English | Deutsch | Español
 
Home ▼
Home About Us Contact Us Privacy Partner Programs Testimonials In Press Mailing Lists Abuse Developer APIs
Bookkeeping
Online ▼
Home Free Trial FAQ
Open/Create Company File Accept an Invite Order/Renew
Security
Audits ▼
Home Dedicated audits Advanced audits Standard audits Recurring audits No Risk audits Desktop audits Basic audit Security Seal FAQ Price/Feature Summary Order New Tests All Tests Confidentiality Vulnerability search Run Audit Scheduler IP Permissions Audit Configuration Editor Scan Queue Reminder Notification Schedule Seal Reports Reports Style Editor
Managed
DNS ▼
About Order FAQ Acceptable Use Policy Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password
Network
Monitor ▼
Enterprise Package Advanced Package Standard Package Free Trial FAQ Price/Feature Summary Order/Renew Examples
Configure/Status Alert Profiles
Research
Reports ▼
Home FAQ Glossary Archive
 Login/Register 
 
 Vulnerability   
Search   		     Search 324607 CVE descriptions
and 145615 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.1.4.2025.0577.2
Category:SuSE Local Security Checks
Title:SUSE: Security Advisory (SUSE-SU-2025:0577-2)
Summary:The remote host is missing an update for the 'Linux Kernel' package(s) announced via the SUSE-SU-2025:0577-2 advisory.
Description:Summary:
The remote host is missing an update for the 'Linux Kernel' package(s) announced via the SUSE-SU-2025:0577-2 advisory.

Vulnerability Insight:
The SUSE Linux Enterprise 15 SP5 kernel was updated to receive various security bugfixes.


The following security bugs were fixed:

- CVE-2024-36898: gpiolib: cdev: fix uninitialised kfifo (bsc#1225736).
- CVE-2024-46858: mptcp: pm: Fix uaf in __timer_delete_sync (bsc#1231088).
- CVE-2024-50142: xfrm: validate new SA's prefixlen using SA family when sel.family is unset (bsc#1233028).
- CVE-2024-50151: smb: client: fix OOBs when building SMB2_IOCTL request (bsc#1233055).
- CVE-2024-50199: mm/swapfile: skip HugeTLB pages for unuse_vma (bsc#1233112).
- CVE-2024-50299: sctp: properly validate chunk size in sctp_sf_ootb() (bsc#1233488).
- CVE-2024-53104: media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format (bsc#1234025).
- CVE-2024-53141: netfilter: ipset: add missing range check in bitmap_ip_uadt (bsc#1234381).
- CVE-2024-53166: block, bfq: fix bfqq uaf in bfq_limit_depth() (bsc#1234884).
- CVE-2024-53177: smb: prevent use-after-free due to open_cached_dir error paths (bsc#1234896).
- CVE-2024-53209: bnxt_en: Fix receive ring space parameters when XDP is active (bsc#1235002).
- CVE-2024-53227: scsi: bfa: Fix use-after-free in bfad_im_module_exit() (bsc#1235011).
- CVE-2024-56588: scsi: hisi_sas: Create all dump files during debugfs initialization (bsc#1235123).
- CVE-2024-56600: net: inet6: do not leave a dangling sk pointer in inet6_create() (bsc#1235217).
- CVE-2024-56601: net: inet: do not leave a dangling sk pointer in inet_create() (bsc#1235230).
- CVE-2024-56602: net: ieee802154: do not leave a dangling sk pointer in ieee802154_create() (bsc#1235521).
- CVE-2024-56623: scsi: qla2xxx: Fix use after free on unload (bsc#1235466).
- CVE-2024-56631: scsi: sg: Fix slab-use-after-free read in sg_release() (bsc#1235480).
- CVE-2024-56642: tipc: Fix use-after-free of kernel socket in cleanup_bearer() (bsc#1235433).
- CVE-2024-56645: can: j1939: j1939_session_new(): fix skb reference counting (bsc#1235134).
- CVE-2024-56648: net: hsr: avoid potential out-of-bound access in fill_frame_info() (bsc#1235451).
- CVE-2024-56650: netfilter: x_tables: fix LED ID check in led_tg_check() (bsc#1235430).
- CVE-2024-56658: net: defer final 'struct net' free in netns dismantle (bsc#1235441).
- CVE-2024-56664: bpf, sockmap: Fix race between element replace and close() (bsc#1235249).
- CVE-2024-56704: 9p/xen: fix release of IRQ (bsc#1235584).
- CVE-2024-56747: scsi: qedi: Fix a possible memory leak in qedi_alloc_and_init_sb() (bsc#1234934).
- CVE-2024-56759: btrfs: fix use-after-free when COWing tree bock and tracing is enabled (bsc#1235645).
- CVE-2024-57791: net/smc: check return value of sock_recvmsg when draining clc data (bsc#1235759).
- CVE-2024-57792: power: supply: gpio-charger: Fix set charge current limits (bsc#1235764).
- CVE-2024-57793: virt: tdx-guest: Just leak decrypted memory on unrecoverable errors (bsc#1235768).
- CVE-2024-57798: drm/dp_mst: ... [Please see the references for more information on the vulnerabilities]

Affected Software/OS:
'Linux Kernel' package(s) on SUSE Linux Enterprise Server 15-SP5, SUSE Linux Enterprise Server for SAP Applications 15-SP5.

Solution:
Please install the updated package(s).

CVSS Score:
8.3

CVSS Vector:
AV:A/AC:L/Au:N/C:C/I:C/A:C

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2024-26758
https://git.kernel.org/stable/c/1baae052cccd08daf9a9d64c3f959d8cdb689757
https://git.kernel.org/stable/c/a55f0d6179a19c6b982e2dc344d58c98647a3be0
Common Vulnerability Exposure (CVE) ID: CVE-2024-26943
https://git.kernel.org/stable/c/16e87fe23d4af6df920406494ced5c0f4354567b
https://git.kernel.org/stable/c/2a84744a037b8a511d6a9055f3defddc28ff4a4d
https://git.kernel.org/stable/c/3e82f7383e0b82a835e6b6b06a348b2bc4e2c2ee
https://git.kernel.org/stable/c/5e81773757a95fc298e96cfd6d4700f07b6192a2
https://git.kernel.org/stable/c/9acfd8b083a0ffbd387566800d89f55058a68af2
Common Vulnerability Exposure (CVE) ID: CVE-2024-36898
https://git.kernel.org/stable/c/1a51e24404d77bb3307c1e39eee0d8e86febb1a5
https://git.kernel.org/stable/c/883e4bbf06eb5fb7482679e4edb201093e9f55a2
https://git.kernel.org/stable/c/bd7139a70ee8d8ea872b223e043730cf6f5e2b0e
https://git.kernel.org/stable/c/ee0166b637a5e376118e9659e5b4148080f1d27e
Common Vulnerability Exposure (CVE) ID: CVE-2024-38599
https://git.kernel.org/stable/c/2904e1d9b64f72d291095e3cbb31634f08788b11
https://git.kernel.org/stable/c/526235dffcac74c7823ed504dfac4f88d84ba5df
https://git.kernel.org/stable/c/8d431391320c5c5398ff966fb3a95e68a7def275
https://git.kernel.org/stable/c/978a12c91b38bf1a213e567f3c20e2beef215f07
https://git.kernel.org/stable/c/a1d21bcd78cf4a4353e1e835789429c6b76aca8b
https://git.kernel.org/stable/c/af82d8d2179b7277ad627c39e7e0778f1c86ccdb
https://git.kernel.org/stable/c/c6854e5a267c28300ff045480b5a7ee7f6f1d913
https://git.kernel.org/stable/c/f06969df2e40ab1dc8f4364a5de967830c74a098
https://git.kernel.org/stable/c/f0eea095ce8c959b86e1e57fe36ca4fea5ae54f8
Common Vulnerability Exposure (CVE) ID: CVE-2024-41047
Common Vulnerability Exposure (CVE) ID: CVE-2024-45019
Common Vulnerability Exposure (CVE) ID: CVE-2024-46858
Common Vulnerability Exposure (CVE) ID: CVE-2024-50051
Common Vulnerability Exposure (CVE) ID: CVE-2024-50136
Common Vulnerability Exposure (CVE) ID: CVE-2024-50142
Common Vulnerability Exposure (CVE) ID: CVE-2024-50151
Common Vulnerability Exposure (CVE) ID: CVE-2024-50195
Common Vulnerability Exposure (CVE) ID: CVE-2024-50199
Common Vulnerability Exposure (CVE) ID: CVE-2024-50210
Common Vulnerability Exposure (CVE) ID: CVE-2024-50275
Common Vulnerability Exposure (CVE) ID: CVE-2024-50299
Common Vulnerability Exposure (CVE) ID: CVE-2024-53095
Common Vulnerability Exposure (CVE) ID: CVE-2024-53103
Common Vulnerability Exposure (CVE) ID: CVE-2024-53104
Common Vulnerability Exposure (CVE) ID: CVE-2024-53112
Common Vulnerability Exposure (CVE) ID: CVE-2024-53121
Common Vulnerability Exposure (CVE) ID: CVE-2024-53127
Common Vulnerability Exposure (CVE) ID: CVE-2024-53129
Common Vulnerability Exposure (CVE) ID: CVE-2024-53138
Common Vulnerability Exposure (CVE) ID: CVE-2024-53141
Common Vulnerability Exposure (CVE) ID: CVE-2024-53144
Common Vulnerability Exposure (CVE) ID: CVE-2024-53148
Common Vulnerability Exposure (CVE) ID: CVE-2024-53151
Common Vulnerability Exposure (CVE) ID: CVE-2024-53166
Common Vulnerability Exposure (CVE) ID: CVE-2024-53169
Common Vulnerability Exposure (CVE) ID: CVE-2024-53171
Common Vulnerability Exposure (CVE) ID: CVE-2024-53174
Common Vulnerability Exposure (CVE) ID: CVE-2024-53177
Common Vulnerability Exposure (CVE) ID: CVE-2024-53208
Common Vulnerability Exposure (CVE) ID: CVE-2024-53209
Common Vulnerability Exposure (CVE) ID: CVE-2024-53215
Common Vulnerability Exposure (CVE) ID: CVE-2024-53217
Common Vulnerability Exposure (CVE) ID: CVE-2024-53224
Common Vulnerability Exposure (CVE) ID: CVE-2024-53227
Common Vulnerability Exposure (CVE) ID: CVE-2024-53229
Common Vulnerability Exposure (CVE) ID: CVE-2024-53690
Common Vulnerability Exposure (CVE) ID: CVE-2024-54680
Common Vulnerability Exposure (CVE) ID: CVE-2024-55916
Common Vulnerability Exposure (CVE) ID: CVE-2024-56531
Common Vulnerability Exposure (CVE) ID: CVE-2024-56532
Common Vulnerability Exposure (CVE) ID: CVE-2024-56533
Common Vulnerability Exposure (CVE) ID: CVE-2024-56557
Common Vulnerability Exposure (CVE) ID: CVE-2024-56558
Common Vulnerability Exposure (CVE) ID: CVE-2024-56562
Common Vulnerability Exposure (CVE) ID: CVE-2024-56567
Common Vulnerability Exposure (CVE) ID: CVE-2024-56588
Common Vulnerability Exposure (CVE) ID: CVE-2024-56595
Common Vulnerability Exposure (CVE) ID: CVE-2024-56596
Common Vulnerability Exposure (CVE) ID: CVE-2024-56597
Common Vulnerability Exposure (CVE) ID: CVE-2024-56600
Common Vulnerability Exposure (CVE) ID: CVE-2024-56601
Common Vulnerability Exposure (CVE) ID: CVE-2024-56602
Common Vulnerability Exposure (CVE) ID: CVE-2024-56623
Common Vulnerability Exposure (CVE) ID: CVE-2024-56629
Common Vulnerability Exposure (CVE) ID: CVE-2024-56631
Common Vulnerability Exposure (CVE) ID: CVE-2024-56642
Common Vulnerability Exposure (CVE) ID: CVE-2024-56644
Common Vulnerability Exposure (CVE) ID: CVE-2024-56645
Common Vulnerability Exposure (CVE) ID: CVE-2024-56648
Common Vulnerability Exposure (CVE) ID: CVE-2024-56650
Common Vulnerability Exposure (CVE) ID: CVE-2024-56658
Common Vulnerability Exposure (CVE) ID: CVE-2024-56661
Common Vulnerability Exposure (CVE) ID: CVE-2024-56664
Common Vulnerability Exposure (CVE) ID: CVE-2024-56678
Common Vulnerability Exposure (CVE) ID: CVE-2024-56681
Common Vulnerability Exposure (CVE) ID: CVE-2024-56698
Common Vulnerability Exposure (CVE) ID: CVE-2024-56701
Common Vulnerability Exposure (CVE) ID: CVE-2024-56704
Common Vulnerability Exposure (CVE) ID: CVE-2024-56722
Common Vulnerability Exposure (CVE) ID: CVE-2024-56739
Common Vulnerability Exposure (CVE) ID: CVE-2024-56745
Common Vulnerability Exposure (CVE) ID: CVE-2024-56747
Common Vulnerability Exposure (CVE) ID: CVE-2024-56754
Common Vulnerability Exposure (CVE) ID: CVE-2024-56756
Common Vulnerability Exposure (CVE) ID: CVE-2024-56759
Common Vulnerability Exposure (CVE) ID: CVE-2024-56765
Common Vulnerability Exposure (CVE) ID: CVE-2024-56776
Common Vulnerability Exposure (CVE) ID: CVE-2024-56777
Common Vulnerability Exposure (CVE) ID: CVE-2024-56778
Common Vulnerability Exposure (CVE) ID: CVE-2024-57791
Common Vulnerability Exposure (CVE) ID: CVE-2024-57792
Common Vulnerability Exposure (CVE) ID: CVE-2024-57793
Common Vulnerability Exposure (CVE) ID: CVE-2024-57798
Common Vulnerability Exposure (CVE) ID: CVE-2024-57849
Common Vulnerability Exposure (CVE) ID: CVE-2024-57850
Common Vulnerability Exposure (CVE) ID: CVE-2024-57876
Common Vulnerability Exposure (CVE) ID: CVE-2024-57893
Common Vulnerability Exposure (CVE) ID: CVE-2024-57897
Common Vulnerability Exposure (CVE) ID: CVE-2024-8805
CopyrightCopyright (C) 2025 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.



© 1998-2025 E-Soft Inc. All rights reserved.