Upstream information

CVE-2023-52705 at MITRE

Description

In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix underflow in second superblock position calculations Macro NILFS_SB2_OFFSET_BYTES, which computes the position of the second superblock, underflows when the argument device size is less than 4096 bytes. Therefore, when using this macro, it is necessary to check in advance that the device size is not less than a lower limit, or at least that underflow does not occur. The current nilfs2 implementation lacks this check, causing out-of-bound block access when mounting devices smaller than 4096 bytes: I/O error, dev loop0, sector 36028797018963960 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 NILFS (loop0): unable to read secondary superblock (blocksize = 1024) In addition, when trying to resize the filesystem to a size below 4096 bytes, this underflow occurs in nilfs_resize_fs(), passing a huge number of segments to nilfs_sufile_resize(), corrupting parameters such as the number of segments in superblocks. This causes excessive loop iterations in nilfs_sufile_resize() during a subsequent resize ioctl, causing semaphore ns_segctor_sem to block for a long time and hang the writer thread: INFO: task segctord:5067 blocked for more than 143 seconds. Not tainted 6.2.0-rc8-syzkaller-00015-gf6feea56f66d #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:segctord state:D stack:23456 pid:5067 ppid:2 flags:0x00004000 Call Trace: <TASK> context_switch kernel/sched/core.c:5293 [inline] __schedule+0x1409/0x43f0 kernel/sched/core.c:6606 schedule+0xc3/0x190 kernel/sched/core.c:6682 rwsem_down_write_slowpath+0xfcf/0x14a0 kernel/locking/rwsem.c:1190 nilfs_transaction_lock+0x25c/0x4f0 fs/nilfs2/segment.c:357 nilfs_segctor_thread_construct fs/nilfs2/segment.c:2486 [inline] nilfs_segctor_thread+0x52f/0x1140 fs/nilfs2/segment.c:2570 kthread+0x270/0x300 kernel/kthread.c:376 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:308 </TASK> ... Call Trace: <TASK> folio_mark_accessed+0x51c/0xf00 mm/swap.c:515 __nilfs_get_page_block fs/nilfs2/page.c:42 [inline] nilfs_grab_buffer+0x3d3/0x540 fs/nilfs2/page.c:61 nilfs_mdt_submit_block+0xd7/0x8f0 fs/nilfs2/mdt.c:121 nilfs_mdt_read_block+0xeb/0x430 fs/nilfs2/mdt.c:176 nilfs_mdt_get_block+0x12d/0xbb0 fs/nilfs2/mdt.c:251 nilfs_sufile_get_segment_usage_block fs/nilfs2/sufile.c:92 [inline] nilfs_sufile_truncate_range fs/nilfs2/sufile.c:679 [inline] nilfs_sufile_resize+0x7a3/0x12b0 fs/nilfs2/sufile.c:777 nilfs_resize_fs+0x20c/0xed0 fs/nilfs2/super.c:422 nilfs_ioctl_resize fs/nilfs2/ioctl.c:1033 [inline] nilfs_ioctl+0x137c/0x2440 fs/nilfs2/ioctl.c:1301 ... This fixes these issues by inserting appropriate minimum device size checks or anti-underflow checks, depending on where the macro is used.

SUSE information

Overall state of this security issue: Pending

This issue is currently rated as having moderate severity.

CVSS v3 Scores
  SUSE
Base Score 5.5
Vector CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality Impact None
Integrity Impact None
Availability Impact High
CVSSv3 Version 3.1
SUSE Bugzilla entry: 1225480 [NEW]

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
Image SLES15-SP5-BYOS-GCE
Image SLES15-SP5-CHOST-BYOS-Aliyun
Image SLES15-SP5-CHOST-BYOS-Azure
Image SLES15-SP5-CHOST-BYOS-EC2
Image SLES15-SP5-CHOST-BYOS-GCE
Image SLES15-SP5-CHOST-BYOS-SAP-CCloud
Image SLES15-SP5-GCE
  • kernel-default >= 5.14.21-150500.55.68.1
SUSE Linux Enterprise Desktop 15 SP5
  • kernel-64kb >= 5.14.21-150500.55.68.1
  • kernel-64kb-devel >= 5.14.21-150500.55.68.1
  • kernel-default >= 5.14.21-150500.55.68.1
  • kernel-default-base >= 5.14.21-150500.55.68.1.150500.6.31.1
  • kernel-default-devel >= 5.14.21-150500.55.68.1
  • kernel-default-extra >= 5.14.21-150500.55.68.1
  • kernel-devel >= 5.14.21-150500.55.68.1
  • kernel-docs >= 5.14.21-150500.55.68.1
  • kernel-macros >= 5.14.21-150500.55.68.1
  • kernel-obs-build >= 5.14.21-150500.55.68.1
  • kernel-source >= 5.14.21-150500.55.68.1
  • kernel-syms >= 5.14.21-150500.55.68.1
  • kernel-zfcpdump >= 5.14.21-150500.55.68.1
 Patchnames:
SUSE-SLE-Module-Basesystem-15-SP5-2024-2190
SUSE-SLE-Module-Development-Tools-15-SP5-2024-2190
SUSE-SLE-Product-WE-15-SP5-2024-2190
SUSE Linux Enterprise High Availability Extension 15 SP5
  • cluster-md-kmp-default >= 5.14.21-150500.55.68.1
  • dlm-kmp-default >= 5.14.21-150500.55.68.1
  • gfs2-kmp-default >= 5.14.21-150500.55.68.1
  • ocfs2-kmp-default >= 5.14.21-150500.55.68.1
 Patchnames:
SUSE-SLE-Product-HA-15-SP5-2024-2190
SUSE Linux Enterprise High Performance Computing 15 SP5
  • kernel-64kb >= 5.14.21-150500.55.68.1
  • kernel-64kb-devel >= 5.14.21-150500.55.68.1
  • kernel-azure >= 5.14.21-150500.33.57.1
  • kernel-azure-devel >= 5.14.21-150500.33.57.1
  • kernel-default >= 5.14.21-150500.55.68.1
  • kernel-default-base >= 5.14.21-150500.55.68.1.150500.6.31.1
  • kernel-default-devel >= 5.14.21-150500.55.68.1
  • kernel-devel >= 5.14.21-150500.55.68.1
  • kernel-devel-azure >= 5.14.21-150500.33.57.1
  • kernel-docs >= 5.14.21-150500.55.68.1
  • kernel-macros >= 5.14.21-150500.55.68.1
  • kernel-obs-build >= 5.14.21-150500.55.68.1
  • kernel-source >= 5.14.21-150500.55.68.1
  • kernel-source-azure >= 5.14.21-150500.33.57.1
  • kernel-syms >= 5.14.21-150500.55.68.1
  • kernel-syms-azure >= 5.14.21-150500.33.57.1
  • kernel-zfcpdump >= 5.14.21-150500.55.68.1
  • reiserfs-kmp-default >= 5.14.21-150500.55.68.1
 Patchnames:
SUSE-SLE-Module-Basesystem-15-SP5-2024-2190
SUSE-SLE-Module-Development-Tools-15-SP5-2024-2190
SUSE-SLE-Module-Legacy-15-SP5-2024-2190
SUSE-SLE-Module-Public-Cloud-15-SP5-2024-2019
SUSE Linux Enterprise Live Patching 15 SP5
    		Patchnames:
    SUSE-SLE-Module-Live-Patching-15-SP5-2024-2008
    SUSE-SLE-Module-Live-Patching-15-SP5-2024-2190
    SUSE Linux Enterprise Micro 5.5
    • kernel-default >= 5.14.21-150500.55.68.1
    • kernel-default-base >= 5.14.21-150500.55.68.1.150500.6.31.1
    • kernel-rt >= 5.14.21-150500.13.58.1
    • kernel-source-rt >= 5.14.21-150500.13.58.1
    		 Patchnames:
    SUSE-SLE-Micro-5.5-2024-2008
    SUSE-SLE-Micro-5.5-2024-2190
    SUSE Linux Enterprise Module for Basesystem 15 SP5
    • kernel-64kb >= 5.14.21-150500.55.68.1
    • kernel-64kb-devel >= 5.14.21-150500.55.68.1
    • kernel-default >= 5.14.21-150500.55.68.1
    • kernel-default-base >= 5.14.21-150500.55.68.1.150500.6.31.1
    • kernel-default-devel >= 5.14.21-150500.55.68.1
    • kernel-devel >= 5.14.21-150500.55.68.1
    • kernel-macros >= 5.14.21-150500.55.68.1
    • kernel-zfcpdump >= 5.14.21-150500.55.68.1
    		 Patchnames:
    SUSE-SLE-Module-Basesystem-15-SP5-2024-2190
    SUSE Linux Enterprise Module for Development Tools 15 SP5
    • kernel-docs >= 5.14.21-150500.55.68.1
    • kernel-obs-build >= 5.14.21-150500.55.68.1
    • kernel-source >= 5.14.21-150500.55.68.1
    • kernel-syms >= 5.14.21-150500.55.68.1
    		 Patchnames:
    SUSE-SLE-Module-Development-Tools-15-SP5-2024-2190
    SUSE Linux Enterprise Module for Legacy 15 SP5
    • reiserfs-kmp-default >= 5.14.21-150500.55.68.1
    		 Patchnames:
    SUSE-SLE-Module-Legacy-15-SP5-2024-2190
    SUSE Linux Enterprise Module for Public Cloud 15 SP5
    • kernel-azure >= 5.14.21-150500.33.57.1
    • kernel-azure-devel >= 5.14.21-150500.33.57.1
    • kernel-devel-azure >= 5.14.21-150500.33.57.1
    • kernel-source-azure >= 5.14.21-150500.33.57.1
    • kernel-syms-azure >= 5.14.21-150500.33.57.1
    		 Patchnames:
    SUSE-SLE-Module-Public-Cloud-15-SP5-2024-2019
    SUSE Linux Enterprise Real Time 15 SP5
    SUSE Real Time Module 15 SP5
    • cluster-md-kmp-rt >= 5.14.21-150500.13.58.1
    • dlm-kmp-rt >= 5.14.21-150500.13.58.1
    • gfs2-kmp-rt >= 5.14.21-150500.13.58.1
    • kernel-devel-rt >= 5.14.21-150500.13.58.1
    • kernel-rt >= 5.14.21-150500.13.58.1
    • kernel-rt-devel >= 5.14.21-150500.13.58.1
    • kernel-rt-vdso >= 5.14.21-150500.13.58.1
    • kernel-rt_debug >= 5.14.21-150500.13.58.1
    • kernel-rt_debug-devel >= 5.14.21-150500.13.58.1
    • kernel-rt_debug-vdso >= 5.14.21-150500.13.58.1
    • kernel-source-rt >= 5.14.21-150500.13.58.1
    • kernel-syms-rt >= 5.14.21-150500.13.58.1
    • ocfs2-kmp-rt >= 5.14.21-150500.13.58.1
    		 Patchnames:
    SUSE-SLE-Module-RT-15-SP5-2024-2008
    SUSE Linux Enterprise Server 15 SP5
    SUSE Linux Enterprise Server for SAP Applications 15 SP5
    • kernel-64kb >= 5.14.21-150500.55.68.1
    • kernel-64kb-devel >= 5.14.21-150500.55.68.1
    • kernel-azure >= 5.14.21-150500.33.57.1
    • kernel-azure-devel >= 5.14.21-150500.33.57.1
    • kernel-default >= 5.14.21-150500.55.68.1
    • kernel-default-base >= 5.14.21-150500.55.68.1.150500.6.31.1
    • kernel-default-devel >= 5.14.21-150500.55.68.1
    • kernel-default-extra >= 5.14.21-150500.55.68.1
    • kernel-devel >= 5.14.21-150500.55.68.1
    • kernel-devel-azure >= 5.14.21-150500.33.57.1
    • kernel-docs >= 5.14.21-150500.55.68.1
    • kernel-macros >= 5.14.21-150500.55.68.1
    • kernel-obs-build >= 5.14.21-150500.55.68.1
    • kernel-source >= 5.14.21-150500.55.68.1
    • kernel-source-azure >= 5.14.21-150500.33.57.1
    • kernel-syms >= 5.14.21-150500.55.68.1
    • kernel-syms-azure >= 5.14.21-150500.33.57.1
    • kernel-zfcpdump >= 5.14.21-150500.55.68.1
    • reiserfs-kmp-default >= 5.14.21-150500.55.68.1
    		 Patchnames:
    SUSE-SLE-Module-Basesystem-15-SP5-2024-2190
    SUSE-SLE-Module-Development-Tools-15-SP5-2024-2190
    SUSE-SLE-Module-Legacy-15-SP5-2024-2190
    SUSE-SLE-Module-Public-Cloud-15-SP5-2024-2019
    SUSE-SLE-Product-WE-15-SP5-2024-2190
    SUSE Linux Enterprise Workstation Extension 15 SP5
    • kernel-default-extra >= 5.14.21-150500.55.68.1
    		 Patchnames:
    SUSE-SLE-Product-WE-15-SP5-2024-2190
    openSUSE Leap 15.5
    • cluster-md-kmp-64kb >= 5.14.21-150500.55.68.1
    • cluster-md-kmp-azure >= 5.14.21-150500.33.57.1
    • cluster-md-kmp-default >= 5.14.21-150500.55.68.1
    • cluster-md-kmp-rt >= 5.14.21-150500.13.58.1
    • dlm-kmp-64kb >= 5.14.21-150500.55.68.1
    • dlm-kmp-azure >= 5.14.21-150500.33.57.1
    • dlm-kmp-default >= 5.14.21-150500.55.68.1
    • dlm-kmp-rt >= 5.14.21-150500.13.58.1
    • dtb-allwinner >= 5.14.21-150500.55.68.1
    • dtb-altera >= 5.14.21-150500.55.68.1
    • dtb-amazon >= 5.14.21-150500.55.68.1
    • dtb-amd >= 5.14.21-150500.55.68.1
    • dtb-amlogic >= 5.14.21-150500.55.68.1
    • dtb-apm >= 5.14.21-150500.55.68.1
    • dtb-apple >= 5.14.21-150500.55.68.1
    • dtb-arm >= 5.14.21-150500.55.68.1
    • dtb-broadcom >= 5.14.21-150500.55.68.1
    • dtb-cavium >= 5.14.21-150500.55.68.1
    • dtb-exynos >= 5.14.21-150500.55.68.1
    • dtb-freescale >= 5.14.21-150500.55.68.1
    • dtb-hisilicon >= 5.14.21-150500.55.68.1
    • dtb-lg >= 5.14.21-150500.55.68.1
    • dtb-marvell >= 5.14.21-150500.55.68.1
    • dtb-mediatek >= 5.14.21-150500.55.68.1
    • dtb-nvidia >= 5.14.21-150500.55.68.1
    • dtb-qcom >= 5.14.21-150500.55.68.1
    • dtb-renesas >= 5.14.21-150500.55.68.1
    • dtb-rockchip >= 5.14.21-150500.55.68.1
    • dtb-socionext >= 5.14.21-150500.55.68.1
    • dtb-sprd >= 5.14.21-150500.55.68.1
    • dtb-xilinx >= 5.14.21-150500.55.68.1
    • gfs2-kmp-64kb >= 5.14.21-150500.55.68.1
    • gfs2-kmp-azure >= 5.14.21-150500.33.57.1
    • gfs2-kmp-default >= 5.14.21-150500.55.68.1
    • gfs2-kmp-rt >= 5.14.21-150500.13.58.1
    • kernel-64kb >= 5.14.21-150500.55.68.1
    • kernel-64kb-devel >= 5.14.21-150500.55.68.1
    • kernel-64kb-extra >= 5.14.21-150500.55.68.1
    • kernel-64kb-livepatch-devel >= 5.14.21-150500.55.68.1
    • kernel-64kb-optional >= 5.14.21-150500.55.68.1
    • kernel-azure >= 5.14.21-150500.33.57.1
    • kernel-azure-devel >= 5.14.21-150500.33.57.1
    • kernel-azure-extra >= 5.14.21-150500.33.57.1
    • kernel-azure-livepatch-devel >= 5.14.21-150500.33.57.1
    • kernel-azure-optional >= 5.14.21-150500.33.57.1
    • kernel-azure-vdso >= 5.14.21-150500.33.57.1
    • kernel-debug >= 5.14.21-150500.55.68.1
    • kernel-debug-devel >= 5.14.21-150500.55.68.1
    • kernel-debug-livepatch-devel >= 5.14.21-150500.55.68.1
    • kernel-debug-vdso >= 5.14.21-150500.55.68.1
    • kernel-default >= 5.14.21-150500.55.68.1
    • kernel-default-base >= 5.14.21-150500.55.68.1.150500.6.31.1
    • kernel-default-base-rebuild >= 5.14.21-150500.55.68.1.150500.6.31.1
    • kernel-default-devel >= 5.14.21-150500.55.68.1
    • kernel-default-extra >= 5.14.21-150500.55.68.1
    • kernel-default-livepatch >= 5.14.21-150500.55.68.1
    • kernel-default-livepatch-devel >= 5.14.21-150500.55.68.1
    • kernel-default-optional >= 5.14.21-150500.55.68.1
    • kernel-default-vdso >= 5.14.21-150500.55.68.1
    • kernel-devel >= 5.14.21-150500.55.68.1
    • kernel-devel-azure >= 5.14.21-150500.33.57.1
    • kernel-devel-rt >= 5.14.21-150500.13.58.1
    • kernel-docs >= 5.14.21-150500.55.68.1
    • kernel-docs-html >= 5.14.21-150500.55.68.1
    • kernel-kvmsmall >= 5.14.21-150500.55.68.1
    • kernel-kvmsmall-devel >= 5.14.21-150500.55.68.1
    • kernel-kvmsmall-livepatch-devel >= 5.14.21-150500.55.68.1
    • kernel-kvmsmall-vdso >= 5.14.21-150500.55.68.1
    • kernel-macros >= 5.14.21-150500.55.68.1
    • kernel-obs-build >= 5.14.21-150500.55.68.1
    • kernel-obs-qa >= 5.14.21-150500.55.68.1
    • kernel-rt >= 5.14.21-150500.13.58.1
    • kernel-rt-devel >= 5.14.21-150500.13.58.1
    • kernel-rt-extra >= 5.14.21-150500.13.58.1
    • kernel-rt-livepatch >= 5.14.21-150500.13.58.1
    • kernel-rt-livepatch-devel >= 5.14.21-150500.13.58.1
    • kernel-rt-optional >= 5.14.21-150500.13.58.1
    • kernel-rt-vdso >= 5.14.21-150500.13.58.1
    • kernel-rt_debug >= 5.14.21-150500.13.58.1
    • kernel-rt_debug-devel >= 5.14.21-150500.13.58.1
    • kernel-rt_debug-livepatch-devel >= 5.14.21-150500.13.58.1
    • kernel-rt_debug-vdso >= 5.14.21-150500.13.58.1
    • kernel-source >= 5.14.21-150500.55.68.1
    • kernel-source-azure >= 5.14.21-150500.33.57.1
    • kernel-source-rt >= 5.14.21-150500.13.58.1
    • kernel-source-vanilla >= 5.14.21-150500.55.68.1
    • kernel-syms >= 5.14.21-150500.55.68.1
    • kernel-syms-azure >= 5.14.21-150500.33.57.1
    • kernel-syms-rt >= 5.14.21-150500.13.58.1
    • kernel-zfcpdump >= 5.14.21-150500.55.68.1
    • kselftests-kmp-64kb >= 5.14.21-150500.55.68.1
    • kselftests-kmp-azure >= 5.14.21-150500.33.57.1
    • kselftests-kmp-default >= 5.14.21-150500.55.68.1
    • kselftests-kmp-rt >= 5.14.21-150500.13.58.1
    • ocfs2-kmp-64kb >= 5.14.21-150500.55.68.1
    • ocfs2-kmp-azure >= 5.14.21-150500.33.57.1
    • ocfs2-kmp-default >= 5.14.21-150500.55.68.1
    • ocfs2-kmp-rt >= 5.14.21-150500.13.58.1
    • reiserfs-kmp-64kb >= 5.14.21-150500.55.68.1
    • reiserfs-kmp-azure >= 5.14.21-150500.33.57.1
    • reiserfs-kmp-default >= 5.14.21-150500.55.68.1
    • reiserfs-kmp-rt >= 5.14.21-150500.13.58.1
    		 Patchnames:
    openSUSE-SLE-15.5-2024-2008
    openSUSE-SLE-15.5-2024-2019
    openSUSE-SLE-15.5-2024-2190
    openSUSE Leap Micro 5.5
    • kernel-default >= 5.14.21-150500.55.68.1
    • kernel-default-base >= 5.14.21-150500.55.68.1.150500.6.31.1
    • kernel-rt >= 5.14.21-150500.13.58.1
    		 Patchnames:
    openSUSE-Leap-Micro-5.5-2024-2008
    openSUSE-Leap-Micro-5.5-2024-2190

    First public cloud image revisions this CVE is fixed in:

    Status of this issue by product and package

    Please note that this evaluation state might be work in progress, incomplete or outdated. Also information for service packs in the LTSS phase is only included for issues meeting the LTSS criteria. If in doubt, feel free to contact us for clarification. The updates are grouped by state of their lifecycle. SUSE product lifecycles are documented on the lifecycle page.

    Product(s) Source package State
    Products under general support and receiving all security fixes.
    SLES15-SP5-CHOST-BYOS-Aliyun kernel-default Released
    SLES15-SP5-CHOST-BYOS-Azure kernel-default Released
    SLES15-SP5-CHOST-BYOS-EC2 kernel-default Released
    SLES15-SP5-CHOST-BYOS-GCE kernel-default Released
    SLES15-SP5-CHOST-BYOS-SAP-CCloud kernel-default Released
    SUSE Enterprise Storage 7.1 kernel-default Affected
    SUSE Enterprise Storage 7.1 kernel-source Affected
    SUSE Linux Enterprise Desktop 15 SP5 kernel-64kb Released
    SUSE Linux Enterprise Desktop 15 SP5 kernel-default Released
    SUSE Linux Enterprise Desktop 15 SP5 kernel-default-base Released
    SUSE Linux Enterprise Desktop 15 SP5 kernel-docs Released
    SUSE Linux Enterprise Desktop 15 SP5 kernel-obs-build Released
    SUSE Linux Enterprise Desktop 15 SP5 kernel-source Released
    SUSE Linux Enterprise Desktop 15 SP5 kernel-syms Released
    SUSE Linux Enterprise Desktop 15 SP5 kernel-zfcpdump Released
    SUSE Linux Enterprise Desktop 15 SP6 kernel-default Already fixed
    SUSE Linux Enterprise Desktop 15 SP6 kernel-source Already fixed
    SUSE Linux Enterprise High Availability Extension 15 SP5 kernel-default Released
    SUSE Linux Enterprise High Performance Computing 12 SP5 kernel-default Affected
    SUSE Linux Enterprise High Performance Computing 12 SP5 kernel-source Affected
    SUSE Linux Enterprise High Performance Computing 12 SP5 kernel-source-azure Affected
    SUSE Linux Enterprise High Performance Computing 15 SP5 kernel-64kb Released
    SUSE Linux Enterprise High Performance Computing 15 SP5 kernel-azure Released
    SUSE Linux Enterprise High Performance Computing 15 SP5 kernel-default Released
    SUSE Linux Enterprise High Performance Computing 15 SP5 kernel-default-base Released
    SUSE Linux Enterprise High Performance Computing 15 SP5 kernel-docs Released
    SUSE Linux Enterprise High Performance Computing 15 SP5 kernel-obs-build Released
    SUSE Linux Enterprise High Performance Computing 15 SP5 kernel-source Released
    SUSE Linux Enterprise High Performance Computing 15 SP5 kernel-source-azure Released
    SUSE Linux Enterprise High Performance Computing 15 SP5 kernel-syms Released
    SUSE Linux Enterprise High Performance Computing 15 SP5 kernel-syms-azure Released
    SUSE Linux Enterprise High Performance Computing 15 SP5 kernel-zfcpdump Released
    SUSE Linux Enterprise High Performance Computing 15 SP6 kernel-default Already fixed
    SUSE Linux Enterprise High Performance Computing 15 SP6 kernel-source Already fixed
    SUSE Linux Enterprise High Performance Computing 15 SP6 kernel-source-azure Already fixed
    SUSE Linux Enterprise Live Patching 15 SP5 kernel-default Released
    SUSE Linux Enterprise Live Patching 15 SP5 kernel-livepatch-SLE15-SP5-RT_Update_16 Released
    SUSE Linux Enterprise Live Patching 15 SP5 kernel-livepatch-SLE15-SP5_Update_15 Released
    SUSE Linux Enterprise Micro 5.1 kernel-default Affected
    SUSE Linux Enterprise Micro 5.1 kernel-rt Affected
    SUSE Linux Enterprise Micro 5.1 kernel-source-rt Affected
    SUSE Linux Enterprise Micro 5.2 kernel-default Affected
    SUSE Linux Enterprise Micro 5.2 kernel-rt Affected
    SUSE Linux Enterprise Micro 5.2 kernel-source-rt Affected
    SUSE Linux Enterprise Micro 5.3 kernel-default Affected
    SUSE Linux Enterprise Micro 5.3 kernel-rt Affected
    SUSE Linux Enterprise Micro 5.3 kernel-source-rt Affected
    SUSE Linux Enterprise Micro 5.4 kernel-default Affected
    SUSE Linux Enterprise Micro 5.4 kernel-rt Affected
    SUSE Linux Enterprise Micro 5.4 kernel-source-rt Affected
    SUSE Linux Enterprise Micro 5.5 kernel-default Released
    SUSE Linux Enterprise Micro 5.5 kernel-default-base Released
    SUSE Linux Enterprise Micro 5.5 kernel-rt Released
    SUSE Linux Enterprise Micro 5.5 kernel-source-rt Released
    SUSE Linux Enterprise Module for Basesystem 15 SP5 kernel-64kb Released
    SUSE Linux Enterprise Module for Basesystem 15 SP5 kernel-default Released
    SUSE Linux Enterprise Module for Basesystem 15 SP5 kernel-default-base Released
    SUSE Linux Enterprise Module for Basesystem 15 SP5 kernel-source Released
    SUSE Linux Enterprise Module for Basesystem 15 SP5 kernel-zfcpdump Released
    SUSE Linux Enterprise Module for Basesystem 15 SP6 kernel-default Already fixed
    SUSE Linux Enterprise Module for Basesystem 15 SP6 kernel-source Already fixed
    SUSE Linux Enterprise Module for Development Tools 15 SP5 kernel-default Released
    SUSE Linux Enterprise Module for Development Tools 15 SP5 kernel-docs Released
    SUSE Linux Enterprise Module for Development Tools 15 SP5 kernel-obs-build Released
    SUSE Linux Enterprise Module for Development Tools 15 SP5 kernel-source Released
    SUSE Linux Enterprise Module for Development Tools 15 SP5 kernel-syms Released
    SUSE Linux Enterprise Module for Development Tools 15 SP6 kernel-default Already fixed
    SUSE Linux Enterprise Module for Development Tools 15 SP6 kernel-source Already fixed
    SUSE Linux Enterprise Module for Legacy 15 SP5 kernel-default Released
    SUSE Linux Enterprise Module for Public Cloud 15 SP5 kernel-azure Released
    SUSE Linux Enterprise Module for Public Cloud 15 SP5 kernel-source-azure Released
    SUSE Linux Enterprise Module for Public Cloud 15 SP5 kernel-syms-azure Released
    SUSE Linux Enterprise Module for Public Cloud 15 SP6 kernel-source-azure Already fixed
    SUSE Linux Enterprise Real Time 12 SP5 kernel-source-rt Affected
    SUSE Linux Enterprise Real Time 15 SP5 kernel-rt Released
    SUSE Linux Enterprise Real Time 15 SP5 kernel-rt_debug Released
    SUSE Linux Enterprise Real Time 15 SP5 kernel-source-rt Released
    SUSE Linux Enterprise Real Time 15 SP5 kernel-syms-rt Released
    SUSE Linux Enterprise Real Time 15 SP6 kernel-source-rt Already fixed
    SUSE Linux Enterprise Server 12 SP5 kernel-default Affected
    SUSE Linux Enterprise Server 12 SP5 kernel-source Affected
    SUSE Linux Enterprise Server 12 SP5 kernel-source-azure Affected
    SUSE Linux Enterprise Server 15 SP5 kernel-64kb Released
    SUSE Linux Enterprise Server 15 SP5 kernel-azure Released
    SUSE Linux Enterprise Server 15 SP5 kernel-default Released
    SUSE Linux Enterprise Server 15 SP5 kernel-default-base Released
    SUSE Linux Enterprise Server 15 SP5 kernel-docs Released
    SUSE Linux Enterprise Server 15 SP5 kernel-obs-build Released
    SUSE Linux Enterprise Server 15 SP5 kernel-source Released
    SUSE Linux Enterprise Server 15 SP5 kernel-source-azure Released
    SUSE Linux Enterprise Server 15 SP5 kernel-syms Released
    SUSE Linux Enterprise Server 15 SP5 kernel-syms-azure Released
    SUSE Linux Enterprise Server 15 SP5 kernel-zfcpdump Released
    SUSE Linux Enterprise Server 15 SP6 kernel-default Already fixed
    SUSE Linux Enterprise Server 15 SP6 kernel-source Already fixed
    SUSE Linux Enterprise Server 15 SP6 kernel-source-azure Already fixed
    SUSE Linux Enterprise Server for SAP Applications 12 SP5 kernel-default Affected
    SUSE Linux Enterprise Server for SAP Applications 12 SP5 kernel-source Affected
    SUSE Linux Enterprise Server for SAP Applications 12 SP5 kernel-source-azure Affected
    SUSE Linux Enterprise Server for SAP Applications 15 SP5 kernel-64kb Released
    SUSE Linux Enterprise Server for SAP Applications 15 SP5 kernel-azure Released
    SUSE Linux Enterprise Server for SAP Applications 15 SP5 kernel-default Released
    SUSE Linux Enterprise Server for SAP Applications 15 SP5 kernel-default-base Released
    SUSE Linux Enterprise Server for SAP Applications 15 SP5 kernel-docs Released
    SUSE Linux Enterprise Server for SAP Applications 15 SP5 kernel-obs-build Released
    SUSE Linux Enterprise Server for SAP Applications 15 SP5 kernel-source Released
    SUSE Linux Enterprise Server for SAP Applications 15 SP5 kernel-source-azure Released
    SUSE Linux Enterprise Server for SAP Applications 15 SP5 kernel-syms Released
    SUSE Linux Enterprise Server for SAP Applications 15 SP5 kernel-syms-azure Released
    SUSE Linux Enterprise Server for SAP Applications 15 SP5 kernel-zfcpdump Released
    SUSE Linux Enterprise Server for SAP Applications 15 SP6 kernel-default Already fixed
    SUSE Linux Enterprise Server for SAP Applications 15 SP6 kernel-source Already fixed
    SUSE Linux Enterprise Server for SAP Applications 15 SP6 kernel-source-azure Already fixed
    SUSE Linux Enterprise Workstation Extension 15 SP5 kernel-default Released
    SUSE Manager Proxy 4.3 kernel-default Affected
    SUSE Manager Proxy 4.3 kernel-source Affected
    SUSE Manager Retail Branch Server 4.3 kernel-default Affected
    SUSE Manager Retail Branch Server 4.3 kernel-source Affected
    SUSE Manager Server 4.3 kernel-default Affected
    SUSE Manager Server 4.3 kernel-source Affected
    SUSE Real Time Module 15 SP5 kernel-rt Released
    SUSE Real Time Module 15 SP5 kernel-rt_debug Released
    SUSE Real Time Module 15 SP5 kernel-source-rt Released
    SUSE Real Time Module 15 SP5 kernel-syms-rt Released
    SUSE Real Time Module 15 SP6 kernel-source-rt Already fixed
    openSUSE Leap 15.5 dtb-aarch64 Released
    openSUSE Leap 15.5 dtb-armv7l Released
    openSUSE Leap 15.5 kernel-64kb Released
    openSUSE Leap 15.5 kernel-azure Released
    openSUSE Leap 15.5 kernel-debug Released
    openSUSE Leap 15.5 kernel-default Released
    openSUSE Leap 15.5 kernel-docs Released
    openSUSE Leap 15.5 kernel-kvmsmall Released
    openSUSE Leap 15.5 kernel-lpae Released
    openSUSE Leap 15.5 kernel-obs-build Released
    openSUSE Leap 15.5 kernel-obs-qa Released
    openSUSE Leap 15.5 kernel-rt Released
    openSUSE Leap 15.5 kernel-rt_debug Released
    openSUSE Leap 15.5 kernel-source Released
    openSUSE Leap 15.5 kernel-source-azure Released
    openSUSE Leap 15.5 kernel-source-rt Released
    openSUSE Leap 15.5 kernel-syms Released
    openSUSE Leap 15.5 kernel-syms-azure Released
    openSUSE Leap 15.5 kernel-syms-rt Released
    openSUSE Leap 15.5 kernel-zfcpdump Released
    openSUSE Leap 15.6 kernel-default Already fixed
    openSUSE Leap 15.6 kernel-source Already fixed
    openSUSE Leap 15.6 kernel-source-azure Already fixed
    openSUSE Leap 15.6 kernel-source-rt Already fixed
    Products under Long Term Service Pack support and receiving important and critical security fixes.
    SUSE Linux Enterprise Desktop 15 SP4 kernel-source Affected
    SUSE Linux Enterprise High Performance Computing 15 SP2 kernel-source Affected
    SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS kernel-source Affected
    SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS kernel-default Affected
    SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS kernel-source Affected
    SUSE Linux Enterprise High Performance Computing 15 SP3 kernel-source Affected
    SUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS kernel-source Affected
    SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS kernel-default Affected
    SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS kernel-source Affected
    SUSE Linux Enterprise High Performance Computing 15 SP4 kernel-source Affected
    SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS kernel-default Affected
    SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS kernel-source Affected
    SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS kernel-default Affected
    SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS kernel-source Affected
    SUSE Linux Enterprise Module for Basesystem 15 SP2 kernel-source Affected
    SUSE Linux Enterprise Module for Basesystem 15 SP3 kernel-source Affected
    SUSE Linux Enterprise Module for Basesystem 15 SP4 kernel-source Affected
    SUSE Linux Enterprise Module for Development Tools 15 SP2 kernel-source Affected
    SUSE Linux Enterprise Module for Development Tools 15 SP3 kernel-source Affected
    SUSE Linux Enterprise Module for Development Tools 15 SP4 kernel-source Affected
    SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE kernel-default Affected
    SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE kernel-source Affected
    SUSE Linux Enterprise Server 15 SP2 kernel-source Affected
    SUSE Linux Enterprise Server 15 SP2-LTSS kernel-default Affected
    SUSE Linux Enterprise Server 15 SP2-LTSS kernel-source Affected
    SUSE Linux Enterprise Server 15 SP3 kernel-source Affected
    SUSE Linux Enterprise Server 15 SP3-LTSS kernel-default Affected
    SUSE Linux Enterprise Server 15 SP3-LTSS kernel-source Affected
    SUSE Linux Enterprise Server 15 SP4 kernel-source Affected
    SUSE Linux Enterprise Server 15 SP4-LTSS kernel-default Affected
    SUSE Linux Enterprise Server 15 SP4-LTSS kernel-source Affected
    SUSE Linux Enterprise Server for SAP Applications 15 SP2 kernel-default Affected
    SUSE Linux Enterprise Server for SAP Applications 15 SP2 kernel-source Affected
    SUSE Linux Enterprise Server for SAP Applications 15 SP3 kernel-default Affected
    SUSE Linux Enterprise Server for SAP Applications 15 SP3 kernel-source Affected
    SUSE Linux Enterprise Server for SAP Applications 15 SP4 kernel-default Affected
    SUSE Linux Enterprise Server for SAP Applications 15 SP4 kernel-source Affected
    Products past their end of life and not receiving proactive updates anymore.
    HPE Helion OpenStack 8 kernel-source Affected
    SUSE CaaS Platform 4.0 kernel-source Affected
    SUSE Enterprise Storage 6 kernel-source Affected
    SUSE Enterprise Storage 7 kernel-source Affected
    SUSE Linux Enterprise Desktop 12 SP3 kernel-source Affected
    SUSE Linux Enterprise Desktop 12 SP4 kernel-source Affected
    SUSE Linux Enterprise Desktop 15 kernel-source Affected
    SUSE Linux Enterprise Desktop 15 SP1 kernel-source Affected
    SUSE Linux Enterprise Desktop 15 SP2 kernel-source Affected
    SUSE Linux Enterprise Desktop 15 SP3 kernel-source Affected
    SUSE Linux Enterprise High Performance Computing 15 kernel-source Affected
    SUSE Linux Enterprise High Performance Computing 15 SP1 kernel-source Affected
    SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS kernel-source Affected
    SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS kernel-source Affected
    SUSE Linux Enterprise High Performance Computing 15-ESPOS kernel-source Affected
    SUSE Linux Enterprise High Performance Computing 15-LTSS kernel-source Affected
    SUSE Linux Enterprise Micro 5.0 kernel-default Affected
    SUSE Linux Enterprise Module for Basesystem 15 kernel-source Affected
    SUSE Linux Enterprise Module for Basesystem 15 SP1 kernel-source Affected
    SUSE Linux Enterprise Module for Development Tools 15 kernel-source Affected
    SUSE Linux Enterprise Module for Development Tools 15 SP1 kernel-source Affected
    SUSE Linux Enterprise Real Time 15 SP2 kernel-source Affected
    SUSE Linux Enterprise Real Time 15 SP3 kernel-source Affected
    SUSE Linux Enterprise Real Time 15 SP3 kernel-source-rt Affected
    SUSE Linux Enterprise Real Time 15 SP4 kernel-source Affected
    SUSE Linux Enterprise Real Time 15 SP4 kernel-source-rt Affected
    SUSE Linux Enterprise Server 11 SP4 kernel-source Affected
    SUSE Linux Enterprise Server 11 SP4 LTSS kernel-default Affected
    SUSE Linux Enterprise Server 11 SP4 LTSS kernel-source Affected
    SUSE Linux Enterprise Server 11 SP4-LTSS kernel-source Affected
    SUSE Linux Enterprise Server 12 SP3 kernel-source Affected
    SUSE Linux Enterprise Server 12 SP3-BCL kernel-source Affected
    SUSE Linux Enterprise Server 12 SP3-ESPOS kernel-source Affected
    SUSE Linux Enterprise Server 12 SP3-LTSS kernel-source Affected
    SUSE Linux Enterprise Server 12 SP4 kernel-source Affected
    SUSE Linux Enterprise Server 12 SP4-ESPOS kernel-source Affected
    SUSE Linux Enterprise Server 12 SP4-LTSS kernel-default Affected
    SUSE Linux Enterprise Server 12 SP4-LTSS kernel-source Affected
    SUSE Linux Enterprise Server 15 kernel-source Affected
    SUSE Linux Enterprise Server 15 SP1 kernel-source Affected
    SUSE Linux Enterprise Server 15 SP1-BCL kernel-source Affected
    SUSE Linux Enterprise Server 15 SP1-LTSS kernel-default Affected
    SUSE Linux Enterprise Server 15 SP1-LTSS kernel-source Affected
    SUSE Linux Enterprise Server 15 SP2-BCL kernel-source Affected
    SUSE Linux Enterprise Server 15 SP3-BCL kernel-source Affected
    SUSE Linux Enterprise Server 15-LTSS kernel-default Affected
    SUSE Linux Enterprise Server 15-LTSS kernel-source Affected
    SUSE Linux Enterprise Server for SAP Applications 12 SP3 kernel-source Affected
    SUSE Linux Enterprise Server for SAP Applications 12 SP4 kernel-default Affected
    SUSE Linux Enterprise Server for SAP Applications 12 SP4 kernel-source Affected
    SUSE Linux Enterprise Server for SAP Applications 15 kernel-source Affected
    SUSE Linux Enterprise Server for SAP Applications 15 SP1 kernel-source Affected
    SUSE Manager Proxy 4.0 kernel-source Affected
    SUSE Manager Proxy 4.1 kernel-source Affected
    SUSE Manager Proxy 4.2 kernel-source Affected
    SUSE Manager Retail Branch Server 4.0 kernel-source Affected
    SUSE Manager Retail Branch Server 4.1 kernel-source Affected
    SUSE Manager Retail Branch Server 4.2 kernel-source Affected
    SUSE Manager Server 4.0 kernel-source Affected
    SUSE Manager Server 4.1 kernel-source Affected
    SUSE Manager Server 4.2 kernel-source Affected
    SUSE OpenStack Cloud 8 kernel-source Affected
    SUSE OpenStack Cloud 9 kernel-default Affected
    SUSE OpenStack Cloud 9 kernel-source Affected
    SUSE OpenStack Cloud Crowbar 8 kernel-source Affected
    SUSE OpenStack Cloud Crowbar 9 kernel-default Affected
    SUSE OpenStack Cloud Crowbar 9 kernel-source Affected
    SUSE Real Time Module 15 SP3 kernel-source-rt Affected
    SUSE Real Time Module 15 SP4 kernel-source-rt Affected
    Container Status
    suse/hpc/warewulf4-x86_64/sle-hpc-node kernel-defaultIn progress
    suse/sles/15.5/libguestfs-tools:0.58.0 kernel-kvmsmallIn progress
    suse/sle-micro/rt-5.5 kernel-rtIn progress
    bci/bci-sle15-kernel-module-devel kernel-symsIn progress

    SUSE Timeline for this CVE

    CVE page created: Tue May 21 18:21:14 2024
    CVE page last modified: Sun Jun 30 11:49:00 2024