English | Deutsch | Español
 
Inicial ▼
Página inicial Acerca Nuestro Contáctenos Privacidad Programas de Asociados Testimonios En la Prensa Listas de Correos Abuso Developer APIs
Bookkeeping
Online ▼
Home Free Trial FAQ
Open/Create Company File Accept an Invite Order/Renew
 
Auditorias ▼
Inicial Dedicada Avanzada Estándar Periódica Sin Riesgo Escritorio Básica Sello FAQ Resumen de Precio/Funciones Ordenar Nuevas Pruebas Todas las Pruebas Confidencialidad Búsqueda de Vulnerabilidad Ejecutar Auditoría Programador IP Permissions Auditorías Personalizadas Cola Recordatorio Sellos Informes Estilos de Informes
DNS
Administrado ▼
Acerca de DNS Ordenar/Renovar Preguntas Frecuentes AUP Dynamic DNS Clients
Configurar Dominios Dynamic DNS Update Password
Monitoreo
de Redes ▼
Enterprise Avanzado Estándarr Prueba Preguntas Frecuentes Resumen de Precio/Funciones Ordenar Muestras
Configure/Status Alert Profiles
Research
Reports ▼
Home FAQ Glossary Archive
 Iniciar sesión/Registrarse 
 
 Búsqueda de    
Vulnerabilidad   		     Buscar 324607 Descripciones CVE y
145615 Descripciones de Pruebas,
accesos 10,000+ referencias cruzadas.
Pruebas   CVE   Todos  

ID de Prueba:1.3.6.1.4.1.25623.1.1.18.2.2025.0856.1
Categoría:openSUSE Local Security Checks
Título:openSUSE Security Advisory (SUSE-SU-2025:0856-1)
Resumen:The remote host is missing an update for the 'the Linux Kernel' package(s) announced via the SUSE-SU-2025:0856-1 advisory.
Descripción:Summary:
The remote host is missing an update for the 'the Linux Kernel' package(s) announced via the SUSE-SU-2025:0856-1 advisory.

Vulnerability Insight:
The SUSE Linux Enterprise 15 SP6 kernel was updated to receive various security bugfixes.

The following security bugs were fixed:

- CVE-2024-26708: mptcp: fix inconsistent state on fastopen race (bsc#1222672).
- CVE-2024-40980: drop_monitor: replace spin_lock by raw_spin_lock (bsc#1227937).
- CVE-2024-44974: mptcp: pm: avoid possible UaF when selecting endp (bsc#1230235).
- CVE-2024-45009: mptcp: pm: only decrement add_addr_accepted for MPJ req (bsc#1230438).
- CVE-2024-45010: mptcp: pm: only mark 'subflow' endp as available (bsc#1230439).
- CVE-2024-50029: Bluetooth: hci_conn: Fix UAF in hci_enhanced_setup_sync (bsc#1231949).
- CVE-2024-50036: net: do not delay dst_entries_add() in dst_release() (bsc#1231912).
- CVE-2024-50085: mptcp: pm: fix UaF read in mptcp_pm_nl_rm_addr_or_subflow (bsc#1232508).
- CVE-2024-50142: xfrm: validate new SA's prefixlen using SA family when sel.family is unset (bsc#1233028).
- CVE-2024-50185: kABI fix for mptcp: handle consistently DSS corruption (bsc#1233109).
- CVE-2024-50294: rxrpc: Fix missing locking causing hanging calls (bsc#1233483).
- CVE-2024-53123: mptcp: error out earlier on disconnect (bsc#1234070).
- CVE-2024-53147: exfat: fix out-of-bounds access of directory entries (bsc#1234857).
- CVE-2024-53176: smb: During unmount, ensure all cached dir instances drop their dentry (bsc#1234894).
- CVE-2024-53177: smb: prevent use-after-free due to open_cached_dir error paths (bsc#1234896).
- CVE-2024-53178: smb: Do not leak cfid when reconnect races with open_cached_dir (bsc#1234895).
- CVE-2024-56568: iommu/arm-smmu: Defer probe of clients after smmu device bound (bsc#1235032).
- CVE-2024-56633: selftests/bpf: Add apply_bytes test to test_txmsg_redir_wait_sndmem in test_sockmap (bsc#1235485).
- CVE-2024-56647: net: Fix icmp host relookup triggering ip_rt_bug (bsc#1235435).
- CVE-2024-56720: bpf, sockmap: Several fixes to bpf_msg_pop_data (bsc#1235592).
- CVE-2024-57994: ptr_ring: do not block hard interrupts in ptr_ring_resize_multiple() (bsc#1237901).
- CVE-2025-21636: sctp: sysctl: plpmtud_probe_interval: avoid using current->nsproxy (bsc#1236113).
- CVE-2025-21637: sctp: sysctl: udp_port: avoid using current->nsproxy (bsc#1236114).
- CVE-2025-21638: sctp: sysctl: auth_enable: avoid using current->nsproxy (bsc#1236115).
- CVE-2025-21639: sctp: sysctl: rto_min/max: avoid using current->nsproxy (bsc#1236122).
- CVE-2025-21640: sctp: sysctl: cookie_hmac_alg: avoid using current->nsproxy (bsc#1236123).
- CVE-2025-21647: sched: sch_cake: add bounds checks to host bulk flow fairness counts (bsc#1236133).
- CVE-2025-21665: filemap: avoid truncating 64-bit offset to 32 bits (bsc#1236684).
- CVE-2025-21667: iomap: avoid avoid truncating 64-bit offset to 32 bits (bsc#1236681).
- CVE-2025-21668: pmdomain: imx8mp-blk-ctrl: add missing loop break condition (bsc#1236682).
- CVE-2025-21673: smb: client: fix double free of ... [Please see the references for more information on the vulnerabilities]

Affected Software/OS:
'the Linux Kernel' package(s) on openSUSE Leap 15.6.

Solution:
Please install the updated package(s).

CVSS Score:
6.8

CVSS Vector:
AV:L/AC:L/Au:S/C:C/I:C/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2023-52924
Common Vulnerability Exposure (CVE) ID: CVE-2023-52925
Common Vulnerability Exposure (CVE) ID: CVE-2024-26708
https://git.kernel.org/stable/c/337cebbd850f94147cee05252778f8f78b8c337f
https://git.kernel.org/stable/c/4bfe217e075d04e63c092df9d40c608e598c2ef2
https://git.kernel.org/stable/c/e158fb9679d15a2317ec13b4f6301bd26265df2f
Common Vulnerability Exposure (CVE) ID: CVE-2024-26810
https://git.kernel.org/stable/c/03505e3344b0576fd619416793a31eae9c5b73bf
https://git.kernel.org/stable/c/04a4a017b9ffd7b0f427b8c376688d14cb614651
https://git.kernel.org/stable/c/1e71b6449d55179170efc8dee8664510bb813b42
https://git.kernel.org/stable/c/3dd9be6cb55e0f47544e7cdda486413f7134e3b3
https://git.kernel.org/stable/c/3fe0ac10bd117df847c93408a9d428a453cd60e5
https://git.kernel.org/stable/c/6fe478d855b20ac1eb5da724afe16af5a2aaaa40
https://git.kernel.org/stable/c/810cd4bb53456d0503cc4e7934e063835152c1b7
https://git.kernel.org/stable/c/ec73e079729258a05452356cf6d098bf1504d5a6
Common Vulnerability Exposure (CVE) ID: CVE-2024-40980
Common Vulnerability Exposure (CVE) ID: CVE-2024-41055
Common Vulnerability Exposure (CVE) ID: CVE-2024-44974
Common Vulnerability Exposure (CVE) ID: CVE-2024-45009
Common Vulnerability Exposure (CVE) ID: CVE-2024-45010
Common Vulnerability Exposure (CVE) ID: CVE-2024-47701
Common Vulnerability Exposure (CVE) ID: CVE-2024-49884
Common Vulnerability Exposure (CVE) ID: CVE-2024-49950
Common Vulnerability Exposure (CVE) ID: CVE-2024-50029
Common Vulnerability Exposure (CVE) ID: CVE-2024-50036
Common Vulnerability Exposure (CVE) ID: CVE-2024-50073
Common Vulnerability Exposure (CVE) ID: CVE-2024-50085
Common Vulnerability Exposure (CVE) ID: CVE-2024-50115
Common Vulnerability Exposure (CVE) ID: CVE-2024-50142
Common Vulnerability Exposure (CVE) ID: CVE-2024-50185
Common Vulnerability Exposure (CVE) ID: CVE-2024-50294
Common Vulnerability Exposure (CVE) ID: CVE-2024-53123
Common Vulnerability Exposure (CVE) ID: CVE-2024-53147
Common Vulnerability Exposure (CVE) ID: CVE-2024-53173
Common Vulnerability Exposure (CVE) ID: CVE-2024-53176
Common Vulnerability Exposure (CVE) ID: CVE-2024-53177
Common Vulnerability Exposure (CVE) ID: CVE-2024-53178
Common Vulnerability Exposure (CVE) ID: CVE-2024-53226
Common Vulnerability Exposure (CVE) ID: CVE-2024-53239
Common Vulnerability Exposure (CVE) ID: CVE-2024-56539
Common Vulnerability Exposure (CVE) ID: CVE-2024-56548
Common Vulnerability Exposure (CVE) ID: CVE-2024-56568
Common Vulnerability Exposure (CVE) ID: CVE-2024-56579
Common Vulnerability Exposure (CVE) ID: CVE-2024-56605
Common Vulnerability Exposure (CVE) ID: CVE-2024-56633
Common Vulnerability Exposure (CVE) ID: CVE-2024-56647
Common Vulnerability Exposure (CVE) ID: CVE-2024-56720
Common Vulnerability Exposure (CVE) ID: CVE-2024-57889
Common Vulnerability Exposure (CVE) ID: CVE-2024-57948
Common Vulnerability Exposure (CVE) ID: CVE-2024-57994
Common Vulnerability Exposure (CVE) ID: CVE-2025-21636
Common Vulnerability Exposure (CVE) ID: CVE-2025-21637
Common Vulnerability Exposure (CVE) ID: CVE-2025-21638
Common Vulnerability Exposure (CVE) ID: CVE-2025-21639
Common Vulnerability Exposure (CVE) ID: CVE-2025-21640
Common Vulnerability Exposure (CVE) ID: CVE-2025-21647
Common Vulnerability Exposure (CVE) ID: CVE-2025-21665
Common Vulnerability Exposure (CVE) ID: CVE-2025-21667
Common Vulnerability Exposure (CVE) ID: CVE-2025-21668
Common Vulnerability Exposure (CVE) ID: CVE-2025-21673
Common Vulnerability Exposure (CVE) ID: CVE-2025-21680
Common Vulnerability Exposure (CVE) ID: CVE-2025-21681
Common Vulnerability Exposure (CVE) ID: CVE-2025-21684
Common Vulnerability Exposure (CVE) ID: CVE-2025-21687
Common Vulnerability Exposure (CVE) ID: CVE-2025-21688
Common Vulnerability Exposure (CVE) ID: CVE-2025-21689
Common Vulnerability Exposure (CVE) ID: CVE-2025-21690
Common Vulnerability Exposure (CVE) ID: CVE-2025-21692
Common Vulnerability Exposure (CVE) ID: CVE-2025-21697
Common Vulnerability Exposure (CVE) ID: CVE-2025-21699
Common Vulnerability Exposure (CVE) ID: CVE-2025-21700
Common Vulnerability Exposure (CVE) ID: CVE-2025-21705
Common Vulnerability Exposure (CVE) ID: CVE-2025-21715
Common Vulnerability Exposure (CVE) ID: CVE-2025-21716
Common Vulnerability Exposure (CVE) ID: CVE-2025-21719
Common Vulnerability Exposure (CVE) ID: CVE-2025-21724
Common Vulnerability Exposure (CVE) ID: CVE-2025-21725
Common Vulnerability Exposure (CVE) ID: CVE-2025-21728
Common Vulnerability Exposure (CVE) ID: CVE-2025-21767
Common Vulnerability Exposure (CVE) ID: CVE-2025-21790
Common Vulnerability Exposure (CVE) ID: CVE-2025-21795
Common Vulnerability Exposure (CVE) ID: CVE-2025-21799
Common Vulnerability Exposure (CVE) ID: CVE-2025-21802
CopyrightCopyright (C) 2025 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.

Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.



© 1998-2025 E-Soft Inc. Todos los derechos reservados.