Upstream information

CVE-2024-47715 at MITRE

Description

In the Linux kernel, the following vulnerability has been resolved:

wifi: mt76: mt7915: fix oops on non-dbdc mt7986

mt7915_band_config() sets band_idx = 1 on the main phy for mt7986
with MT7975_ONE_ADIE or MT7976_ONE_ADIE.

Commit 0335c034e726 ("wifi: mt76: fix race condition related to
checking tx queue fill status") introduced a dereference of the
phys array indirectly indexed by band_idx via wcid->phy_idx in
mt76_wcid_cleanup(). This caused the following Oops on affected
mt7986 devices:

Unable to handle kernel read from unreadable memory at virtual address 0000000000000024
Mem abort info:
ESR = 0x0000000096000005
EC = 0x25: DABT (current EL), IL = 32 bits
SET = 0, FnV = 0
EA = 0, S1PTW = 0
FSC = 0x05: level 1 translation fault
Data abort info:
ISV = 0, ISS = 0x00000005
CM = 0, WnR = 0
user pgtable: 4k pages, 39-bit VAs, pgdp=0000000042545000
[0000000000000024] pgd=0000000000000000, p4d=0000000000000000, pud=0000000000000000
Internal error: Oops: 0000000096000005 [#1] SMP
Modules linked in: ... mt7915e mt76_connac_lib mt76 mac80211 cfg80211 ...
CPU: 2 PID: 1631 Comm: hostapd Not tainted 5.15.150 #0
Hardware name: ZyXEL EX5700 (Telenor) (DT)
pstate: 80400005 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : mt76_wcid_cleanup+0x84/0x22c [mt76]
lr : mt76_wcid_cleanup+0x64/0x22c [mt76]
sp : ffffffc00a803700
x29: ffffffc00a803700 x28: ffffff80008f7300 x27: ffffff80003f3c00
x26: ffffff80000a7880 x25: ffffffc008c26e00 x24: 0000000000000001
x23: ffffffc000a68114 x22: 0000000000000000 x21: ffffff8004172cc8
x20: ffffffc00a803748 x19: ffffff8004152020 x18: 0000000000000000
x17: 00000000000017c0 x16: ffffffc008ef5000 x15: 0000000000000be0
x14: ffffff8004172e28 x13: ffffff8004172e28 x12: 0000000000000000
x11: 0000000000000000 x10: ffffff8004172e30 x9 : ffffff8004172e28
x8 : 0000000000000000 x7 : ffffff8004156020 x6 : 0000000000000000
x5 : 0000000000000031 x4 : 0000000000000000 x3 : 0000000000000001
x2 : 0000000000000000 x1 : ffffff80008f7300 x0 : 0000000000000024
Call trace:
mt76_wcid_cleanup+0x84/0x22c [mt76]
__mt76_sta_remove+0x70/0xbc [mt76]
mt76_sta_state+0x8c/0x1a4 [mt76]
mt7915_eeprom_get_power_delta+0x11e4/0x23a0 [mt7915e]
drv_sta_state+0x144/0x274 [mac80211]
sta_info_move_state+0x1cc/0x2a4 [mac80211]
sta_set_sinfo+0xaf8/0xc24 [mac80211]
sta_info_destroy_addr_bss+0x4c/0x6c [mac80211]

ieee80211_color_change_finish+0x1c08/0x1e70 [mac80211]
cfg80211_check_station_change+0x1360/0x4710 [cfg80211]
genl_family_rcv_msg_doit+0xb4/0x110
genl_rcv_msg+0xd0/0x1bc
netlink_rcv_skb+0x58/0x120
genl_rcv+0x34/0x50
netlink_unicast+0x1f0/0x2ec
netlink_sendmsg+0x198/0x3d0
____sys_sendmsg+0x1b0/0x210
___sys_sendmsg+0x80/0xf0
__sys_sendmsg+0x44/0xa0
__arm64_sys_sendmsg+0x20/0x30
invoke_syscall.constprop.0+0x4c/0xe0
do_el0_svc+0x40/0xd0
el0_svc+0x14/0x4c
el0t_64_sync_handler+0x100/0x110
el0t_64_sync+0x15c/0x160
Code: d2800002 910092c0 52800023 f9800011 (885f7c01)
---[ end trace 7e42dd9a39ed2281 ]---

Fix by using mt76_dev_phy() which will map band_idx to the correct phy
for all hardware combinations.

SUSE information

Overall state of this security issue: Resolved

This issue is currently rated as having important severity.

CVSS v3 Scores
  National Vulnerability Database SUSE
Base Score 5.5 6.5
Vector CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local Adjacent Network
Attack Complexity Low Low
Privileges Required Low None
User Interaction None None
Scope Unchanged Unchanged
Confidentiality Impact None None
Integrity Impact None None
Availability Impact High High
CVSSv3 Version 3.1 3.1
CVSS v4 Scores
  SUSE
Base Score 7.1
Vector CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
Attack Vector Adjacent Network
Attack Complexity Low
Attack Requirements None
Privileges Required None
User Interaction None
Vulnerable System Confidentiality Impact None
Vulnerable System Integrity Impact None
Vulnerable System Availability Impact High
Subsequent System Confidentiality Impact None
Subsequent System Integrity Impact None
Subsequent System Availability Impact None
CVSSv4 Version 4.0

Note from the SUSE Security Team on the kernel-default package

SUSE will no longer fix all CVEs in the Linux Kernel anymore, but declare some bug classes as won't fix. Please refer to TID 21496 for more details.

SUSE Bugzilla entry: 1231860 [RESOLVED / FIXED]

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
SUSE Linux Enterprise High Performance Computing 15 SP6
SUSE Linux Enterprise Module for Public Cloud 15 SP6
SUSE Linux Enterprise Server 15 SP6
SUSE Linux Enterprise Server for SAP Applications 15 SP6
  • kernel-azure >= 6.4.0-150600.8.17.2
  • kernel-azure-devel >= 6.4.0-150600.8.17.2
  • kernel-devel-azure >= 6.4.0-150600.8.17.1
  • kernel-source-azure >= 6.4.0-150600.8.17.1
  • kernel-syms-azure >= 6.4.0-150600.8.17.1
Patchnames:
SUSE-SLE-Module-Public-Cloud-15-SP6-2024-3984
SUSE Linux Enterprise Live Patching 15 SP6
    Patchnames:
    SUSE-SLE-Module-Live-Patching-15-SP6-2024-3986
    SUSE Linux Enterprise Real Time 15 SP6
    SUSE Real Time Module 15 SP6
    • cluster-md-kmp-rt >= 6.4.0-150600.10.17.1
    • dlm-kmp-rt >= 6.4.0-150600.10.17.1
    • gfs2-kmp-rt >= 6.4.0-150600.10.17.1
    • kernel-devel-rt >= 6.4.0-150600.10.17.1
    • kernel-rt >= 6.4.0-150600.10.17.1
    • kernel-rt-devel >= 6.4.0-150600.10.17.1
    • kernel-rt_debug >= 6.4.0-150600.10.17.1
    • kernel-rt_debug-devel >= 6.4.0-150600.10.17.1
    • kernel-source-rt >= 6.4.0-150600.10.17.1
    • kernel-syms-rt >= 6.4.0-150600.10.17.1
    • ocfs2-kmp-rt >= 6.4.0-150600.10.17.1
    Patchnames:
    SUSE-SLE-Module-RT-15-SP6-2024-3986
    openSUSE Leap 15.6
    • cluster-md-kmp-azure >= 6.4.0-150600.8.17.2
    • cluster-md-kmp-rt >= 6.4.0-150600.10.17.1
    • dlm-kmp-azure >= 6.4.0-150600.8.17.2
    • dlm-kmp-rt >= 6.4.0-150600.10.17.1
    • gfs2-kmp-azure >= 6.4.0-150600.8.17.2
    • gfs2-kmp-rt >= 6.4.0-150600.10.17.1
    • kernel-azure >= 6.4.0-150600.8.17.2
    • kernel-azure-devel >= 6.4.0-150600.8.17.2
    • kernel-azure-extra >= 6.4.0-150600.8.17.2
    • kernel-azure-livepatch-devel >= 6.4.0-150600.8.17.2
    • kernel-azure-optional >= 6.4.0-150600.8.17.2
    • kernel-azure-vdso >= 6.4.0-150600.8.17.2
    • kernel-devel-azure >= 6.4.0-150600.8.17.1
    • kernel-devel-rt >= 6.4.0-150600.10.17.1
    • kernel-rt >= 6.4.0-150600.10.17.1
    • kernel-rt-devel >= 6.4.0-150600.10.17.1
    • kernel-rt-extra >= 6.4.0-150600.10.17.1
    • kernel-rt-livepatch-devel >= 6.4.0-150600.10.17.1
    • kernel-rt-optional >= 6.4.0-150600.10.17.1
    • kernel-rt-vdso >= 6.4.0-150600.10.17.1
    • kernel-rt_debug >= 6.4.0-150600.10.17.1
    • kernel-rt_debug-devel >= 6.4.0-150600.10.17.1
    • kernel-rt_debug-livepatch-devel >= 6.4.0-150600.10.17.1
    • kernel-rt_debug-vdso >= 6.4.0-150600.10.17.1
    • kernel-source-azure >= 6.4.0-150600.8.17.1
    • kernel-source-rt >= 6.4.0-150600.10.17.1
    • kernel-syms-azure >= 6.4.0-150600.8.17.1
    • kernel-syms-rt >= 6.4.0-150600.10.17.1
    • kselftests-kmp-azure >= 6.4.0-150600.8.17.2
    • kselftests-kmp-rt >= 6.4.0-150600.10.17.1
    • ocfs2-kmp-azure >= 6.4.0-150600.8.17.2
    • ocfs2-kmp-rt >= 6.4.0-150600.10.17.1
    • reiserfs-kmp-azure >= 6.4.0-150600.8.17.2
    • reiserfs-kmp-rt >= 6.4.0-150600.10.17.1
    Patchnames:
    openSUSE-SLE-15.6-2024-3984
    openSUSE-SLE-15.6-2024-3986

    List of packages in QA

    Product(s) Package(s)
    SUSE Linux Enterprise High Availability Extension 15 SP6
    • cluster-md-kmp-default >= 6.4.0-150600.23.28.1
    • dlm-kmp-default >= 6.4.0-150600.23.28.1
    • gfs2-kmp-default >= 6.4.0-150600.23.28.1
    • ocfs2-kmp-default >= 6.4.0-150600.23.28.1
    SUSE Linux Enterprise Live Patching 15 SP6
    • kernel-default-livepatch >= 6.4.0-150600.23.28.1
    • kernel-default-livepatch-devel >= 6.4.0-150600.23.28.1
    • kernel-livepatch-6_4_0-150600_23_28-default >= 1-150600.13.3.1
    SUSE Linux Enterprise Module for Basesystem 15 SP6
    • kernel-64kb >= 6.4.0-150600.23.28.1
    • kernel-64kb-devel >= 6.4.0-150600.23.28.1
    • kernel-default >= 6.4.0-150600.23.28.1
    • kernel-default-base >= 6.4.0-150600.23.28.1.150600.12.12.2
    • kernel-default-devel >= 6.4.0-150600.23.28.1
    • kernel-devel >= 6.4.0-150600.23.28.1
    • kernel-macros >= 6.4.0-150600.23.28.1
    • kernel-zfcpdump >= 6.4.0-150600.23.28.1
    SUSE Linux Enterprise Server 15 SP6
    • kernel-64kb >= 6.4.0-150600.23.28.1
    • kernel-64kb-devel >= 6.4.0-150600.23.28.1
    • kernel-default >= 6.4.0-150600.23.28.1
    • kernel-default-base >= 6.4.0-150600.23.28.1.150600.12.12.2
    • kernel-default-devel >= 6.4.0-150600.23.28.1
    • kernel-devel >= 6.4.0-150600.23.28.1
    • kernel-macros >= 6.4.0-150600.23.28.1
    • kernel-zfcpdump >= 6.4.0-150600.23.28.1
    SUSE Linux Enterprise Desktop 15 SP6
    • kernel-64kb >= 6.4.0-150600.23.28.1
    • kernel-64kb-devel >= 6.4.0-150600.23.28.1
    • kernel-default >= 6.4.0-150600.23.28.1
    • kernel-default-base >= 6.4.0-150600.23.28.1.150600.12.12.2
    • kernel-default-devel >= 6.4.0-150600.23.28.1
    • kernel-devel >= 6.4.0-150600.23.28.1
    • kernel-macros >= 6.4.0-150600.23.28.1
    • kernel-zfcpdump >= 6.4.0-150600.23.28.1
    SUSE Linux Enterprise Server for SAP Applications 15 SP6
    • kernel-64kb >= 6.4.0-150600.23.28.1
    • kernel-64kb-devel >= 6.4.0-150600.23.28.1
    • kernel-default >= 6.4.0-150600.23.28.1
    • kernel-default-base >= 6.4.0-150600.23.28.1.150600.12.12.2
    • kernel-default-devel >= 6.4.0-150600.23.28.1
    • kernel-devel >= 6.4.0-150600.23.28.1
    • kernel-macros >= 6.4.0-150600.23.28.1
    • kernel-zfcpdump >= 6.4.0-150600.23.28.1
    SUSE Linux Enterprise High Performance Computing 15 SP6
    • kernel-64kb >= 6.4.0-150600.23.28.1
    • kernel-64kb-devel >= 6.4.0-150600.23.28.1
    • kernel-default >= 6.4.0-150600.23.28.1
    • kernel-default-base >= 6.4.0-150600.23.28.1.150600.12.12.2
    • kernel-default-devel >= 6.4.0-150600.23.28.1
    • kernel-devel >= 6.4.0-150600.23.28.1
    • kernel-macros >= 6.4.0-150600.23.28.1
    • kernel-zfcpdump >= 6.4.0-150600.23.28.1
    SUSE Linux Enterprise Module for Development Tools 15 SP6
    • kernel-docs >= 6.4.0-150600.23.28.1
    • kernel-obs-build >= 6.4.0-150600.23.28.1
    • kernel-source >= 6.4.0-150600.23.28.1
    • kernel-syms >= 6.4.0-150600.23.28.1
    SUSE Linux Enterprise Server 15 SP6
    • kernel-docs >= 6.4.0-150600.23.28.1
    • kernel-obs-build >= 6.4.0-150600.23.28.1
    • kernel-source >= 6.4.0-150600.23.28.1
    • kernel-syms >= 6.4.0-150600.23.28.1
    SUSE Linux Enterprise Desktop 15 SP6
    • kernel-docs >= 6.4.0-150600.23.28.1
    • kernel-obs-build >= 6.4.0-150600.23.28.1
    • kernel-source >= 6.4.0-150600.23.28.1
    • kernel-syms >= 6.4.0-150600.23.28.1
    SUSE Linux Enterprise Server for SAP Applications 15 SP6
    • kernel-docs >= 6.4.0-150600.23.28.1
    • kernel-obs-build >= 6.4.0-150600.23.28.1
    • kernel-source >= 6.4.0-150600.23.28.1
    • kernel-syms >= 6.4.0-150600.23.28.1
    SUSE Linux Enterprise High Performance Computing 15 SP6
    • kernel-docs >= 6.4.0-150600.23.28.1
    • kernel-obs-build >= 6.4.0-150600.23.28.1
    • kernel-source >= 6.4.0-150600.23.28.1
    • kernel-syms >= 6.4.0-150600.23.28.1
    SUSE Linux Enterprise Module for Legacy 15 SP6
    • reiserfs-kmp-default >= 6.4.0-150600.23.28.1
    SUSE Linux Enterprise Server 15 SP6
    • reiserfs-kmp-default >= 6.4.0-150600.23.28.1
    SUSE Linux Enterprise Server for SAP Applications 15 SP6
    • reiserfs-kmp-default >= 6.4.0-150600.23.28.1
    SUSE Linux Enterprise High Performance Computing 15 SP6
    • reiserfs-kmp-default >= 6.4.0-150600.23.28.1
    SUSE Linux Enterprise Workstation Extension 15 SP6
    • kernel-default-extra >= 6.4.0-150600.23.28.1
    SUSE Linux Enterprise Server 15 SP6
    • kernel-default-extra >= 6.4.0-150600.23.28.1
    SUSE Linux Enterprise Server for SAP Applications 15 SP6
    • kernel-default-extra >= 6.4.0-150600.23.28.1
    SUSE Linux Enterprise Desktop 15 SP6
    • kernel-default-extra >= 6.4.0-150600.23.28.1


    Status of this issue by product and package

    Please note that this evaluation state might be work in progress, incomplete or outdated. Also information for service packs in the LTSS phase is only included for issues meeting the LTSS criteria. If in doubt, feel free to contact us for clarification. The updates are grouped by state of their lifecycle. SUSE product lifecycles are documented on the lifecycle page.

    Product(s) Source package State
    Products under general support and receiving all security fixes.
    SUSE Linux Enterprise Desktop 15 SP5 kernel-default Not affected
    SUSE Linux Enterprise Desktop 15 SP5 kernel-source Not affected
    SUSE Linux Enterprise Desktop 15 SP6 kernel-64kb In progress
    SUSE Linux Enterprise Desktop 15 SP6 kernel-default In progress
    SUSE Linux Enterprise Desktop 15 SP6 kernel-default-base In progress
    SUSE Linux Enterprise Desktop 15 SP6 kernel-docs In progress
    SUSE Linux Enterprise Desktop 15 SP6 kernel-obs-build In progress
    SUSE Linux Enterprise Desktop 15 SP6 kernel-source In progress
    SUSE Linux Enterprise Desktop 15 SP6 kernel-syms In progress
    SUSE Linux Enterprise Desktop 15 SP6 kernel-zfcpdump In progress
    SUSE Linux Enterprise High Availability Extension 15 SP6 kernel-default In progress
    SUSE Linux Enterprise High Performance Computing 12 kernel-default Not affected
    SUSE Linux Enterprise High Performance Computing 12 kernel-source Not affected
    SUSE Linux Enterprise High Performance Computing 15 SP5 kernel-default Not affected
    SUSE Linux Enterprise High Performance Computing 15 SP5 kernel-source Not affected
    SUSE Linux Enterprise High Performance Computing 15 SP5 kernel-source-azure Not affected
    SUSE Linux Enterprise High Performance Computing 15 SP6 kernel-64kb In progress
    SUSE Linux Enterprise High Performance Computing 15 SP6 kernel-azure Released
    SUSE Linux Enterprise High Performance Computing 15 SP6 kernel-default In progress
    SUSE Linux Enterprise High Performance Computing 15 SP6 kernel-default-base In progress
    SUSE Linux Enterprise High Performance Computing 15 SP6 kernel-docs In progress
    SUSE Linux Enterprise High Performance Computing 15 SP6 kernel-obs-build In progress
    SUSE Linux Enterprise High Performance Computing 15 SP6 kernel-source In progress
    SUSE Linux Enterprise High Performance Computing 15 SP6 kernel-source-azure Released
    SUSE Linux Enterprise High Performance Computing 15 SP6 kernel-syms In progress
    SUSE Linux Enterprise High Performance Computing 15 SP6 kernel-syms-azure Released
    SUSE Linux Enterprise High Performance Computing 15 SP6 kernel-zfcpdump In progress
    SUSE Linux Enterprise Live Patching 15 SP5 kernel-default Not affected
    SUSE Linux Enterprise Live Patching 15 SP5 kernel-source Not affected
    SUSE Linux Enterprise Live Patching 15 SP6 kernel-default In progress
    SUSE Linux Enterprise Live Patching 15 SP6 kernel-livepatch-SLE15-SP6-RT_Update_5 Released
    SUSE Linux Enterprise Live Patching 15 SP6 kernel-livepatch-SLE15-SP6_Update_6 In progress
    SUSE Linux Enterprise Live Patching 15 SP6 kernel-source Already fixed
    SUSE Linux Enterprise Micro 5.1 kernel-default Not affected
    SUSE Linux Enterprise Micro 5.1 kernel-rt Not affected
    SUSE Linux Enterprise Micro 5.1 kernel-source Not affected
    SUSE Linux Enterprise Micro 5.1 kernel-source-rt Not affected
    SUSE Linux Enterprise Micro 5.2 kernel-default Not affected
    SUSE Linux Enterprise Micro 5.2 kernel-rt Not affected
    SUSE Linux Enterprise Micro 5.2 kernel-source Not affected
    SUSE Linux Enterprise Micro 5.2 kernel-source-rt Not affected
    SUSE Linux Enterprise Micro 5.3 kernel-default Not affected
    SUSE Linux Enterprise Micro 5.3 kernel-rt Not affected
    SUSE Linux Enterprise Micro 5.3 kernel-source Not affected
    SUSE Linux Enterprise Micro 5.3 kernel-source-rt Not affected
    SUSE Linux Enterprise Micro 5.4 kernel-default Not affected
    SUSE Linux Enterprise Micro 5.4 kernel-rt Not affected
    SUSE Linux Enterprise Micro 5.4 kernel-source Not affected
    SUSE Linux Enterprise Micro 5.4 kernel-source-rt Not affected
    SUSE Linux Enterprise Micro 5.5 kernel-default Not affected
    SUSE Linux Enterprise Micro 5.5 kernel-source Not affected
    SUSE Linux Enterprise Micro 5.5 kernel-source-rt Not affected
    SUSE Linux Enterprise Micro 6.0 kernel-default Already fixed
    SUSE Linux Enterprise Micro 6.0 kernel-source Already fixed
    SUSE Linux Enterprise Micro 6.0 kernel-source-rt Already fixed
    SUSE Linux Enterprise Module for Basesystem 15 SP5 kernel-default Not affected
    SUSE Linux Enterprise Module for Basesystem 15 SP5 kernel-source Not affected
    SUSE Linux Enterprise Module for Basesystem 15 SP6 kernel-64kb In progress
    SUSE Linux Enterprise Module for Basesystem 15 SP6 kernel-default In progress
    SUSE Linux Enterprise Module for Basesystem 15 SP6 kernel-default-base In progress
    SUSE Linux Enterprise Module for Basesystem 15 SP6 kernel-source In progress
    SUSE Linux Enterprise Module for Basesystem 15 SP6 kernel-zfcpdump In progress
    SUSE Linux Enterprise Module for Development Tools 15 SP5 kernel-default Not affected
    SUSE Linux Enterprise Module for Development Tools 15 SP5 kernel-source Not affected
    SUSE Linux Enterprise Module for Development Tools 15 SP6 kernel-default Already fixed
    SUSE Linux Enterprise Module for Development Tools 15 SP6 kernel-docs In progress
    SUSE Linux Enterprise Module for Development Tools 15 SP6 kernel-obs-build In progress
    SUSE Linux Enterprise Module for Development Tools 15 SP6 kernel-source In progress
    SUSE Linux Enterprise Module for Development Tools 15 SP6 kernel-syms In progress
    SUSE Linux Enterprise Module for Legacy 15 SP6 kernel-default In progress
    SUSE Linux Enterprise Module for Public Cloud 15 SP5 kernel-source-azure Not affected
    SUSE Linux Enterprise Module for Public Cloud 15 SP6 kernel-azure Released
    SUSE Linux Enterprise Module for Public Cloud 15 SP6 kernel-source-azure Released
    SUSE Linux Enterprise Module for Public Cloud 15 SP6 kernel-syms-azure Released
    SUSE Linux Enterprise Real Time 15 SP5 kernel-source-rt Not affected
    SUSE Linux Enterprise Real Time 15 SP6 kernel-rt Released
    SUSE Linux Enterprise Real Time 15 SP6 kernel-rt_debug Released
    SUSE Linux Enterprise Real Time 15 SP6 kernel-source-rt Released
    SUSE Linux Enterprise Real Time 15 SP6 kernel-syms-rt Released
    SUSE Linux Enterprise Server 15 SP5 kernel-default Not affected
    SUSE Linux Enterprise Server 15 SP5 kernel-source Not affected
    SUSE Linux Enterprise Server 15 SP5 kernel-source-azure Not affected
    SUSE Linux Enterprise Server 15 SP6 kernel-64kb In progress
    SUSE Linux Enterprise Server 15 SP6 kernel-azure Released
    SUSE Linux Enterprise Server 15 SP6 kernel-default In progress
    SUSE Linux Enterprise Server 15 SP6 kernel-default-base In progress
    SUSE Linux Enterprise Server 15 SP6 kernel-docs In progress
    SUSE Linux Enterprise Server 15 SP6 kernel-obs-build In progress
    SUSE Linux Enterprise Server 15 SP6 kernel-source In progress
    SUSE Linux Enterprise Server 15 SP6 kernel-source-azure Released
    SUSE Linux Enterprise Server 15 SP6 kernel-syms In progress
    SUSE Linux Enterprise Server 15 SP6 kernel-syms-azure Released
    SUSE Linux Enterprise Server 15 SP6 kernel-zfcpdump In progress
    SUSE Linux Enterprise Server for SAP Applications 15 SP5 kernel-default Not affected
    SUSE Linux Enterprise Server for SAP Applications 15 SP5 kernel-source Not affected
    SUSE Linux Enterprise Server for SAP Applications 15 SP5 kernel-source-azure Not affected
    SUSE Linux Enterprise Server for SAP Applications 15 SP6 kernel-64kb In progress
    SUSE Linux Enterprise Server for SAP Applications 15 SP6 kernel-azure Released
    SUSE Linux Enterprise Server for SAP Applications 15 SP6 kernel-default In progress
    SUSE Linux Enterprise Server for SAP Applications 15 SP6 kernel-default-base In progress
    SUSE Linux Enterprise Server for SAP Applications 15 SP6 kernel-docs In progress
    SUSE Linux Enterprise Server for SAP Applications 15 SP6 kernel-obs-build In progress
    SUSE Linux Enterprise Server for SAP Applications 15 SP6 kernel-source In progress
    SUSE Linux Enterprise Server for SAP Applications 15 SP6 kernel-source-azure Released
    SUSE Linux Enterprise Server for SAP Applications 15 SP6 kernel-syms In progress
    SUSE Linux Enterprise Server for SAP Applications 15 SP6 kernel-syms-azure Released
    SUSE Linux Enterprise Server for SAP Applications 15 SP6 kernel-zfcpdump In progress
    SUSE Linux Enterprise Workstation Extension 15 SP6 kernel-default In progress
    SUSE Manager Proxy 4.3 kernel-default Not affected
    SUSE Manager Proxy 4.3 kernel-source Not affected
    SUSE Manager Retail Branch Server 4.3 kernel-default Not affected
    SUSE Manager Retail Branch Server 4.3 kernel-source Not affected
    SUSE Manager Server 4.3 kernel-default Not affected
    SUSE Manager Server 4.3 kernel-source Not affected
    SUSE Real Time Module 15 SP5 kernel-source-rt Not affected
    SUSE Real Time Module 15 SP6 kernel-rt Released
    SUSE Real Time Module 15 SP6 kernel-rt_debug Released
    SUSE Real Time Module 15 SP6 kernel-source-rt Released
    SUSE Real Time Module 15 SP6 kernel-syms-rt Released
    openSUSE Leap 15.5 kernel-default Not affected
    openSUSE Leap 15.5 kernel-source Not affected
    openSUSE Leap 15.5 kernel-source-azure Not affected
    openSUSE Leap 15.5 kernel-source-rt Not affected
    openSUSE Leap 15.6 kernel-azure Released
    openSUSE Leap 15.6 kernel-default Not affected
    openSUSE Leap 15.6 kernel-rt Released
    openSUSE Leap 15.6 kernel-rt_debug Released
    openSUSE Leap 15.6 kernel-source Not affected
    openSUSE Leap 15.6 kernel-source-azure Released
    openSUSE Leap 15.6 kernel-source-rt Released
    openSUSE Leap 15.6 kernel-syms-azure Released
    openSUSE Leap 15.6 kernel-syms-rt Released
    Products under Long Term Service Pack support and receiving important and critical security fixes.
    SUSE Linux Enterprise Desktop 15 SP4 kernel-source Not affected
    SUSE Linux Enterprise High Availability Extension 12 SP5 kernel-default Not affected
    SUSE Linux Enterprise High Availability Extension 12 SP5 kernel-source Not affected
    SUSE Linux Enterprise High Performance Computing 12 SP5 kernel-default Not affected
    SUSE Linux Enterprise High Performance Computing 12 SP5 kernel-source Not affected
    SUSE Linux Enterprise High Performance Computing 12 SP5 kernel-source-azure Not affected
    SUSE Linux Enterprise High Performance Computing 15 SP2 kernel-source Not affected
    SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS kernel-source Not affected
    SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS kernel-default Not affected
    SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS kernel-source Not affected
    SUSE Linux Enterprise High Performance Computing 15 SP3 kernel-source Not affected
    SUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS kernel-source Not affected
    SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS kernel-default Not affected
    SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS kernel-source Not affected
    SUSE Linux Enterprise High Performance Computing 15 SP4 kernel-source Not affected
    SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS kernel-default Not affected
    SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS kernel-source Not affected
    SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS kernel-default Not affected
    SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS kernel-source Not affected
    SUSE Linux Enterprise Live Patching 12 SP5 kernel-default Not affected
    SUSE Linux Enterprise Live Patching 12 SP5 kernel-source Not affected
    SUSE Linux Enterprise Live Patching 15 SP2 kernel-default Not affected
    SUSE Linux Enterprise Live Patching 15 SP2 kernel-source Not affected
    SUSE Linux Enterprise Live Patching 15 SP3 kernel-default Not affected
    SUSE Linux Enterprise Live Patching 15 SP3 kernel-source Not affected
    SUSE Linux Enterprise Live Patching 15 SP4 kernel-default Not affected
    SUSE Linux Enterprise Live Patching 15 SP4 kernel-source Not affected
    SUSE Linux Enterprise Module for Basesystem 15 SP2 kernel-source Not affected
    SUSE Linux Enterprise Module for Basesystem 15 SP3 kernel-source Not affected
    SUSE Linux Enterprise Module for Basesystem 15 SP4 kernel-source Not affected
    SUSE Linux Enterprise Module for Development Tools 15 SP2 kernel-source Not affected
    SUSE Linux Enterprise Module for Development Tools 15 SP3 kernel-source Not affected
    SUSE Linux Enterprise Module for Development Tools 15 SP4 kernel-source Not affected
    SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE kernel-default Not affected
    SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE kernel-source Not affected
    SUSE Linux Enterprise Server 12 SP5 kernel-default Not affected
    SUSE Linux Enterprise Server 12 SP5 kernel-source Not affected
    SUSE Linux Enterprise Server 12 SP5 kernel-source-azure Not affected
    SUSE Linux Enterprise Server 12 SP5-LTSS kernel-default Not affected
    SUSE Linux Enterprise Server 12 SP5-LTSS kernel-source Not affected
    SUSE Linux Enterprise Server 12 SP5-LTSS kernel-source-azure Not affected
    SUSE Linux Enterprise Server 15 SP2 kernel-source Not affected
    SUSE Linux Enterprise Server 15 SP2-LTSS kernel-default Not affected
    SUSE Linux Enterprise Server 15 SP2-LTSS kernel-source Not affected
    SUSE Linux Enterprise Server 15 SP3 kernel-source Not affected
    SUSE Linux Enterprise Server 15 SP3-LTSS kernel-default Not affected
    SUSE Linux Enterprise Server 15 SP3-LTSS kernel-source Not affected
    SUSE Linux Enterprise Server 15 SP4 kernel-source Not affected
    SUSE Linux Enterprise Server 15 SP4-LTSS kernel-default Not affected
    SUSE Linux Enterprise Server 15 SP4-LTSS kernel-source Not affected
    SUSE Linux Enterprise Server for SAP Applications 12 SP5 kernel-default Not affected
    SUSE Linux Enterprise Server for SAP Applications 12 SP5 kernel-source Not affected
    SUSE Linux Enterprise Server for SAP Applications 12 SP5 kernel-source-azure Not affected
    SUSE Linux Enterprise Server for SAP Applications 15 SP2 kernel-default Not affected
    SUSE Linux Enterprise Server for SAP Applications 15 SP2 kernel-source Not affected
    SUSE Linux Enterprise Server for SAP Applications 15 SP3 kernel-default Not affected
    SUSE Linux Enterprise Server for SAP Applications 15 SP3 kernel-source Not affected
    SUSE Linux Enterprise Server for SAP Applications 15 SP4 kernel-default Not affected
    SUSE Linux Enterprise Server for SAP Applications 15 SP4 kernel-source Not affected
    Products past their end of life and not receiving proactive updates anymore.
    HPE Helion OpenStack 8 kernel-source Not affected
    SUSE CaaS Platform 4.0 kernel-source Not affected
    SUSE CaaS Platform Toolchain 3 kernel-source Not affected
    SUSE Enterprise Storage 6 kernel-source Not affected
    SUSE Enterprise Storage 7 kernel-source Not affected
    SUSE Enterprise Storage 7.1 kernel-source Not affected
    SUSE Linux Enterprise Desktop 11 SP4 kernel-source Not affected
    SUSE Linux Enterprise Desktop 12 SP1 kernel-source Not affected
    SUSE Linux Enterprise Desktop 12 SP2 kernel-source Not affected
    SUSE Linux Enterprise Desktop 12 SP3 kernel-source Not affected
    SUSE Linux Enterprise Desktop 12 SP4 kernel-source Not affected
    SUSE Linux Enterprise Desktop 15 kernel-source Not affected
    SUSE Linux Enterprise Desktop 15 SP1 kernel-source Not affected
    SUSE Linux Enterprise Desktop 15 SP2 kernel-source Not affected
    SUSE Linux Enterprise Desktop 15 SP3 kernel-source Not affected
    SUSE Linux Enterprise High Performance Computing 15 kernel-source Not affected
    SUSE Linux Enterprise High Performance Computing 15 SP1 kernel-source Not affected
    SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS kernel-source Not affected
    SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS kernel-source Not affected
    SUSE Linux Enterprise High Performance Computing 15-ESPOS kernel-source Not affected
    SUSE Linux Enterprise High Performance Computing 15-LTSS kernel-source Not affected
    SUSE Linux Enterprise Micro 5.0 kernel-default Not affected
    SUSE Linux Enterprise Module for Basesystem 15 kernel-source Not affected
    SUSE Linux Enterprise Module for Basesystem 15 SP1 kernel-source Not affected
    SUSE Linux Enterprise Module for Development Tools 15 kernel-source Not affected
    SUSE Linux Enterprise Module for Development Tools 15 SP1 kernel-source Not affected
    SUSE Linux Enterprise Module for Public Cloud 12 kernel-default Not affected
    SUSE Linux Enterprise Module for Public Cloud 12 kernel-source Not affected
    SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT kernel-source Not affected
    SUSE Linux Enterprise Real Time 12 SP5 kernel-source-rt Not affected
    SUSE Linux Enterprise Real Time 15 SP2 kernel-source Not affected
    SUSE Linux Enterprise Real Time 15 SP3 kernel-source Not affected
    SUSE Linux Enterprise Real Time 15 SP3 kernel-source-rt Not affected
    SUSE Linux Enterprise Real Time 15 SP4 kernel-source Not affected
    SUSE Linux Enterprise Real Time 15 SP4 kernel-source-rt Not affected
    SUSE Linux Enterprise Server 11 SP4 kernel-source Not affected
    SUSE Linux Enterprise Server 11 SP4 LTSS kernel-default Not affected
    SUSE Linux Enterprise Server 11 SP4 LTSS kernel-source Not affected
    SUSE Linux Enterprise Server 11 SP4-LTSS kernel-source Not affected
    SUSE Linux Enterprise Server 12 kernel-default Not affected
    SUSE Linux Enterprise Server 12 kernel-source Not affected
    SUSE Linux Enterprise Server 12 SP1 kernel-source Not affected
    SUSE Linux Enterprise Server 12 SP1-LTSS kernel-source Not affected
    SUSE Linux Enterprise Server 12 SP2 kernel-source Not affected
    SUSE Linux Enterprise Server 12 SP2-BCL kernel-source Not affected
    SUSE Linux Enterprise Server 12 SP2-ESPOS kernel-source Not affected
    SUSE Linux Enterprise Server 12 SP2-LTSS kernel-default Not affected
    SUSE Linux Enterprise Server 12 SP2-LTSS kernel-source Not affected
    SUSE Linux Enterprise Server 12 SP3 kernel-default Not affected
    SUSE Linux Enterprise Server 12 SP3 kernel-source Not affected
    SUSE Linux Enterprise Server 12 SP3-BCL kernel-source Not affected
    SUSE Linux Enterprise Server 12 SP3-ESPOS kernel-source Not affected
    SUSE Linux Enterprise Server 12 SP3-LTSS kernel-source Not affected
    SUSE Linux Enterprise Server 12 SP4 kernel-default Not affected
    SUSE Linux Enterprise Server 12 SP4 kernel-source Not affected
    SUSE Linux Enterprise Server 12 SP4-ESPOS kernel-source Not affected
    SUSE Linux Enterprise Server 12 SP4-LTSS kernel-default Not affected
    SUSE Linux Enterprise Server 12 SP4-LTSS kernel-source Not affected
    SUSE Linux Enterprise Server 15 kernel-source Not affected
    SUSE Linux Enterprise Server 15 SP1 kernel-source Not affected
    SUSE Linux Enterprise Server 15 SP1-BCL kernel-source Not affected
    SUSE Linux Enterprise Server 15 SP1-LTSS kernel-default Not affected
    SUSE Linux Enterprise Server 15 SP1-LTSS kernel-source Not affected
    SUSE Linux Enterprise Server 15 SP2-BCL kernel-source Not affected
    SUSE Linux Enterprise Server 15 SP3-BCL kernel-source Not affected
    SUSE Linux Enterprise Server 15-LTSS kernel-default Not affected
    SUSE Linux Enterprise Server 15-LTSS kernel-source Not affected
    SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 kernel-source Not affected
    SUSE Linux Enterprise Server for SAP Applications 12 kernel-default Not affected
    SUSE Linux Enterprise Server for SAP Applications 12 kernel-source Not affected
    SUSE Linux Enterprise Server for SAP Applications 12 SP1 kernel-source Not affected
    SUSE Linux Enterprise Server for SAP Applications 12 SP2 kernel-source Not affected
    SUSE Linux Enterprise Server for SAP Applications 12 SP3 kernel-default Not affected
    SUSE Linux Enterprise Server for SAP Applications 12 SP3 kernel-source Not affected
    SUSE Linux Enterprise Server for SAP Applications 12 SP4 kernel-default Not affected
    SUSE Linux Enterprise Server for SAP Applications 12 SP4 kernel-source Not affected
    SUSE Linux Enterprise Server for SAP Applications 15 kernel-source Not affected
    SUSE Linux Enterprise Server for SAP Applications 15 SP1 kernel-source Not affected
    SUSE Linux Enterprise Software Development Kit 12 SP5 kernel-default Not affected
    SUSE Linux Enterprise Software Development Kit 12 SP5 kernel-source Not affected
    SUSE Linux Enterprise Workstation Extension 12 SP5 kernel-default Not affected
    SUSE Linux Enterprise Workstation Extension 12 SP5 kernel-source Not affected
    SUSE Manager Proxy 4.0 kernel-source Not affected
    SUSE Manager Proxy 4.1 kernel-source Not affected
    SUSE Manager Proxy 4.2 kernel-source Not affected
    SUSE Manager Retail Branch Server 4.0 kernel-source Not affected
    SUSE Manager Retail Branch Server 4.1 kernel-source Not affected
    SUSE Manager Retail Branch Server 4.2 kernel-source Not affected
    SUSE Manager Server 4.0 kernel-source Not affected
    SUSE Manager Server 4.1 kernel-source Not affected
    SUSE Manager Server 4.2 kernel-source Not affected
    SUSE OpenStack Cloud 7 kernel-source Not affected
    SUSE OpenStack Cloud 8 kernel-source Not affected
    SUSE OpenStack Cloud 9 kernel-source Not affected
    SUSE OpenStack Cloud Crowbar 8 kernel-source Not affected
    SUSE OpenStack Cloud Crowbar 9 kernel-source Not affected
    SUSE Real Time Module 15 SP3 kernel-source-rt Not affected
    SUSE Real Time Module 15 SP4 kernel-source-rt Not affected
    openSUSE Leap 15.3 kernel-source Not affected
    openSUSE Leap 15.3 kernel-source-rt Not affected
    openSUSE Leap 15.4 kernel-source Not affected
    openSUSE Leap 15.4 kernel-source-azure Not affected
    openSUSE Leap 15.4 kernel-source-rt Not affected
    Products at an unknown state of their lifecycle.
    SUSE Linux Enterprise Server LTSS Extended Security 12-SP5 kernel-source Not affected
    SUSE Linux Enterprise Server LTSS Extended Security 12-SP5 kernel-source-azure Not affected


    SUSE Timeline for this CVE

    CVE page created: Mon Oct 21 16:04:11 2024
    CVE page last modified: Wed Nov 13 18:03:02 2024