Upstream information
Description
In the Linux kernel, the following vulnerability has been resolved:smc: Fix various oops due to inet_sock type confusion.
syzbot reported weird splats [0][1] in cipso_v4_sock_setattr() while
freeing inet_sk(sk)->inet_opt.
The address was freed multiple times even though it was read-only memory.
cipso_v4_sock_setattr() did nothing wrong, and the root cause was type
confusion.
The cited commit made it possible to create smc_sock as an INET socket.
The issue is that struct smc_sock does not have struct inet_sock as the
first member but hijacks AF_INET and AF_INET6 sk_family, which confuses
various places.
In this case, inet_sock.inet_opt was actually smc_sock.clcsk_data_ready(),
which is an address of a function in the text segment.
$ pahole -C inet_sock vmlinux
struct inet_sock {
...
struct ip_options_rcu * inet_opt; /* 784 8 */
$ pahole -C smc_sock vmlinux
struct smc_sock {
...
void (*clcsk_data_ready)(struct sock *); /* 784 8 */
The same issue for another field was reported before. [2][3]
At that time, an ugly hack was suggested [4], but it makes both INET
and SMC code error-prone and hard to change.
Also, yet another variant was fixed by a hacky commit 98d4435efcbf3
("net/smc: prevent NULL pointer dereference in txopt_get").
Instead of papering over the root cause by such hacks, we should not
allow non-INET socket to reuse the INET infra.
Let's add inet_sock as the first member of smc_sock.
[0]:
kvfree_call_rcu(): Double-freed call. rcu_head 000000006921da73
WARNING: CPU: 0 PID: 6718 at mm/slab_common.c:1956 kvfree_call_rcu+0x94/0x3f0 mm/slab_common.c:1955
Modules linked in:
CPU: 0 UID: 0 PID: 6718 Comm: syz.0.17 Tainted: G W 6.16.0-rc4-syzkaller-g7482bb149b9f #0 PREEMPT
Tainted: [W]=WARN
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : kvfree_call_rcu+0x94/0x3f0 mm/slab_common.c:1955
lr : kvfree_call_rcu+0x94/0x3f0 mm/slab_common.c:1955
sp : ffff8000a03a7730
x29: ffff8000a03a7730 x28: 00000000fffffff5 x27: 1fffe000184823d3
x26: dfff800000000000 x25: ffff0000c2411e9e x24: ffff0000dd88da00
x23: ffff8000891ac9a0 x22: 00000000ffffffea x21: ffff8000891ac9a0
x20: ffff8000891ac9a0 x19: ffff80008afc2480 x18: 00000000ffffffff
x17: 0000000000000000 x16: ffff80008ae642c8 x15: ffff700011ede14c
x14: 1ffff00011ede14c x13: 0000000000000004 x12: ffffffffffffffff
x11: ffff700011ede14c x10: 0000000000ff0100 x9 : 5fa3c1ffaf0ff000
x8 : 5fa3c1ffaf0ff000 x7 : 0000000000000001 x6 : 0000000000000001
x5 : ffff8000a03a7078 x4 : ffff80008f766c20 x3 : ffff80008054d360
x2 : 0000000000000000 x1 : 0000000000000201 x0 : 0000000000000000
Call trace:
kvfree_call_rcu+0x94/0x3f0 mm/slab_common.c:1955 (P)
cipso_v4_sock_setattr+0x2f0/0x3f4 net/ipv4/cipso_ipv4.c:1914
netlbl_sock_setattr+0x240/0x334 net/netlabel/netlabel_kapi.c:1000
smack_netlbl_add+0xa8/0x158 security/smack/smack_lsm.c:2581
smack_inode_setsecurity+0x378/0x430 security/smack/smack_lsm.c:2912
security_inode_setsecurity+0x118/0x3c0 security/security.c:2706
__vfs_setxattr_noperm+0x174/0x5c4 fs/xattr.c:251
__vfs_setxattr_locked+0x1ec/0x218 fs/xattr.c:295
vfs_setxattr+0x158/0x2ac fs/xattr.c:321
do_setxattr fs/xattr.c:636 [inline]
file_setxattr+0x1b8/0x294 fs/xattr.c:646
path_setxattrat+0x2ac/0x320 fs/xattr.c:711
__do_sys_fsetxattr fs/xattr.c:761 [inline]
__se_sys_fsetxattr fs/xattr.c:758 [inline]
__arm64_sys_fsetxattr+0xc0/0xdc fs/xattr.c:758
__invoke_syscall arch/arm64/kernel/syscall.c:35 [inline]
invoke_syscall+0x98/0x2b8 arch/arm64/kernel/syscall.c:49
el0_svc_common+0x130/0x23c arch/arm64/kernel/syscall.c:132
do_el0_svc+0x48/0x58 arch/arm64/kernel/syscall.c:151
el0_svc+0x58/0x180 arch/arm64/kernel/entry-common.c:879
el0t_64_sync_handler+0x84/0x12c arch/arm64/kernel/entry-common.c:898
el0t_64_sync+0x198/0x19c arch/arm64/kernel/entry.S:600
[
---truncated---
SUSE information
Overall state of this security issue: Pending
This issue is currently rated as having important severity.
SUSE | |
---|---|
Base Score | 7.1 |
Vector | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H |
Attack Vector | Local |
Attack Complexity | Low |
Privileges Required | Low |
User Interaction | None |
Scope | Unchanged |
Confidentiality Impact | None |
Integrity Impact | High |
Availability Impact | High |
CVSSv3 Version | 3.1 |
SUSE | |
---|---|
Base Score | 6.9 |
Vector | CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N |
Attack Vector | Local |
Attack Complexity | Low |
Attack Requirements | None |
Privileges Required | Low |
User Interaction | None |
Vulnerable System Confidentiality Impact | None |
Vulnerable System Integrity Impact | High |
Vulnerable System Availability Impact | High |
Subsequent System Confidentiality Impact | None |
Subsequent System Integrity Impact | None |
Subsequent System Availability Impact | None |
CVSSv4 Version | 4.0 |
Note from the SUSE Security Team on the kernel-default package
SUSE will no longer fix all CVEs in the Linux Kernel anymore, but declare some bug classes as won't fix. Please refer to TID 21496 for more details. SUSE Bugzilla entries: 1247308 [IN_PROGRESS], 1247309 [NEW]SUSE Security Advisories:
- SUSE-SU-2025:02853-1, published 2025-08-18T16:01:55Z
- SUSE-SU-2025:02997-1, published 2025-08-27T12:04:25Z
- SUSE-SU-2025:03011-1, published 2025-08-28T12:06:16Z
List of released packages
Product(s) | Fixed package version(s) | References |
---|---|---|
Container bci/bci-sle15-kernel-module-devel:15.7-44.12 |
| |
SUSE Linux Enterprise Desktop 15 SP7 |
| Patchnames: SUSE-SLE-Module-Basesystem-15-SP7-2025-2997 SUSE-SLE-Module-Development-Tools-15-SP7-2025-2997 SUSE-SLE-Product-WE-15-SP7-2025-2997 |
SUSE Linux Enterprise High Availability Extension 15 SP7 |
| Patchnames: SUSE-SLE-Product-HA-15-SP7-2025-2997 |
SUSE Linux Enterprise High Performance Computing 15 SP7 |
| Patchnames: SUSE-SLE-Module-Basesystem-15-SP7-2025-2997 SUSE-SLE-Module-Development-Tools-15-SP7-2025-2997 SUSE-SLE-Module-Legacy-15-SP7-2025-2997 SUSE-SLE-Module-Public-Cloud-15-SP7-2025-3011 |
SUSE Linux Enterprise Live Patching 15 SP7 | Patchnames: SUSE-SLE-Module-Live-Patching-15-SP7-2025-2853 | |
SUSE Linux Enterprise Module for Basesystem 15 SP7 |
| Patchnames: SUSE-SLE-Module-Basesystem-15-SP7-2025-2997 |
SUSE Linux Enterprise Module for Development Tools 15 SP7 |
| Patchnames: SUSE-SLE-Module-Development-Tools-15-SP7-2025-2997 |
SUSE Linux Enterprise Module for Legacy 15 SP7 |
| Patchnames: SUSE-SLE-Module-Legacy-15-SP7-2025-2997 |
SUSE Linux Enterprise Module for Public Cloud 15 SP7 |
| Patchnames: SUSE-SLE-Module-Public-Cloud-15-SP7-2025-3011 |
SUSE Linux Enterprise Real Time 15 SP7 SUSE Real Time Module 15 SP7 |
| Patchnames: SUSE-SLE-Module-RT-15-SP7-2025-2853 |
SUSE Linux Enterprise Server 15 SP7 SUSE Linux Enterprise Server for SAP Applications 15 SP7 |
| Patchnames: SUSE-SLE-Module-Basesystem-15-SP7-2025-2997 SUSE-SLE-Module-Development-Tools-15-SP7-2025-2997 SUSE-SLE-Module-Legacy-15-SP7-2025-2997 SUSE-SLE-Module-Public-Cloud-15-SP7-2025-3011 SUSE-SLE-Product-WE-15-SP7-2025-2997 |
SUSE Linux Enterprise Workstation Extension 15 SP7 |
| Patchnames: SUSE-SLE-Product-WE-15-SP7-2025-2997 |
Status of this issue by product and package
Please note that this evaluation state might be work in progress, incomplete or outdated. Also information for service packs in the LTSS phase is only included for issues meeting the LTSS criteria. If in doubt, feel free to contact us for clarification. The updates are grouped by state of their lifecycle. SUSE product lifecycles are documented on the lifecycle page.
Product(s) | Source package | State |
---|---|---|
Products under general support and receiving all security fixes. | ||
SUSE Linux Enterprise Desktop 15 SP6 | kernel-default | Not affected |
SUSE Linux Enterprise Desktop 15 SP6 | kernel-source | Not affected |
SUSE Linux Enterprise Desktop 15 SP7 | kernel-64kb | Released |
SUSE Linux Enterprise Desktop 15 SP7 | kernel-default | Released |
SUSE Linux Enterprise Desktop 15 SP7 | kernel-default-base | Released |
SUSE Linux Enterprise Desktop 15 SP7 | kernel-docs | Released |
SUSE Linux Enterprise Desktop 15 SP7 | kernel-obs-build | Released |
SUSE Linux Enterprise Desktop 15 SP7 | kernel-source | Released |
SUSE Linux Enterprise Desktop 15 SP7 | kernel-syms | Released |
SUSE Linux Enterprise Desktop 15 SP7 | kernel-zfcpdump | Released |
SUSE Linux Enterprise High Availability Extension 15 SP7 | kernel-default | Released |
SUSE Linux Enterprise High Availability Extension 15 SP7 | kernel-source | Affected |
SUSE Linux Enterprise High Performance Computing 15 SP6 | kernel-default | Not affected |
SUSE Linux Enterprise High Performance Computing 15 SP6 | kernel-source | Not affected |
SUSE Linux Enterprise High Performance Computing 15 SP6 | kernel-source-azure | Not affected |
SUSE Linux Enterprise High Performance Computing 15 SP7 | kernel-64kb | Released |
SUSE Linux Enterprise High Performance Computing 15 SP7 | kernel-azure | Released |
SUSE Linux Enterprise High Performance Computing 15 SP7 | kernel-default | Released |
SUSE Linux Enterprise High Performance Computing 15 SP7 | kernel-default-base | Released |
SUSE Linux Enterprise High Performance Computing 15 SP7 | kernel-docs | Released |
SUSE Linux Enterprise High Performance Computing 15 SP7 | kernel-obs-build | Released |
SUSE Linux Enterprise High Performance Computing 15 SP7 | kernel-source | Released |
SUSE Linux Enterprise High Performance Computing 15 SP7 | kernel-source-azure | Released |
SUSE Linux Enterprise High Performance Computing 15 SP7 | kernel-syms | Released |
SUSE Linux Enterprise High Performance Computing 15 SP7 | kernel-syms-azure | Released |
SUSE Linux Enterprise High Performance Computing 15 SP7 | kernel-zfcpdump | Released |
SUSE Linux Enterprise Live Patching 15 SP6 | kernel-default | Not affected |
SUSE Linux Enterprise Live Patching 15 SP6 | kernel-source | Not affected |
SUSE Linux Enterprise Live Patching 15 SP7 | kernel-default | Affected |
SUSE Linux Enterprise Live Patching 15 SP7 | kernel-livepatch-SLE15-SP7-RT_Update_3 | Released |
SUSE Linux Enterprise Live Patching 15 SP7 | kernel-source | Affected |
SUSE Linux Enterprise Micro 5.1 | kernel-default | Not affected |
SUSE Linux Enterprise Micro 5.1 | kernel-rt | Not affected |
SUSE Linux Enterprise Micro 5.1 | kernel-source | Not affected |
SUSE Linux Enterprise Micro 5.1 | kernel-source-rt | Not affected |
SUSE Linux Enterprise Micro 5.2 | kernel-default | Not affected |
SUSE Linux Enterprise Micro 5.2 | kernel-rt | Not affected |
SUSE Linux Enterprise Micro 5.2 | kernel-source | Not affected |
SUSE Linux Enterprise Micro 5.2 | kernel-source-rt | Not affected |
SUSE Linux Enterprise Micro 5.3 | kernel-default | Not affected |
SUSE Linux Enterprise Micro 5.3 | kernel-rt | Not affected |
SUSE Linux Enterprise Micro 5.3 | kernel-source | Not affected |
SUSE Linux Enterprise Micro 5.3 | kernel-source-rt | Not affected |
SUSE Linux Enterprise Micro 5.4 | kernel-default | Not affected |
SUSE Linux Enterprise Micro 5.4 | kernel-rt | Not affected |
SUSE Linux Enterprise Micro 5.4 | kernel-source | Not affected |
SUSE Linux Enterprise Micro 5.4 | kernel-source-rt | Not affected |
SUSE Linux Enterprise Micro 5.5 | kernel-default | Not affected |
SUSE Linux Enterprise Micro 5.5 | kernel-source | Not affected |
SUSE Linux Enterprise Micro 5.5 | kernel-source-rt | Not affected |
SUSE Linux Enterprise Module for Basesystem 15 SP6 | kernel-default | Not affected |
SUSE Linux Enterprise Module for Basesystem 15 SP6 | kernel-source | Not affected |
SUSE Linux Enterprise Module for Basesystem 15 SP7 | kernel-64kb | Released |
SUSE Linux Enterprise Module for Basesystem 15 SP7 | kernel-default | Released |
SUSE Linux Enterprise Module for Basesystem 15 SP7 | kernel-default-base | Released |
SUSE Linux Enterprise Module for Basesystem 15 SP7 | kernel-source | Released |
SUSE Linux Enterprise Module for Basesystem 15 SP7 | kernel-zfcpdump | Released |
SUSE Linux Enterprise Module for Development Tools 15 SP6 | kernel-default | Not affected |
SUSE Linux Enterprise Module for Development Tools 15 SP6 | kernel-source | Not affected |
SUSE Linux Enterprise Module for Development Tools 15 SP7 | kernel-default | Released |
SUSE Linux Enterprise Module for Development Tools 15 SP7 | kernel-docs | Released |
SUSE Linux Enterprise Module for Development Tools 15 SP7 | kernel-obs-build | Released |
SUSE Linux Enterprise Module for Development Tools 15 SP7 | kernel-source | Released |
SUSE Linux Enterprise Module for Development Tools 15 SP7 | kernel-syms | Released |
SUSE Linux Enterprise Module for Legacy 15 SP6 | kernel-default | Not affected |
SUSE Linux Enterprise Module for Legacy 15 SP6 | kernel-source | Not affected |
SUSE Linux Enterprise Module for Legacy 15 SP7 | kernel-default | Released |
SUSE Linux Enterprise Module for Legacy 15 SP7 | kernel-source | Affected |
SUSE Linux Enterprise Module for Public Cloud 15 SP6 | kernel-source-azure | Not affected |
SUSE Linux Enterprise Module for Public Cloud 15 SP7 | kernel-azure | Released |
SUSE Linux Enterprise Module for Public Cloud 15 SP7 | kernel-source-azure | Released |
SUSE Linux Enterprise Module for Public Cloud 15 SP7 | kernel-syms-azure | Released |
SUSE Linux Enterprise Real Time 15 SP6 | kernel-source-rt | Not affected |
SUSE Linux Enterprise Real Time 15 SP7 | kernel-rt | Released |
SUSE Linux Enterprise Real Time 15 SP7 | kernel-source-rt | Released |
SUSE Linux Enterprise Real Time 15 SP7 | kernel-syms-rt | Released |
SUSE Linux Enterprise Server 15 SP6 | kernel-default | Not affected |
SUSE Linux Enterprise Server 15 SP6 | kernel-source | Not affected |
SUSE Linux Enterprise Server 15 SP6 | kernel-source-azure | Not affected |
SUSE Linux Enterprise Server 15 SP7 | kernel-64kb | Released |
SUSE Linux Enterprise Server 15 SP7 | kernel-azure | Released |
SUSE Linux Enterprise Server 15 SP7 | kernel-default | Released |
SUSE Linux Enterprise Server 15 SP7 | kernel-default-base | Released |
SUSE Linux Enterprise Server 15 SP7 | kernel-docs | Released |
SUSE Linux Enterprise Server 15 SP7 | kernel-obs-build | Released |
SUSE Linux Enterprise Server 15 SP7 | kernel-source | Released |
SUSE Linux Enterprise Server 15 SP7 | kernel-source-azure | Released |
SUSE Linux Enterprise Server 15 SP7 | kernel-syms | Released |
SUSE Linux Enterprise Server 15 SP7 | kernel-syms-azure | Released |
SUSE Linux Enterprise Server 15 SP7 | kernel-zfcpdump | Released |
SUSE Linux Enterprise Server 16.0 | kernel-default | Affected |
SUSE Linux Enterprise Server 16.0 | kernel-source | Affected |
SUSE Linux Enterprise Server 16.0 | kernel-source-azure | Affected |
SUSE Linux Enterprise Server for SAP Applications 15 SP6 | kernel-default | Not affected |
SUSE Linux Enterprise Server for SAP Applications 15 SP6 | kernel-source | Not affected |
SUSE Linux Enterprise Server for SAP Applications 15 SP6 | kernel-source-azure | Not affected |
SUSE Linux Enterprise Server for SAP Applications 15 SP7 | kernel-64kb | Released |
SUSE Linux Enterprise Server for SAP Applications 15 SP7 | kernel-azure | Released |
SUSE Linux Enterprise Server for SAP Applications 15 SP7 | kernel-default | Released |
SUSE Linux Enterprise Server for SAP Applications 15 SP7 | kernel-default-base | Released |
SUSE Linux Enterprise Server for SAP Applications 15 SP7 | kernel-docs | Released |
SUSE Linux Enterprise Server for SAP Applications 15 SP7 | kernel-obs-build | Released |
SUSE Linux Enterprise Server for SAP Applications 15 SP7 | kernel-source | Released |
SUSE Linux Enterprise Server for SAP Applications 15 SP7 | kernel-source-azure | Released |
SUSE Linux Enterprise Server for SAP Applications 15 SP7 | kernel-syms | Released |
SUSE Linux Enterprise Server for SAP Applications 15 SP7 | kernel-syms-azure | Released |
SUSE Linux Enterprise Server for SAP Applications 15 SP7 | kernel-zfcpdump | Released |
SUSE Linux Enterprise Server for SAP Applications 16.0 | kernel-source | Affected |
SUSE Linux Enterprise Server for SAP Applications 16.0 | kernel-source-azure | Affected |
SUSE Linux Enterprise Workstation Extension 15 SP6 | kernel-default | Not affected |
SUSE Linux Enterprise Workstation Extension 15 SP6 | kernel-source | Not affected |
SUSE Linux Enterprise Workstation Extension 15 SP7 | kernel-default | Released |
SUSE Linux Enterprise Workstation Extension 15 SP7 | kernel-source | Affected |
SUSE Linux Micro 6.0 | kernel-default | Not affected |
SUSE Linux Micro 6.0 | kernel-source | Not affected |
SUSE Linux Micro 6.0 | kernel-source-rt | Not affected |
SUSE Linux Micro 6.1 | kernel-default | Not affected |
SUSE Linux Micro 6.1 | kernel-source | Not affected |
SUSE Linux Micro 6.1 | kernel-source-rt | Not affected |
SUSE Linux Micro 6.2 | kernel-source | Affected |
SUSE Real Time Module 15 SP6 | kernel-source-rt | Not affected |
SUSE Real Time Module 15 SP7 | kernel-rt | Released |
SUSE Real Time Module 15 SP7 | kernel-source-rt | Released |
SUSE Real Time Module 15 SP7 | kernel-syms-rt | Released |
openSUSE Leap 15.6 | kernel-default | Not affected |
openSUSE Leap 15.6 | kernel-source | Not affected |
openSUSE Leap 15.6 | kernel-source-azure | Not affected |
openSUSE Leap 15.6 | kernel-source-rt | Not affected |
Products under Long Term Service Pack support and receiving important and critical security fixes. | ||
SUSE Linux Enterprise High Performance Computing 15 SP3 | kernel-source | Not affected |
SUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS | kernel-source | Not affected |
SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS | kernel-default | Not affected |
SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS | kernel-source | Not affected |
SUSE Linux Enterprise High Performance Computing 15 SP4 | kernel-source | Not affected |
SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS | kernel-default | Not affected |
SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS | kernel-source | Not affected |
SUSE Linux Enterprise High Performance Computing 15 SP5 | kernel-source | Not affected |
SUSE Linux Enterprise High Performance Computing 15 SP5 | kernel-source-azure | Unsupported |
SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS | kernel-default | Not affected |
SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS | kernel-source | Not affected |
SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS | kernel-default | Not affected |
SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS | kernel-source | Not affected |
SUSE Linux Enterprise Live Patching 12 SP5 | kernel-default | Not affected |
SUSE Linux Enterprise Live Patching 12 SP5 | kernel-source | Not affected |
SUSE Linux Enterprise Live Patching 15 SP3 | kernel-default | Not affected |
SUSE Linux Enterprise Live Patching 15 SP3 | kernel-source | Not affected |
SUSE Linux Enterprise Live Patching 15 SP4 | kernel-default | Not affected |
SUSE Linux Enterprise Live Patching 15 SP4 | kernel-source | Not affected |
SUSE Linux Enterprise Live Patching 15 SP5 | kernel-default | Not affected |
SUSE Linux Enterprise Live Patching 15 SP5 | kernel-source | Not affected |
SUSE Linux Enterprise Module for Basesystem 15 SP3 | kernel-source | Not affected |
SUSE Linux Enterprise Module for Basesystem 15 SP4 | kernel-source | Not affected |
SUSE Linux Enterprise Module for Basesystem 15 SP5 | kernel-source | Not affected |
SUSE Linux Enterprise Module for Development Tools 15 SP3 | kernel-source | Not affected |
SUSE Linux Enterprise Module for Development Tools 15 SP4 | kernel-source | Not affected |
SUSE Linux Enterprise Module for Development Tools 15 SP5 | kernel-source | Not affected |
SUSE Linux Enterprise Module for Public Cloud 15 SP5 | kernel-source-azure | Unsupported |
SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE | kernel-default | Not affected |
SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE | kernel-source | Not affected |
SUSE Linux Enterprise Server 12 SP5 | kernel-source | Not affected |
SUSE Linux Enterprise Server 12 SP5 | kernel-source-azure | Unsupported |
SUSE Linux Enterprise Server 12 SP5-LTSS | kernel-default | Not affected |
SUSE Linux Enterprise Server 12 SP5-LTSS | kernel-source | Not affected |
SUSE Linux Enterprise Server 12 SP5-LTSS | kernel-source-azure | Unsupported |
SUSE Linux Enterprise Server 12 SP5-LTSS Extended Security | kernel-default | Not affected |
SUSE Linux Enterprise Server 12 SP5-LTSS Extended Security | kernel-source | Not affected |
SUSE Linux Enterprise Server 15 SP3 | kernel-source | Not affected |
SUSE Linux Enterprise Server 15 SP3-LTSS | kernel-default | Not affected |
SUSE Linux Enterprise Server 15 SP3-LTSS | kernel-source | Not affected |
SUSE Linux Enterprise Server 15 SP4 | kernel-source | Not affected |
SUSE Linux Enterprise Server 15 SP4-LTSS | kernel-default | Not affected |
SUSE Linux Enterprise Server 15 SP4-LTSS | kernel-source | Not affected |
SUSE Linux Enterprise Server 15 SP5 | kernel-source | Not affected |
SUSE Linux Enterprise Server 15 SP5 | kernel-source-azure | Unsupported |
SUSE Linux Enterprise Server 15 SP5-LTSS | kernel-default | Not affected |
SUSE Linux Enterprise Server 15 SP5-LTSS | kernel-source | Not affected |
SUSE Linux Enterprise Server LTSS Extended Security 12 SP5 | kernel-source | Not affected |
SUSE Linux Enterprise Server LTSS Extended Security 12 SP5 | kernel-source-azure | Unsupported |
SUSE Manager Proxy 4.3 | kernel-default | Not affected |
SUSE Manager Proxy 4.3 | kernel-source | Not affected |
SUSE Manager Proxy LTS 4.3 | kernel-default | Not affected |
SUSE Manager Proxy LTS 4.3 | kernel-source | Not affected |
SUSE Manager Retail Branch Server 4.3 | kernel-default | Not affected |
SUSE Manager Retail Branch Server 4.3 | kernel-source | Not affected |
SUSE Manager Retail Branch Server LTS 4.3 | kernel-default | Not affected |
SUSE Manager Retail Branch Server LTS 4.3 | kernel-source | Not affected |
SUSE Manager Server 4.3 | kernel-default | Not affected |
SUSE Manager Server 4.3 | kernel-source | Not affected |
SUSE Manager Server LTS 4.3 | kernel-default | Not affected |
SUSE Manager Server LTS 4.3 | kernel-source | Not affected |
Products past their end of life and not receiving proactive updates anymore. | ||
SUSE CaaS Platform 4.0 | kernel-source | Not affected |
SUSE Enterprise Storage 6 | kernel-source | Not affected |
SUSE Enterprise Storage 7 | kernel-source | Not affected |
SUSE Enterprise Storage 7.1 | kernel-source | Not affected |
SUSE Linux Enterprise Desktop 11 SP4 | kernel-source | Not affected |
SUSE Linux Enterprise Desktop 12 SP2 | kernel-source | Not affected |
SUSE Linux Enterprise Desktop 12 SP4 | kernel-source | Not affected |
SUSE Linux Enterprise Desktop 15 | kernel-source | Not affected |
SUSE Linux Enterprise Desktop 15 SP1 | kernel-source | Not affected |
SUSE Linux Enterprise Desktop 15 SP2 | kernel-source | Not affected |
SUSE Linux Enterprise Desktop 15 SP3 | kernel-source | Not affected |
SUSE Linux Enterprise Desktop 15 SP4 | kernel-source | Not affected |
SUSE Linux Enterprise Desktop 15 SP5 | kernel-source | Not affected |
SUSE Linux Enterprise High Performance Computing 15 | kernel-source | Not affected |
SUSE Linux Enterprise High Performance Computing 15 SP1 | kernel-source | Not affected |
SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS | kernel-source | Not affected |
SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS | kernel-source | Not affected |
SUSE Linux Enterprise High Performance Computing 15 SP2 | kernel-source | Not affected |
SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS | kernel-source | Not affected |
SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS | kernel-source | Not affected |
SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS | kernel-source | Not affected |
SUSE Linux Enterprise High Performance Computing 15-ESPOS | kernel-source | Not affected |
SUSE Linux Enterprise High Performance Computing 15-LTSS | kernel-source | Not affected |
SUSE Linux Enterprise Micro 5.0 | kernel-default | Not affected |
SUSE Linux Enterprise Module for Basesystem 15 | kernel-source | Not affected |
SUSE Linux Enterprise Module for Basesystem 15 SP1 | kernel-source | Not affected |
SUSE Linux Enterprise Module for Basesystem 15 SP2 | kernel-source | Not affected |
SUSE Linux Enterprise Module for Development Tools 15 | kernel-source | Not affected |
SUSE Linux Enterprise Module for Development Tools 15 SP1 | kernel-source | Not affected |
SUSE Linux Enterprise Module for Development Tools 15 SP2 | kernel-source | Not affected |
SUSE Linux Enterprise Point of Sale 12 SP2-CLIENT | kernel-source | Not affected |
SUSE Linux Enterprise Real Time 15 SP2 | kernel-source | Not affected |
SUSE Linux Enterprise Real Time 15 SP3 | kernel-source | Not affected |
SUSE Linux Enterprise Real Time 15 SP3 | kernel-source-rt | Not affected |
SUSE Linux Enterprise Real Time 15 SP4 | kernel-source | Not affected |
SUSE Linux Enterprise Real Time 15 SP4 | kernel-source-rt | Not affected |
SUSE Linux Enterprise Real Time 15 SP5 | kernel-source-rt | Not affected |
SUSE Linux Enterprise Server 11 SP4 | kernel-source | Not affected |
SUSE Linux Enterprise Server 11 SP4 LTSS | kernel-default | Not affected |
SUSE Linux Enterprise Server 11 SP4 LTSS | kernel-source | Not affected |
SUSE Linux Enterprise Server 11 SP4-LTSS | kernel-source | Not affected |
SUSE Linux Enterprise Server 12 SP2 | kernel-source | Not affected |
SUSE Linux Enterprise Server 12 SP2-BCL | kernel-source | Not affected |
SUSE Linux Enterprise Server 12 SP2-ESPOS | kernel-source | Not affected |
SUSE Linux Enterprise Server 12 SP2-LTSS | kernel-default | Not affected |
SUSE Linux Enterprise Server 12 SP2-LTSS | kernel-source | Not affected |
SUSE Linux Enterprise Server 12 SP4 | kernel-source | Not affected |
SUSE Linux Enterprise Server 12 SP4-ESPOS | kernel-source | Not affected |
SUSE Linux Enterprise Server 12 SP4-LTSS | kernel-default | Not affected |
SUSE Linux Enterprise Server 12 SP4-LTSS | kernel-source | Not affected |
SUSE Linux Enterprise Server 15 | kernel-source | Not affected |
SUSE Linux Enterprise Server 15 SP1 | kernel-source | Not affected |
SUSE Linux Enterprise Server 15 SP1-BCL | kernel-source | Not affected |
SUSE Linux Enterprise Server 15 SP1-LTSS | kernel-default | Not affected |
SUSE Linux Enterprise Server 15 SP1-LTSS | kernel-source | Not affected |
SUSE Linux Enterprise Server 15 SP2 | kernel-source | Not affected |
SUSE Linux Enterprise Server 15 SP2-BCL | kernel-source | Not affected |
SUSE Linux Enterprise Server 15 SP2-LTSS | kernel-default | Not affected |
SUSE Linux Enterprise Server 15 SP2-LTSS | kernel-source | Not affected |
SUSE Linux Enterprise Server 15 SP3-BCL | kernel-source | Not affected |
SUSE Linux Enterprise Server 15-LTSS | kernel-default | Not affected |
SUSE Linux Enterprise Server 15-LTSS | kernel-source | Not affected |
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 | kernel-source | Not affected |
SUSE Linux Enterprise Server for SAP Applications 12 SP2 | kernel-source | Not affected |
SUSE Linux Enterprise Server for SAP Applications 12 SP4 | kernel-source | Not affected |
SUSE Linux Enterprise Server for SAP Applications 15 | kernel-source | Not affected |
SUSE Linux Enterprise Server for SAP Applications 15 SP1 | kernel-source | Not affected |
SUSE Linux Enterprise Server for SAP Applications 15 SP2 | kernel-source | Not affected |
SUSE Linux Enterprise Server for SAP Applications 15 SP3 | kernel-default | Not affected |
SUSE Linux Enterprise Server for SAP Applications 15 SP3 | kernel-source | Not affected |
SUSE Linux Enterprise Server for SAP Applications 15 SP4 | kernel-default | Not affected |
SUSE Linux Enterprise Server for SAP Applications 15 SP4 | kernel-source | Not affected |
SUSE Linux Enterprise Server for SAP Applications 15 SP5 | kernel-default | Not affected |
SUSE Linux Enterprise Server for SAP Applications 15 SP5 | kernel-source | Not affected |
SUSE Linux Enterprise Server for SAP Applications 15 SP5 | kernel-source-azure | Unsupported |
SUSE Manager Proxy 4.0 | kernel-source | Not affected |
SUSE Manager Proxy 4.1 | kernel-source | Not affected |
SUSE Manager Proxy 4.2 | kernel-source | Not affected |
SUSE Manager Retail Branch Server 4.0 | kernel-source | Not affected |
SUSE Manager Retail Branch Server 4.1 | kernel-source | Not affected |
SUSE Manager Retail Branch Server 4.2 | kernel-source | Not affected |
SUSE Manager Server 4.0 | kernel-source | Not affected |
SUSE Manager Server 4.1 | kernel-source | Not affected |
SUSE Manager Server 4.2 | kernel-source | Not affected |
SUSE OpenStack Cloud 7 | kernel-source | Not affected |
SUSE OpenStack Cloud 9 | kernel-source | Not affected |
SUSE OpenStack Cloud Crowbar 9 | kernel-source | Not affected |
SUSE Real Time Module 15 SP3 | kernel-source-rt | Not affected |
SUSE Real Time Module 15 SP4 | kernel-source-rt | Not affected |
SUSE Real Time Module 15 SP5 | kernel-source-rt | Not affected |
openSUSE Leap 15.3 | kernel-source | Not affected |
openSUSE Leap 15.3 | kernel-source-rt | Not affected |
openSUSE Leap 15.4 | kernel-source | Not affected |
openSUSE Leap 15.4 | kernel-source-azure | Unsupported |
openSUSE Leap 15.4 | kernel-source-rt | Not affected |
openSUSE Leap 15.5 | kernel-source | Not affected |
openSUSE Leap 15.5 | kernel-source-azure | Unsupported |
openSUSE Leap 15.5 | kernel-source-rt | Not affected |
SUSE Timeline for this CVE
CVE page created: Mon Jul 28 16:00:27 2025CVE page last modified: Tue Sep 9 12:28:53 2025