Upstream information
Description
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix double free of anonymous device after snapshot creation failure When creating a snapshot we may do a double free of an anonymous device in case there's an error committing the transaction. The second free may result in freeing an anonymous device number that was allocated by some other subsystem in the kernel or another btrfs filesystem. The steps that lead to this: 1) At ioctl.c:create_snapshot() we allocate an anonymous device number and assign it to pending_snapshot->anon_dev; 2) Then we call btrfs_commit_transaction() and end up at transaction.c:create_pending_snapshot(); 3) There we call btrfs_get_new_fs_root() and pass it the anonymous device number stored in pending_snapshot->anon_dev; 4) btrfs_get_new_fs_root() frees that anonymous device number because btrfs_lookup_fs_root() returned a root - someone else did a lookup of the new root already, which could some task doing backref walking; 5) After that some error happens in the transaction commit path, and at ioctl.c:create_snapshot() we jump to the 'fail' label, and after that we free again the same anonymous device number, which in the meanwhile may have been reallocated somewhere else, because pending_snapshot->anon_dev still has the same value as in step 1. Recently syzbot ran into this and reported the following trace: ------------[ cut here ]------------ ida_free called for id=51 which is not allocated. WARNING: CPU: 1 PID: 31038 at lib/idr.c:525 ida_free+0x370/0x420 lib/idr.c:525 Modules linked in: CPU: 1 PID: 31038 Comm: syz-executor.2 Not tainted 6.8.0-rc4-syzkaller-00410-gc02197fc9076 #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 RIP: 0010:ida_free+0x370/0x420 lib/idr.c:525 Code: 10 42 80 3c 28 (...) RSP: 0018:ffffc90015a67300 EFLAGS: 00010246 RAX: be5130472f5dd000 RBX: 0000000000000033 RCX: 0000000000040000 RDX: ffffc90009a7a000 RSI: 000000000003ffff RDI: 0000000000040000 RBP: ffffc90015a673f0 R08: ffffffff81577992 R09: 1ffff92002b4cdb4 R10: dffffc0000000000 R11: fffff52002b4cdb5 R12: 0000000000000246 R13: dffffc0000000000 R14: ffffffff8e256b80 R15: 0000000000000246 FS: 00007fca3f4b46c0(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00007f167a17b978 CR3: 000000001ed26000 CR4: 0000000000350ef0 Call Trace: <TASK> btrfs_get_root_ref+0xa48/0xaf0 fs/btrfs/disk-io.c:1346 create_pending_snapshot+0xff2/0x2bc0 fs/btrfs/transaction.c:1837 create_pending_snapshots+0x195/0x1d0 fs/btrfs/transaction.c:1931 btrfs_commit_transaction+0xf1c/0x3740 fs/btrfs/transaction.c:2404 create_snapshot+0x507/0x880 fs/btrfs/ioctl.c:848 btrfs_mksubvol+0x5d0/0x750 fs/btrfs/ioctl.c:998 btrfs_mksnapshot+0xb5/0xf0 fs/btrfs/ioctl.c:1044 __btrfs_ioctl_snap_create+0x387/0x4b0 fs/btrfs/ioctl.c:1306 btrfs_ioctl_snap_create_v2+0x1ca/0x400 fs/btrfs/ioctl.c:1393 btrfs_ioctl+0xa74/0xd40 vfs_ioctl fs/ioctl.c:51 [inline] __do_sys_ioctl fs/ioctl.c:871 [inline] __se_sys_ioctl+0xfe/0x170 fs/ioctl.c:857 do_syscall_64+0xfb/0x240 entry_SYSCALL_64_after_hwframe+0x6f/0x77 RIP: 0033:0x7fca3e67dda9 Code: 28 00 00 00 (...) RSP: 002b:00007fca3f4b40c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 RAX: ffffffffffffffda RBX: 00007fca3e7abf80 RCX: 00007fca3e67dda9 RDX: 00000000200005c0 RSI: 0000000050009417 RDI: 0000000000000003 RBP: 00007fca3e6ca47a R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 R13: 000000000000000b R14: 00007fca3e7abf80 R15: 00007fff6bf95658 </TASK> Where we get an explicit message where we attempt to free an anonymous device number that is not currently allocated. It happens in a different code path from the example below, at btrfs_get_root_ref(), so this change may not fix the case triggered by sy ---truncated---SUSE information
Overall state of this security issue: Resolved
This issue is currently rated as having moderate severity.
SUSE | |
---|---|
Base Score | 5.5 |
Vector | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Attack Vector | Local |
Attack Complexity | Low |
Privileges Required | Low |
User Interaction | None |
Scope | Unchanged |
Confidentiality Impact | None |
Integrity Impact | None |
Availability Impact | High |
CVSSv3 Version | 3.1 |
SUSE Security Advisories:
- SUSE-SU-2024:1641-1, published Tue May 14 16:33:37 UTC 2024
- SUSE-SU-2024:1644-1, published Tue May 14 16:32:29 UTC 2024
- SUSE-SU-2024:1647-1, published Tue May 14 16:30:55 UTC 2024
- SUSE-SU-2024:1659-1, published Wed May 15 12:30:53 UTC 2024
List of released packages
Product(s) | Fixed package version(s) | References |
---|---|---|
Container bci/bci-sle15-kernel-module-devel:15.5.11.3 |
| |
Container suse/sle-micro-rancher/5.3:latest Container suse/sle-micro-rancher/5.4:latest Image SLES15-SP4-CHOST-BYOS Image SLES15-SP4-CHOST-BYOS-Aliyun Image SLES15-SP4-CHOST-BYOS-Azure Image SLES15-SP4-CHOST-BYOS-EC2 Image SLES15-SP4-CHOST-BYOS-GCE Image SLES15-SP4-CHOST-BYOS-SAP-CCloud Image SLES15-SP4-Manager-Proxy-4-3-BYOS Image SLES15-SP4-Manager-Proxy-4-3-BYOS-EC2 Image SLES15-SP4-Manager-Proxy-4-3-BYOS-GCE Image SLES15-SP4-Manager-Server-4-3 Image SLES15-SP4-Manager-Server-4-3-Azure-llc Image SLES15-SP4-Manager-Server-4-3-Azure-ltd Image SLES15-SP4-Manager-Server-4-3-BYOS Image SLES15-SP4-Manager-Server-4-3-BYOS-Azure Image SLES15-SP4-Manager-Server-4-3-BYOS-EC2 Image SLES15-SP4-Manager-Server-4-3-BYOS-GCE Image SLES15-SP4-Manager-Server-4-3-EC2-llc Image SLES15-SP4-Manager-Server-4-3-EC2-ltd |
| |
Container suse/sle-micro/kvm-5.5:2.0.4-3.5.2 |
| |
Container suse/sle-micro/rt-5.5:2.0.4-4.5.3 |
| |
Image SLES15-SP5-BYOS-EC2 Image SLES15-SP5-BYOS-GCE Image SLES15-SP5-CHOST-BYOS-Aliyun Image SLES15-SP5-CHOST-BYOS-Azure Image SLES15-SP5-CHOST-BYOS-EC2 Image SLES15-SP5-CHOST-BYOS-GCE Image SLES15-SP5-CHOST-BYOS-SAP-CCloud Image SLES15-SP5-EC2 Image SLES15-SP5-GCE Image SLES15-SP5-HPC-BYOS-EC2 Image SLES15-SP5-HPC-BYOS-GCE Image SLES15-SP5-Hardened-BYOS-GCE Image SLES15-SP5-SAPCAL-EC2 Image SLES15-SP5-SAPCAL-GCE |
| |
Image SLES15-SP5-SAP-BYOS-EC2 Image SLES15-SP5-SAP-BYOS-GCE Image SLES15-SP5-SAP-Hardened-BYOS-GCE Image SLES15-SP5-SAP-Hardened-GCE |
| |
SUSE Linux Enterprise Desktop 15 SP5 |
| Patchnames: SUSE-SLE-Module-Basesystem-15-SP5-2024-1659 SUSE-SLE-Module-Development-Tools-15-SP5-2024-1659 SUSE-SLE-Product-WE-15-SP5-2024-1659 |
SUSE Linux Enterprise High Availability Extension 15 SP4 |
| Patchnames: SUSE-SLE-Product-HA-15-SP4-2024-1641 |
SUSE Linux Enterprise High Availability Extension 15 SP5 |
| Patchnames: SUSE-SLE-Product-HA-15-SP5-2024-1659 |
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS |
| Patchnames: SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-1641 |
SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS |
| Patchnames: SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-1641 |
SUSE Linux Enterprise High Performance Computing 15 SP5 |
| Patchnames: SUSE-SLE-Module-Basesystem-15-SP5-2024-1659 SUSE-SLE-Module-Development-Tools-15-SP5-2024-1659 SUSE-SLE-Module-Legacy-15-SP5-2024-1659 SUSE-SLE-Module-Public-Cloud-15-SP5-2024-1644 |
SUSE Linux Enterprise Live Patching 15 SP4 | Patchnames: SUSE-SLE-Module-Live-Patching-15-SP4-2024-1641 | |
SUSE Linux Enterprise Live Patching 15 SP5 | Patchnames: SUSE-SLE-Module-Live-Patching-15-SP5-2024-1659 SUSE-SLE-Module-Live-Patching-15-SP5-2024-1663 | |
SUSE Linux Enterprise Micro 5.3 |
| Patchnames: SUSE-SLE-Micro-5.3-2024-1641 SUSE-SLE-Micro-5.3-2024-1647 |
SUSE Linux Enterprise Micro 5.4 |
| Patchnames: SUSE-SLE-Micro-5.4-2024-1641 SUSE-SLE-Micro-5.4-2024-1647 |
SUSE Linux Enterprise Micro 5.5 |
| Patchnames: SUSE-SLE-Micro-5.5-2024-1659 SUSE-SLE-Micro-5.5-2024-1663 |
SUSE Linux Enterprise Micro 6.0 |
| Patchnames: SUSE Linux Enterprise Micro 6.0 GA kernel-default-6.4.0-17.1 SUSE Linux Enterprise Micro 6.0 GA kernel-rt-6.4.0-8.1 |
SUSE Linux Enterprise Module for Basesystem 15 SP5 |
| Patchnames: SUSE-SLE-Module-Basesystem-15-SP5-2024-1659 |
SUSE Linux Enterprise Module for Development Tools 15 SP5 |
| Patchnames: SUSE-SLE-Module-Development-Tools-15-SP5-2024-1659 |
SUSE Linux Enterprise Module for Legacy 15 SP5 |
| Patchnames: SUSE-SLE-Module-Legacy-15-SP5-2024-1659 |
SUSE Linux Enterprise Module for Public Cloud 15 SP5 |
| Patchnames: SUSE-SLE-Module-Public-Cloud-15-SP5-2024-1644 |
SUSE Linux Enterprise Real Time 15 SP5 SUSE Real Time Module 15 SP5 |
| Patchnames: SUSE-SLE-Module-RT-15-SP5-2024-1663 |
SUSE Linux Enterprise Server 15 SP4-LTSS |
| Patchnames: SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-1641 |
SUSE Linux Enterprise Server 15 SP5 SUSE Linux Enterprise Server for SAP Applications 15 SP5 |
| Patchnames: SUSE-SLE-Module-Basesystem-15-SP5-2024-1659 SUSE-SLE-Module-Development-Tools-15-SP5-2024-1659 SUSE-SLE-Module-Legacy-15-SP5-2024-1659 SUSE-SLE-Module-Public-Cloud-15-SP5-2024-1644 SUSE-SLE-Product-WE-15-SP5-2024-1659 |
SUSE Linux Enterprise Server for SAP Applications 15 SP4 |
| Patchnames: SUSE-SLE-Product-SLES_SAP-15-SP4-2024-1641 |
SUSE Linux Enterprise Workstation Extension 15 SP5 |
| Patchnames: SUSE-SLE-Product-WE-15-SP5-2024-1659 |
SUSE Manager Proxy 4.3 |
| Patchnames: SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2024-1641 |
SUSE Manager Retail Branch Server 4.3 |
| Patchnames: SUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.3-2024-1641 |
SUSE Manager Server 4.3 |
| Patchnames: SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-1641 |
openSUSE Leap 15.5 |
| Patchnames: openSUSE-SLE-15.5-2024-1644 openSUSE-SLE-15.5-2024-1659 openSUSE-SLE-15.5-2024-1663 |
openSUSE Leap Micro 5.3 |
| Patchnames: openSUSE-Leap-Micro-5.3-2024-1641 openSUSE-Leap-Micro-5.3-2024-1647 |
openSUSE Leap Micro 5.4 |
| Patchnames: openSUSE-Leap-Micro-5.4-2024-1641 openSUSE-Leap-Micro-5.4-2024-1647 |
openSUSE Leap Micro 5.5 |
| Patchnames: openSUSE-Leap-Micro-5.5-2024-1659 openSUSE-Leap-Micro-5.5-2024-1663 |
Status of this issue by product and package
Please note that this evaluation state might be work in progress, incomplete or outdated. Also information for service packs in the LTSS phase is only included for issues meeting the LTSS criteria. If in doubt, feel free to contact us for clarification. The updates are grouped by state of their lifecycle. SUSE product lifecycles are documented on the lifecycle page.
Product(s) | Source package | State |
---|---|---|
Products under general support and receiving all security fixes. | ||
SLES15-SP5-CHOST-BYOS-Aliyun | kernel-default | Released |
SLES15-SP5-CHOST-BYOS-Azure | kernel-default | Released |
SLES15-SP5-CHOST-BYOS-EC2 | kernel-default | Released |
SLES15-SP5-CHOST-BYOS-GCE | kernel-default | Released |
SLES15-SP5-CHOST-BYOS-SAP-CCloud | kernel-default | Released |
SUSE Enterprise Storage 7.1 | kernel-default | Not affected |
SUSE Enterprise Storage 7.1 | kernel-source | Not affected |
SUSE Enterprise Storage 7.1 | kernel-source-azure | Not affected |
SUSE Linux Enterprise Desktop 15 SP5 | kernel-64kb | Released |
SUSE Linux Enterprise Desktop 15 SP5 | kernel-default | Released |
SUSE Linux Enterprise Desktop 15 SP5 | kernel-default-base | Released |
SUSE Linux Enterprise Desktop 15 SP5 | kernel-docs | Released |
SUSE Linux Enterprise Desktop 15 SP5 | kernel-obs-build | Released |
SUSE Linux Enterprise Desktop 15 SP5 | kernel-source | Released |
SUSE Linux Enterprise Desktop 15 SP5 | kernel-syms | Released |
SUSE Linux Enterprise Desktop 15 SP5 | kernel-zfcpdump | Released |
SUSE Linux Enterprise Desktop 15 SP6 | kernel-default | Already fixed |
SUSE Linux Enterprise Desktop 15 SP6 | kernel-source | Already fixed |
SUSE Linux Enterprise High Availability Extension 15 SP5 | kernel-default | Released |
SUSE Linux Enterprise High Performance Computing 12 SP5 | kernel-default | Not affected |
SUSE Linux Enterprise High Performance Computing 12 SP5 | kernel-source | Not affected |
SUSE Linux Enterprise High Performance Computing 12 SP5 | kernel-source-azure | Not affected |
SUSE Linux Enterprise High Performance Computing 15 SP5 | kernel-64kb | Released |
SUSE Linux Enterprise High Performance Computing 15 SP5 | kernel-azure | Released |
SUSE Linux Enterprise High Performance Computing 15 SP5 | kernel-default | Released |
SUSE Linux Enterprise High Performance Computing 15 SP5 | kernel-default-base | Released |
SUSE Linux Enterprise High Performance Computing 15 SP5 | kernel-docs | Released |
SUSE Linux Enterprise High Performance Computing 15 SP5 | kernel-obs-build | Released |
SUSE Linux Enterprise High Performance Computing 15 SP5 | kernel-source | Released |
SUSE Linux Enterprise High Performance Computing 15 SP5 | kernel-source-azure | Released |
SUSE Linux Enterprise High Performance Computing 15 SP5 | kernel-syms | Released |
SUSE Linux Enterprise High Performance Computing 15 SP5 | kernel-syms-azure | Released |
SUSE Linux Enterprise High Performance Computing 15 SP5 | kernel-zfcpdump | Released |
SUSE Linux Enterprise High Performance Computing 15 SP6 | kernel-default | Already fixed |
SUSE Linux Enterprise High Performance Computing 15 SP6 | kernel-source | Already fixed |
SUSE Linux Enterprise High Performance Computing 15 SP6 | kernel-source-azure | Already fixed |
SUSE Linux Enterprise Live Patching 15 SP5 | kernel-default | Released |
SUSE Linux Enterprise Live Patching 15 SP5 | kernel-livepatch-SLE15-SP5-RT_Update_14 | Released |
SUSE Linux Enterprise Live Patching 15 SP5 | kernel-livepatch-SLE15-SP5_Update_13 | Released |
SUSE Linux Enterprise Micro 5.1 | kernel-default | Not affected |
SUSE Linux Enterprise Micro 5.1 | kernel-rt | Not affected |
SUSE Linux Enterprise Micro 5.1 | kernel-source-rt | Not affected |
SUSE Linux Enterprise Micro 5.2 | kernel-default | Not affected |
SUSE Linux Enterprise Micro 5.2 | kernel-rt | Not affected |
SUSE Linux Enterprise Micro 5.2 | kernel-source-rt | Not affected |
SUSE Linux Enterprise Micro 5.3 | kernel-default | Released |
SUSE Linux Enterprise Micro 5.3 | kernel-default-base | Released |
SUSE Linux Enterprise Micro 5.3 | kernel-rt | Released |
SUSE Linux Enterprise Micro 5.3 | kernel-source-rt | Released |
SUSE Linux Enterprise Micro 5.4 | kernel-default | Released |
SUSE Linux Enterprise Micro 5.4 | kernel-default-base | Released |
SUSE Linux Enterprise Micro 5.4 | kernel-rt | Released |
SUSE Linux Enterprise Micro 5.4 | kernel-source-rt | Released |
SUSE Linux Enterprise Micro 5.5 | kernel-default | Released |
SUSE Linux Enterprise Micro 5.5 | kernel-default-base | Released |
SUSE Linux Enterprise Micro 5.5 | kernel-rt | Released |
SUSE Linux Enterprise Micro 5.5 | kernel-source-rt | Released |
SUSE Linux Enterprise Micro for Rancher 5.3 | kernel-default | Released |
SUSE Linux Enterprise Micro for Rancher 5.3 | kernel-rt | Released |
SUSE Linux Enterprise Micro for Rancher 5.3 | kernel-source-rt | Released |
SUSE Linux Enterprise Micro for Rancher 5.4 | kernel-default | Released |
SUSE Linux Enterprise Micro for Rancher 5.4 | kernel-rt | Released |
SUSE Linux Enterprise Micro for Rancher 5.4 | kernel-source-rt | Released |
SUSE Linux Enterprise Module for Basesystem 15 SP5 | kernel-64kb | Released |
SUSE Linux Enterprise Module for Basesystem 15 SP5 | kernel-default | Released |
SUSE Linux Enterprise Module for Basesystem 15 SP5 | kernel-default-base | Released |
SUSE Linux Enterprise Module for Basesystem 15 SP5 | kernel-source | Released |
SUSE Linux Enterprise Module for Basesystem 15 SP5 | kernel-zfcpdump | Released |
SUSE Linux Enterprise Module for Basesystem 15 SP6 | kernel-default | Already fixed |
SUSE Linux Enterprise Module for Basesystem 15 SP6 | kernel-source | Already fixed |
SUSE Linux Enterprise Module for Development Tools 15 SP5 | kernel-default | Released |
SUSE Linux Enterprise Module for Development Tools 15 SP5 | kernel-docs | Released |
SUSE Linux Enterprise Module for Development Tools 15 SP5 | kernel-obs-build | Released |
SUSE Linux Enterprise Module for Development Tools 15 SP5 | kernel-source | Released |
SUSE Linux Enterprise Module for Development Tools 15 SP5 | kernel-syms | Released |
SUSE Linux Enterprise Module for Development Tools 15 SP6 | kernel-default | Already fixed |
SUSE Linux Enterprise Module for Development Tools 15 SP6 | kernel-source | Already fixed |
SUSE Linux Enterprise Module for Legacy 15 SP5 | kernel-default | Released |
SUSE Linux Enterprise Module for Public Cloud 15 SP5 | kernel-azure | Released |
SUSE Linux Enterprise Module for Public Cloud 15 SP5 | kernel-source-azure | Released |
SUSE Linux Enterprise Module for Public Cloud 15 SP5 | kernel-syms-azure | Released |
SUSE Linux Enterprise Module for Public Cloud 15 SP6 | kernel-source-azure | Already fixed |
SUSE Linux Enterprise Real Time 12 SP5 | kernel-source-rt | Not affected |
SUSE Linux Enterprise Real Time 15 SP5 | kernel-rt | Released |
SUSE Linux Enterprise Real Time 15 SP5 | kernel-rt_debug | Released |
SUSE Linux Enterprise Real Time 15 SP5 | kernel-source-rt | Released |
SUSE Linux Enterprise Real Time 15 SP5 | kernel-syms-rt | Released |
SUSE Linux Enterprise Server 12 SP5 | kernel-default | Not affected |
SUSE Linux Enterprise Server 12 SP5 | kernel-source | Not affected |
SUSE Linux Enterprise Server 12 SP5 | kernel-source-azure | Not affected |
SUSE Linux Enterprise Server 15 SP5 | kernel-64kb | Released |
SUSE Linux Enterprise Server 15 SP5 | kernel-azure | Released |
SUSE Linux Enterprise Server 15 SP5 | kernel-default | Released |
SUSE Linux Enterprise Server 15 SP5 | kernel-default-base | Released |
SUSE Linux Enterprise Server 15 SP5 | kernel-docs | Released |
SUSE Linux Enterprise Server 15 SP5 | kernel-obs-build | Released |
SUSE Linux Enterprise Server 15 SP5 | kernel-source | Released |
SUSE Linux Enterprise Server 15 SP5 | kernel-source-azure | Released |
SUSE Linux Enterprise Server 15 SP5 | kernel-syms | Released |
SUSE Linux Enterprise Server 15 SP5 | kernel-syms-azure | Released |
SUSE Linux Enterprise Server 15 SP5 | kernel-zfcpdump | Released |
SUSE Linux Enterprise Server 15 SP6 | kernel-default | Already fixed |
SUSE Linux Enterprise Server 15 SP6 | kernel-source | Already fixed |
SUSE Linux Enterprise Server 15 SP6 | kernel-source-azure | Already fixed |
SUSE Linux Enterprise Server for SAP Applications 12 SP5 | kernel-default | Not affected |
SUSE Linux Enterprise Server for SAP Applications 12 SP5 | kernel-source | Not affected |
SUSE Linux Enterprise Server for SAP Applications 12 SP5 | kernel-source-azure | Not affected |
SUSE Linux Enterprise Server for SAP Applications 15 SP5 | kernel-64kb | Released |
SUSE Linux Enterprise Server for SAP Applications 15 SP5 | kernel-azure | Released |
SUSE Linux Enterprise Server for SAP Applications 15 SP5 | kernel-default | Released |
SUSE Linux Enterprise Server for SAP Applications 15 SP5 | kernel-default-base | Released |
SUSE Linux Enterprise Server for SAP Applications 15 SP5 | kernel-docs | Released |
SUSE Linux Enterprise Server for SAP Applications 15 SP5 | kernel-obs-build | Released |
SUSE Linux Enterprise Server for SAP Applications 15 SP5 | kernel-source | Released |
SUSE Linux Enterprise Server for SAP Applications 15 SP5 | kernel-source-azure | Released |
SUSE Linux Enterprise Server for SAP Applications 15 SP5 | kernel-syms | Released |
SUSE Linux Enterprise Server for SAP Applications 15 SP5 | kernel-syms-azure | Released |
SUSE Linux Enterprise Server for SAP Applications 15 SP5 | kernel-zfcpdump | Released |
SUSE Linux Enterprise Server for SAP Applications 15 SP6 | kernel-default | Already fixed |
SUSE Linux Enterprise Server for SAP Applications 15 SP6 | kernel-source | Already fixed |
SUSE Linux Enterprise Server for SAP Applications 15 SP6 | kernel-source-azure | Already fixed |
SUSE Linux Enterprise Workstation Extension 15 SP5 | kernel-default | Released |
SUSE Manager Proxy 4.3 | kernel-64kb | Affected |
SUSE Manager Proxy 4.3 | kernel-default | Released |
SUSE Manager Proxy 4.3 | kernel-default-base | Released |
SUSE Manager Proxy 4.3 | kernel-docs | Affected |
SUSE Manager Proxy 4.3 | kernel-obs-build | Affected |
SUSE Manager Proxy 4.3 | kernel-source | Released |
SUSE Manager Proxy 4.3 | kernel-source-azure | Not affected |
SUSE Manager Proxy 4.3 | kernel-syms | Released |
SUSE Manager Proxy 4.3 | kernel-zfcpdump | Affected |
SUSE Manager Retail Branch Server 4.3 | kernel-64kb | Affected |
SUSE Manager Retail Branch Server 4.3 | kernel-default | Released |
SUSE Manager Retail Branch Server 4.3 | kernel-default-base | Released |
SUSE Manager Retail Branch Server 4.3 | kernel-docs | Affected |
SUSE Manager Retail Branch Server 4.3 | kernel-obs-build | Affected |
SUSE Manager Retail Branch Server 4.3 | kernel-source | Released |
SUSE Manager Retail Branch Server 4.3 | kernel-source-azure | Not affected |
SUSE Manager Retail Branch Server 4.3 | kernel-syms | Affected |
SUSE Manager Retail Branch Server 4.3 | kernel-zfcpdump | Affected |
SUSE Manager Server 4.3 | kernel-64kb | Affected |
SUSE Manager Server 4.3 | kernel-default | Released |
SUSE Manager Server 4.3 | kernel-default-base | Released |
SUSE Manager Server 4.3 | kernel-docs | Affected |
SUSE Manager Server 4.3 | kernel-obs-build | Affected |
SUSE Manager Server 4.3 | kernel-source | Released |
SUSE Manager Server 4.3 | kernel-source-azure | Not affected |
SUSE Manager Server 4.3 | kernel-syms | Released |
SUSE Manager Server 4.3 | kernel-zfcpdump | Released |
SUSE Real Time Module 15 SP5 | kernel-rt | Released |
SUSE Real Time Module 15 SP5 | kernel-rt_debug | Released |
SUSE Real Time Module 15 SP5 | kernel-source-rt | Released |
SUSE Real Time Module 15 SP5 | kernel-syms-rt | Released |
openSUSE Leap 15.5 | dtb-aarch64 | Released |
openSUSE Leap 15.5 | dtb-armv7l | Released |
openSUSE Leap 15.5 | kernel-64kb | Released |
openSUSE Leap 15.5 | kernel-azure | Released |
openSUSE Leap 15.5 | kernel-debug | Released |
openSUSE Leap 15.5 | kernel-default | Released |
openSUSE Leap 15.5 | kernel-docs | Released |
openSUSE Leap 15.5 | kernel-kvmsmall | Released |
openSUSE Leap 15.5 | kernel-lpae | Released |
openSUSE Leap 15.5 | kernel-obs-build | Released |
openSUSE Leap 15.5 | kernel-obs-qa | Released |
openSUSE Leap 15.5 | kernel-source | Released |
openSUSE Leap 15.5 | kernel-source-azure | Released |
openSUSE Leap 15.5 | kernel-syms | Released |
openSUSE Leap 15.5 | kernel-syms-azure | Released |
openSUSE Leap 15.5 | kernel-zfcpdump | Released |
openSUSE Leap 15.6 | kernel-source-azure | Already fixed |
openSUSE Leap Micro 5.4 | kernel-default | Released |
openSUSE Leap Micro 5.4 | kernel-rt | Released |
Products under Long Term Service Pack support and receiving important and critical security fixes. | ||
SLES15-SP4-CHOST-BYOS | kernel-default | Released |
SLES15-SP4-CHOST-BYOS-Aliyun | kernel-default | Released |
SLES15-SP4-CHOST-BYOS-Azure | kernel-default | Released |
SLES15-SP4-CHOST-BYOS-EC2 | kernel-default | Released |
SLES15-SP4-CHOST-BYOS-GCE | kernel-default | Released |
SLES15-SP4-CHOST-BYOS-SAP-CCloud | kernel-default | Released |
SUSE Linux Enterprise Desktop 15 SP4 | kernel-64kb | Affected |
SUSE Linux Enterprise Desktop 15 SP4 | kernel-default | Affected |
SUSE Linux Enterprise Desktop 15 SP4 | kernel-docs | Affected |
SUSE Linux Enterprise Desktop 15 SP4 | kernel-obs-build | Affected |
SUSE Linux Enterprise Desktop 15 SP4 | kernel-source | Affected |
SUSE Linux Enterprise Desktop 15 SP4 | kernel-syms | Affected |
SUSE Linux Enterprise Desktop 15 SP4 | kernel-zfcpdump | Affected |
SUSE Linux Enterprise Desktop 15 SP4 LTSS | kernel-default | Released |
SUSE Linux Enterprise Desktop 15 SP4 LTSS | kernel-docs | Released |
SUSE Linux Enterprise Desktop 15 SP4 LTSS | kernel-obs-build | Released |
SUSE Linux Enterprise Desktop 15 SP4 LTSS | kernel-source | Released |
SUSE Linux Enterprise Desktop 15 SP4 LTSS | kernel-syms | Released |
SUSE Linux Enterprise High Availability Extension 15 SP4 | kernel-default | Released |
SUSE Linux Enterprise High Performance Computing 15 SP2 | kernel-source | Not affected |
SUSE Linux Enterprise High Performance Computing 15 SP2 | kernel-source-azure | Not affected |
SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS | kernel-source | Not affected |
SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS | kernel-default | Not affected |
SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS | kernel-source | Not affected |
SUSE Linux Enterprise High Performance Computing 15 SP3 | kernel-source | Not affected |
SUSE Linux Enterprise High Performance Computing 15 SP3 | kernel-source-azure | Not affected |
SUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS | kernel-source | Not affected |
SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS | kernel-default | Not affected |
SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS | kernel-source | Not affected |
SUSE Linux Enterprise High Performance Computing 15 SP4 | kernel-64kb | Affected |
SUSE Linux Enterprise High Performance Computing 15 SP4 | kernel-default | Affected |
SUSE Linux Enterprise High Performance Computing 15 SP4 | kernel-docs | Affected |
SUSE Linux Enterprise High Performance Computing 15 SP4 | kernel-obs-build | Affected |
SUSE Linux Enterprise High Performance Computing 15 SP4 | kernel-source | Affected |
SUSE Linux Enterprise High Performance Computing 15 SP4 | kernel-source-azure | Not affected |
SUSE Linux Enterprise High Performance Computing 15 SP4 | kernel-syms | Affected |
SUSE Linux Enterprise High Performance Computing 15 SP4 | kernel-zfcpdump | Affected |
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS | kernel-64kb | Released |
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS | kernel-default | Released |
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS | kernel-default-base | Released |
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS | kernel-docs | Released |
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS | kernel-obs-build | Released |
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS | kernel-source | Released |
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS | kernel-syms | Released |
SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS | kernel-64kb | Released |
SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS | kernel-default | Released |
SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS | kernel-default-base | Released |
SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS | kernel-docs | Released |
SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS | kernel-obs-build | Released |
SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS | kernel-source | Released |
SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS | kernel-syms | Released |
SUSE Linux Enterprise Live Patching 15 SP4 | kernel-default | Released |
SUSE Linux Enterprise Live Patching 15 SP4 | kernel-livepatch-SLE15-SP4_Update_26 | Released |
SUSE Linux Enterprise Module for Basesystem 15 SP2 | kernel-source | Not affected |
SUSE Linux Enterprise Module for Basesystem 15 SP3 | kernel-source | Not affected |
SUSE Linux Enterprise Module for Basesystem 15 SP4 | kernel-64kb | Affected |
SUSE Linux Enterprise Module for Basesystem 15 SP4 | kernel-default | Affected |
SUSE Linux Enterprise Module for Basesystem 15 SP4 | kernel-source | Affected |
SUSE Linux Enterprise Module for Basesystem 15 SP4 | kernel-zfcpdump | Affected |
SUSE Linux Enterprise Module for Development Tools 15 SP2 | kernel-source | Not affected |
SUSE Linux Enterprise Module for Development Tools 15 SP3 | kernel-source | Not affected |
SUSE Linux Enterprise Module for Development Tools 15 SP4 | kernel-docs | Affected |
SUSE Linux Enterprise Module for Development Tools 15 SP4 | kernel-obs-build | Affected |
SUSE Linux Enterprise Module for Development Tools 15 SP4 | kernel-source | Affected |
SUSE Linux Enterprise Module for Development Tools 15 SP4 | kernel-syms | Affected |
SUSE Linux Enterprise Module for Legacy 15 SP4 | kernel-default | Affected |
SUSE Linux Enterprise Module for Public Cloud 15 SP4 | kernel-source-azure | Not affected |
SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE | kernel-default | Not affected |
SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE | kernel-source | Not affected |
SUSE Linux Enterprise Server 15 SP2 | kernel-source | Not affected |
SUSE Linux Enterprise Server 15 SP2 | kernel-source-azure | Not affected |
SUSE Linux Enterprise Server 15 SP2-LTSS | kernel-default | Not affected |
SUSE Linux Enterprise Server 15 SP2-LTSS | kernel-source | Not affected |
SUSE Linux Enterprise Server 15 SP3 | kernel-source | Not affected |
SUSE Linux Enterprise Server 15 SP3 | kernel-source-azure | Not affected |
SUSE Linux Enterprise Server 15 SP3-LTSS | kernel-default | Not affected |
SUSE Linux Enterprise Server 15 SP3-LTSS | kernel-source | Not affected |
SUSE Linux Enterprise Server 15 SP4 | kernel-64kb | Affected |
SUSE Linux Enterprise Server 15 SP4 | kernel-default | Affected |
SUSE Linux Enterprise Server 15 SP4 | kernel-docs | Affected |
SUSE Linux Enterprise Server 15 SP4 | kernel-obs-build | Affected |
SUSE Linux Enterprise Server 15 SP4 | kernel-source | Affected |
SUSE Linux Enterprise Server 15 SP4 | kernel-source-azure | Not affected |
SUSE Linux Enterprise Server 15 SP4 | kernel-syms | Affected |
SUSE Linux Enterprise Server 15 SP4 | kernel-zfcpdump | Affected |
SUSE Linux Enterprise Server 15 SP4-LTSS | kernel-64kb | Released |
SUSE Linux Enterprise Server 15 SP4-LTSS | kernel-default | Released |
SUSE Linux Enterprise Server 15 SP4-LTSS | kernel-default-base | Released |
SUSE Linux Enterprise Server 15 SP4-LTSS | kernel-docs | Released |
SUSE Linux Enterprise Server 15 SP4-LTSS | kernel-obs-build | Released |
SUSE Linux Enterprise Server 15 SP4-LTSS | kernel-source | Released |
SUSE Linux Enterprise Server 15 SP4-LTSS | kernel-syms | Released |
SUSE Linux Enterprise Server 15 SP4-LTSS | kernel-zfcpdump | Released |
SUSE Linux Enterprise Server for SAP Applications 15 SP2 | kernel-default | Not affected |
SUSE Linux Enterprise Server for SAP Applications 15 SP2 | kernel-source | Not affected |
SUSE Linux Enterprise Server for SAP Applications 15 SP2 | kernel-source-azure | Not affected |
SUSE Linux Enterprise Server for SAP Applications 15 SP3 | kernel-default | Not affected |
SUSE Linux Enterprise Server for SAP Applications 15 SP3 | kernel-source | Not affected |
SUSE Linux Enterprise Server for SAP Applications 15 SP3 | kernel-source-azure | Not affected |
SUSE Linux Enterprise Server for SAP Applications 15 SP4 | kernel-64kb | Affected |
SUSE Linux Enterprise Server for SAP Applications 15 SP4 | kernel-default | Released |
SUSE Linux Enterprise Server for SAP Applications 15 SP4 | kernel-default-base | Released |
SUSE Linux Enterprise Server for SAP Applications 15 SP4 | kernel-docs | Released |
SUSE Linux Enterprise Server for SAP Applications 15 SP4 | kernel-obs-build | Released |
SUSE Linux Enterprise Server for SAP Applications 15 SP4 | kernel-source | Released |
SUSE Linux Enterprise Server for SAP Applications 15 SP4 | kernel-source-azure | Not affected |
SUSE Linux Enterprise Server for SAP Applications 15 SP4 | kernel-syms | Released |
SUSE Linux Enterprise Server for SAP Applications 15 SP4 | kernel-zfcpdump | Affected |
Products past their end of life and not receiving proactive updates anymore. | ||
HPE Helion OpenStack 8 | kernel-source | Not affected |
SUSE CaaS Platform 4.0 | kernel-source | Not affected |
SUSE Enterprise Storage 6 | kernel-source | Not affected |
SUSE Enterprise Storage 7 | kernel-source | Not affected |
SUSE Enterprise Storage 7 | kernel-source-azure | Not affected |
SUSE Linux Enterprise Desktop 12 SP2 | kernel-source | Not affected |
SUSE Linux Enterprise Desktop 12 SP3 | kernel-source | Not affected |
SUSE Linux Enterprise Desktop 12 SP4 | kernel-source | Not affected |
SUSE Linux Enterprise Desktop 15 | kernel-source | Not affected |
SUSE Linux Enterprise Desktop 15 SP1 | kernel-source | Not affected |
SUSE Linux Enterprise Desktop 15 SP2 | kernel-source | Not affected |
SUSE Linux Enterprise Desktop 15 SP3 | kernel-source | Not affected |
SUSE Linux Enterprise High Performance Computing 15 | kernel-source | Not affected |
SUSE Linux Enterprise High Performance Computing 15 SP1 | kernel-source | Not affected |
SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS | kernel-source | Not affected |
SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS | kernel-source | Not affected |
SUSE Linux Enterprise High Performance Computing 15-ESPOS | kernel-source | Not affected |
SUSE Linux Enterprise High Performance Computing 15-LTSS | kernel-source | Not affected |
SUSE Linux Enterprise Micro 5.0 | kernel-default | Not affected |
SUSE Linux Enterprise Module for Basesystem 15 | kernel-source | Not affected |
SUSE Linux Enterprise Module for Basesystem 15 SP1 | kernel-source | Not affected |
SUSE Linux Enterprise Module for Development Tools 15 | kernel-source | Not affected |
SUSE Linux Enterprise Module for Development Tools 15 SP1 | kernel-source | Not affected |
SUSE Linux Enterprise Module for Public Cloud 15 SP2 | kernel-source-azure | Not affected |
SUSE Linux Enterprise Module for Public Cloud 15 SP3 | kernel-source-azure | Not affected |
SUSE Linux Enterprise Real Time 15 SP2 | kernel-source | Not affected |
SUSE Linux Enterprise Real Time 15 SP3 | kernel-source | Not affected |
SUSE Linux Enterprise Real Time 15 SP3 | kernel-source-rt | Not affected |
SUSE Linux Enterprise Real Time 15 SP4 | kernel-default | Affected |
SUSE Linux Enterprise Real Time 15 SP4 | kernel-docs | Affected |
SUSE Linux Enterprise Real Time 15 SP4 | kernel-obs-build | Affected |
SUSE Linux Enterprise Real Time 15 SP4 | kernel-rt | Affected |
SUSE Linux Enterprise Real Time 15 SP4 | kernel-rt_debug | Affected |
SUSE Linux Enterprise Real Time 15 SP4 | kernel-source | Affected |
SUSE Linux Enterprise Real Time 15 SP4 | kernel-source-rt | Affected |
SUSE Linux Enterprise Real Time 15 SP4 | kernel-syms | Affected |
SUSE Linux Enterprise Real Time 15 SP4 | kernel-syms-rt | Affected |
SUSE Linux Enterprise Server 11 SP4 | kernel-source | Not affected |
SUSE Linux Enterprise Server 11 SP4 LTSS | kernel-default | Not affected |
SUSE Linux Enterprise Server 11 SP4 LTSS | kernel-source | Not affected |
SUSE Linux Enterprise Server 11 SP4-LTSS | kernel-source | Not affected |
SUSE Linux Enterprise Server 12 SP2 | kernel-source | Not affected |
SUSE Linux Enterprise Server 12 SP2-BCL | kernel-source | Not affected |
SUSE Linux Enterprise Server 12 SP2-ESPOS | kernel-source | Not affected |
SUSE Linux Enterprise Server 12 SP2-LTSS | kernel-source | Not affected |
SUSE Linux Enterprise Server 12 SP3 | kernel-source | Not affected |
SUSE Linux Enterprise Server 12 SP3-BCL | kernel-source | Not affected |
SUSE Linux Enterprise Server 12 SP3-ESPOS | kernel-source | Not affected |
SUSE Linux Enterprise Server 12 SP3-LTSS | kernel-source | Not affected |
SUSE Linux Enterprise Server 12 SP4 | kernel-source | Not affected |
SUSE Linux Enterprise Server 12 SP4-ESPOS | kernel-source | Not affected |
SUSE Linux Enterprise Server 12 SP4-LTSS | kernel-default | Not affected |
SUSE Linux Enterprise Server 12 SP4-LTSS | kernel-source | Not affected |
SUSE Linux Enterprise Server 15 | kernel-source | Not affected |
SUSE Linux Enterprise Server 15 SP1 | kernel-source | Not affected |
SUSE Linux Enterprise Server 15 SP1-BCL | kernel-source | Not affected |
SUSE Linux Enterprise Server 15 SP1-LTSS | kernel-default | Not affected |
SUSE Linux Enterprise Server 15 SP1-LTSS | kernel-source | Not affected |
SUSE Linux Enterprise Server 15 SP2-BCL | kernel-source | Not affected |
SUSE Linux Enterprise Server 15 SP3-BCL | kernel-source | Not affected |
SUSE Linux Enterprise Server 15-LTSS | kernel-default | Not affected |
SUSE Linux Enterprise Server 15-LTSS | kernel-source | Not affected |
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 | kernel-source | Not affected |
SUSE Linux Enterprise Server for SAP Applications 12 SP2 | kernel-source | Not affected |
SUSE Linux Enterprise Server for SAP Applications 12 SP3 | kernel-source | Not affected |
SUSE Linux Enterprise Server for SAP Applications 12 SP4 | kernel-default | Not affected |
SUSE Linux Enterprise Server for SAP Applications 12 SP4 | kernel-source | Not affected |
SUSE Linux Enterprise Server for SAP Applications 15 | kernel-source | Not affected |
SUSE Linux Enterprise Server for SAP Applications 15 SP1 | kernel-source | Not affected |
SUSE Linux Enterprise Workstation Extension 15 SP4 | kernel-default | Affected |
SUSE Manager Proxy 4.0 | kernel-source | Not affected |
SUSE Manager Proxy 4.1 | kernel-source | Not affected |
SUSE Manager Proxy 4.1 | kernel-source-azure | Not affected |
SUSE Manager Proxy 4.2 | kernel-source | Not affected |
SUSE Manager Proxy 4.2 | kernel-source-azure | Not affected |
SUSE Manager Retail Branch Server 4.0 | kernel-source | Not affected |
SUSE Manager Retail Branch Server 4.1 | kernel-source | Not affected |
SUSE Manager Retail Branch Server 4.1 | kernel-source-azure | Not affected |
SUSE Manager Retail Branch Server 4.2 | kernel-source | Not affected |
SUSE Manager Retail Branch Server 4.2 | kernel-source-azure | Not affected |
SUSE Manager Server 4.0 | kernel-source | Not affected |
SUSE Manager Server 4.1 | kernel-source | Not affected |
SUSE Manager Server 4.1 | kernel-source-azure | Not affected |
SUSE Manager Server 4.2 | kernel-source | Not affected |
SUSE Manager Server 4.2 | kernel-source-azure | Not affected |
SUSE OpenStack Cloud 7 | kernel-source | Not affected |
SUSE OpenStack Cloud 8 | kernel-source | Not affected |
SUSE OpenStack Cloud 9 | kernel-default | Not affected |
SUSE OpenStack Cloud 9 | kernel-source | Not affected |
SUSE OpenStack Cloud Crowbar 8 | kernel-source | Not affected |
SUSE OpenStack Cloud Crowbar 9 | kernel-default | Not affected |
SUSE OpenStack Cloud Crowbar 9 | kernel-source | Not affected |
SUSE Real Time Module 15 SP3 | kernel-source-rt | Not affected |
SUSE Real Time Module 15 SP4 | kernel-rt | Affected |
SUSE Real Time Module 15 SP4 | kernel-rt_debug | Affected |
SUSE Real Time Module 15 SP4 | kernel-source-rt | Affected |
SUSE Real Time Module 15 SP4 | kernel-syms-rt | Affected |
openSUSE Leap 15.4 | dtb-aarch64 | Released |
openSUSE Leap 15.4 | dtb-armv7l | Released |
openSUSE Leap 15.4 | kernel-64kb | Released |
openSUSE Leap 15.4 | kernel-debug | Released |
openSUSE Leap 15.4 | kernel-default | Released |
openSUSE Leap 15.4 | kernel-docs | Released |
openSUSE Leap 15.4 | kernel-kvmsmall | Released |
openSUSE Leap 15.4 | kernel-lpae | Released |
openSUSE Leap 15.4 | kernel-obs-build | Released |
openSUSE Leap 15.4 | kernel-obs-qa | Released |
openSUSE Leap 15.4 | kernel-source | Released |
openSUSE Leap 15.4 | kernel-syms | Released |
openSUSE Leap 15.4 | kernel-zfcpdump | Released |
openSUSE Leap Micro 5.3 | kernel-default | Released |
openSUSE Leap Micro 5.3 | kernel-rt | Released |
Container Status | ||
suse/sle-micro-rancher/5.3 suse/sle-micro-rancher/5.4 | kernel-default | Released |
suse/hpc/warewulf4-x86_64/sle-hpc-node | kernel-default | In progress |
suse/sles/15.4/libguestfs-tools:0.49.0 suse/sles/15.5/libguestfs-tools:0.58.0 | kernel-kvmsmall | In progress |
rancher/elemental-teal-rt/5.3 rancher/elemental-teal-rt/5.4 | kernel-rt | In progress |
bci/bci-sle15-kernel-module-devel | kernel-syms | Released |
SUSE Timeline for this CVE
CVE page created: Thu Apr 4 12:00:14 2024CVE page last modified: Sun Jun 16 11:55:38 2024