kernel-syms >= 5.3.18-150200.24.183.1
      • reiserfs-kmp-default >= 5.3.18-150200.24.183.1
      Patchnames:
      SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-926
      SUSE Linux Enterprise Server 15 SP3-LTSS
      • kernel-64kb >= 5.3.18-150300.59.153.2
      • kernel-64kb-devel >= 5.3.18-150300.59.153.2
      • kernel-default >= 5.3.18-150300.59.153.2
      • kernel-default-base >= 5.3.18-150300.59.153.2.150300.18.90.2
      • kernel-default-devel >= 5.3.18-150300.59.153.2
      • kernel-devel >= 5.3.18-150300.59.153.2
      • kernel-docs >= 5.3.18-150300.59.153.2
      • kernel-macros >= 5.3.18-150300.59.153.2
      • kernel-obs-build >= 5.3.18-150300.59.153.2
      • kernel-preempt >= 5.3.18-150300.59.153.2
      • kernel-preempt-devel >= 5.3.18-150300.59.153.2
      • kernel-source >= 5.3.18-150300.59.153.2
      • kernel-syms >= 5.3.18-150300.59.153.1
      • kernel-zfcpdump >= 5.3.18-150300.59.153.2
      • reiserfs-kmp-default >= 5.3.18-150300.59.153.2
      Patchnames:
      SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-857
      SUSE Linux Enterprise Server for SAP Applications 15 SP2
      • kernel-default >= 5.3.18-150200.24.183.1
      • kernel-default-base >= 5.3.18-150200.24.183.1.150200.9.93.2
      • kernel-default-devel >= 5.3.18-150200.24.183.1
      • kernel-devel >= 5.3.18-150200.24.183.1
      • kernel-docs >= 5.3.18-150200.24.183.1
      • kernel-macros >= 5.3.18-150200.24.183.1
      • kernel-obs-build >= 5.3.18-150200.24.183.1
      • kernel-preempt >= 5.3.18-150200.24.183.1
      • kernel-preempt-devel >= 5.3.18-150200.24.183.1
      • kernel-source >= 5.3.18-150200.24.183.1
      • kernel-syms >= 5.3.18-150200.24.183.1
      • reiserfs-kmp-default >= 5.3.18-150200.24.183.1
      Patchnames:
      SUSE-SLE-Product-SLES_SAP-15-SP2-2024-926
      SUSE Linux Enterprise Server for SAP Applications 15 SP3
      • kernel-default >= 5.3.18-150300.59.153.2
      • kernel-default-base >= 5.3.18-150300.59.153.2.150300.18.90.2
      • kernel-default-devel >= 5.3.18-150300.59.153.2
      • kernel-devel >= 5.3.18-150300.59.153.2
      • kernel-docs >= 5.3.18-150300.59.153.2
      • kernel-macros >= 5.3.18-150300.59.153.2
      • kernel-obs-build >= 5.3.18-150300.59.153.2
      • kernel-preempt >= 5.3.18-150300.59.153.2
      • kernel-preempt-devel >= 5.3.18-150300.59.153.2
      • kernel-source >= 5.3.18-150300.59.153.2
      • kernel-syms >= 5.3.18-150300.59.153.1
      • reiserfs-kmp-default >= 5.3.18-150300.59.153.2
      Patchnames:
      SUSE-SLE-Product-SLES_SAP-15-SP3-2024-857


      First public cloud image revisions this CVE is fixed in:


      Status of this issue by product and package

      Please note that this evaluation state might be work in progress, incomplete or outdated. Also information for service packs in the LTSS phase is only included for issues meeting the LTSS criteria. If in doubt, feel free to contact us for clarification. The updates are grouped by state of their lifecycle. SUSE product lifecycles are documented on the lifecycle page.

      Product(s) Source package State
      Products under general support and receiving all security fixes.
      SUSE Linux Enterprise Desktop 15 SP5 kernel-default Already fixed
      SUSE Linux Enterprise Desktop 15 SP5 kernel-source Already fixed
      SUSE Linux Enterprise Desktop 15 SP6 kernel-default Already fixed
      SUSE Linux Enterprise Desktop 15 SP6 kernel-source Already fixed
      SUSE Linux Enterprise High Performance Computing 15 SP5 kernel-default Already fixed
      SUSE Linux Enterprise High Performance Computing 15 SP5 kernel-source Already fixed
      SUSE Linux Enterprise High Performance Computing 15 SP5 kernel-source-azure Already fixed
      SUSE Linux Enterprise High Performance Computing 15 SP6 kernel-default Already fixed
      SUSE Linux Enterprise High Performance Computing 15 SP6 kernel-source Already fixed
      SUSE Linux Enterprise High Performance Computing 15 SP6 kernel-source-azure Already fixed
      SUSE Linux Enterprise Micro 5.1 kernel-default Released
      SUSE Linux Enterprise Micro 5.1 kernel-default-base Released
      SUSE Linux Enterprise Micro 5.1 kernel-rt Released
      SUSE Linux Enterprise Micro 5.1 kernel-source-rt Released
      SUSE Linux Enterprise Micro 5.2 kernel-default Released
      SUSE Linux Enterprise Micro 5.2 kernel-default-base Released
      SUSE Linux Enterprise Micro 5.2 kernel-rt Released
      SUSE Linux Enterprise Micro 5.2 kernel-source-rt Released
      SUSE Linux Enterprise Micro 5.3 kernel-default Already fixed
      SUSE Linux Enterprise Micro 5.3 kernel-rt Already fixed
      SUSE Linux Enterprise Micro 5.3 kernel-source-rt Already fixed
      SUSE Linux Enterprise Micro 5.4 kernel-default Already fixed
      SUSE Linux Enterprise Micro 5.4 kernel-rt Already fixed
      SUSE Linux Enterprise Micro 5.4 kernel-source-rt Already fixed
      SUSE Linux Enterprise Micro 5.5 kernel-source-rt Already fixed
      SUSE Linux Enterprise Micro for Rancher 5.2 kernel-source-rt Released
      SUSE Linux Enterprise Module for Basesystem 15 SP5 kernel-default Already fixed
      SUSE Linux Enterprise Module for Basesystem 15 SP5 kernel-source Already fixed
      SUSE Linux Enterprise Module for Basesystem 15 SP6 kernel-default Already fixed
      SUSE Linux Enterprise Module for Basesystem 15 SP6 kernel-source Already fixed
      SUSE Linux Enterprise Module for Development Tools 15 SP5 kernel-default Already fixed
      SUSE Linux Enterprise Module for Development Tools 15 SP5 kernel-source Already fixed
      SUSE Linux Enterprise Module for Development Tools 15 SP6 kernel-default Already fixed
      SUSE Linux Enterprise Module for Development Tools 15 SP6 kernel-source Already fixed
      SUSE Linux Enterprise Module for Public Cloud 15 SP5 kernel-source-azure Already fixed
      SUSE Linux Enterprise Module for Public Cloud 15 SP6 kernel-source-azure Already fixed
      SUSE Linux Enterprise Real Time 15 SP5 kernel-source-rt Already fixed
      SUSE Linux Enterprise Real Time 15 SP6 kernel-source-rt Already fixed
      SUSE Linux Enterprise Server 15 SP5 kernel-default Already fixed
      SUSE Linux Enterprise Server 15 SP5 kernel-source Already fixed
      SUSE Linux Enterprise Server 15 SP5 kernel-source-azure Already fixed
      SUSE Linux Enterprise Server 15 SP6 kernel-default Already fixed
      SUSE Linux Enterprise Server 15 SP6 kernel-source Already fixed
      SUSE Linux Enterprise Server 15 SP6 kernel-source-azure Already fixed
      SUSE Linux Enterprise Server for SAP Applications 15 SP5 kernel-default Already fixed
      SUSE Linux Enterprise Server for SAP Applications 15 SP5 kernel-source Already fixed
      SUSE Linux Enterprise Server for SAP Applications 15 SP5 kernel-source-azure Already fixed
      SUSE Linux Enterprise Server for SAP Applications 15 SP6 kernel-default Already fixed
      SUSE Linux Enterprise Server for SAP Applications 15 SP6 kernel-source Already fixed
      SUSE Linux Enterprise Server for SAP Applications 15 SP6 kernel-source-azure Already fixed
      SUSE Manager Proxy 4.3 kernel-default Already fixed
      SUSE Manager Proxy 4.3 kernel-source Already fixed
      SUSE Manager Proxy 4.3 kernel-source-azure Already fixed
      SUSE Manager Retail Branch Server 4.3 kernel-default Already fixed
      SUSE Manager Retail Branch Server 4.3 kernel-source Already fixed
      SUSE Manager Retail Branch Server 4.3 kernel-source-azure Already fixed
      SUSE Manager Server 4.3 kernel-default Already fixed
      SUSE Manager Server 4.3 kernel-source Already fixed
      SUSE Manager Server 4.3 kernel-source-azure Already fixed
      SUSE Real Time Module 15 SP5 kernel-source-rt Already fixed
      SUSE Real Time Module 15 SP6 kernel-source-rt Already fixed
      openSUSE Leap 15.5 kernel-default Already fixed
      openSUSE Leap 15.5 kernel-source Already fixed
      openSUSE Leap 15.5 kernel-source-azure Already fixed
      openSUSE Leap 15.5 kernel-source-rt Already fixed
      openSUSE Leap 15.6 kernel-default Already fixed
      openSUSE Leap 15.6 kernel-source Already fixed
      openSUSE Leap 15.6 kernel-source-azure Already fixed
      openSUSE Leap 15.6 kernel-source-rt Already fixed
      Products under Long Term Service Pack support and receiving important and critical security fixes.
      SUSE Linux Enterprise Desktop 15 SP4 kernel-source Already fixed
      SUSE Linux Enterprise High Availability Extension 15 SP2 kernel-default Released
      SUSE Linux Enterprise High Availability Extension 15 SP3 kernel-default Released
      SUSE Linux Enterprise High Performance Computing 12 SP5 kernel-default Not affected
      SUSE Linux Enterprise High Performance Computing 12 SP5 kernel-source Not affected
      SUSE Linux Enterprise High Performance Computing 12 SP5 kernel-source-azure Not affected
      SUSE Linux Enterprise High Performance Computing 15 SP2 kernel-source Affected
      SUSE Linux Enterprise High Performance Computing 15 SP2 kernel-source-azure Affected
      SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS kernel-source Affected
      SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS kernel-default Released
      SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS kernel-default-base Released
      SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS kernel-docs Released
      SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS kernel-obs-build Released
      SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS kernel-preempt Released
      SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS kernel-source Released
      SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS kernel-syms Released
      SUSE Linux Enterprise High Performance Computing 15 SP3 kernel-source Affected
      SUSE Linux Enterprise High Performance Computing 15 SP3 kernel-source-azure Affected
      SUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS kernel-source Affected
      SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS kernel-64kb Released
      SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS kernel-default Released
      SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS kernel-default-base Released
      SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS kernel-docs Released
      SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS kernel-obs-build Released
      SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS kernel-preempt Released
      SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS kernel-source Released
      SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS kernel-syms Released
      SUSE Linux Enterprise High Performance Computing 15 SP4 kernel-source Already fixed
      SUSE Linux Enterprise High Performance Computing 15 SP4 kernel-source-azure Already fixed
      SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS kernel-default Already fixed
      SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS kernel-source Already fixed
      SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS kernel-default Already fixed
      SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS kernel-source Already fixed
      SUSE Linux Enterprise Live Patching 15 SP2 kernel-default Released
      SUSE Linux Enterprise Live Patching 15 SP2 kernel-livepatch-SLE15-SP2_Update_46 Released
      SUSE Linux Enterprise Live Patching 15 SP3 kernel-default Released
      SUSE Linux Enterprise Live Patching 15 SP3 kernel-livepatch-SLE15-SP3_Update_42 Released
      SUSE Linux Enterprise Module for Basesystem 15 SP2 kernel-source Affected
      SUSE Linux Enterprise Module for Basesystem 15 SP3 kernel-source Affected
      SUSE Linux Enterprise Module for Basesystem 15 SP4 kernel-source Already fixed
      SUSE Linux Enterprise Module for Development Tools 15 SP2 kernel-source Affected
      SUSE Linux Enterprise Module for Development Tools 15 SP3 kernel-source Affected
      SUSE Linux Enterprise Module for Development Tools 15 SP4 kernel-source Already fixed
      SUSE Linux Enterprise Module for Public Cloud 15 SP4 kernel-source-azure Already fixed
      SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE kernel-default Not affected
      SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE kernel-source Not affected
      SUSE Linux Enterprise Server 12 SP5 kernel-default Not affected
      SUSE Linux Enterprise Server 12 SP5 kernel-source Not affected
      SUSE Linux Enterprise Server 12 SP5 kernel-source-azure Not affected
      SUSE Linux Enterprise Server 12 SP5-LTSS kernel-source Not affected
      SUSE Linux Enterprise Server 12 SP5-LTSS kernel-source-azure Not affected
      SUSE Linux Enterprise Server 15 SP2 kernel-source Affected
      SUSE Linux Enterprise Server 15 SP2 kernel-source-azure Affected
      SUSE Linux Enterprise Server 15 SP2-LTSS kernel-default Released
      SUSE Linux Enterprise Server 15 SP2-LTSS kernel-default-base Released
      SUSE Linux Enterprise Server 15 SP2-LTSS kernel-docs Released
      SUSE Linux Enterprise Server 15 SP2-LTSS kernel-obs-build Released
      SUSE Linux Enterprise Server 15 SP2-LTSS kernel-preempt Released
      SUSE Linux Enterprise Server 15 SP2-LTSS kernel-source Released
      SUSE Linux Enterprise Server 15 SP2-LTSS kernel-syms Released
      SUSE Linux Enterprise Server 15 SP3 kernel-source Affected
      SUSE Linux Enterprise Server 15 SP3 kernel-source-azure Affected
      SUSE Linux Enterprise Server 15 SP3-LTSS kernel-64kb Released
      SUSE Linux Enterprise Server 15 SP3-LTSS kernel-default Released
      SUSE Linux Enterprise Server 15 SP3-LTSS kernel-default-base Released
      SUSE Linux Enterprise Server 15 SP3-LTSS kernel-docs Released
      SUSE Linux Enterprise Server 15 SP3-LTSS kernel-obs-build Released
      SUSE Linux Enterprise Server 15 SP3-LTSS kernel-preempt Released
      SUSE Linux Enterprise Server 15 SP3-LTSS kernel-source Released
      SUSE Linux Enterprise Server 15 SP3-LTSS kernel-syms Released
      SUSE Linux Enterprise Server 15 SP3-LTSS kernel-zfcpdump Released
      SUSE Linux Enterprise Server 15 SP4 kernel-source Already fixed
      SUSE Linux Enterprise Server 15 SP4 kernel-source-azure Already fixed
      SUSE Linux Enterprise Server 15 SP4-LTSS kernel-default Already fixed
      SUSE Linux Enterprise Server 15 SP4-LTSS kernel-source Already fixed
      SUSE Linux Enterprise Server LTSS Extended Security 12 SP5 kernel-source Not affected
      SUSE Linux Enterprise Server LTSS Extended Security 12 SP5 kernel-source-azure Not affected
      SUSE Linux Enterprise Server for SAP Applications 12 SP5 kernel-default Not affected
      SUSE Linux Enterprise Server for SAP Applications 12 SP5 kernel-source Not affected
      SUSE Linux Enterprise Server for SAP Applications 12 SP5 kernel-source-azure Not affected
      SUSE Linux Enterprise Server for SAP Applications 15 SP2 kernel-default Released
      SUSE Linux Enterprise Server for SAP Applications 15 SP2 kernel-default-base Released
      SUSE Linux Enterprise Server for SAP Applications 15 SP2 kernel-docs Released
      SUSE Linux Enterprise Server for SAP Applications 15 SP2 kernel-obs-build Released
      SUSE Linux Enterprise Server for SAP Applications 15 SP2 kernel-preempt Released
      SUSE Linux Enterprise Server for SAP Applications 15 SP2 kernel-source Released
      SUSE Linux Enterprise Server for SAP Applications 15 SP2 kernel-source-azure Affected
      SUSE Linux Enterprise Server for SAP Applications 15 SP2 kernel-syms Released
      SUSE Linux Enterprise Server for SAP Applications 15 SP3 kernel-default Released
      SUSE Linux Enterprise Server for SAP Applications 15 SP3 kernel-default-base Released
      SUSE Linux Enterprise Server for SAP Applications 15 SP3 kernel-docs Released
      SUSE Linux Enterprise Server for SAP Applications 15 SP3 kernel-obs-build Released
      SUSE Linux Enterprise Server for SAP Applications 15 SP3 kernel-preempt Released
      SUSE Linux Enterprise Server for SAP Applications 15 SP3 kernel-source Released
      SUSE Linux Enterprise Server for SAP Applications 15 SP3 kernel-source-azure Affected
      SUSE Linux Enterprise Server for SAP Applications 15 SP3 kernel-syms Released
      SUSE Linux Enterprise Server for SAP Applications 15 SP4 kernel-default Already fixed
      SUSE Linux Enterprise Server for SAP Applications 15 SP4 kernel-source Already fixed
      SUSE Linux Enterprise Server for SAP Applications 15 SP4 kernel-source-azure Already fixed
      Products past their end of life and not receiving proactive updates anymore.
      HPE Helion OpenStack 8 kernel-source Not affected
      SUSE CaaS Platform 4.0 kernel-source Not affected
      SUSE CaaS Platform Toolchain 3 kernel-source Not affected
      SUSE Enterprise Storage 6 kernel-source Not affected
      SUSE Enterprise Storage 7 kernel-source Affected
      SUSE Enterprise Storage 7 kernel-source-azure Affected
      SUSE Enterprise Storage 7.1 kernel-64kb Released
      SUSE Enterprise Storage 7.1 kernel-default Released
      SUSE Enterprise Storage 7.1 kernel-default-base Released
      SUSE Enterprise Storage 7.1 kernel-docs Released
      SUSE Enterprise Storage 7.1 kernel-obs-build Released
      SUSE Enterprise Storage 7.1 kernel-preempt Released
      SUSE Enterprise Storage 7.1 kernel-source Released
      SUSE Enterprise Storage 7.1 kernel-source-azure Affected
      SUSE Enterprise Storage 7.1 kernel-syms Released
      SUSE Linux Enterprise Desktop 11 SP4 kernel-source Not affected
      SUSE Linux Enterprise Desktop 12 SP2 kernel-source Not affected
      SUSE Linux Enterprise Desktop 12 SP3 kernel-source Not affected
      SUSE Linux Enterprise Desktop 12 SP4 kernel-source Not affected
      SUSE Linux Enterprise Desktop 15 kernel-source Not affected
      SUSE Linux Enterprise Desktop 15 SP1 kernel-source Not affected
      SUSE Linux Enterprise Desktop 15 SP2 kernel-source Affected
      SUSE Linux Enterprise Desktop 15 SP3 kernel-source Affected
      SUSE Linux Enterprise High Performance Computing 15 kernel-source Not affected
      SUSE Linux Enterprise High Performance Computing 15 SP1 kernel-source Not affected
      SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS kernel-source Not affected
      SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS kernel-source Not affected
      SUSE Linux Enterprise High Performance Computing 15-ESPOS kernel-source Not affected
      SUSE Linux Enterprise High Performance Computing 15-LTSS kernel-source Not affected
      SUSE Linux Enterprise Micro 5.0 kernel-default Not affected
      SUSE Linux Enterprise Module for Basesystem 15 kernel-source Not affected
      SUSE Linux Enterprise Module for Basesystem 15 SP1 kernel-source Not affected
      SUSE Linux Enterprise Module for Development Tools 15 kernel-source Not affected
      SUSE Linux Enterprise Module for Development Tools 15 SP1 kernel-source Not affected
      SUSE Linux Enterprise Module for Public Cloud 15 SP2 kernel-source-azure Affected
      SUSE Linux Enterprise Module for Public Cloud 15 SP3 kernel-source-azure Affected
      SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT kernel-source Not affected
      SUSE Linux Enterprise Real Time 12 SP5 kernel-source-rt Not affected
      SUSE Linux Enterprise Real Time 15 SP2 kernel-source Affected
      SUSE Linux Enterprise Real Time 15 SP3 kernel-source Affected
      SUSE Linux Enterprise Real Time 15 SP3 kernel-source-rt Affected
      SUSE Linux Enterprise Real Time 15 SP4 kernel-source Already fixed
      SUSE Linux Enterprise Real Time 15 SP4 kernel-source-rt Already fixed
      SUSE Linux Enterprise Server 11 SP4 kernel-source Not affected
      SUSE Linux Enterprise Server 11 SP4 LTSS kernel-default Not affected
      SUSE Linux Enterprise Server 11 SP4 LTSS kernel-source Not affected
      SUSE Linux Enterprise Server 11 SP4-LTSS kernel-source Not affected
      SUSE Linux Enterprise Server 12 SP2 kernel-source Not affected
      SUSE Linux Enterprise Server 12 SP2-BCL kernel-source Not affected
      SUSE Linux Enterprise Server 12 SP2-ESPOS kernel-source Not affected
      SUSE Linux Enterprise Server 12 SP2-LTSS kernel-default Not affected
      SUSE Linux Enterprise Server 12 SP2-LTSS kernel-source Not affected
      SUSE Linux Enterprise Server 12 SP3 kernel-source Not affected
      SUSE Linux Enterprise Server 12 SP3-BCL kernel-source Not affected
      SUSE Linux Enterprise Server 12 SP3-ESPOS kernel-source Not affected
      SUSE Linux Enterprise Server 12 SP3-LTSS kernel-source Not affected
      SUSE Linux Enterprise Server 12 SP4 kernel-source Not affected
      SUSE Linux Enterprise Server 12 SP4-ESPOS kernel-source Not affected
      SUSE Linux Enterprise Server 12 SP4-LTSS kernel-default Not affected
      SUSE Linux Enterprise Server 12 SP4-LTSS kernel-source Not affected
      SUSE Linux Enterprise Server 15 kernel-source Not affected
      SUSE Linux Enterprise Server 15 SP1 kernel-source Not affected
      SUSE Linux Enterprise Server 15 SP1-BCL kernel-source Not affected
      SUSE Linux Enterprise Server 15 SP1-LTSS kernel-default Not affected
      SUSE Linux Enterprise Server 15 SP1-LTSS kernel-source Not affected
      SUSE Linux Enterprise Server 15 SP2-BCL kernel-source Affected
      SUSE Linux Enterprise Server 15 SP3-BCL kernel-source Affected
      SUSE Linux Enterprise Server 15-LTSS kernel-default Not affected
      SUSE Linux Enterprise Server 15-LTSS kernel-source Not affected
      SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 kernel-source Not affected
      SUSE Linux Enterprise Server for SAP Applications 12 SP2 kernel-default Not affected
      SUSE Linux Enterprise Server for SAP Applications 12 SP2 kernel-source Not affected
      SUSE Linux Enterprise Server for SAP Applications 12 SP3 kernel-source Not affected
      SUSE Linux Enterprise Server for SAP Applications 12 SP4 kernel-default Not affected
      SUSE Linux Enterprise Server for SAP Applications 12 SP4 kernel-source Not affected
      SUSE Linux Enterprise Server for SAP Applications 15 kernel-source Not affected
      SUSE Linux Enterprise Server for SAP Applications 15 SP1 kernel-source Not affected
      SUSE Manager Proxy 4.0 kernel-source Not affected
      SUSE Manager Proxy 4.1 kernel-source Affected
      SUSE Manager Proxy 4.1 kernel-source-azure Affected
      SUSE Manager Proxy 4.2 kernel-source Affected
      SUSE Manager Proxy 4.2 kernel-source-azure Affected
      SUSE Manager Retail Branch Server 4.0 kernel-source Not affected
      SUSE Manager Retail Branch Server 4.1 kernel-source Affected
      SUSE Manager Retail Branch Server 4.1 kernel-source-azure Affected
      SUSE Manager Retail Branch Server 4.2 kernel-source Affected
      SUSE Manager Retail Branch Server 4.2 kernel-source-azure Affected
      SUSE Manager Server 4.0 kernel-source Not affected
      SUSE Manager Server 4.1 kernel-source Affected
      SUSE Manager Server 4.1 kernel-source-azure Affected
      SUSE Manager Server 4.2 kernel-source Affected
      SUSE Manager Server 4.2 kernel-source-azure Affected
      SUSE OpenStack Cloud 7 kernel-source Not affected
      SUSE OpenStack Cloud 8 kernel-source Not affected
      SUSE OpenStack Cloud 9 kernel-default Not affected
      SUSE OpenStack Cloud 9 kernel-source Not affected
      SUSE OpenStack Cloud Crowbar 8 kernel-source Not affected
      SUSE OpenStack Cloud Crowbar 9 kernel-default Not affected
      SUSE OpenStack Cloud Crowbar 9 kernel-source Not affected
      SUSE Real Time Module 15 SP3 kernel-source-rt Affected
      SUSE Real Time Module 15 SP4 kernel-source-rt Already fixed
      openSUSE Leap 15.3 kernel-default Released
      openSUSE Leap 15.3 kernel-source Released
      openSUSE Leap 15.3 kernel-source-azure Unsupported
      openSUSE Leap 15.3 kernel-source-rt Affected
      openSUSE Leap 15.4 kernel-source Already fixed
      openSUSE Leap 15.4 kernel-source-azure Already fixed
      openSUSE Leap 15.4 kernel-source-rt Already fixed


      SUSE Timeline for this CVE

      CVE page created: Wed Feb 28 11:00:52 2024
      CVE page last modified: Tue Dec 17 20:33:06 2024