File _patchinfo of Package patchinfo.39801

<patchinfo incident="39801">
  <issue id="1233118" tracker="bnc">VUL-0: CVE-2024-50208: kernel live patch: RDMA/bnxt_re: Fix a bug while setting up Level-2 PBL pages</issue>
  <issue id="1233227" tracker="bnc">VUL-0: CVE-2024-50250: kernel live patch: fsdax: dax_unshare_iter needs to copy entire blocks</issue>
  <issue id="1234854" tracker="bnc">VUL-0: CVE-2024-53146: kernel live patch: NFSD: prevent a potential integer overflow</issue>
  <issue id="1234885" tracker="bnc">VUL-0: CVE-2024-53166: kernel live patch: block, bfq: fix bfqq uaf in bfq_limit_depth()</issue>
  <issue id="1234892" tracker="bnc">VUL-0: CVE-2024-53173: kernel live patch: NFSv4.0: Fix a use-after-free problem in the asynchronous open()</issue>
  <issue id="1235005" tracker="bnc">VUL-0: CVE-2024-53214: kernel live patch: vfio/pci: properly hide first-in-list PCIe extended capability</issue>
  <issue id="1235769" tracker="bnc">VUL-0: CVE-2024-57793: kernel live patch: virt: tdx-guest: just leak decrypted memory on unrecoverable errors</issue>
  <issue id="1235921" tracker="bnc">VUL-0: CVE-2024-57893: kernel live patch: ALSA: seq: oss: fix races at processing SysEx messages</issue>
  <issue id="1238912" tracker="bnc">VUL-0: CVE-2025-21772: kernel live patch: partitions: mac: fix handling of bogus partition table</issue>
  <issue id="1241579" tracker="bnc">VUL-0: CVE-2025-22115: kernel live patch: btrfs: fix block group refcount race in btrfs_create_pending_block_groups()</issue>
  <issue id="1243648" tracker="bnc">VUL-0: CVE-2024-56558: kernel live patch: nfsd: make sure exp active before svc_export_show</issue>
  <issue id="1244337" tracker="bnc">kernel-syms should not require kernel-rt-devel</issue>
  <issue id="2024-50208" tracker="cve" />
  <issue id="2024-50250" tracker="cve" />
  <issue id="2024-53146" tracker="cve" />
  <issue id="2024-53166" tracker="cve" />
  <issue id="2024-53173" tracker="cve" />
  <issue id="2024-53214" tracker="cve" />
  <issue id="2024-56558" tracker="cve" />
  <issue id="2024-57793" tracker="cve" />
  <issue id="2024-57893" tracker="cve" />
  <issue id="2025-21772" tracker="cve" />
  <issue id="2025-22115" tracker="cve" />
  <category>security</category>
  <rating>important</rating>
  <packager>nstange</packager>
  <description>This update for the Linux Kernel 6.4.0-150600_23_25 fixes several issues.

The following security issues were fixed:

- CVE-2024-53146: NFSD: Prevent a potential integer overflow (bsc#1234854).
- CVE-2024-53214: vfio/pci: Properly hide first-in-list PCIe extended capability (bsc#1235005).
- CVE-2024-53173: NFSv4.0: Fix a use-after-free problem in the asynchronous open() (bsc#1234892).
- CVE-2024-57893: ALSA: seq: oss: Fix races at processing SysEx messages (bsc#1235921).
- CVE-2024-50250: fsdax: dax_unshare_iter needs to copy entire blocks (bsc#1233227).
- CVE-2025-22115: btrfs: fix block group refcount race in btrfs_create_pending_block_groups() (bsc#1241579).
- CVE-2025-21772: partitions: mac: fix handling of bogus partition table (bsc#1238912).
- CVE-2024-53166: block, bfq: fix bfqq uaf in bfq_limit_depth() (bsc#1234885).
- CVE-2024-57793: virt: tdx-guest: Just leak decrypted memory on unrecoverable errors (bsc#1235769).
- CVE-2024-50208: RDMA/bnxt_re: Fix a bug while setting up Level-2 PBL pages (bsc#1233118).
- CVE-2024-56558: nfsd: make sure exp active before svc_export_show (bsc#1243648).
</description>
<summary>Security update for the Linux Kernel (Live Patch 5 for SLE 15 SP6)</summary>
</patchinfo>