English | Deutsch | Español
 
Home ▼
Home About Us Contact Us Privacy Partner Programs Testimonials In Press Mailing Lists Abuse Developer APIs
Bookkeeping
Online ▼
Home Free Trial FAQ
Open/Create Company File Accept an Invite Order/Renew
Security
Audits ▼
Home Dedicated audits Advanced audits Standard audits Recurring audits No Risk audits Desktop audits Basic audit Security Seal FAQ Price/Feature Summary Order New Tests All Tests Confidentiality Vulnerability search Run Audit Scheduler IP Permissions Audit Configuration Editor Scan Queue Reminder Notification Schedule Seal Reports Reports Style Editor
Managed
DNS ▼
About Order FAQ Acceptable Use Policy Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password
Network
Monitor ▼
Enterprise Package Advanced Package Standard Package Free Trial FAQ Price/Feature Summary Order/Renew Examples
Configure/Status Alert Profiles
Research
Reports ▼
Home FAQ Glossary Archive
 Login/Register 
 
 Vulnerability   
Search   		     Search 324607 CVE descriptions
and 145615 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.1.18.2.2025.0847.1
Category:openSUSE Local Security Checks
Title:openSUSE Security Advisory (SUSE-SU-2025:0847-1)
Summary:The remote host is missing an update for the 'the Linux Kernel' package(s) announced via the SUSE-SU-2025:0847-1 advisory.
Description:Summary:
The remote host is missing an update for the 'the Linux Kernel' package(s) announced via the SUSE-SU-2025:0847-1 advisory.

Vulnerability Insight:
The SUSE Linux Enterprise 15 SP6 Azure kernel was updated to receive various security bugfixes.


The following security bugs were fixed:

- CVE-2024-26708: mptcp: fix inconsistent state on fastopen race (bsc#1222672).
- CVE-2024-40980: drop_monitor: replace spin_lock by raw_spin_lock (bsc#1227937).
- CVE-2024-44974: mptcp: pm: avoid possible UaF when selecting endp (bsc#1230235).
- CVE-2024-45009: mptcp: pm: only decrement add_addr_accepted for MPJ req (bsc#1230438).
- CVE-2024-45010: mptcp: pm: only mark 'subflow' endp as available (bsc#1230439).
- CVE-2024-46858: mptcp: pm: Fix uaf in __timer_delete_sync (bsc#1231088).
- CVE-2024-50029: Bluetooth: hci_conn: Fix UAF in hci_enhanced_setup_sync (bsc#1231949).
- CVE-2024-50036: net: do not delay dst_entries_add() in dst_release() (bsc#1231912).
- CVE-2024-50085: mptcp: pm: fix UaF read in mptcp_pm_nl_rm_addr_or_subflow (bsc#1232508).
- CVE-2024-50142: xfrm: validate new SA's prefixlen using SA family when sel.family is unset (bsc#1233028).
- CVE-2024-50185: kABI fix for mptcp: handle consistently DSS corruption (bsc#1233109).
- CVE-2024-50294: rxrpc: Fix missing locking causing hanging calls (bsc#1233483).
- CVE-2024-53123: mptcp: error out earlier on disconnect (bsc#1234070).
- CVE-2024-53147: exfat: fix out-of-bounds access of directory entries (bsc#1234857).
- CVE-2024-53176: smb: During unmount, ensure all cached dir instances drop their dentry (bsc#1234894).
- CVE-2024-53177: smb: prevent use-after-free due to open_cached_dir error paths (bsc#1234896).
- CVE-2024-53178: smb: Do not leak cfid when reconnect races with open_cached_dir (bsc#1234895).
- CVE-2024-56568: iommu/arm-smmu: Defer probe of clients after smmu device bound (bsc#1235032).
- CVE-2024-56592: bpf: Call free_htab_elem() after htab_unlock_bucket() (bsc#1235244).
- CVE-2024-56633: selftests/bpf: Add apply_bytes test to test_txmsg_redir_wait_sndmem in test_sockmap (bsc#1235485).
- CVE-2024-56647: net: Fix icmp host relookup triggering ip_rt_bug (bsc#1235435).
- CVE-2024-56658: net: defer final 'struct net' free in netns dismantle (bsc#1235441).
- CVE-2024-56720: bpf, sockmap: Several fixes to bpf_msg_pop_data (bsc#1235592).
- CVE-2024-57882: mptcp: fix TCP options overflow. (bsc#1235914).
- CVE-2024-57994: ptr_ring: do not block hard interrupts in ptr_ring_resize_multiple() (bsc#1237901).
- CVE-2025-21636: sctp: sysctl: plpmtud_probe_interval: avoid using current->nsproxy (bsc#1236113).
- CVE-2025-21637: sctp: sysctl: udp_port: avoid using current->nsproxy (bsc#1236114).
- CVE-2025-21638: sctp: sysctl: auth_enable: avoid using current->nsproxy (bsc#1236115).
- CVE-2025-21639: sctp: sysctl: rto_min/max: avoid using current->nsproxy (bsc#1236122).
- CVE-2025-21640: sctp: sysctl: cookie_hmac_alg: avoid using current->nsproxy (bsc#1236123).
- CVE-2025-21647: sched: sch_cake: add bounds checks to host bulk flow fairness counts (bsc#1236133).
- CVE-2025-21665: ... [Please see the references for more information on the vulnerabilities]

Affected Software/OS:
'the Linux Kernel' package(s) on openSUSE Leap 15.6.

Solution:
Please install the updated package(s).

CVSS Score:
6.8

CVSS Vector:
AV:L/AC:L/Au:S/C:C/I:C/A:C

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2023-52924
Common Vulnerability Exposure (CVE) ID: CVE-2023-52925
Common Vulnerability Exposure (CVE) ID: CVE-2024-26708
https://git.kernel.org/stable/c/337cebbd850f94147cee05252778f8f78b8c337f
https://git.kernel.org/stable/c/4bfe217e075d04e63c092df9d40c608e598c2ef2
https://git.kernel.org/stable/c/e158fb9679d15a2317ec13b4f6301bd26265df2f
Common Vulnerability Exposure (CVE) ID: CVE-2024-26810
https://git.kernel.org/stable/c/03505e3344b0576fd619416793a31eae9c5b73bf
https://git.kernel.org/stable/c/04a4a017b9ffd7b0f427b8c376688d14cb614651
https://git.kernel.org/stable/c/1e71b6449d55179170efc8dee8664510bb813b42
https://git.kernel.org/stable/c/3dd9be6cb55e0f47544e7cdda486413f7134e3b3
https://git.kernel.org/stable/c/3fe0ac10bd117df847c93408a9d428a453cd60e5
https://git.kernel.org/stable/c/6fe478d855b20ac1eb5da724afe16af5a2aaaa40
https://git.kernel.org/stable/c/810cd4bb53456d0503cc4e7934e063835152c1b7
https://git.kernel.org/stable/c/ec73e079729258a05452356cf6d098bf1504d5a6
Common Vulnerability Exposure (CVE) ID: CVE-2024-40980
Common Vulnerability Exposure (CVE) ID: CVE-2024-41055
Common Vulnerability Exposure (CVE) ID: CVE-2024-44974
Common Vulnerability Exposure (CVE) ID: CVE-2024-45009
Common Vulnerability Exposure (CVE) ID: CVE-2024-45010
Common Vulnerability Exposure (CVE) ID: CVE-2024-46858
Common Vulnerability Exposure (CVE) ID: CVE-2024-47701
Common Vulnerability Exposure (CVE) ID: CVE-2024-49884
Common Vulnerability Exposure (CVE) ID: CVE-2024-49950
Common Vulnerability Exposure (CVE) ID: CVE-2024-50029
Common Vulnerability Exposure (CVE) ID: CVE-2024-50036
Common Vulnerability Exposure (CVE) ID: CVE-2024-50073
Common Vulnerability Exposure (CVE) ID: CVE-2024-50085
Common Vulnerability Exposure (CVE) ID: CVE-2024-50115
Common Vulnerability Exposure (CVE) ID: CVE-2024-50142
Common Vulnerability Exposure (CVE) ID: CVE-2024-50185
Common Vulnerability Exposure (CVE) ID: CVE-2024-50294
Common Vulnerability Exposure (CVE) ID: CVE-2024-53123
Common Vulnerability Exposure (CVE) ID: CVE-2024-53147
Common Vulnerability Exposure (CVE) ID: CVE-2024-53173
Common Vulnerability Exposure (CVE) ID: CVE-2024-53176
Common Vulnerability Exposure (CVE) ID: CVE-2024-53177
Common Vulnerability Exposure (CVE) ID: CVE-2024-53178
Common Vulnerability Exposure (CVE) ID: CVE-2024-53226
Common Vulnerability Exposure (CVE) ID: CVE-2024-53239
Common Vulnerability Exposure (CVE) ID: CVE-2024-56539
Common Vulnerability Exposure (CVE) ID: CVE-2024-56548
Common Vulnerability Exposure (CVE) ID: CVE-2024-56568
Common Vulnerability Exposure (CVE) ID: CVE-2024-56579
Common Vulnerability Exposure (CVE) ID: CVE-2024-56592
Common Vulnerability Exposure (CVE) ID: CVE-2024-56605
Common Vulnerability Exposure (CVE) ID: CVE-2024-56633
Common Vulnerability Exposure (CVE) ID: CVE-2024-56647
Common Vulnerability Exposure (CVE) ID: CVE-2024-56658
Common Vulnerability Exposure (CVE) ID: CVE-2024-56720
Common Vulnerability Exposure (CVE) ID: CVE-2024-57882
Common Vulnerability Exposure (CVE) ID: CVE-2024-57889
Common Vulnerability Exposure (CVE) ID: CVE-2024-57948
Common Vulnerability Exposure (CVE) ID: CVE-2024-57979
Common Vulnerability Exposure (CVE) ID: CVE-2024-57994
Common Vulnerability Exposure (CVE) ID: CVE-2025-21636
Common Vulnerability Exposure (CVE) ID: CVE-2025-21637
Common Vulnerability Exposure (CVE) ID: CVE-2025-21638
Common Vulnerability Exposure (CVE) ID: CVE-2025-21639
Common Vulnerability Exposure (CVE) ID: CVE-2025-21640
Common Vulnerability Exposure (CVE) ID: CVE-2025-21647
Common Vulnerability Exposure (CVE) ID: CVE-2025-21665
Common Vulnerability Exposure (CVE) ID: CVE-2025-21666
Common Vulnerability Exposure (CVE) ID: CVE-2025-21667
Common Vulnerability Exposure (CVE) ID: CVE-2025-21668
Common Vulnerability Exposure (CVE) ID: CVE-2025-21669
Common Vulnerability Exposure (CVE) ID: CVE-2025-21670
Common Vulnerability Exposure (CVE) ID: CVE-2025-21673
Common Vulnerability Exposure (CVE) ID: CVE-2025-21675
Common Vulnerability Exposure (CVE) ID: CVE-2025-21680
Common Vulnerability Exposure (CVE) ID: CVE-2025-21681
Common Vulnerability Exposure (CVE) ID: CVE-2025-21684
Common Vulnerability Exposure (CVE) ID: CVE-2025-21687
Common Vulnerability Exposure (CVE) ID: CVE-2025-21688
Common Vulnerability Exposure (CVE) ID: CVE-2025-21689
Common Vulnerability Exposure (CVE) ID: CVE-2025-21690
Common Vulnerability Exposure (CVE) ID: CVE-2025-21692
Common Vulnerability Exposure (CVE) ID: CVE-2025-21697
Common Vulnerability Exposure (CVE) ID: CVE-2025-21699
Common Vulnerability Exposure (CVE) ID: CVE-2025-21700
Common Vulnerability Exposure (CVE) ID: CVE-2025-21705
Common Vulnerability Exposure (CVE) ID: CVE-2025-21715
Common Vulnerability Exposure (CVE) ID: CVE-2025-21716
Common Vulnerability Exposure (CVE) ID: CVE-2025-21719
Common Vulnerability Exposure (CVE) ID: CVE-2025-21724
Common Vulnerability Exposure (CVE) ID: CVE-2025-21725
Common Vulnerability Exposure (CVE) ID: CVE-2025-21728
Common Vulnerability Exposure (CVE) ID: CVE-2025-21733
Common Vulnerability Exposure (CVE) ID: CVE-2025-21754
Common Vulnerability Exposure (CVE) ID: CVE-2025-21767
Common Vulnerability Exposure (CVE) ID: CVE-2025-21790
Common Vulnerability Exposure (CVE) ID: CVE-2025-21795
Common Vulnerability Exposure (CVE) ID: CVE-2025-21799
Common Vulnerability Exposure (CVE) ID: CVE-2025-21802
CopyrightCopyright (C) 2025 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.



© 1998-2025 E-Soft Inc. All rights reserved.