Overview

File _patchinfo of Package patchinfo.39773

<patchinfo incident="39773">
  <issue id="1234854" tracker="bnc">VUL-0: CVE-2024-53146: kernel live patch: NFSD: prevent a potential integer overflow</issue>
  <issue id="1234885" tracker="bnc">VUL-0: CVE-2024-53166: kernel live patch: block, bfq: fix bfqq uaf in bfq_limit_depth()</issue>
  <issue id="1234892" tracker="bnc">VUL-0: CVE-2024-53173: kernel live patch: NFSv4.0: Fix a use-after-free problem in the asynchronous open()</issue>
  <issue id="1235005" tracker="bnc">VUL-0: CVE-2024-53214: kernel live patch: vfio/pci: properly hide first-in-list PCIe extended capability</issue>
  <issue id="1235921" tracker="bnc">VUL-0: CVE-2024-57893: kernel live patch: ALSA: seq: oss: fix races at processing SysEx messages</issue>
  <issue id="1238912" tracker="bnc">VUL-0: CVE-2025-21772: kernel live patch: partitions: mac: fix handling of bogus partition table</issue>
  <issue id="1238920" tracker="bnc">VUL-0: CVE-2022-49465: kernel live patch: blk-throttle: set BIO_THROTTLED when bio has been throttled</issue>
  <issue id="1243648" tracker="bnc">VUL-0: CVE-2024-56558: kernel live patch: nfsd: make sure exp active before svc_export_show</issue>
  <issue id="2022-49465" tracker="cve" />
  <issue id="2024-53146" tracker="cve" />
  <issue id="2024-53166" tracker="cve" />
  <issue id="2024-53173" tracker="cve" />
  <issue id="2024-53214" tracker="cve" />
  <issue id="2024-56558" tracker="cve" />
  <issue id="2024-57893" tracker="cve" />
  <issue id="2025-21772" tracker="cve" />
  <category>security</category>
  <rating>important</rating>
  <packager>nstange</packager>
  <description>This update for the Linux Kernel 5.14.21-150400_24_144 fixes several issues.

The following security issues were fixed:

- CVE-2024-53146: NFSD: Prevent a potential integer overflow (bsc#1234854).
- CVE-2022-49465: blk-throttle: Set BIO_THROTTLED when bio has been throttled (bsc#1238920).
- CVE-2024-53214: vfio/pci: Properly hide first-in-list PCIe extended capability (bsc#1235005).
- CVE-2024-53173: NFSv4.0: Fix a use-after-free problem in the asynchronous open() (bsc#1234892).
- CVE-2024-57893: ALSA: seq: oss: Fix races at processing SysEx messages (bsc#1235921).
- CVE-2025-21772: partitions: mac: fix handling of bogus partition table (bsc#1238912).
- CVE-2024-53166: block, bfq: fix bfqq uaf in bfq_limit_depth() (bsc#1234885).
- CVE-2024-56558: nfsd: make sure exp active before svc_export_show (bsc#1243648).
</description>
<summary>Security update for the Linux Kernel (Live Patch 34 for SLE 15 SP4)</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places