Vulnerability-Lookup

CVE-2019-19338 (GCVE-0-2019-19338)

Vulnerability from cvelistv5 – Published: 2020-07-13 16:04 – Updated: 2024-08-05 02:16

Summary

A flaw was found in the fix for CVE-2019-11135, in the Linux upstream kernel versions before 5.5 where, the way Intel CPUs handle speculative execution of instructions when a TSX Asynchronous Abort (TAA) error occurs. When a guest is running on a host CPU affected by the TAA flaw (TAA_NO=0), but is not affected by the MDS issue (MDS_NO=1), the guest was to clear the affected buffers by using a VERW instruction mechanism. But when the MDS_NO=1 bit was exported to the guests, the guests did not use the VERW mechanism to clear the affected buffers. This issue affects guests running on Cascade Lake CPUs and requires that host has 'TSX' enabled. Confidentiality of data is the highest threat associated with this vulnerability.

Severity

5.5 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CWE

Assigner

redhat

References

3 references

URL	Tags
https://www.openwall.com/lists/oss-security/2019/…	x_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2…	x_refsource_CONFIRM
https://software.intel.com/security-software-guid…	x_refsource_MISC

Impacted products

1 product

Vendor	Product	Version
[UNKNOWN]	Linux Kernel	Affected: before 5.5

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T02:16:46.895Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.openwall.com/lists/oss-security/2019/12/10/3"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-19338"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://software.intel.com/security-software-guidance/insights/deep-dive-intel-transactional-synchronization-extensions-intel-tsx-asynchronous-abort"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Linux Kernel",
          "vendor": "[UNKNOWN]",
          "versions": [
            {
              "status": "affected",
              "version": "before 5.5"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A flaw was found in the fix for CVE-2019-11135, in the Linux upstream kernel versions before 5.5 where, the way Intel CPUs handle speculative execution of instructions when a TSX Asynchronous Abort (TAA) error occurs. When a guest is running on a host CPU affected by the TAA flaw (TAA_NO=0), but is not affected by the MDS issue (MDS_NO=1), the guest was to clear the affected buffers by using a VERW instruction mechanism. But when the MDS_NO=1 bit was exported to the guests, the guests did not use the VERW mechanism to clear the affected buffers. This issue affects guests running on Cascade Lake CPUs and requires that host has \u0027TSX\u0027 enabled. Confidentiality of data is the highest threat associated with this vulnerability."
        }
      ],
      "metrics": [
        {
          "cvssV3_0": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.0"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-385",
              "description": "CWE-385",
              "lang": "en",
              "type": "CWE"
            }
          ]
        },
        {
          "descriptions": [
            {
              "cweId": "CWE-203",
              "description": "CWE-203",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2020-07-13T16:04:00.000Z",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.openwall.com/lists/oss-security/2019/12/10/3"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-19338"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://software.intel.com/security-software-guidance/insights/deep-dive-intel-transactional-synchronization-extensions-intel-tsx-asynchronous-abort"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "secalert@redhat.com",
          "ID": "CVE-2019-19338",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Linux Kernel",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "before 5.5"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "[UNKNOWN]"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A flaw was found in the fix for CVE-2019-11135, in the Linux upstream kernel versions before 5.5 where, the way Intel CPUs handle speculative execution of instructions when a TSX Asynchronous Abort (TAA) error occurs. When a guest is running on a host CPU affected by the TAA flaw (TAA_NO=0), but is not affected by the MDS issue (MDS_NO=1), the guest was to clear the affected buffers by using a VERW instruction mechanism. But when the MDS_NO=1 bit was exported to the guests, the guests did not use the VERW mechanism to clear the affected buffers. This issue affects guests running on Cascade Lake CPUs and requires that host has \u0027TSX\u0027 enabled. Confidentiality of data is the highest threat associated with this vulnerability."
            }
          ]
        },
        "impact": {
          "cvss": [
            [
              {
                "vectorString": "5.5/CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
                "version": "3.0"
              }
            ]
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-385"
                }
              ]
            },
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-203"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://www.openwall.com/lists/oss-security/2019/12/10/3",
              "refsource": "MISC",
              "url": "https://www.openwall.com/lists/oss-security/2019/12/10/3"
            },
            {
              "name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-19338",
              "refsource": "CONFIRM",
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-19338"
            },
            {
              "name": "https://software.intel.com/security-software-guidance/insights/deep-dive-intel-transactional-synchronization-extensions-intel-tsx-asynchronous-abort",
              "refsource": "MISC",
              "url": "https://software.intel.com/security-software-guidance/insights/deep-dive-intel-transactional-synchronization-extensions-intel-tsx-asynchronous-abort"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2019-19338",
    "datePublished": "2020-07-13T16:04:00.000Z",
    "dateReserved": "2019-11-27T00:00:00.000Z",
    "dateUpdated": "2024-08-05T02:16:46.895Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2019-19338",
      "date": "2026-05-27",
      "epss": "0.00091",
      "percentile": "0.25434"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2019-19338\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2020-07-13T17:15:11.247\",\"lastModified\":\"2024-11-21T04:34:36.347\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A flaw was found in the fix for CVE-2019-11135, in the Linux upstream kernel versions before 5.5 where, the way Intel CPUs handle speculative execution of instructions when a TSX Asynchronous Abort (TAA) error occurs. When a guest is running on a host CPU affected by the TAA flaw (TAA_NO=0), but is not affected by the MDS issue (MDS_NO=1), the guest was to clear the affected buffers by using a VERW instruction mechanism. But when the MDS_NO=1 bit was exported to the guests, the guests did not use the VERW mechanism to clear the affected buffers. This issue affects guests running on Cascade Lake CPUs and requires that host has \u0027TSX\u0027 enabled. Confidentiality of data is the highest threat associated with this vulnerability.\"},{\"lang\":\"es\",\"value\":\"Se encontr\u00f3 un fallo en la correcci\u00f3n para CVE-2019-11135, en Linux antes del kernel versiones anteriores a 5.5 donde, la manera en que las CPU Intel manejan una ejecuci\u00f3n especulativa de instrucciones cuando se produce un error TSX Asynchronous Abort (TAA). Cuando un invitado es ejecutado en una CPU host afectada por el fallo de TAA (TAA_NO=0), pero no est\u00e1 afectado por el problema de MDS (MDS_NO=1), el invitado deb\u00eda limpiar los b\u00faferes afectados al usar un mecanismo de instrucci\u00f3n VERW. Pero cuando se export\u00f3 el bit MDS_NO=1 a los invitados, los invitados no usaron el mecanismo VERW para borrar los b\u00faferes afectados. Este problema afecta a los invitados que son ejecutados en CPU Cascade Lake y requiere que el host tenga habilitado \\\"TSX\\\". La confidencialidad de los datos es la mayor amenaza asociada con esta vulnerabilidad\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N\",\"baseScore\":5.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":1.8,\"impactScore\":3.6}],\"cvssMetricV30\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N\",\"baseScore\":5.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":1.8,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:L/Au:N/C:P/I:N/A:N\",\"baseScore\":2.1,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"LOW\",\"exploitabilityScore\":3.9,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-203\"},{\"lang\":\"en\",\"value\":\"CWE-385\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-203\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.5\",\"matchCriteriaId\":\"5835B8E0-83CB-4B09-A21A-3CB59AF41F62\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2F6AB192-9D7D-4A9A-8995-E53A9DE9EAFC\"}]}]}],\"references\":[{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-19338\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Issue Tracking\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://software.intel.com/security-software-guidance/insights/deep-dive-intel-transactional-synchronization-extensions-intel-tsx-asynchronous-abort\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.openwall.com/lists/oss-security/2019/12/10/3\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Mailing List\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-19338\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://software.intel.com/security-software-guidance/insights/deep-dive-intel-transactional-synchronization-extensions-intel-tsx-asynchronous-abort\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.openwall.com/lists/oss-security/2019/12/10/3\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Patch\",\"Third Party Advisory\"]}]}}"
  }
}

CERTFR-2020-AVI-210

Vulnerability from certfr_avis - Published: 2020-04-15 - Updated: 2020-04-15

De multiples vulnérabilités ont été découvertes dans le noyau Linux de Red Hat. Elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance et une atteinte à la confidentialité des données.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

References

Title

Publication Time

CERTFR-2022-AVI-267

Vulnerability from certfr_avis - Published: 2022-03-23 - Updated: 2022-03-23

De multiples vulnérabilités ont été découvertes dans Juniper Networks Junos Space. Elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

	Vendor	Product	Description
	Juniper Networks	Junos Space	Juniper Networks Junos Space versions antérieures à 21.1R1

References

Title

Publication Time

CNVD-2020-02148

Vulnerability from cnvd - Published: 2020-01-14

Title

Linux kernel信息泄露漏洞（CNVD-2020-02148）

Description

Linux kernel是美国Linux基金会发布的开源操作系统Linux所使用的内核。 Linux kernel中存在安全漏洞。攻击者可利用该漏洞获取敏感信息。

Severity

低

Patch Name

Linux kernel信息泄露漏洞（CNVD-2020-02148）的补丁

Patch Description

Linux kernel是美国Linux基金会发布的开源操作系统Linux所使用的内核。 Linux kernel中存在安全漏洞。攻击者可利用该漏洞获取敏感信息。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

目前厂商已发布升级补丁以修复漏洞，补丁获取链接： https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=cbbaa2727aa3ae9e0a844803da7cef7fd3b94f2b

Reference

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=cbbaa2727aa3ae9e0a844803da7cef7fd3b94f2b

Impacted products

Name
Linux Linux kernel

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2019-19338",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2019-19338"
    }
  },
  "description": "Linux kernel\u662f\u7f8e\u56fdLinux\u57fa\u91d1\u4f1a\u53d1\u5e03\u7684\u5f00\u6e90\u64cd\u4f5c\u7cfb\u7edfLinux\u6240\u4f7f\u7528\u7684\u5185\u6838\u3002\n\nLinux kernel\u4e2d\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u83b7\u53d6\u654f\u611f\u4fe1\u606f\u3002",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=cbbaa2727aa3ae9e0a844803da7cef7fd3b94f2b",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2020-02148",
  "openTime": "2020-01-14",
  "patchDescription": "Linux kernel\u662f\u7f8e\u56fdLinux\u57fa\u91d1\u4f1a\u53d1\u5e03\u7684\u5f00\u6e90\u64cd\u4f5c\u7cfb\u7edfLinux\u6240\u4f7f\u7528\u7684\u5185\u6838\u3002\r\n\r\nLinux kernel\u4e2d\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u83b7\u53d6\u654f\u611f\u4fe1\u606f\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Linux kernel\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff08CNVD-2020-02148\uff09\u7684\u8865\u4e01",
  "products": {
    "product": "Linux Linux kernel"
  },
  "referenceLink": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=cbbaa2727aa3ae9e0a844803da7cef7fd3b94f2b",
  "serverity": "\u4f4e",
  "submitTime": "2019-12-27",
  "title": "Linux kernel\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\uff08CNVD-2020-02148\uff09"
}

FKIE_CVE-2019-19338

Vulnerability from fkie_nvd - Published: 2020-07-13 17:15 - Updated: 2024-11-21 04:34

Severity

5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Summary

References

URL	Tags
secalert@redhat.com	https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-19338	Issue Tracking, Patch, Third Party Advisory
secalert@redhat.com	https://software.intel.com/security-software-guidance/insights/deep-dive-intel-transactional-synchronization-extensions-intel-tsx-asynchronous-abort	Third Party Advisory
secalert@redhat.com	https://www.openwall.com/lists/oss-security/2019/12/10/3	Mailing List, Patch, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-19338	Issue Tracking, Patch, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://software.intel.com/security-software-guidance/insights/deep-dive-intel-transactional-synchronization-extensions-intel-tsx-asynchronous-abort	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://www.openwall.com/lists/oss-security/2019/12/10/3	Mailing List, Patch, Third Party Advisory

Impacted products

	Vendor	Product	Version
	linux	linux_kernel	*
	redhat	enterprise_linux	6.0

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "5835B8E0-83CB-4B09-A21A-3CB59AF41F62",
              "versionEndExcluding": "5.5",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "2F6AB192-9D7D-4A9A-8995-E53A9DE9EAFC",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "A flaw was found in the fix for CVE-2019-11135, in the Linux upstream kernel versions before 5.5 where, the way Intel CPUs handle speculative execution of instructions when a TSX Asynchronous Abort (TAA) error occurs. When a guest is running on a host CPU affected by the TAA flaw (TAA_NO=0), but is not affected by the MDS issue (MDS_NO=1), the guest was to clear the affected buffers by using a VERW instruction mechanism. But when the MDS_NO=1 bit was exported to the guests, the guests did not use the VERW mechanism to clear the affected buffers. This issue affects guests running on Cascade Lake CPUs and requires that host has \u0027TSX\u0027 enabled. Confidentiality of data is the highest threat associated with this vulnerability."
    },
    {
      "lang": "es",
      "value": "Se encontr\u00f3 un fallo en la correcci\u00f3n para CVE-2019-11135, en Linux antes del kernel versiones anteriores a 5.5 donde, la manera en que las CPU Intel manejan una ejecuci\u00f3n especulativa de instrucciones cuando se produce un error TSX Asynchronous Abort (TAA). Cuando un invitado es ejecutado en una CPU host afectada por el fallo de TAA (TAA_NO=0), pero no est\u00e1 afectado por el problema de MDS (MDS_NO=1), el invitado deb\u00eda limpiar los b\u00faferes afectados al usar un mecanismo de instrucci\u00f3n VERW. Pero cuando se export\u00f3 el bit MDS_NO=1 a los invitados, los invitados no usaron el mecanismo VERW para borrar los b\u00faferes afectados. Este problema afecta a los invitados que son ejecutados en CPU Cascade Lake y requiere que el host tenga habilitado \"TSX\". La confidencialidad de los datos es la mayor amenaza asociada con esta vulnerabilidad"
    }
  ],
  "id": "CVE-2019-19338",
  "lastModified": "2024-11-21T04:34:36.347",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "LOW",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "LOCAL",
          "authentication": "NONE",
          "availabilityImpact": "NONE",
          "baseScore": 2.1,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "NONE",
          "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N",
          "version": "2.0"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ],
    "cvssMetricV30": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "NONE",
          "baseScore": 5.5,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "NONE",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
          "version": "3.0"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 3.6,
        "source": "secalert@redhat.com",
        "type": "Secondary"
      }
    ],
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "NONE",
          "baseScore": 5.5,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "NONE",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
          "version": "3.1"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 3.6,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2020-07-13T17:15:11.247",
  "references": [
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Issue Tracking",
        "Patch",
        "Third Party Advisory"
      ],
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-19338"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://software.intel.com/security-software-guidance/insights/deep-dive-intel-transactional-synchronization-extensions-intel-tsx-asynchronous-abort"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Mailing List",
        "Patch",
        "Third Party Advisory"
      ],
      "url": "https://www.openwall.com/lists/oss-security/2019/12/10/3"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Issue Tracking",
        "Patch",
        "Third Party Advisory"
      ],
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-19338"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://software.intel.com/security-software-guidance/insights/deep-dive-intel-transactional-synchronization-extensions-intel-tsx-asynchronous-abort"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Mailing List",
        "Patch",
        "Third Party Advisory"
      ],
      "url": "https://www.openwall.com/lists/oss-security/2019/12/10/3"
    }
  ],
  "sourceIdentifier": "secalert@redhat.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-203"
        },
        {
          "lang": "en",
          "value": "CWE-385"
        }
      ],
      "source": "secalert@redhat.com",
      "type": "Secondary"
    },
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-203"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GHSA-QV7J-3Q84-2Q98

Vulnerability from github – Published: 2022-05-24 17:22 – Updated: 2022-05-24 17:22

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2019-19338"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2020-07-13T17:15:00Z",
    "severity": "LOW"
  },
  "details": "A flaw was found in the fix for CVE-2019-11135, in the Linux upstream kernel versions before 5.5 where, the way Intel CPUs handle speculative execution of instructions when a TSX Asynchronous Abort (TAA) error occurs. When a guest is running on a host CPU affected by the TAA flaw (TAA_NO=0), but is not affected by the MDS issue (MDS_NO=1), the guest was to clear the affected buffers by using a VERW instruction mechanism. But when the MDS_NO=1 bit was exported to the guests, the guests did not use the VERW mechanism to clear the affected buffers. This issue affects guests running on Cascade Lake CPUs and requires that host has \u0027TSX\u0027 enabled. Confidentiality of data is the highest threat associated with this vulnerability.",
  "id": "GHSA-qv7j-3q84-2q98",
  "modified": "2022-05-24T17:22:46Z",
  "published": "2022-05-24T17:22:46Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-19338"
    },
    {
      "type": "WEB",
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-19338"
    },
    {
      "type": "WEB",
      "url": "https://software.intel.com/security-software-guidance/insights/deep-dive-intel-transactional-synchronization-extensions-intel-tsx-asynchronous-abort"
    },
    {
      "type": "WEB",
      "url": "https://www.openwall.com/lists/oss-security/2019/12/10/3"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

GSD-2019-19338

Vulnerability from gsd - Updated: 2023-12-13 01:23

Details

Aliases

CVE-2019-19338

Aliases

CVE-2019-19338

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2019-19338",
    "description": "A flaw was found in the fix for CVE-2019-11135, in the Linux upstream kernel versions before 5.5 where, the way Intel CPUs handle speculative execution of instructions when a TSX Asynchronous Abort (TAA) error occurs. When a guest is running on a host CPU affected by the TAA flaw (TAA_NO=0), but is not affected by the MDS issue (MDS_NO=1), the guest was to clear the affected buffers by using a VERW instruction mechanism. But when the MDS_NO=1 bit was exported to the guests, the guests did not use the VERW mechanism to clear the affected buffers. This issue affects guests running on Cascade Lake CPUs and requires that host has \u0027TSX\u0027 enabled. Confidentiality of data is the highest threat associated with this vulnerability.",
    "id": "GSD-2019-19338",
    "references": [
      "https://www.suse.com/security/cve/CVE-2019-19338.html",
      "https://access.redhat.com/errata/RHSA-2020:1465",
      "https://access.redhat.com/errata/RHSA-2020:0839",
      "https://access.redhat.com/errata/RHSA-2020:0834",
      "https://access.redhat.com/errata/RHSA-2020:0339",
      "https://access.redhat.com/errata/RHSA-2020:0328",
      "https://linux.oracle.com/cve/CVE-2019-19338.html"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2019-19338"
      ],
      "details": "A flaw was found in the fix for CVE-2019-11135, in the Linux upstream kernel versions before 5.5 where, the way Intel CPUs handle speculative execution of instructions when a TSX Asynchronous Abort (TAA) error occurs. When a guest is running on a host CPU affected by the TAA flaw (TAA_NO=0), but is not affected by the MDS issue (MDS_NO=1), the guest was to clear the affected buffers by using a VERW instruction mechanism. But when the MDS_NO=1 bit was exported to the guests, the guests did not use the VERW mechanism to clear the affected buffers. This issue affects guests running on Cascade Lake CPUs and requires that host has \u0027TSX\u0027 enabled. Confidentiality of data is the highest threat associated with this vulnerability.",
      "id": "GSD-2019-19338",
      "modified": "2023-12-13T01:23:53.727961Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "secalert@redhat.com",
        "ID": "CVE-2019-19338",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "Linux Kernel",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "before 5.5"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "[UNKNOWN]"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "A flaw was found in the fix for CVE-2019-11135, in the Linux upstream kernel versions before 5.5 where, the way Intel CPUs handle speculative execution of instructions when a TSX Asynchronous Abort (TAA) error occurs. When a guest is running on a host CPU affected by the TAA flaw (TAA_NO=0), but is not affected by the MDS issue (MDS_NO=1), the guest was to clear the affected buffers by using a VERW instruction mechanism. But when the MDS_NO=1 bit was exported to the guests, the guests did not use the VERW mechanism to clear the affected buffers. This issue affects guests running on Cascade Lake CPUs and requires that host has \u0027TSX\u0027 enabled. Confidentiality of data is the highest threat associated with this vulnerability."
          }
        ]
      },
      "impact": {
        "cvss": [
          [
            {
              "vectorString": "5.5/CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
              "version": "3.0"
            }
          ]
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "CWE-385"
              }
            ]
          },
          {
            "description": [
              {
                "lang": "eng",
                "value": "CWE-203"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://www.openwall.com/lists/oss-security/2019/12/10/3",
            "refsource": "MISC",
            "url": "https://www.openwall.com/lists/oss-security/2019/12/10/3"
          },
          {
            "name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-19338",
            "refsource": "CONFIRM",
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-19338"
          },
          {
            "name": "https://software.intel.com/security-software-guidance/insights/deep-dive-intel-transactional-synchronization-extensions-intel-tsx-asynchronous-abort",
            "refsource": "MISC",
            "url": "https://software.intel.com/security-software-guidance/insights/deep-dive-intel-transactional-synchronization-extensions-intel-tsx-asynchronous-abort"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndExcluding": "5.5",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          },
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "secalert@redhat.com",
          "ID": "CVE-2019-19338"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "A flaw was found in the fix for CVE-2019-11135, in the Linux upstream kernel versions before 5.5 where, the way Intel CPUs handle speculative execution of instructions when a TSX Asynchronous Abort (TAA) error occurs. When a guest is running on a host CPU affected by the TAA flaw (TAA_NO=0), but is not affected by the MDS issue (MDS_NO=1), the guest was to clear the affected buffers by using a VERW instruction mechanism. But when the MDS_NO=1 bit was exported to the guests, the guests did not use the VERW mechanism to clear the affected buffers. This issue affects guests running on Cascade Lake CPUs and requires that host has \u0027TSX\u0027 enabled. Confidentiality of data is the highest threat associated with this vulnerability."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-203"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://www.openwall.com/lists/oss-security/2019/12/10/3",
              "refsource": "MISC",
              "tags": [
                "Mailing List",
                "Patch",
                "Third Party Advisory"
              ],
              "url": "https://www.openwall.com/lists/oss-security/2019/12/10/3"
            },
            {
              "name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-19338",
              "refsource": "CONFIRM",
              "tags": [
                "Issue Tracking",
                "Patch",
                "Third Party Advisory"
              ],
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-19338"
            },
            {
              "name": "https://software.intel.com/security-software-guidance/insights/deep-dive-intel-transactional-synchronization-extensions-intel-tsx-asynchronous-abort",
              "refsource": "MISC",
              "tags": [
                "Third Party Advisory"
              ],
              "url": "https://software.intel.com/security-software-guidance/insights/deep-dive-intel-transactional-synchronization-extensions-intel-tsx-asynchronous-abort"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "acInsufInfo": false,
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "availabilityImpact": "NONE",
            "baseScore": 2.1,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "NONE",
            "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N",
            "version": "2.0"
          },
          "exploitabilityScore": 3.9,
          "impactScore": 2.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "LOW",
          "userInteractionRequired": false
        },
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "exploitabilityScore": 1.8,
          "impactScore": 3.6
        }
      },
      "lastModifiedDate": "2020-07-21T17:17Z",
      "publishedDate": "2020-07-13T17:15Z"
    }
  }
}

MSRC_CVE-2019-19338

Vulnerability from csaf_microsoft - Published: 2020-07-02 00:00 - Updated: 2020-09-25 00:00

Summary

A flaw was found in the fix for CVE-2019-11135 in the Linux upstream kernel versions before 5.5 where the way Intel CPUs handle speculative execution of instructions when a TSX Asynchronous Abort (TAA) error occurs. When a guest is running on a host CPU affected by the TAA flaw (TAA_NO=0) but is not affected by the MDS issue (MDS_NO=1) the guest was to clear the affected buffers by using a VERW instruction mechanism. But when the MDS_NO=1 bit was exported to the guests the guests did not use the VERW mechanism to clear the affected buffers. This issue affects guests running on Cascade Lake CPUs and requires that host has 'TSX' enabled. Confidentiality of data is the highest threat associated with this vulnerability.

Notes

Additional Resources: To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle

Disclaimer: The information provided in the Microsoft Knowledge Base is provided \"as is\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.

CVE-2019-19338

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CWE-203 - Observable Discrepancy

Affected products

Fixed 1 product

Product	Identifier	Version	Remediation
Unresolved product id: 17036-16820		—

Known affected 1 product

Product	Identifier	Version	Remediation
Unresolved product id: 16820-1		—	Vendor Fix fix

References

4 references

URL	Category
https://msrc.microsoft.com/csaf/vex/2020/msrc_cve…	self
https://support.microsoft.com/lifecycle	external
https://www.first.org/cvss	external
https://msrc.microsoft.com/csaf/vex/2020/msrc_cve…	self

JSON

To clipboard

{
  "document": {
    "category": "csaf_vex",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Public",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en-US",
    "notes": [
      {
        "category": "general",
        "text": "To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle",
        "title": "Additional Resources"
      },
      {
        "category": "legal_disclaimer",
        "text": "The information provided in the Microsoft Knowledge Base is provided \\\"as is\\\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.",
        "title": "Disclaimer"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "secure@microsoft.com",
      "name": "Microsoft Security Response Center",
      "namespace": "https://msrc.microsoft.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "CVE-2019-19338 A flaw was found in the fix for CVE-2019-11135 in the Linux upstream kernel versions before 5.5 where the way Intel CPUs handle speculative execution of instructions when a TSX Asynchronous Abort (TAA) error occurs. When a guest is running on a host CPU affected by the TAA flaw (TAA_NO=0) but is not affected by the MDS issue (MDS_NO=1) the guest was to clear the affected buffers by using a VERW instruction mechanism. But when the MDS_NO=1 bit was exported to the guests the guests did not use the VERW mechanism to clear the affected buffers. This issue affects guests running on Cascade Lake CPUs and requires that host has \u0027TSX\u0027 enabled. Confidentiality of data is the highest threat associated with this vulnerability. - VEX",
        "url": "https://msrc.microsoft.com/csaf/vex/2020/msrc_cve-2019-19338.json"
      },
      {
        "category": "external",
        "summary": "Microsoft Support Lifecycle",
        "url": "https://support.microsoft.com/lifecycle"
      },
      {
        "category": "external",
        "summary": "Common Vulnerability Scoring System",
        "url": "https://www.first.org/cvss"
      }
    ],
    "title": "A flaw was found in the fix for CVE-2019-11135 in the Linux upstream kernel versions before 5.5 where the way Intel CPUs handle speculative execution of instructions when a TSX Asynchronous Abort (TAA) error occurs. When a guest is running on a host CPU affected by the TAA flaw (TAA_NO=0) but is not affected by the MDS issue (MDS_NO=1) the guest was to clear the affected buffers by using a VERW instruction mechanism. But when the MDS_NO=1 bit was exported to the guests the guests did not use the VERW mechanism to clear the affected buffers. This issue affects guests running on Cascade Lake CPUs and requires that host has \u0027TSX\u0027 enabled. Confidentiality of data is the highest threat associated with this vulnerability.",
    "tracking": {
      "current_release_date": "2020-09-25T00:00:00.000Z",
      "generator": {
        "date": "2025-12-27T21:15:01.190Z",
        "engine": {
          "name": "MSRC Generator",
          "version": "1.0"
        }
      },
      "id": "msrc_CVE-2019-19338",
      "initial_release_date": "2020-07-02T00:00:00.000Z",
      "revision_history": [
        {
          "date": "2020-09-25T00:00:00.000Z",
          "legacy_version": "1",
          "number": "1",
          "summary": "Information published."
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "1.0",
                "product": {
                  "name": "CBL Mariner 1.0",
                  "product_id": "16820"
                }
              }
            ],
            "category": "product_name",
            "name": "Azure Linux"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003ccm1 kernel 5.4.91-3",
                "product": {
                  "name": "\u003ccm1 kernel 5.4.91-3",
                  "product_id": "1"
                }
              },
              {
                "category": "product_version",
                "name": "cm1 kernel 5.4.91-3",
                "product": {
                  "name": "cm1 kernel 5.4.91-3",
                  "product_id": "17036"
                }
              }
            ],
            "category": "product_name",
            "name": "kernel"
          }
        ],
        "category": "vendor",
        "name": "Microsoft"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "\u003ccm1 kernel 5.4.91-3 as a component of CBL Mariner 1.0",
          "product_id": "16820-1"
        },
        "product_reference": "1",
        "relates_to_product_reference": "16820"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cm1 kernel 5.4.91-3 as a component of CBL Mariner 1.0",
          "product_id": "17036-16820"
        },
        "product_reference": "17036",
        "relates_to_product_reference": "16820"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2019-19338",
      "cwe": {
        "id": "CWE-203",
        "name": "Observable Discrepancy"
      },
      "notes": [
        {
          "category": "general",
          "text": "redhat",
          "title": "Assigning CNA"
        }
      ],
      "product_status": {
        "fixed": [
          "17036-16820"
        ],
        "known_affected": [
          "16820-1"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2019-19338 A flaw was found in the fix for CVE-2019-11135 in the Linux upstream kernel versions before 5.5 where the way Intel CPUs handle speculative execution of instructions when a TSX Asynchronous Abort (TAA) error occurs. When a guest is running on a host CPU affected by the TAA flaw (TAA_NO=0) but is not affected by the MDS issue (MDS_NO=1) the guest was to clear the affected buffers by using a VERW instruction mechanism. But when the MDS_NO=1 bit was exported to the guests the guests did not use the VERW mechanism to clear the affected buffers. This issue affects guests running on Cascade Lake CPUs and requires that host has \u0027TSX\u0027 enabled. Confidentiality of data is the highest threat associated with this vulnerability. - VEX",
          "url": "https://msrc.microsoft.com/csaf/vex/2020/msrc_cve-2019-19338.json"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2020-09-25T00:00:00.000Z",
          "details": "5.4.91-3:Security Update:https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade",
          "product_ids": [
            "16820-1"
          ],
          "url": "https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "NONE",
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "environmentalsScore": 0.0,
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "temporalScore": 5.5,
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "16820-1"
          ]
        }
      ],
      "title": "A flaw was found in the fix for CVE-2019-11135 in the Linux upstream kernel versions before 5.5 where the way Intel CPUs handle speculative execution of instructions when a TSX Asynchronous Abort (TAA) error occurs. When a guest is running on a host CPU affected by the TAA flaw (TAA_NO=0) but is not affected by the MDS issue (MDS_NO=1) the guest was to clear the affected buffers by using a VERW instruction mechanism. But when the MDS_NO=1 bit was exported to the guests the guests did not use the VERW mechanism to clear the affected buffers. This issue affects guests running on Cascade Lake CPUs and requires that host has \u0027TSX\u0027 enabled. Confidentiality of data is the highest threat associated with this vulnerability."
    }
  ]
}

OPENSUSE-SU-2020:0336-1

Vulnerability from csaf_opensuse - Published: 2020-03-13 05:15 - Updated: 2020-03-13 05:15

Summary

Security update for the Linux Kernel

Severity

Important

Notes

Title of the patch: Security update for the Linux Kernel

Description of the patch: The openSUSE Leap 15.1 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2019-14615: Insufficient control flow in certain data structures for some Intel(R) Processors with Intel(R) Processor Graphics may have allowed an unauthenticated user to potentially enable information disclosure via local access (bnc#1160195 bnc#1165881). - CVE-2019-14896: A heap-based buffer overflow vulnerability was found in the Marvell WiFi chip driver. A remote attacker could cause a denial of service (system crash) or, possibly execute arbitrary code, when the lbs_ibss_join_existing function is called after a STA connects to an AP (bnc#1157157). - CVE-2019-14897: A stack-based buffer overflow was found in the Marvell WiFi chip driver. An attacker is able to cause a denial of service (system crash) or, possibly execute arbitrary code, when a STA works in IBSS mode (allows connecting stations together without the use of an AP) and connects to another STA (bnc#1157155). - CVE-2019-16746: An issue was discovered in net/wireless/nl80211.c. It did not check the length of variable elements in a beacon head, leading to a buffer overflow (bnc#1152107). - CVE-2019-16994: In the Linux kernel before 5.0, a memory leak exists in sit_init_net() in net/ipv6/sit.c when register_netdev() fails to register sitn->fb_tunnel_dev, which may cause denial of service, aka CID-07f12b26e21a (bnc#1161523). - CVE-2019-18808: A memory leak in the ccp_run_sha_cmd() function in drivers/crypto/ccp/ccp-ops.c allowed attackers to cause a denial of service (memory consumption), aka CID-128c66429247 (bnc#1156259). - CVE-2019-19036: btrfs_root_node in fs/btrfs/ctree.c allowed a NULL pointer dereference because rcu_dereference(root->node) can be zero (bnc#1157692). - CVE-2019-19045: A memory leak in the mlx5_fpga_conn_create_cq() function in drivers/net/ethernet/mellanox/mlx5/core/fpga/conn.c allowed attackers to cause a denial of service (memory consumption) by triggering mlx5_vector2eqn() failures, aka CID-c8c2a057fdc7 (bnc#1161522). - CVE-2019-19051: A memory leak in the i2400m_op_rfkill_sw_toggle() function in drivers/net/wimax/i2400m/op-rfkill.c allowed attackers to cause a denial of service (memory consumption), aka CID-6f3ef5c25cc7 (bnc#1159024). - CVE-2019-19054: A memory leak in the cx23888_ir_probe() function in drivers/media/pci/cx23885/cx23888-ir.c allowed attackers to cause a denial of service (memory consumption) by triggering kfifo_alloc() failures, aka CID-a7b2df76b42b (bnc#1161518). - CVE-2019-19066: A memory leak in the bfad_im_get_stats() function in drivers/scsi/bfa/bfad_attr.c allowed attackers to cause a denial of service (memory consumption) by triggering bfa_port_get_stats() failures, aka CID-0e62395da2bd (bnc#1157303). - CVE-2019-19318: Mounting a crafted btrfs image twice can cause an rwsem_down_write_slowpath use-after-free because (in rwsem_can_spin_on_owner in kernel/locking/rwsem (bnc#1158026). - CVE-2019-19319: A setxattr operation, after a mount of a crafted ext4 image, can cause a slab-out-of-bounds write access because of an ext4_xattr_set_entry use-after-free in fs/ext4/xattr.c when a large old_size value is used in a memset call (bnc#1158021). - CVE-2019-19332: An out-of-bounds memory write issue was found in the way the Linux kernel's KVM hypervisor handled the 'KVM_GET_EMULATED_CPUID' ioctl(2) request to get CPUID features emulated by the KVM hypervisor. A user or process able to access the '/dev/kvm' device could use this flaw to crash the system, resulting in a denial of service (bnc#1158827). - CVE-2019-19338: There was an incomplete fix for Transaction Asynchronous Abort (TAA) (bnc#1158954). - CVE-2019-19447: Mounting a crafted ext4 filesystem image, performing some operations, and unmounting can lead to a use-after-free in ext4_put_super in fs/ext4/super.c, related to dump_orphan_list in fs/ext4/super.c (bnc#1158819). - CVE-2019-19526: There was a use-after-free bug that can be caused by a malicious USB device in the drivers/nfc/pn533/usb.c driver, aka CID-6af3aa57a098 (bnc#1158893). - CVE-2019-19527: There was a use-after-free bug that can be caused by a malicious USB device in the drivers/hid/usbhid/hiddev.c driver, aka CID-9c09b214f30e (bnc#1158900). - CVE-2019-19532: There were multiple out-of-bounds write bugs that can be caused by a malicious USB device in the Linux kernel HID drivers, aka CID-d9d4b1e46d95. This affects drivers/hid/hid-axff.c, drivers/hid/hid-dr.c, drivers/hid/hid-emsff.c, drivers/hid/hid-gaff.c, drivers/hid/hid-holtekff.c, drivers/hid/hid-lg2ff.c, drivers/hid/hid-lg3ff.c, drivers/hid/hid-lg4ff.c, drivers/hid/hid-lgff.c, drivers/hid/hid-logitech-hidpp.c, drivers/hid/hid-microsoft.c, drivers/hid/hid-sony.c, drivers/hid/hid-tmff.c, and drivers/hid/hid-zpff.c (bnc#1158824). - CVE-2019-19533: There was an info-leak bug that can be caused by a malicious USB device in the drivers/media/usb/ttusb-dec/ttusb_dec.c driver, aka CID-a10feaf8c464 (bnc#1158834). - CVE-2019-19535: There was an info-leak bug that can be caused by a malicious USB device in the drivers/net/can/usb/peak_usb/pcan_usb_fd.c driver, aka CID-30a8beeb3042 (bnc#1158903). - CVE-2019-19537: There was a race condition bug that can be caused by a malicious USB device in the USB character device driver layer, aka CID-303911cfc5b9. This affects drivers/usb/core/file.c (bnc#1158904). - CVE-2019-19767: The Linux kernel mishandled ext4_expand_extra_isize, as demonstrated by use-after-free errors in __ext4_expand_extra_isize and ext4_xattr_set_entry, related to fs/ext4/inode.c and fs/ext4/super.c, aka CID-4ea99936a163 (bnc#1159297). - CVE-2019-19927: Mounting a crafted f2fs filesystem image and performing some operations can lead to slab-out-of-bounds read access in ttm_put_pages in drivers/gpu/drm/ttm/ttm_page_alloc.c. This is related to the vmwgfx or ttm module (bnc#1160147). - CVE-2019-19965: There was a NULL pointer dereference in drivers/scsi/libsas/sas_discover.c because of mishandling of port disconnection during discovery, related to a PHY down race condition, aka CID-f70267f379b5 (bnc#1159911). - CVE-2019-19966: There was a use-after-free in cpia2_exit() in drivers/media/usb/cpia2/cpia2_v4l.c that will cause denial of service, aka CID-dea37a972655 (bnc#1159841). - CVE-2019-20054: There was a NULL pointer dereference in drop_sysctl_table() in fs/proc/proc_sysctl.c, related to put_links, aka CID-23da9588037e (bnc#1159910). - CVE-2019-20095: mwifiex_tm_cmd in drivers/net/wireless/marvell/mwifiex/cfg80211.c had some error-handling cases that did not free allocated hostcmd memory, aka CID-003b686ace82. This will cause a memory leak and denial of service (bnc#1159909). - CVE-2019-20096: There was a memory leak in __feat_register_sp() in net/dccp/feat.c, which may cause denial of service, aka CID-1d3ff0950e2b (bnc#1159908). - CVE-2020-2732: Fixed an issue affecting Intel CPUs where an L2 guest may trick the L0 hypervisor into accessing sensitive L1 resources (bsc#1163971). - CVE-2020-7053: There was a use-after-free (write) in the i915_ppgtt_close function in drivers/gpu/drm/i915/i915_gem_gtt.c, aka CID-7dc40713618c. This is related to i915_gem_context_destroy_ioctl in drivers/gpu/drm/i915/i915_gem_context.c (bnc#1160966). - CVE-2020-8428: fs/namei.c has a may_create_in_sticky use-after-free, which allowed local users to cause a denial of service (OOPS) or possibly obtain sensitive information from kernel memory, aka CID-d0cb50185ae9. One attack vector may be an open system call for a UNIX domain socket, if the socket is being moved to a new parent directory and its old parent directory is being removed (bnc#1162109). - CVE-2020-8648: There was a use-after-free vulnerability in the n_tty_receive_buf_common function in drivers/tty/n_tty.c (bnc#1162928). - CVE-2020-8992: ext4_protect_reserved_inode in fs/ext4/block_validity.c allowed attackers to cause a denial of service (soft lockup) via a crafted journal size (bnc#1164069). - CVE-2019-19523: There was a use-after-free bug that can be caused by a malicious USB device in the drivers/usb/misc/adutux.c driver, aka CID-44efc269db79 (bnc#1158823). The following non-security bugs were fixed: - smb3: print warning once if posix context returned on open (bsc#1144333). - 6pack,mkiss: fix possible deadlock (bsc#1051510). - ACPI / APEI: Do not wait to serialise with oops messages when panic()ing (bsc#1051510). - ACPI / APEI: Switch estatus pool to use vmalloc memory (bsc#1051510). - ACPI / LPSS: Ignore acpi_device_fix_up_power() return value (bsc#1051510). - ACPI / video: Add force_none quirk for Dell OptiPlex 9020M (bsc#1051510). - ACPI / watchdog: Fix init failure with overlapping register regions (bsc#1162557). - ACPI / watchdog: Set default timeout in probe (bsc#1162557). - ACPI: OSL: only free map once in osl.c (bsc#1051510). - ACPI: PM: Avoid attaching ACPI PM domain to certain devices (bsc#1051510). - ACPI: bus: Fix NULL pointer check in acpi_bus_get_private_data() (bsc#1051510). - ACPI: fix acpi_find_child_device() invocation in acpi_preset_companion() (bsc#1051510). - ACPI: sysfs: Change ACPI_MASKABLE_GPE_MAX to 0x100 (bsc#1051510). - ACPI: video: Do not export a non working backlight interface on MSI MS-7721 boards (bsc#1051510). - ACPI: watchdog: Allow disabling WDAT at boot (bsc#1162557). - ALSA: control: remove useless assignment in .info callback of PCM chmap element (git-fixes). - ALSA: dummy: Fix PCM format loop in proc output (bsc#1111666). - ALSA: echoaudio: simplify get_audio_levels (bsc#1051510). - ALSA: fireface: fix return value in error path of isochronous resources reservation (bsc#1051510). - ALSA: hda - Add docking station support for Lenovo Thinkpad T420s (git-fixes). - ALSA: hda - Apply sync-write workaround to old Intel platforms, too (bsc#1111666). - ALSA: hda - Downgrade error message for single-cmd fallback (git-fixes). - ALSA: hda - constify and cleanup static NodeID tables (bsc#1111666). - ALSA: hda - fixup for the bass speaker on Lenovo Carbon X1 7th gen (git-fixes). - ALSA: hda/analog - Minor optimization for SPDIF mux connections (git-fixes). - ALSA: hda/ca0132 - Avoid endless loop (git-fixes). - ALSA: hda/ca0132 - Fix work handling in delayed HP detection (git-fixes). - ALSA: hda/ca0132 - Keep power on during processing DSP response (git-fixes). - ALSA: hda/hdmi - Add new pci ids for AMD GPU display audio (git-fixes). - ALSA: hda/hdmi - Clean up Intel platform-specific fixup checks (bsc#1111666). - ALSA: hda/hdmi - Fix duplicate unref of pci_dev (bsc#1051510). - ALSA: hda/hdmi - add retry logic to parse_intel_hdmi() (git-fixes). - ALSA: hda/hdmi - fix atpx_present when CLASS is not VGA (bsc#1051510). - ALSA: hda/hdmi - fix vgaswitcheroo detection for AMD (git-fixes). - ALSA: hda/realtek - Add Bass Speaker and fixed dac for bass speaker (bsc#1111666). - ALSA: hda/realtek - Add Headset Mic supported for HP cPC (bsc#1111666). - ALSA: hda/realtek - Add headset Mic no shutup for ALC283 (bsc#1051510). - ALSA: hda/realtek - Add new codec supported for ALCS1200A (bsc#1111666). - ALSA: hda/realtek - Add quirk for the bass speaker on Lenovo Yoga X1 7th gen (bsc#1111666). - ALSA: hda/realtek - Apply mic mute LED quirk for Dell E7xx laptops, too (bsc#1111666). - ALSA: hda/realtek - Dell headphone has noise on unmute for ALC236 (git-fixes). - ALSA: hda/realtek - Enable the bass speaker of ASUS UX431FLC (bsc#1111666). - ALSA: hda/realtek - Fix inverted bass GPIO pin on Acer 8951G (git-fixes). - ALSA: hda/realtek - Fix silent output on MSI-GL73 (git-fixes). - ALSA: hda/realtek - Fixed one of HP ALC671 platform Headset Mic supported (bsc#1111666). - ALSA: hda/realtek - Line-out jack does not work on a Dell AIO (bsc#1051510). - ALSA: hda/realtek - More constifications (bsc#1111666). - ALSA: hda/realtek - Set EAPD control to default for ALC222 (bsc#1111666). - ALSA: hda: Add Clevo W65_67SB the power_save blacklist (git-fixes). - ALSA: hda: Add JasperLake PCI ID and codec vid (bsc#1111666). - ALSA: hda: Clear RIRB status before reading WP (bsc#1111666). - ALSA: hda: Constify snd_kcontrol_new items (bsc#1111666). - ALSA: hda: Constify snd_pci_quirk tables (bsc#1111666). - ALSA: hda: More constifications (bsc#1111666). - ALSA: hda: Reset stream if DMA RUN bit not cleared (bsc#1111666). - ALSA: hda: Use scnprintf() for printing texts for sysfs/procfs (git-fixes). - ALSA: hda: constify copied structure (bsc#1111666). - ALSA: hda: correct kernel-doc parameter descriptions (bsc#1111666). - ALSA: hda: hdmi - add Tigerlake support (bsc#1111666). - ALSA: hda: hdmi - fix pin setup on Tigerlake (bsc#1111666). - ALSA: hda: patch_hdmi: remove warnings with empty body (bsc#1111666). - ALSA: hda: patch_realtek: fix empty macro usage in if block (bsc#1111666). - ALSA: ice1724: Fix sleep-in-atomic in Infrasonic Quartet support code (bsc#1051510). - ALSA: oxfw: fix return value in error path of isochronous resources reservation (bsc#1051510). - ALSA: pcm: Avoid possible info leaks from PCM stream buffers (git-fixes). - ALSA: pcm: oss: Avoid potential buffer overflows (git-fixes). - ALSA: seq: Avoid concurrent access to queue flags (git-fixes). - ALSA: seq: Fix concurrent access to queue current tick/time (git-fixes). - ALSA: seq: Fix racy access for queue timer in proc read (bsc#1051510). - ALSA: sh: Fix compile warning wrt const (git-fixes). - ALSA: sh: Fix unused variable warnings (bsc#1111666). - ALSA: usb-audio: Apply sample rate quirk for Audioengine D1 (git-fixes). - ALSA: usb-audio: Apply the sample rate quirk for Bose Companion 5 (bsc#1111666). - ALSA: usb-audio: Fix endianess in descriptor validation (bsc#1111666). - ALSA: usb-audio: fix set_format altsetting sanity check (bsc#1051510). - ALSA: usb-audio: fix sync-ep altsetting sanity check (bsc#1051510). - ASoC: Jack: Fix NULL pointer dereference in snd_soc_jack_report (bsc#1051510). - ASoC: au8540: use 64-bit arithmetic instead of 32-bit (bsc#1051510). - ASoC: compress: fix unsigned integer overflow check (bsc#1051510). - ASoC: cs4349: Use PM ops 'cs4349_runtime_pm' (bsc#1051510). - ASoC: msm8916-wcd-analog: Fix selected events for MIC BIAS External1 (bsc#1051510). - ASoC: samsung: i2s: Fix prescaler setting for the secondary DAI (bsc#1111666). - ASoC: sun8i-codec: Fix setting DAI data format (git-fixes). - ASoC: wm8962: fix lambda value (git-fixes). - Bluetooth: Fix race condition in hci_release_sock() (bsc#1051510). - Bluetooth: hci_bcm: Handle specific unknown packets after firmware loading (bsc#1051510). - btrfs: add missing extents release on file extent cluster relocation error (bsc#1159483). - btrfs: avoid fallback to transaction commit during fsync of files with holes (bsc#1159569). - btrfs: fix block group remaining RO forever after error during device replace (bsc#1160442). - btrfs: fix btrfs_write_inode vs delayed iput deadlock (bsc#1154243). - btrfs: fix infinite loop during fsync after rename operations (bsc#1163383). - btrfs: fix infinite loop during nocow writeback due to race (bsc#1160804). - btrfs: fix missing data checksums after replaying a log tree (bsc#1161931). - btrfs: fix negative subv_writers counter and data space leak after buffered write (bsc#1160802). - btrfs: fix race between adding and putting tree mod seq elements and nodes (bsc#1163384). - btrfs: fix removal logic of the tree mod log that leads to use-after-free issues (bsc#1160803). - btrfs: fix selftests failure due to uninitialized i_mode in test inodes (Fix for dependency of bsc#1157692). - btrfs: make tree checker detect checksum items with overlapping ranges (bsc#1161931). - btrfs: send, skip backreference walking for extents with many references (bsc#1162139). - CDC-NCM: handle incomplete transfer of MTU (networking-stable-19_11_10). - CIFS: Add support for setting owner info, dos attributes, and create time (bsc#1144333). - CIFS: Close cached root handle only if it had a lease (bsc#1144333). - CIFS: Close open handle after interrupted close (bsc#1144333). - CIFS: Do not miss cancelled OPEN responses (bsc#1144333). - CIFS: Fix NULL pointer dereference in mid callback (bsc#1144333). - CIFS: Fix NULL-pointer dereference in smb2_push_mandatory_locks (bsc#1144333). - CIFS: Fix task struct use-after-free on reconnect (bsc#1144333). - CIFS: Properly process SMB3 lease breaks (bsc#1144333). - CIFS: Respect O_SYNC and O_DIRECT flags during reconnect (bsc#1144333). - CIFS: Return directly after a failed build_path_from_dentry() in cifs_do_create() (bsc#1144333). - CIFS: Use common error handling code in smb2_ioctl_query_info() (bsc#1144333). - CIFS: Use memdup_user() rather than duplicating its implementation (bsc#1144333). - CIFS: fix a white space issue in cifs_get_inode_info() (bsc#1144333). - CIFS: refactor cifs_get_inode_info() (bsc#1144333). - CIFS: remove set but not used variables 'cinode' and 'netfid' (bsc#1144333). - Cover up kABI breakage due to DH key verification (bsc#1155331). - Delete patches which cause regression (bsc#1165527 ltc#184149). - Documentation: Document arm64 kpti control (bsc#1162623). - Enable CONFIG_BLK_DEV_SR_VENDOR (boo#1164632). - Fix the locking in dcache_readdir() and friends (bsc#1123328). - HID: doc: fix wrong data structure reference for UHID_OUTPUT (bsc#1051510). - HID: hiddev: Fix race in in hiddev_disconnect() (git-fixes). - HID: hidraw, uhid: Always report EPOLLOUT (bsc#1051510). - HID: hidraw: Fix returning EPOLLOUT from hidraw_poll (bsc#1051510). - HID: intel-ish-hid: fixes incorrect error handling (bsc#1051510). - HID: uhid: Fix returning EPOLLOUT from uhid_char_poll (bsc#1051510). - IB/hfi1: Close window for pq and request coliding (bsc#1060463 ). - IB/hfi1: Do not cancel unused work item (bsc#1114685 ). - IB/mlx5: Fix steering rule of drop and count (bsc#1103991 ). - IB/mlx5: Remove dead code (bsc#1103991). - Input: aiptek - fix endpoint sanity check (bsc#1051510). - Input: cyttsp4_core - fix use after free bug (bsc#1051510). - Input: goodix - add upside-down quirk for Teclast X89 tablet (bsc#1051510). - Input: gtco - fix endpoint sanity check (bsc#1051510). - Input: keyspan-remote - fix control-message timeouts (bsc#1051510). - Input: pegasus_notetaker - fix endpoint sanity check (bsc#1051510). - Input: pm8xxx-vib - fix handling of separate enable register (bsc#1051510). - Input: rmi_f54 - read from FIFO in 32 byte blocks (bsc#1051510). - Input: sun4i-ts - add a check for devm_thermal_zone_of_sensor_register (bsc#1051510). - Input: sur40 - fix interface sanity checks (bsc#1051510). - Input: synaptics - switch another X1 Carbon 6 to RMI/SMbus (bsc#1051510). - Input: synaptics-rmi4 - do not increment rmiaddr for SMBus transfers (bsc#1051510). - Input: synaptics-rmi4 - simplify data read in rmi_f54_work (bsc#1051510). - KVM: Clean up __kvm_gfn_to_hva_cache_init() and its callers (bsc#1133021). - KVM: PPC: Book3S HV: Uninit vCPU if vcore creation fails (bsc#1061840). - KVM: PPC: Book3S PR: Fix -Werror=return-type build failure (bsc#1061840). - KVM: PPC: Book3S PR: Free shared page if mmu initialization fails (bsc#1061840). - KVM: SVM: Override default MMIO mask if memory encryption is enabled (bsc#1162618). - KVM: arm64: Store vcpu on the stack during __guest_enter() (bsc#1133021). - KVM: fix spectrev1 gadgets (bsc#1164705). - KVM: s390: Do not leak kernel stack data in the KVM_S390_INTERRUPT ioctl (git-fixes). - KVM: s390: ENOTSUPP -> EOPNOTSUPP fixups (bsc#1133021). - KVM: s390: Test for bad access register and size at the start of S390_MEM_OP (git-fixes). - KVM: s390: do not clobber registers during guest reset/store status (bsc#1133021). - KVM: x86: Protect DR-based index computations from Spectre-v1/L1TF attacks (bsc#1164734). - KVM: x86: Protect MSR-based index computations from Spectre-v1/L1TF attacks in x86.c (bsc#1164733). - KVM: x86: Protect MSR-based index computations in fixed_msr_to_seg_unit() from Spectre-v1/L1TF attacks (bsc#1164731). - KVM: x86: Protect MSR-based index computations in pmu.h from Spectre-v1/L1TF attacks (bsc#1164732). - KVM: x86: Protect ioapic_read_indirect() from Spectre-v1/L1TF attacks (bsc#1164728). - KVM: x86: Protect ioapic_write_indirect() from Spectre-v1/L1TF attacks (bsc#1164729). - KVM: x86: Protect kvm_hv_msr_[get|set]_crash_data() from Spectre-v1/L1TF attacks (bsc#1164712). - KVM: x86: Protect kvm_lapic_reg_write() from Spectre-v1/L1TF attacks (bsc#1164730). - KVM: x86: Protect pmu_intel.c from Spectre-v1/L1TF attacks (bsc#1164735). - KVM: x86: Protect x86_decode_insn from Spectre-v1/L1TF attacks (bsc#1164705). - KVM: x86: Refactor picdev_write() to prevent Spectre-v1/L1TF attacks (bsc#1164727). - KVM: x86: Remove a spurious export of a static function (bsc#1158954). - NFC: fdp: fix incorrect free object (networking-stable-19_11_10). - NFC: pn533: fix bulk-message timeout (bsc#1051510). - NFC: pn544: Adjust indentation in pn544_hci_check_presence (git-fixes). - NFC: st21nfca: fix double free (networking-stable-19_11_10). - PCI/IOV: Fix memory leak in pci_iov_add_virtfn() (git-fixes). - PCI/MSI: Return -ENOSPC from pci_alloc_irq_vectors_affinity() (bsc#1051510). - PCI/switchtec: Fix vep_vector_number ioread width (bsc#1051510). - PCI: Add DMA alias quirk for Intel VCA NTB (bsc#1051510). - PCI: Do not disable bridge BARs when assigning bus resources (bsc#1051510). - PCI: pciehp: Avoid returning prematurely from sysfs requests (git-fixes). - PCI: rpaphp: Add drc-info support for hotplug slot registration (bsc#1157480 ltc#181028). - PCI: rpaphp: Annotate and correctly byte swap DRC properties (bsc#1157480 ltc#181028). - PCI: rpaphp: Avoid a sometimes-uninitialized warning (bsc#1157480 ltc#181028). - PCI: rpaphp: Correctly match ibm, my-drc-index to drc-name when using drc-info (bsc#1157480 ltc#181028). - PCI: rpaphp: Do not rely on firmware feature to imply drc-info support (bsc#1157480 ltc#181028). - PCI: rpaphp: Fix up pointer to first drc-info entry (bsc#1157480 ltc#181028). - PM / AVS: SmartReflex: NULL check before some freeing functions is not needed (bsc#1051510). - PM / Domains: Deal with multiple states but no governor in genpd (bsc#1051510). - RDMA/bnxt_re: Avoid freeing MR resources if dereg fails (bsc#1050244). - RDMA/bnxt_re: Enable SRIOV VF support on Broadcom's 57500 adapter series (bsc#1154916). - RDMA/bnxt_re: Fix chip number validation Broadcom's Gen P5 series (bsc#1157895). - RDMA/bnxt_re: Fix missing le16_to_cpu (bsc#1157895). - RDMA/cma: Fix unbalanced cm_id reference count during address resolve (bsc#1103992). - RDMA/hfi1: Fix memory leak in _dev_comp_vect_mappings_create (bsc#1114685). - RDMA/hns: Bugfix for qpc/cqc timer configuration (bsc#1104427 bsc#1126206). - RDMA/hns: Correct the value of srq_desc_size (bsc#1104427 ). - RDMA/hns: Fix to support 64K page for srq (bsc#1104427 ). - RDMA/hns: Prevent memory leaks of eq->buf_list (bsc#1104427 ). - RDMA/uverbs: Verify MR access flags (bsc#1103992). - crypto/dh: Adjust for change of DH_KPP_SECRET_MIN_SIZE in 35f7d5225ffcbf1b759f641aec1735e3a89b1914 - crypto/dh: Remove the fips=1 check in dh.c dh.c is not fips-specific and should perform the same regardless of this setting. - Revert 'HID: add NOGET quirk for Eaton Ellipse MAX UPS' (git-fixes). - Revert 'Input: synaptics-rmi4 - do not increment rmiaddr for SMBus transfers' (bsc#1051510). - Revert 'ath10k: fix DMA related firmware crashes on multiple devices' (git-fixes). - Revert 'locking/pvqspinlock: Do not wait if vCPU is preempted' (bsc#1050549). - Revert 'mmc: sdhci: Fix incorrect switch to HS mode' (bsc#1051510). - Revert patches.suse/samples-bpf-add-a-test-for-bpf_override_return.patch (bsc#1159500) - SMB3: Backup intent flag missing from some more ops (bsc#1144333). - SMB3: Fix crash in SMB2_open_init due to uninitialized field in compounding path (bsc#1144333). - SMB3: Fix persistent handles reconnect (bsc#1144333). - SUNRPC: Fix svcauth_gss_proxy_init() (bsc#1103992). - Staging: iio: adt7316: Fix i2c data reading, set the data field (bsc#1051510). - USB: EHCI: Do not return -EPIPE when hub is disconnected (git-fixes). - USB: adutux: fix interface sanity check (bsc#1051510). - USB: atm: ueagle-atm: add missing endpoint check (bsc#1051510). - USB: core: add endpoint-blacklist quirk (git-fixes). - USB: core: fix check for duplicate endpoints (git-fixes). - USB: documentation: flags on usb-storage versus UAS (bsc#1051510). - USB: idmouse: fix interface sanity checks (bsc#1051510). - USB: quirks: blacklist duplicate ep on Sound Devices USBPre2 (git-fixes). - USB: serial: ch341: handle unbound port at reset_resume (bsc#1051510). - USB: serial: ftdi_sio: add device IDs for U-Blox C099-F9P (bsc#1051510). - USB: serial: io_edgeport: add missing active-port sanity check (bsc#1051510). - USB: serial: io_edgeport: fix epic endpoint lookup (bsc#1051510). - USB: serial: io_edgeport: handle unbound ports on URB completion (bsc#1051510). - USB: serial: io_edgeport: use irqsave() in USB's complete callback (bsc#1051510). - USB: serial: ir-usb: add missing endpoint sanity check (bsc#1051510). - USB: serial: ir-usb: fix IrLAP framing (bsc#1051510). - USB: serial: ir-usb: fix link-speed handling (bsc#1051510). - USB: serial: keyspan: handle unbound ports (bsc#1051510). - USB: serial: opticon: fix control-message timeouts (bsc#1051510). - USB: serial: option: Add support for Quectel RM500Q (bsc#1051510). - USB: serial: option: add Telit ME910G1 0x110a composition (git-fixes). - USB: serial: option: add ZLP support for 0x1bc7/0x9010 (git-fixes). - USB: serial: option: add support for Quectel RM500Q in QDL mode (git-fixes). - USB: serial: quatech2: handle unbound ports (bsc#1051510). - USB: serial: simple: Add Motorola Solutions TETRA MTP3xxx and MTP85xx (bsc#1051510). - USB: serial: suppress driver bind attributes (bsc#1051510). - USB: uas: heed CAPACITY_HEURISTICS (bsc#1051510). - USB: uas: honor flag to avoid CAPACITY16 (bsc#1051510). - Update patches.suse/powerpc-xive-Implement-get_irqchip_state-method-for-.patch (bsc#1085030). - af_packet: set defaule value for tmo (bsc#1051510). - apparmor: fix unsigned len comparison with less than zero (git-fixes). - ar5523: check NULL before memcpy() in ar5523_cmd() (bsc#1051510). - arm64: Revert support for execute-only user mappings (bsc#1160218). - ata: ahci: Add shutdown to freeze hardware resources of ahci (bsc#1164388). - ath10k: Correct the DMA direction for management tx buffers (bsc#1111666). - ath10k: fix fw crash by moving chip reset after napi disabled (bsc#1051510). - ath10k: pci: Fix comment on ath10k_pci_dump_memory_sram (bsc#1111666). - ath10k: pci: Only dump ATH10K_MEM_REGION_TYPE_IOREG when safe (bsc#1111666). - ath6kl: Fix off by one error in scan completion (bsc#1051510). - ath9k: fix storage endpoint lookup (git-fixes). - atl1e: checking the status of atl1e_write_phy_reg (bsc#1051510). - audit: Allow auditd to set pid to 0 to end auditing (bsc#1158094). - batman-adv: Fix DAT candidate selection on little endian systems (bsc#1051510). - bcache: Fix an error code in bch_dump_read() (bsc#1163762). - bcache: Revert 'bcache: shrink btree node cache after bch_btree_check()' (bsc#1163762, bsc#1112504). - bcache: add code comment bch_keylist_pop() and bch_keylist_pop_front() (bsc#1163762). - bcache: add code comments for state->pool in __btree_sort() (bsc#1163762). - bcache: add code comments in bch_btree_leaf_dirty() (bsc#1163762). - bcache: add cond_resched() in __bch_cache_cmp() (bsc#1163762). - bcache: add idle_max_writeback_rate sysfs interface (bsc#1163762). - bcache: add more accurate error messages in read_super() (bsc#1163762). - bcache: add readahead cache policy options via sysfs interface (bsc#1163762). - bcache: at least try to shrink 1 node in bch_mca_scan() (bsc#1163762). - bcache: avoid unnecessary btree nodes flushing in btree_flush_write() (bsc#1163762). - bcache: check return value of prio_read() (bsc#1163762). - bcache: deleted code comments for dead code in bch_data_insert_keys() (bsc#1163762). - bcache: do not export symbols (bsc#1163762). - bcache: explicity type cast in bset_bkey_last() (bsc#1163762). - bcache: fix a lost wake-up problem caused by mca_cannibalize_lock (bsc#1163762). - bcache: fix deadlock in bcache_allocator (bsc#1163762). - bcache: fix incorrect data type usage in btree_flush_write() (bsc#1163762). - bcache: fix memory corruption in bch_cache_accounting_clear() (bsc#1163762). - bcache: fix static checker warning in bcache_device_free() (bsc#1163762). - bcache: ignore pending signals when creating gc and allocator thread (bsc#1163762, bsc#1112504). - bcache: print written and keys in trace_bcache_btree_write (bsc#1163762). - bcache: reap c->btree_cache_freeable from the tail in bch_mca_scan() (bsc#1163762). - bcache: reap from tail of c->btree_cache in bch_mca_scan() (bsc#1163762). - bcache: remove macro nr_to_fifo_front() (bsc#1163762). - bcache: remove member accessed from struct btree (bsc#1163762). - bcache: remove the extra cflags for request.o (bsc#1163762). - bcma: remove set but not used variable 'sizel' (git-fixes). - blk-mq: avoid sysfs buffer overflow with too many CPU cores (bsc#1159377). - blk-mq: avoid sysfs buffer overflow with too many CPU cores (bsc#1163840). - blk-mq: make sure that line break can be printed (bsc#1159377). - blk-mq: make sure that line break can be printed (bsc#1164098). - bnxt: apply computed clamp value for coalece parameter (bsc#1104745). - bnxt_en: Fix MSIX request logic for RDMA driver (bsc#1104745 ). - bnxt_en: Fix NTUPLE firmware command failures (bsc#1104745 ). - bnxt_en: Fix TC queue mapping (networking-stable-20_02_05). - bnxt_en: Improve device shutdown method (bsc#1104745 ). - bnxt_en: Issue PCIe FLR in kdump kernel to cleanup pending DMAs (bsc#1134090 jsc#SLE-5954). - bnxt_en: Return error if FW returns more data than dump length (bsc#1104745). - bonding: fix active-backup transition after link failure (git-fixes). - bonding: fix potential NULL deref in bond_update_slave_arr (bsc#1051510). - bonding: fix slave stuck in BOND_LINK_FAIL state (networking-stable-19_11_10). - bonding: fix state transition issue in link monitoring (networking-stable-19_11_10). - bonding: fix unexpected IFF_BONDING bit unset (bsc#1051510). - bpf, offload: Replace bitwise AND by logical AND in bpf_prog_offload_info_fill (bsc#1109837). - bpf, offload: Unlock on error in bpf_offload_dev_create() (bsc#1109837). - bpf/sockmap: Read psock ingress_msg before sk_receive_queue (bsc#1083647). - bpf/stackmap: Fix deadlock with rq_lock in bpf_get_stack() (bsc#1083647). - bpf: Fix incorrect verifier simulation of ARSH under ALU32 (bsc#1083647). - bpf: Make use of probe_user_write in probe write helper (bsc#1083647). - bpf: Reject indirect var_off stack access in raw mode (bsc#1160618). - bpf: Reject indirect var_off stack access in unpriv mode (bco#1160618). - bpf: Sanity check max value for var_off stack access (bco#1160618). - bpf: Support variable offset stack access from helpers (bco#1160618). - bpf: add self-check logic to liveness analysis (bsc#1160618). - bpf: add verifier stats and log_level bit 2 (bsc#1160618). - bpf: improve stacksafe state comparison (bco#1160618). - bpf: improve verification speed by droping states (bsc#1160618). - bpf: improve verification speed by not remarking live_read (bsc#1160618). - bpf: improve verifier branch analysis (bsc#1160618). - bpf: increase complexity limit and maximum program size (bsc#1160618). - bpf: increase verifier log limit (bsc#1160618). - bpf: skmsg, fix potential psock NULL pointer dereference (bsc#1109837). - bpf: speed up stacksafe check (bco#1160618). - bpf: verifier: teach the verifier to reason about the BPF_JSET instruction (bco#1160618). - brcmfmac: Fix memory leak in brcmf_p2p_create_p2pdev() (bsc#1111666). - brcmfmac: Fix memory leak in brcmf_usbdev_qinit (git-fixes). - brcmfmac: Fix use after free in brcmf_sdio_readframes() (git-fixes). - brcmfmac: fix interface sanity check (git-fixes). - brcmfmac: sdio: Fix OOB interrupt initialization on brcm43362 (bsc#1111666). - brcmfmac: set F2 watermark to 256 for 4373 (bsc#1111666). - brcmfmac: set SDIO F1 MesBusyCtrl for CYW4373 (bsc#1111666). - btrfs: Ensure we trim ranges across block group boundary (bsc#1151910). - btrfs: Move btrfs_check_chunk_valid() to tree-check.[ch] and export it (dependency for bsc#1157692). - btrfs: abort transaction after failed inode updates in create_subvol (bsc#1161936). - btrfs: dev-replace: remove warning for unknown return codes when finished (dependency for bsc#1162067). - btrfs: do not call synchronize_srcu() in inode_tree_del (bsc#1161934). - btrfs: do not double lock the subvol_sem for rename exchange (bsc#1162943). - btrfs: fix integer overflow in calc_reclaim_items_nr (bsc#1160433). - btrfs: handle ENOENT in btrfs_uuid_tree_iterate (bsc#1161937). - btrfs: harden agaist duplicate fsid on scanned devices (bsc#1134973). - btrfs: inode: Verify inode mode to avoid NULL pointer dereference (dependency for bsc#1157692). - btrfs: record all roots for rename exchange on a subvol (bsc#1161933). - btrfs: relocation: fix reloc_root lifespan and access (bsc#1159588). - btrfs: scrub: Require mandatory block group RO for dev-replace (bsc#1162067). - btrfs: simplify inode locking for RWF_NOWAIT (git-fixes). - btrfs: skip log replay on orphaned roots (bsc#1161935). - btrfs: tree-checker: Check chunk item at tree block read time (dependency for bsc#1157692). - btrfs: tree-checker: Check level for leaves and nodes (dependency for bsc#1157692). - btrfs: tree-checker: Enhance chunk checker to validate chunk profile (dependency for bsc#1157692). - btrfs: tree-checker: Fix wrong check on max devid (fixes for dependency of bsc#1157692). - btrfs: tree-checker: Make btrfs_check_chunk_valid() return EUCLEAN instead of EIO (dependency for bsc#1157692). - btrfs: tree-checker: Make chunk item checker messages more readable (dependency for bsc#1157692). - btrfs: tree-checker: Verify dev item (dependency for bsc#1157692). - btrfs: tree-checker: Verify inode item (dependency for bsc#1157692). - btrfs: tree-checker: get fs_info from eb in block_group_err (dependency for bsc#1157692). - btrfs: tree-checker: get fs_info from eb in check_block_group_item (dependency for bsc#1157692). - btrfs: tree-checker: get fs_info from eb in check_csum_item (dependency for bsc#1157692). - btrfs: tree-checker: get fs_info from eb in check_dev_item (dependency for bsc#1157692). - btrfs: tree-checker: get fs_info from eb in check_dir_item (dependency for bsc#1157692). - btrfs: tree-checker: get fs_info from eb in check_extent_data_item (dependency for bsc#1157692). - btrfs: tree-checker: get fs_info from eb in check_inode_item (dependency for bsc#1157692). - btrfs: tree-checker: get fs_info from eb in check_leaf_item (dependency for bsc#1157692). - btrfs: tree-checker: get fs_info from eb in dev_item_err (dependency for bsc#1157692). - btrfs: tree-checker: get fs_info from eb in dir_item_err (dependency for bsc#1157692). - btrfs: tree-checker: get fs_info from eb in file_extent_err (dependency for bsc#1157692). - btrfs: tree-checker: get fs_info from eb in check_leaf (dependency for bsc#1157692). - btrfs: tree-checker: get fs_info from eb in chunk_err (dependency for bsc#1157692). - btrfs: tree-checker: get fs_info from eb in generic_err (dependency for bsc#1157692). - btrfs: volumes: Use more straightforward way to calculate map length (bsc#1151910). - can, slip: Protect tty->disc_data in write_wakeup and close with RCU (bsc#1051510). - can: c_can: D_CAN: c_can_chip_config(): perform a sofware reset on open (bsc#1051510). - can: can_dropped_invalid_skb(): ensure an initialized headroom in outgoing CAN sk_buffs (bsc#1051510). - can: gs_usb: gs_usb_probe(): use descriptors of current altsetting (bsc#1051510). - can: mscan: mscan_rx_poll(): fix rx path lockup when returning from polling to irq mode (bsc#1051510). - can: peak_usb: report bus recovery as well (bsc#1051510). - can: rx-offload: can_rx_offload_irq_offload_fifo(): continue on error (bsc#1051510). - can: rx-offload: can_rx_offload_irq_offload_timestamp(): continue on error (bsc#1051510). - can: rx-offload: can_rx_offload_offload_one(): increment rx_fifo_errors on queue overflow or OOM (bsc#1051510). - can: rx-offload: can_rx_offload_offload_one(): use ERR_PTR() to propagate error value in case of errors (bsc#1051510). - can: slcan: Fix use-after-free Read in slcan_open (bsc#1051510). - cdrom: respect device capabilities during opening action (boo#1164632). - cfg80211/mac80211: make ieee80211_send_layer2_update a public function (bsc#1051510). - cfg80211: check for set_wiphy_params (bsc#1051510). - cfg80211: fix deadlocks in autodisconnect work (bsc#1111666). - cfg80211: fix memory leak in cfg80211_cqm_rssi_update (bsc#1111666). - cfg80211: fix page refcount issue in A-MSDU decap (bsc#1051510). - cgroup: pids: use atomic64_t for pids->limit (bsc#1161514). - chardev: Avoid potential use-after-free in 'chrdev_open()' (bsc#1163849). - cifs: Add tracepoints for errors on flush or fsync (bsc#1144333). - cifs: Adjust indentation in smb2_open_file (bsc#1144333). - cifs: Avoid doing network I/O while holding cache lock (bsc#1144333). - cifs: Clean up DFS referral cache (bsc#1144333). - cifs: Do not display RDMA transport on reconnect (bsc#1144333). - cifs: Fix lookup of root ses in DFS referral cache (bsc#1144333). - cifs: Fix memory allocation in __smb2_handle_cancelled_cmd() (bsc#1144333). - cifs: Fix memory allocation in __smb2_handle_cancelled_cmd() (bsc#1144333). - cifs: Fix mode output in debugging statements (bsc#1144333). - cifs: Fix mount options set in automount (bsc#1144333). - cifs: Fix mount options set in automount (bsc#1144333). - cifs: Fix potential deadlock when updating vol in cifs_reconnect() (bsc#1144333). - cifs: Fix potential softlockups while refreshing DFS cache (bsc#1144333). - cifs: Fix retrieval of DFS referrals in cifs_mount() (bsc#1144333). - cifs: Fix return value in __update_cache_entry (bsc#1144333). - cifs: Fix use-after-free bug in cifs_reconnect() (bsc#1144333). - cifs: Get rid of kstrdup_const()'d paths (bsc#1144333). - cifs: Introduce helpers for finding TCP connection (bsc#1144333). - cifs: Merge is_path_valid() into get_normalized_path() (bsc#1144333). - cifs: Optimize readdir on reparse points (bsc#1144333). - cifs: Use #define in cifs_dbg (bsc#1144333). - cifs: add SMB2_open() arg to return POSIX data (bsc#1144333). - cifs: add SMB3 change notification support (bsc#1144333). - cifs: add a debug macro that prints \\server\share for errors (bsc#1144333). - cifs: add missing mount option to /proc/mounts (bsc#1144333). - cifs: add new debugging macro cifs_server_dbg (bsc#1144333). - cifs: add passthrough for smb2 setinfo (bsc#1144333). - cifs: add smb2 POSIX info level (bsc#1144333). - cifs: add support for fallocate mode 0 for non-sparse files (bsc#1144333). - cifs: add support for flock (bsc#1144333). - cifs: allow chmod to set mode bits using special sid (bsc#1144333). - cifs: call wake_up(&server->response_q) inside of cifs_reconnect() (bsc#1144333). - cifs: close the shared root handle on tree disconnect (bsc#1144333). - cifs: create a helper function to parse the query-directory response buffer (bsc#1144333). - cifs: do d_move in rename (bsc#1144333). - cifs: do not ignore the SYNC flags in getattr (bsc#1144333). - cifs: do not leak -EAGAIN for stat() during reconnect (bsc#1144333). - cifs: do not use 'pre:' for MODULE_SOFTDEP (bsc#1144333). - cifs: enable change notification for SMB2.1 dialect (bsc#1144333). - cifs: fail i/o on soft mounts if sessionsetup errors out (bsc#1144333). - cifs: fix NULL dereference in match_prepath (bsc#1144333). - cifs: fix a comment for the timeouts when sending echos (bsc#1144333). - cifs: fix dereference on ses before it is null checked (bsc#1144333). - cifs: fix mode bits from dir listing when mounted with modefromsid (bsc#1144333). - cifs: fix mount option display for sec=krb5i (bsc#1161907). - cifs: fix potential mismatch of UNC paths (bsc#1144333). - cifs: fix rename() by ensuring source handle opened with DELETE bit (bsc#1144333). - cifs: fix soft mounts hanging in the reconnect code (bsc#1144333). - cifs: fix soft mounts hanging in the reconnect code (bsc#1144333). - cifs: fix unitialized variable poential problem with network I/O cache lock patch (bsc#1144333). - cifs: get mode bits from special sid on stat (bsc#1144333). - cifs: handle prefix paths in reconnect (bsc#1144333). - cifs: log warning message (once) if out of disk space (bsc#1144333). - cifs: make sure we do not overflow the max EA buffer size (bsc#1144333). - cifs: make use of cap_unix(ses) in cifs_reconnect_tcon() (bsc#1144333). - cifs: modefromsid: make room for 4 ACE (bsc#1144333). - cifs: modefromsid: write mode ACE first (bsc#1144333). - cifs: plumb smb2 POSIX dir enumeration (bsc#1144333). - cifs: potential unintitliazed error code in cifs_getattr() (bsc#1144333). - cifs: prepare SMB2_query_directory to be used with compounding (bsc#1144333). - cifs: print warning once if mounting with vers=1.0 (bsc#1144333). - cifs: remove redundant assignment to pointer pneg_ctxt (bsc#1144333). - cifs: remove redundant assignment to variable rc (bsc#1144333). - cifs: remove set but not used variable 'server' (bsc#1144333). - cifs: remove set but not used variables (bsc#1144333). - cifs: remove unused variable 'sid_user' (bsc#1144333). - cifs: remove unused variable (bsc#1144333). - cifs: rename a variable in SendReceive() (bsc#1144333). - cifs: rename posix create rsp (bsc#1144333). - cifs: replace various strncpy with strscpy and similar (bsc#1144333). - cifs: set correct max-buffer-size for smb2_ioctl_init() (bsc#1144333). - cifs: smbd: Add messages on RDMA session destroy and reconnection (bsc#1144333). - cifs: smbd: Invalidate and deregister memory registration on re-send for direct I/O (bsc#1144333). - cifs: smbd: Only queue work for error recovery on memory registration (bsc#1144333). - cifs: smbd: Return -EAGAIN when transport is reconnecting (bsc#1144333). - cifs: smbd: Return -ECONNABORTED when trasnport is not in connected state (bsc#1144333). - cifs: smbd: Return -EINVAL when the number of iovs exceeds SMBDIRECT_MAX_SGE (bsc#1144333). - cifs: use PTR_ERR_OR_ZERO() to simplify code (bsc#1144333). - cifs: use compounding for open and first query-dir for readdir() (bsc#1144333). - cifs: use mod_delayed_work() for &server->reconnect if already queued (bsc#1144333). - clk: Do not try to enable critical clocks if prepare failed (bsc#1051510). - clk: imx: clk-composite-8m: add lock to gate/mux (git-fixes). - clk: mmp2: Fix the order of timer mux parents (bsc#1051510). - clk: qcom: rcg2: Do not crash if our parent can't be found; return an error (bsc#1051510). - clk: rockchip: fix I2S1 clock gate register for rk3328 (bsc#1051510). - clk: rockchip: fix ID of 8ch clock of I2S1 for rk3328 (bsc#1051510). - clk: rockchip: fix rk3188 sclk_mac_lbtest parameter ordering (bsc#1051510). - clk: rockchip: fix rk3188 sclk_smc gate data (bsc#1051510). - clk: sunxi-ng: add mux and pll notifiers for A64 CPU clock (bsc#1051510). - clk: sunxi: sun9i-mmc: Implement reset callback for reset controls (bsc#1051510). - clk: tegra: Mark fuse clock as critical (bsc#1051510). - clocksource/drivers/bcm2835_timer: Fix memory leak of timer (bsc#1051510). - clocksource: Prevent double add_timer_on() for watchdog_timer (bsc#1051510). - closures: fix a race on wakeup from closure_sync (bsc#1163762). - cls_rsvp: fix rsvp_policy (networking-stable-20_02_05). - configfs_register_group() shouldn't be (and isn't) called in rmdirable parts (bsc#1051510). - copy/pasted 'Recommends:' instead of 'Provides:', 'Obsoletes:' and 'Conflicts: - core: Do not skip generic XDP program execution for cloned SKBs (bsc#1109837). - crypto: DRBG - add FIPS 140-2 CTRNG for noise source (bsc#1155334). - crypto: af_alg - Use bh_lock_sock in sk_destruct (bsc#1051510). - crypto: api - Check spawn->alg under lock in crypto_drop_spawn (bsc#1051510). - crypto: api - Fix race condition in crypto_spawn_alg (bsc#1051510). - crypto: atmel-sha - fix error handling when setting hmac key (bsc#1051510). - crypto: caam/qi2 - fix typo in algorithm's driver name (bsc#1111666). - crypto: ccp - fix uninitialized list head (bsc#1051510). - crypto: chelsio - fix writing tfm flags to wrong place (bsc#1051510). - crypto: dh - add public key verification test (bsc#1155331). - crypto: dh - fix calculating encoded key size (bsc#1155331). - crypto: dh - fix memory leak (bsc#1155331). - crypto: dh - update test for public key verification (bsc#1155331). - crypto: ecdh - add public key verification test (bsc#1155331). - crypto: ecdh - fix typo of P-192 b value (bsc#1155331). - crypto: mxc-scc - fix build warnings on ARM64 (bsc#1051510). - crypto: pcrypt - Do not clear MAY_SLEEP flag in original request (bsc#1051510). - crypto: picoxcell - adjust the position of tasklet_init and fix missed tasklet_kill (bsc#1051510). - crypto: reexport crypto_shoot_alg() (bsc#1051510, kABI fix). - cxgb4: request the TX CIDX updates to status page (bsc#1127371). - devlink: report 0 after hitting end in region read (bsc#1109837). - dma-buf: Fix memory leak in sync_file_merge() (git-fixes). - dma-mapping: fix return type of dma_set_max_seg_size() (bsc#1051510). - dmaengine: Fix access to uninitialized dma_slave_caps (bsc#1051510). - dmaengine: coh901318: Fix a double-lock bug (bsc#1051510). - dmaengine: coh901318: Remove unused variable (bsc#1051510). - drivers/base/memory.c: cache blocks in radix tree to accelerate lookup (bsc#1159955 ltc#182993). - drivers/base/memory.c: do not access uninitialized memmaps in soft_offline_page_store() (bsc#1051510). - drivers/base/platform.c: kmemleak ignore a known leak (bsc#1051510). - drivers/regulator: fix a missing check of return value (bsc#1051510). - drm/amd/display: Retrain dongles when SINK_COUNT becomes non-zero (bsc#1111666). - drm/amd/powerplay: remove set but not used variable 'us_mvdd' (bsc#1111666). - drm/amdgpu/{uvd,vcn}: fetch ring's read_ptr after alloc (bsc#1111666). - drm/amdgpu: add function parameter description in 'amdgpu_device_set_cg_state' (bsc#1111666). - drm/amdgpu: add function parameter description in 'amdgpu_gart_bind' (bsc#1051510). - drm/amdgpu: fix bad DMA from INTERRUPT_CNTL2 (bsc#1114279) - drm/amdgpu: fix ring test failure issue during s3 in vce 3.0 (V2) (bsc#1111666). - drm/amdgpu: remove 4 set but not used variable in amdgpu_atombios_get_connector_info_from_object_table (bsc#1051510). - drm/amdgpu: remove always false comparison in 'amdgpu_atombios_i2c_process_i2c_ch' (bsc#1051510). - drm/amdgpu: remove set but not used variable 'amdgpu_connector' (bsc#1051510). - drm/amdgpu: remove set but not used variable 'dig' (bsc#1051510). - drm/amdgpu: remove set but not used variable 'dig_connector' (bsc#1051510). - drm/amdgpu: remove set but not used variable 'invalid' (bsc#1111666). - drm/amdgpu: remove set but not used variable 'mc_shared_chmap' (bsc#1051510). - drm/amdgpu: remove set but not used variable 'mc_shared_chmap' from 'gfx_v6_0.c' and 'gfx_v7_0.c' (bsc#1051510). - drm/amdkfd: fix a use after free race with mmu_notifer unregister (bsc#1114279) - drm/dp_mst: correct the shifting in DP_REMOTE_I2C_READ (bsc#1051510). - drm/etnaviv: fix dumping of iommuv2 (bsc#1114279) - drm/fb-helper: Round up bits_per_pixel if possible (bsc#1051510). - drm/i810: Prevent underflow in ioctl (bsc#1114279) - drm/i915/gvt: Pin vgpu dma address before using (bsc#1112178) - drm/i915/gvt: Separate display reset from ALL_ENGINES reset (bsc#1114279) - drm/i915/gvt: set guest display buffer as readonly (bsc#1112178) - drm/i915/gvt: use vgpu lock for active state setting (bsc#1112178) - drm/i915/perf: add missing delay for OA muxes configuration (bsc#1111666). - drm/i915/userptr: Try to acquire the page lock around (bsc#1114279) - drm/i915/userptr: fix size calculation (bsc#1114279) - drm/i915: Add missing include file <linux/math64.h> (bsc#1051510). - drm/i915: Call dma_set_max_seg_size() in i915_driver_hw_probe() (bsc#1111666). - drm/i915: Fix pid leak with banned clients (bsc#1114279) - drm/i915: Handle vm_mmap error during I915_GEM_MMAP ioctl with WC set (bsc#1111666). - drm/i915: Make sure cdclk is high enough for DP audio on VLV/CHV (bsc#1111666). - drm/i915: Reacquire priolist cache after dropping the engine lock (bsc#1129770) Fixes a const function argument in the patch. - drm/i915: Sanity check mmap length against object size (bsc#1111666). - drm/i915: Wean off drm_pci_alloc/drm_pci_free (bsc#1114279) - drm/mediatek: Add gamma property according to hardware capability (bsc#1114279) - drm/mediatek: disable all the planes in atomic_disable (bsc#1114279) - drm/mipi_dbi: Fix off-by-one bugs in mipi_dbi_blank() (bsc#1114279) - drm/msm: include linux/sched/task.h (bsc#1112178) - drm/mst: Fix MST sideband up-reply failure handling (bsc#1051510). - drm/nouveau/bar/gf100: ensure BAR is mapped (bsc#1111666). - drm/nouveau/bar/nv50: check bar1 vmm return value (bsc#1111666). - drm/nouveau/mmu: qualify vmm during dtor (bsc#1111666). - drm/nouveau/secboot/gm20b: initialize pointer in gm20b_secboot_new() (bsc#1051510). - drm/nouveau: Fix copy-paste error in nouveau_fence_wait_uevent_handler (bsc#1051510). - drm/qxl: Return error if fbdev is not 32 bpp (bsc#1159028) - drm/qxl: Return error if fbdev is not 32 bpp (bsc#1159028) - drm/radeon: fix r1xx/r2xx register checker for POT textures (bsc#1114279) - drm/rect: Avoid division by zero (bsc#1111666). - drm/rect: update kerneldoc for drm_rect_clip_scaled() (bsc#1111666). - drm/rockchip: Round up _before_ giving to the clock framework (bsc#1114279) - drm/rockchip: lvds: Fix indentation of a #define (bsc#1051510). - drm/sun4i: hdmi: Remove duplicate cleanup calls (bsc#1113956) - drm/sun4i: tcon: Set RGB DCLK min. divider based on hardware model (bsc#1111666). - drm/sun4i: tcon: Set min division of TCON0_DCLK to 1 (bsc#1111666). - drm/ttm: ttm_tt_init_fields() can be static (bsc#1111666). - drm/vmwgfx: prevent memory leak in vmw_cmdbuf_res_add (bsc#1051510). - drm: atmel-hlcdc: enable clock before configuring timing engine (bsc#1114279) - drm: bridge: dw-hdmi: constify copied structure (bsc#1051510). - drm: limit to INT_MAX in create_blob ioctl (bsc#1051510). - drm: meson: venc: cvbs: fix CVBS mode matching (bsc#1051510). - drm: msm: mdp4: Adjust indentation in mdp4_dsi_encoder_enable (bsc#1111666). - drm: msm: mdp4: Adjust indentation in mdp4_dsi_encoder_enable (bsc#1114279) - drm: panel-lvds: Potential Oops in probe error handling (bsc#1114279) - drm: rcar-du: Recognize 'renesas,vsps' in addition to 'vsps' (bsc#1114279) - e1000e: Add support for Comet Lake (bsc#1158533). - e1000e: Add support for Tiger Lake (bsc#1158533). - e1000e: Increase pause and refresh time (bsc#1158533). - e100: Fix passing zero to 'PTR_ERR' warning in e100_load_ucode_wait (bsc#1051510). - enic: prevent waking up stopped tx queues over watchdog reset (bsc#1133147). - ethtool: Factored out similar ethtool link settings for virtual devices to core (bsc#1136157 ltc#177197). - exit: panic before exit_mm() on global init exit (bsc#1161549). - ext2: check err when partial != NULL (bsc#1163859). - ext4, jbd2: ensure panic when aborting with zero errno (bsc#1163853). - ext4: Fix mount failure with quota configured as module (bsc#1164471). - ext4: check for directory entries too close to block end (bsc#1163861). - ext4: fix a bug in ext4_wait_for_tail_page_commit (bsc#1163841). - ext4: fix checksum errors with indexed dirs (bsc#1160979). - ext4: fix deadlock allocating crypto bounce page from mempool (bsc#1163842). - ext4: fix mount failure with quota configured as module (bsc#1164471). - ext4: improve explanation of a mount failure caused by a misconfigured kernel (bsc#1163843). - extcon: max8997: Fix lack of path setting in USB device mode (bsc#1051510). - firestream: fix memory leaks (bsc#1051510). - fix autofs regression caused by follow_managed() changes (bsc#1159271). - fix dget_parent() fastpath race (bsc#1159271). - fix memory leak in large read decrypt offload (bsc#1144333). - fjes: fix missed check in fjes_acpi_add (bsc#1051510). - fs/cifs/cifssmb.c: use true,false for bool variable (bsc#1144333). - fs/cifs/sess.c: Remove set but not used variable 'capabilities' (bsc#1144333). - fs/cifs/smb2ops.c: use true,false for bool variable (bsc#1144333). - fs/cifs/smb2pdu.c: Make SMB2_notify_init static (bsc#1144333). - fs/namei.c: fix missing barriers when checking positivity (bsc#1159271). - fs/namei.c: pull positivity check into follow_managed() (bsc#1159271). - fs/open.c: allow opening only regular files during execve() (bsc#1163845). - fs: cifs: Fix atime update check vs mtime (bsc#1144333). - fs: cifs: Initialize filesystem timestamp ranges (bsc#1144333). - fs: cifs: cifsssmb: remove redundant assignment to variable ret (bsc#1144333). - fs: cifs: mute -Wunused-const-variable message (bsc#1144333). - fscrypt: do not set policy for a dead directory (bsc#1163846). - ftrace: Add comment to why rcu_dereference_sched() is open coded (git-fixes). - ftrace: Avoid potential division by zero in function profiler (bsc#1160784). - ftrace: Protect ftrace_graph_hash with ftrace_sync (git-fixes). - genirq/proc: Return proper error code when irq_set_affinity() fails (bnc#1105392). - genirq: Prevent NULL pointer dereference in resend_irqs() (bsc#1051510). - genirq: Properly pair kobject_del() with kobject_add() (bsc#1051510). - gpio: Fix error message on out-of-range GPIO in lookup table (bsc#1051510). - gtp: avoid zero size hashtable (networking-stable-20_01_01). - gtp: do not allow adding duplicate tid and ms_addr pdp context (networking-stable-20_01_01). - gtp: fix an use-after-free in ipv4_pdp_find() (networking-stable-20_01_01). - gtp: fix wrong condition in gtp_genl_dump_pdp() (networking-stable-20_01_01). - gtp: make sure only SOCK_DGRAM UDP sockets are accepted (networking-stable-20_01_27). - gtp: use __GFP_NOWARN to avoid memalloc warning (networking-stable-20_02_05). - hidraw: Return EPOLLOUT from hidraw_poll (bsc#1051510). - hotplug/drc-info: Add code to search ibm,drc-info property (bsc#1157480 ltc#181028). - hv_netvsc: Fix memory leak when removing rndis device (networking-stable-20_01_20). - hv_netvsc: Fix offset usage in netvsc_send_table() (bsc#1164598). - hv_netvsc: Fix send_table offset in case of a host bug (bsc#1164598). - hv_netvsc: Fix tx_table init in rndis_set_subchannel() (bsc#1164598). - hv_netvsc: Fix unwanted rx_table reset (bsc#1164598). - hwmon: (adt7475) Make volt2reg return same reg as reg2volt input (bsc#1051510). - hwmon: (core) Do not use device managed functions for memory allocations (bsc#1051510). - hwmon: (k10temp) Add support for AMD family 17h, model 70h CPUs (bsc#1163206). - hwmon: (nct7802) Fix voltage limits to wrong registers (bsc#1051510). - hwmon: (pmbus/ltc2978) Fix PMBus polling of MFR_COMMON definitions (bsc#1051510). - hwrng: stm32 - fix unbalanced pm_runtime_enable (bsc#1051510). - i2c: imx: do not print error message on probe defer (bsc#1051510). - ibmveth: Detect unsupported packets before sending to the hypervisor (bsc#1159484 ltc#182983). - ibmvfc: Fix NULL return compiler warning (bsc#1161951 ltc#183551). - ibmvnic: Bound waits for device queries (bsc#1155689 ltc#182047). - ibmvnic: Fix completion structure initialization (bsc#1155689 ltc#182047). - ibmvnic: Serialize device queries (bsc#1155689 ltc#182047). - ibmvnic: Terminate waiting device threads after loss of service (bsc#1155689 ltc#182047). - ice: fix stack leakage (bsc#1118661). - idr: Fix idr_alloc_u32 on 32-bit systems (bsc#1051510). - iio: adc: max9611: Fix too short conversion time delay (bsc#1051510). - iio: buffer: align the size of scan bytes to size of the largest element (bsc#1051510). - inet: protect against too small mtu values (networking-stable-19_12_16). - iommu/amd: Fix IOMMU perf counter clobbering during init (bsc#1162617). - iommu/arm-smmu-v3: Populate VMID field for CMDQ_OP_TLBI_NH_VA (bsc#1164314). - iommu/io-pgtable-arm: Fix race handling in split_blk_unmap() (bsc#1164115). - iommu/iova: Init the struct iova to fix the possible memleak (bsc#1160469). - iommu/mediatek: Correct the flush_iotlb_all callback (bsc#1160470). - iommu/vt-d: Unlink device if failed to add to group (bsc#1160756). - iommu: Remove device link to group on failure (bsc#1160755). - ipmi: Do not allow device module unload when in use (bsc#1154768). - ipv4: Fix table id reference in fib_sync_down_addr (networking-stable-19_11_10). - ipv4: ensure rcu_read_lock() in cipso_v4_error() (git-fixes). - ipv6: restrict IPV6_ADDRFORM operation (bsc#1109837). - iwlegacy: ensure loop counter addr does not wrap and cause an infinite loop (git-fixes). - iwlwifi: change monitor DMA to be coherent (bsc#1161243). - iwlwifi: clear persistence bit according to device family (bsc#1111666). - iwlwifi: do not throw error when trying to remove IGTK (bsc#1051510). - iwlwifi: mvm: Send non offchannel traffic via AP sta (bsc#1051510). - iwlwifi: mvm: fix NVM check for 3168 devices (bsc#1051510). - iwlwifi: mvm: force TCM re-evaluation on TCM resume (bsc#1111666). - iwlwifi: mvm: synchronize TID queue removal (bsc#1051510). - iwlwifi: pcie: fix erroneous print (bsc#1111666). - iwlwifi: trans: Clear persistence bit when starting the FW (bsc#1111666). - jbd2: Fix possible overflow in jbd2_log_space_left() (bsc#1163860). - jbd2: clear JBD2_ABORT flag before journal_reset to update log tail info when load journal (bsc#1163862). - jbd2: do not clear the BH_Mapped flag when forgetting a metadata buffer (bsc#1163836). - jbd2: make sure ESHUTDOWN to be recorded in the journal superblock (bsc#1163863). - jbd2: move the clearing of b_modified flag to the journal_unmap_buffer() (bsc#1163880). - jbd2: switch to use jbd2_journal_abort() when failed to submit the commit record (bsc#1163852). - kABI fix for 'ipmi: Do not allow device module unload when in use' (bsc#1154768). - kABI fixup for alloc_dax_region (bsc#1158071,bsc#1160678). - kABI workaround for can/skb.h inclusion (bsc#1051510). - crypto/dh: Make sure the FIPS pubkey check is only executed in FIPS mode. - kABI: Protest new fields in BPF structs (bsc#1160618). - kABI: add _q suffix to exports that take struct dh (bsc#1155331). - kABI: protect struct sctp_ep_common (kabi). - kabi/severities: Whitelist rpaphp_get_drc_props (bsc#1157480 ltc#181028). - kconfig: fix broken dependency in randconfig-generated .config (bsc#1051510). - kernel-binary.spec.in: do not recommend firmware for kvmsmall and azure flavor (boo#1161360). - kernel/module.c: Only return -EEXIST for modules that have finished loading (bsc#1165488). - kernel/module.c: wakeup processes in module_wq on module unload (bsc#1165488). - kernel/trace: Fix do not unregister tracepoints when register sched_migrate_task fail (bsc#1160787). - kernfs: Fix range checks in kernfs_get_target_path (bsc#1051510). - kexec: bail out upon SIGKILL when allocating memory (git-fixes). - kvm: x86: Host feature SSBD does not imply guest feature SPEC_CTRL_SSBD (bsc#1160476). - l2tp: Allow duplicate session creation with UDP (networking-stable-20_02_05). - lcoking/rwsem: Add missing ACQUIRE to read_slowpath sleep loop (bsc#1050549). - leds: Allow to call led_classdev_unregister() unconditionally (bsc#1161674). - leds: class: ensure workqueue is initialized before setting brightness (bsc#1161674). - lib/scatterlist.c: adjust indentation in __sg_alloc_table (bsc#1051510). - lib/test_kasan.c: fix memory leak in kmalloc_oob_krealloc_more() (bsc#1051510). - lib: crc64: include <linux/crc64.h> for 'crc64_be' (bsc#1163762). - libnvdimm-fix-devm_nsio_enable-kabi.patch: Fixup compiler warning - libnvdimm/namespace: Differentiate between probe mapping and runtime mapping (bsc#1153535). - libnvdimm/pfn: Account for PAGE_SIZE > info-block-size in nd_pfn_init() (bsc#1127682 bsc#1153535 ltc#175033 ltc#181834). - libnvdimm: Fix devm_nsio_enable() kabi (bsc#1153535). - livepatch/samples/selftest: Use klp_shadow_alloc() API correctly (bsc#1071995). - livepatch/selftest: Clean up shadow variable names and type (bsc#1071995). - locking/rwsem: Prevent decrement of reader count before increment (bsc#1050549). - mac80211: Do not send Layer 2 Update frame before authorization (bsc#1051510). - mac80211: Fix TKIP replay protection immediately after key setup (bsc#1051510). - mac80211: fix ieee80211_txq_setup_flows() failure path (bsc#1111666). - mac80211: fix station inactive_time shortly after boot (bsc#1051510). - mac80211: mesh: restrict airtime metric to peered established plinks (bsc#1051510). - macvlan: do not assume mac_header is set in macvlan_broadcast() (bsc#1051510). - macvlan: use skb_reset_mac_header() in macvlan_queue_xmit() (bsc#1051510). - mailbox: mailbox-test: fix null pointer if no mmio (bsc#1051510). - md/raid0: Fix buffer overflow at debug print (bsc#1164051). - media/v4l2-core: set pages dirty upon releasing DMA buffers (bsc#1051510). - media: af9005: uninitialized variable printked (bsc#1051510). - media: cec.h: CEC_OP_REC_FLAG_ values were swapped (bsc#1051510). - media: cec: CEC 2.0-only bcast messages were ignored (git-fixes). - media: cec: report Vendor ID after initialization (bsc#1051510). - media: digitv: do not continue if remote control state can't be read (bsc#1051510). - media: dvb-usb/dvb-usb-urb.c: initialize actlen to 0 (bsc#1051510). - media: exynos4-is: fix wrong mdev and v4l2 dev order in error path (git-fixes). - media: gspca: zero usb_buf (bsc#1051510). - media: iguanair: fix endpoint sanity check (bsc#1051510). - media: ov6650: Fix control handler not freed on init error (git-fixes). - media: ov6650: Fix crop rectangle alignment not passed back (git-fixes). - media: ov6650: Fix incorrect use of JPEG colorspace (git-fixes). - media: pulse8-cec: fix lost cec_transmit_attempt_done() call. - media: pulse8-cec: return 0 when invalidating the logical address (bsc#1051510). - media: stkwebcam: Bugfix for wrong return values (bsc#1051510). - media: uvcvideo: Avoid cyclic entity chains due to malformed USB descriptors (bsc#1051510). - media: uvcvideo: Fix error path in control parsing failure (git-fixes). - media: v4l2-ctrl: fix flags for DO_WHITE_BALANCE (bsc#1051510). - media: v4l2-ioctl.c: zero reserved fields for S/TRY_FMT (bsc#1051510). - media: v4l2-rect.h: fix v4l2_rect_map_inside() top/left adjustments (bsc#1051510). - mei: bus: prefix device names on bus with the bus name (bsc#1051510). - mfd: da9062: Fix watchdog compatible string (bsc#1051510). - mfd: dln2: More sanity checking for endpoints (bsc#1051510). - mfd: rn5t618: Mark ADC control register volatile (bsc#1051510). - missing escaping of backslashes in macro expansions (bsc#1143959) - mlxsw: spectrum: Wipe xstats.backlog of down ports (bsc#1112374). - mlxsw: spectrum_qdisc: Ignore grafting of invisible FIFO (bsc#1112374). - mlxsw: spectrum_qdisc: Include MC TCs in Qdisc counters (bsc#1112374). - mlxsw: spectrum_router: Fix determining underlay for a GRE tunnel (bsc#1112374). - mm, memory_hotplug: do not clear numa_node association after hot_remove (bnc#1115026). - mm/page-writeback.c: fix range_cyclic writeback vs writepages deadlock (bsc#1159394). - mm: memory_hotplug: use put_device() if device_register fail (bsc#1159955 ltc#182993). - mmc: mediatek: fix CMD_TA to 2 for MT8173 HS200/HS400 mode (bsc#1051510). - mmc: sdhci-of-esdhc: Revert 'mmc: sdhci-of-esdhc: add erratum A-009204 support' (bsc#1051510). - mmc: sdhci-of-esdhc: fix P2020 errata handling (bsc#1051510). - mmc: sdhci: Add a quirk for broken command queuing (git-fixes). - mmc: sdhci: Workaround broken command queuing on Intel GLK (git-fixes). - mmc: sdhci: fix minimum clock rate for v3 controller (bsc#1051510). - mmc: spi: Toggle SPI polarity, do not hardcode it (bsc#1051510). - mmc: tegra: fix SDR50 tuning override (bsc#1051510). - mod_devicetable: fix PHY module format (networking-stable-19_12_28). - moduleparam: fix parameter description mismatch (bsc#1051510). - mqprio: Fix out-of-bounds access in mqprio_dump (bsc#1109837). - mtd: fix mtd_oobavail() incoherent returned value (bsc#1051510). - mwifiex: debugfs: correct histogram spacing, formatting (bsc#1051510). - mwifiex: delete unused mwifiex_get_intf_num() (bsc#1111666). - mwifiex: drop most magic numbers from mwifiex_process_tdls_action_frame() (git-fixes). - mwifiex: fix potential NULL dereference and use after free (bsc#1051510). - mwifiex: update set_mac_address logic (bsc#1111666). - namei: only return -ECHILD from follow_dotdot_rcu() (bsc#1163851). - net, ip6_tunnel: fix namespaces move (networking-stable-20_01_27). - net, ip_tunnel: fix namespaces move (networking-stable-20_01_27). - net, sysctl: Fix compiler warning when only cBPF is present (bsc#1109837). - net-sysfs: Fix reference count leak (networking-stable-20_01_27). - net/ethtool: Introduce link_ksettings API for virtual network devices (bsc#1136157 ltc#177197). - net/ibmvnic: Fix typo in retry check (bsc#1155689 ltc#182047). - net/mlx4_en: Fix wrong limitation for number of TX rings (bsc#1103989). - net/mlx4_en: fix mlx4 ethtool -N insertion (networking-stable-19_11_25). - net/mlx5: Accumulate levels for chains prio namespaces (bsc#1103990). - net/mlx5: Fix lowest FDB pool size (bsc#1103990). - net/mlx5: IPsec, Fix esp modify function attribute (bsc#1103990 ). - net/mlx5: IPsec, fix memory leak at mlx5_fpga_ipsec_delete_sa_ctx (bsc#1103990). - net/mlx5: Update the list of the PCI supported devices (bsc#1127611). - net/mlx5: Update the list of the PCI supported devices (bsc#1127611). - net/mlx5: prevent memory leak in mlx5_fpga_conn_create_cq (bsc#1046303). - net/mlx5e: Fix SFF 8472 eeprom length (git-fixes). - net/mlx5e: Fix set vf link state error flow (networking-stable-19_11_25). - net/mlx5e: Query global pause state before setting prio2buffer (bsc#1103990). - net/mlxfw: Fix out-of-memory error in mfa2 flash burning (bsc#1051858). - net/mlxfw: Verify FSM error code translation does not exceed array size (bsc#1051858). - net/sched: act_pedit: fix WARN() in the traffic path (networking-stable-19_11_25). - net/tls: fix async operation (bsc#1109837). - net/tls: free the record on encryption error (bsc#1109837). - net/tls: take into account that bpf_exec_tx_verdict() may free the record (bsc#1109837). - net/wan/fsl_ucc_hdlc: fix out of bounds write on array utdm_info (networking-stable-20_01_20). - net: Fix Tx hash bound checking (bsc#1109837). - net: add sendmsg_locked and sendpage_locked to af_inet6 (bsc#1144162). - net: bridge: deny dev_set_mac_address() when unregistering (networking-stable-19_12_16). - net: cdc_ncm: Signedness bug in cdc_ncm_set_dgram_size() (git-fixes). - net: cxgb3_main: Add CAP_NET_ADMIN check to CHELSIO_GET_MEM (networking-stable-20_01_27). - net: dsa: mv88e6xxx: Preserve priority when setting CPU port (networking-stable-20_01_11). - net: dsa: tag_qca: fix doubled Tx statistics (networking-stable-20_01_20). - net: dst: Force 4-byte alignment of dst_metrics (networking-stable-19_12_28). - net: ena: fix napi handler misbehavior when the napi budget is zero (networking-stable-20_01_01). - net: ethernet: octeon_mgmt: Account for second possible VLAN header (networking-stable-19_11_10). - net: ethernet: ti: cpsw: fix extra rx interrupt (networking-stable-19_12_16). - net: fix data-race in neigh_event_send() (networking-stable-19_11_10). - net: hisilicon: Fix a BUG trigered by wrong bytes_compl (networking-stable-19_12_28). - net: hns3: fix ETS bandwidth validation bug (bsc#1104353 ). - net: hns3: fix a copying IPv6 address error in hclge_fd_get_flow_tuples() (bsc#1104353). - net: hns: fix soft lockup when there is not enough memory (networking-stable-20_01_20). - net: hsr: fix possible NULL deref in hsr_handle_frame() (networking-stable-20_02_05). - net: ip6_gre: fix moving ip6gre between namespaces (networking-stable-20_01_27). - net: nfc: nci: fix a possible sleep-in-atomic-context bug in nci_uart_tty_receive() (networking-stable-19_12_28). - net: phy: Check against net_device being NULL (bsc#1051510). - net: phy: Fix not to call phy_resume() if PHY is not attached (bsc#1051510). - net: phy: Fix the register offsets in Broadcom iProc mdio mux driver (bsc#1051510). - net: phy: at803x: Change error to EINVAL for invalid MAC (bsc#1051510). - net: phy: broadcom: Use strlcpy() for ethtool::get_strings (bsc#1051510). - net: phy: dp83867: Set up RGMII TX delay (bsc#1051510). - net: phy: fixed_phy: Fix fixed_phy not checking GPIO (bsc#1051510). - net: phy: marvell: Use strlcpy() for ethtool::get_strings (bsc#1051510). - net: phy: marvell: clear wol event before setting it (bsc#1051510). - net: phy: meson-gxl: check phy_write return value (bsc#1051510). - net: phy: micrel: Use strlcpy() for ethtool::get_strings (bsc#1051510). - net: phy: mscc: read 'vsc8531, edge-slowdown' as an u32 (bsc#1051510). - net: phy: mscc: read 'vsc8531,vddmac' as an u32 (bsc#1051510). - net: phy: xgene: disable clk on error paths (bsc#1051510). - net: phy: xgmiitorgmii: Check phy_driver ready before accessing (bsc#1051510). - net: phy: xgmiitorgmii: Check read_status results (bsc#1051510). - net: phy: xgmiitorgmii: Support generic PHY status read (bsc#1051510). - net: psample: fix skb_over_panic (networking-stable-19_12_03). - net: qlogic: Fix error paths in ql_alloc_large_buffers() (networking-stable-19_12_28). - net: rtnetlink: prevent underflows in do_setvfinfo() (networking-stable-19_11_25). - net: rtnetlink: validate IFLA_MTU attribute in rtnl_create_link() (networking-stable-20_01_27). - net: sch_prio: When ungrafting, replace with FIFO (networking-stable-20_01_11). - net: sched: correct flower port blocking (git-fixes). - net: sched: ensure opts_len <= IP_TUNNEL_OPTS_MAX in act_tunnel_key (bsc#1109837). - net: sched: fix `tc -s class show` no bstats on class with nolock subqueues (networking-stable-19_12_03). - net: sched: fix dump qlen for sch_mq/sch_mqprio with NOLOCK subqueues (bsc#1109837). - net: stmmac: Delete txtimer in suspend() (networking-stable-20_02_05). - net: stmmac: dwmac-sunxi: Allow all RGMII modes (networking-stable-20_01_11). - net: usb: lan78xx: Add .ndo_features_check (networking-stable-20_01_27). - net: usb: lan78xx: Fix suspend/resume PHY register access error (networking-stable-19_12_28). - net: usb: lan78xx: fix possible skb leak (networking-stable-20_01_11). - net: usb: lan78xx: limit size of local TSO packets (bsc#1051510). - net: usb: qmi_wwan: add support for DW5821e with eSIM support (networking-stable-19_11_10). - net: usb: qmi_wwan: add support for Foxconn T77W968 LTE modules (networking-stable-19_11_18). - net_sched: ematch: reject invalid TCF_EM_SIMPLE (networking-stable-20_01_30). - net_sched: fix an OOB access in cls_tcindex (networking-stable-20_02_05). - net_sched: fix datalen for ematch (networking-stable-20_01_27). - netfilter: nf_queue: enqueue skbs with NULL dst (git-fixes). - new helper: lookup_positive_unlocked() (bsc#1159271). - nvme: fix the parameter order for nvme_get_log in nvme_get_fw_slot_info (bsc#1163774). - openvswitch: drop unneeded BUG_ON() in ovs_flow_cmd_build_info() (networking-stable-19_12_03). - openvswitch: remove another BUG_ON() (networking-stable-19_12_03). - openvswitch: support asymmetric conntrack (networking-stable-19_12_16). - orinoco_usb: fix interface sanity check (git-fixes). - percpu: Separate decrypted varaibles anytime encryption can be enabled (bsc#1114279). - perf/x86/intel: Fix inaccurate period in context switch for auto-reload (bsc#1164315). - phy: qualcomm: Adjust indentation in read_poll_timeout (bsc#1051510). - pinctrl: cherryview: Fix irq_valid_mask calculation (bsc#1111666). - pinctrl: qcom: ssbi-gpio: fix gpio-hog related boot issues (bsc#1051510). - pinctrl: sh-pfc: r8a7778: Fix duplicate SDSELF_B and SD1_CLK_B (bsc#1051510). - pinctrl: xway: fix gpio-hog related boot issues (bsc#1051510). - pkt_sched: fq: do not accept silly TCA_FQ_QUANTUM (networking-stable-20_01_11). - pktcdvd: remove warning on attempting to register non-passthrough dev (bsc#1051510). - platform/mellanox: fix potential deadlock in the tmfifo driver (bsc#1136333 jsc#SLE-4994). - platform/x86: asus-wmi: Fix keyboard brightness cannot be set to 0 (bsc#1051510). - platform/x86: hp-wmi: Fix ACPI errors caused by passing 0 as input size (bsc#1051510). - platform/x86: hp-wmi: Fix ACPI errors caused by too small buffer (bsc#1051510). - platform/x86: hp-wmi: Make buffer for HPWMI_FEATURE2_QUERY 128 bytes (bsc#1051510). - platform/x86: pmc_atom: Add Siemens CONNECT X300 to critclk_systems DMI table (bsc#1051510). - power: supply: ltc2941-battery-gauge: fix use-after-free (bsc#1051510). - powerpc/archrandom: fix arch_get_random_seed_int() (bsc#1065729). - powerpc/irq: fix stack overflow verification (bsc#1065729). - powerpc/mm: Remove kvm radix prefetch workaround for Power9 DD2.2 (bsc#1061840). - powerpc/mm: drop #ifdef CONFIG_MMU in is_ioremap_addr() (bsc#1065729). - powerpc/papr_scm: Do not enable direct map for a region by default (bsc#1129551). - powerpc/papr_scm: Fix leaking 'bus_desc.provider_name' in some paths (bsc#1142685 ltc#179509). - powerpc/pkeys: remove unused pkey_allows_readwrite (bsc#1065729). - powerpc/powernv: Disable native PCIe port management (bsc#1065729). - powerpc/pseries/hotplug-memory: Change rc variable to bool (bsc#1065729). - powerpc/pseries/lparcfg: Fix display of Maximum Memory (bsc#1162028 ltc#181740). - powerpc/pseries/memory-hotplug: Only update DT once per memory DLPAR request (bsc#1165404 ltc#183498). - powerpc/pseries/mobility: notify network peers after migration (bsc#1152631 ltc#181798). - powerpc/pseries/vio: Fix iommu_table use-after-free refcount warning (bsc#1065729). - powerpc/pseries: Add cpu DLPAR support for drc-info property (bsc#1157480 ltc#181028). - powerpc/pseries: Advance pfn if section is not present in lmb_is_removable() (bsc#1065729). - powerpc/pseries: Allow not having ibm, hypertas-functions::hcall-multi-tce for DDW (bsc#1065729). - powerpc/pseries: Avoid NULL pointer dereference when drmem is unavailable (bsc#1160659). - powerpc/pseries: Drop pointless static qualifier in vpa_debugfs_init() (git-fixes). - powerpc/pseries: Enable support for ibm,drc-info property (bsc#1157480 ltc#181028). - powerpc/pseries: Fix bad drc_index_start value parsing of drc-info entry (bsc#1157480 ltc#181028). - powerpc/pseries: Fix drc-info mappings of logical cpus to drc-index (bsc#1157480 ltc#181028). - powerpc/pseries: Fix vector5 in ibm architecture vector table (bsc#1157480 ltc#181028). - powerpc/pseries: Revert support for ibm,drc-info devtree property (bsc#1157480 ltc#181028). - powerpc/pseries: group lmb operation and memblock's (bsc#1165404 ltc#183498). - powerpc/pseries: update device tree before ejecting hotplug uevents (bsc#1165404 ltc#183498). - powerpc/security: Fix debugfs data leak on 32-bit (bsc#1065729). - powerpc/smp: Use nid as fallback for package_id (bsc#1165813 ltc#184091). - powerpc/tm: Fix clearing MSR[TS] in current when reclaiming on signal delivery (bsc#1118338 ltc#173734). - powerpc/tools: Do not quote $objdump in scripts (bsc#1065729). - powerpc/xive: Discard ESB load value when interrupt is invalid (bsc#1085030). - powerpc/xive: Skip ioremap() of ESB pages for LSI interrupts (bsc#1085030). - powerpc/xmon: do not access ASDR in VMs (bsc#1065729). - powerpc: Allow 64bit VDSO __kernel_sync_dicache to work across ranges >4GB (bnc#1151927 5.3.17). - powerpc: Allow flush_icache_range to work across ranges >4GB (bnc#1151927 5.3.17). - powerpc: Enable support for ibm,drc-info devtree property (bsc#1157480 ltc#181028). - powerpc: Fix vDSO clock_getres() (bsc#1065729). - powerpc: avoid adjusting memory_limit for capture kernel memory reservation (bsc#1140025 ltc#176086). - powerpc: reserve memory for capture kernel after hugepages init (bsc#1140025 ltc#176086). - ppp: Adjust indentation into ppp_async_input (git-fixes). - prevent active file list thrashing due to refault detection (VM Performance, bsc#1156286). - pseries/drc-info: Search DRC properties for CPU indexes (bsc#1157480 ltc#181028). - pstore/ram: Write new dumps to start of recycled zones (bsc#1051510). - ptr_ring: add include of linux/mm.h (bsc#1109837). - pwm: Clear chip_data in pwm_put() (bsc#1051510). - pwm: Remove set but not set variable 'pwm' (git-fixes). - pwm: clps711x: Fix period calculation (bsc#1051510). - pwm: omap-dmtimer: Remove PWM chip in .remove before making it unfunctional (git-fixes). - pxa168fb: Fix the function used to release some memory in an error (bsc#1114279) - qede: Disable hardware gro when xdp prog is installed (bsc#1086314 bsc#1086313 bsc#1086301 ). - qede: Fix multicast mac configuration (networking-stable-19_12_28). - qede: fix NULL pointer deref in __qede_remove() (networking-stable-19_11_10). - qmi_wwan: Add support for Quectel RM500Q (bsc#1051510). - quota: Check that quota is not dirty before release (bsc#1163858). - quota: fix livelock in dquot_writeback_dquots (bsc#1163857). - r8152: add missing endpoint sanity check (bsc#1051510). - r8152: get default setting of WOL before initializing (bsc#1051510). - random: move FIPS continuous test to output functions (bsc#1155334). - regulator: Fix return value of _set_load() stub (bsc#1051510). - regulator: rk808: Lower log level on optional GPIOs being not available (bsc#1051510). - regulator: rn5t618: fix module aliases (bsc#1051510). - regulator: tps65910: fix a missing check of return value (bsc#1051510). - reiserfs: Fix memory leak of journal device string (bsc#1163867). - reiserfs: Fix spurious unlock in reiserfs_fill_super() error handling (bsc#1163869). - reset: fix reset_control_ops kerneldoc comment (bsc#1051510). - resource: fix locking in find_next_iomem_res() (bsc#1114279). - rpm/kabi.pl: support new (>=5.4) Module.symvers format (new symbol namespace field) - rpm/kernel-binary.spec.in: Conflict with too old powerpc-utils (jsc#ECO-920, jsc#SLE-11054, jsc#SLE-11322). - rpm/kernel-subpackage-spec: Exclude kernel-firmware recommends (bsc#1143959) For reducing the dependency on kernel-firmware in sub packages - rpm/kernel-subpackage-spec: Fix empty Recommends tag (bsc#1143959) - rpm/modules.fips: update module list (bsc#1157853) - rsi_91x_usb: fix interface sanity check (git-fixes). - rtc: cmos: Stop using shared IRQ (bsc#1051510). - rtc: dt-binding: abx80x: fix resistance scale (bsc#1051510). - rtc: hym8563: Return -EINVAL if the time is known to be invalid (bsc#1051510). - rtc: max8997: Fix the returned value in case of error in 'max8997_rtc_read_alarm()' (bsc#1051510). - rtc: msm6242: Fix reading of 10-hour digit (bsc#1051510). - rtc: pcf8523: set xtal load capacitance from DT (bsc#1051510). - rtc: s35390a: Change buf's type to u8 in s35390a_init (bsc#1051510). - rtl818x: fix potential use after free (bsc#1051510). - rtl8xxxu: fix interface sanity check (git-fixes). - rtlwifi: Fix MAX MPDU of VHT capability (git-fixes). - rtlwifi: Remove redundant semicolon in wifi.h (git-fixes). - rtlwifi: rtl8192de: Fix missing callback that tests for hw release of buffer (bsc#1111666). - rxrpc: Fix insufficient receive notification generation (networking-stable-20_02_05). - s390/qeth: clean up page frag creation (git-fixes). - s390/qeth: consolidate skb allocation (git-fixes). - s390/qeth: ensure linear access to packet headers (git-fixes). - s390/qeth: guard against runt packets (git-fixes). - sched/fair: Add tmp_alone_branch assertion (bnc#1156462). - sched/fair: Fix O(nr_cgroups) in the load balancing path (bnc#1156462). - sched/fair: Fix insertion in rq->leaf_cfs_rq_list (bnc#1156462). - sched/fair: Optimize update_blocked_averages() (bnc#1156462). - sched/fair: WARN() and refuse to set buddy when !se->on_rq (bsc#1158132). - scsi-qla2xxx-Fix-qla2x00_request_irqs-for-MSI.patch - scsi-qla2xxx-fix-rports-not-being-mark-as-lost-in-sy.patch - scsi-qla2xxx-unregister-ports-after-GPN_FT-failure.patch - scsi: fnic: do not queue commands during fwreset (bsc#1146539). - scsi: ibmvfc: Add failed PRLI to cmd_status lookup array (bsc#1161951 ltc#183551). - scsi: ibmvfc: Avoid loss of all paths during SVC node reboot (bsc#1161951 ltc#183551). - scsi: ibmvfc: Byte swap status and error codes when logging (bsc#1161951 ltc#183551). - scsi: ibmvfc: Clean up transport events (bsc#1161951 ltc#183551). - scsi: ibmvfc: Do not call fc_block_scsi_eh() on host reset (bsc#1161951 ltc#183551). - scsi: ibmvfc: Mark expected switch fall-throughs (bsc#1161951 ltc#183551). - scsi: ibmvfc: Remove 'failed' from logged errors (bsc#1161951 ltc#183551). - scsi: ibmvfc: Remove unneeded semicolons (bsc#1161951 ltc#183551). - scsi: ibmvfc: constify dev_pm_ops structures (bsc#1161951 ltc#183551). - scsi: ibmvfc: ibmvscsi: ibmvscsi_tgt: constify vio_device_id (bsc#1161951 ltc#183551). - scsi: ibmvscsi: Do not use rc uninitialized in ibmvscsi_do_work (bsc#1161951 ltc#183551). - scsi: ibmvscsi: Improve strings handling (bsc#1161951 ltc#183551). - scsi: ibmvscsi: Wire up host_reset() in the driver's scsi_host_template (bsc#1161951 ltc#183551). - scsi: ibmvscsi: change strncpy+truncation to strlcpy (bsc#1161951 ltc#183551). - scsi: ibmvscsi: constify dev_pm_ops structures (bsc#1161951 ltc#183551). - scsi: ibmvscsi: fix tripping of blk_mq_run_hw_queue WARN_ON (bsc#1161951 ltc#183551). - scsi: ibmvscsi: redo driver work thread to use enum action states (bsc#1161951 ltc#183551). - scsi: lpfc: fix build failure with DEBUGFS disabled (bsc#1154601). - scsi: qla2xxx: Add 16.0GT for PCI String (bsc#1157424). - scsi: qla2xxx: Add D-Port Diagnostic reason explanation logs (bsc#1158013). - scsi: qla2xxx: Add a shadow variable to hold disc_state history of fcport (bsc#1158013). - scsi: qla2xxx: Add beacon LED config sysfs interface (bsc#1157424). - scsi: qla2xxx: Add changes in preparation for vendor extended FDMI/RDP (bsc#1157424). - scsi: qla2xxx: Add deferred queue for processing ABTS and RDP (bsc#1157424). - scsi: qla2xxx: Add endianizer macro calls to fc host stats (bsc#1157424). - scsi: qla2xxx: Add fixes for mailbox command (bsc#1157424). - scsi: qla2xxx: Add ql2xrdpenable module parameter for RDP (bsc#1157424). - scsi: qla2xxx: Add sysfs node for D-Port Diagnostics AEN data (bsc#1157424). - scsi: qla2xxx: Add vendor extended FDMI commands (bsc#1157424). - scsi: qla2xxx: Add vendor extended RDP additions and amendments (bsc#1157424). - scsi: qla2xxx: Added support for MPI and PEP regions for ISP28XX (bsc#1157424, bsc#1157908, bsc#1157169, bsc#1151548). - scsi: qla2xxx: Avoid setting firmware options twice in 24xx_update_fw_options (bsc#1157424). - scsi: qla2xxx: Check locking assumptions at runtime in qla2x00_abort_srb() (bsc#1157424). - scsi: qla2xxx: Cleanup ELS/PUREX iocb fields (bsc#1157424). - scsi: qla2xxx: Cleanup unused async_logout_done (bsc#1158013). - scsi: qla2xxx: Consolidate fabric scan (bsc#1158013). - scsi: qla2xxx: Convert MAKE_HANDLE() from a define into an inline function (bsc#1157424). - scsi: qla2xxx: Correct fcport flags handling (bsc#1158013). - scsi: qla2xxx: Correction to selection of loopback/echo test (bsc#1157424). - scsi: qla2xxx: Correctly retrieve and interpret active flash region (bsc#1157424, bsc#1157908, bsc#1157169, bsc#1151548). - scsi: qla2xxx: Display message for FCE enabled (bsc#1157424). - scsi: qla2xxx: Fix FCP-SCSI FC4 flag passing error (bsc#1157424). - scsi: qla2xxx: Fix NPIV instantiation after FW dump (bsc#1157424). - scsi: qla2xxx: Fix RDP respond data format (bsc#1157424). - scsi: qla2xxx: Fix RDP response size (bsc#1157424). - scsi: qla2xxx: Fix RIDA Format-2 (bsc#1158013). - scsi: qla2xxx: Fix a NULL pointer dereference in an error path (bsc#1157966 bsc#1158013 bsc#1157424). - scsi: qla2xxx: Fix control flags for login/logout IOCB (bsc#1157424). - scsi: qla2xxx: Fix fabric scan hang (bsc#1158013). - scsi: qla2xxx: Fix incorrect SFUB length used for Secure Flash Update MB Cmd (bsc#1157424, bsc#1157908, bsc#1157169, bsc#1151548). - scsi: qla2xxx: Fix mtcp dump collection failure (bsc#1158013). - scsi: qla2xxx: Fix qla2x00_echo_test() based on ISP type (bsc#1157424). - scsi: qla2xxx: Fix sparse warning reported by kbuild bot (bsc#1157424). - scsi: qla2xxx: Fix sparse warnings triggered by the PCI state checking code (bsc#1157424). - scsi: qla2xxx: Fix stuck login session using prli_pend_timer (bsc#1158013). - scsi: qla2xxx: Fix stuck session in GNL (bsc#1158013). - scsi: qla2xxx: Fix the endianness of the qla82xx_get_fw_size() return type (bsc#1158013). - scsi: qla2xxx: Fix unbound NVME response length (bsc#1157966 bsc#1158013 bsc#1157424). - scsi: qla2xxx: Fix update_fcport for current_topology (bsc#1158013). - scsi: qla2xxx: Force semaphore on flash validation failure (bsc#1157424). - scsi: qla2xxx: Handle NVME status iocb correctly (bsc#1157424). - scsi: qla2xxx: Handle cases for limiting RDP response payload length (bsc#1157424). - scsi: qla2xxx: Improve readability of the code that handles qla_flt_header (bsc#1158013). - scsi: qla2xxx: Improved secure flash support messages (bsc#1157424). - scsi: qla2xxx: Move free of fcport out of interrupt context (bsc#1157424). - scsi: qla2xxx: Print portname for logging in qla24xx_logio_entry() (bsc#1157424). - scsi: qla2xxx: Remove defer flag to indicate immeadiate port loss (bsc#1158013). - scsi: qla2xxx: Remove restriction of FC T10-PI and FC-NVMe (bsc#1157424). - scsi: qla2xxx: Return appropriate failure through BSG Interface (bsc#1157424). - scsi: qla2xxx: Save rscn_gen for new fcport (bsc#1157424). - scsi: qla2xxx: Serialize fc_port alloc in N2N (bsc#1157424). - scsi: qla2xxx: Set Nport ID for N2N (bsc#1157424). - scsi: qla2xxx: Show correct port speed capabilities for RDP command (bsc#1157424). - scsi: qla2xxx: Simplify the code for aborting SCSI commands (bsc#1157424). - scsi: qla2xxx: Suppress endianness complaints in qla2x00_configure_local_loop() (bsc#1157424). - scsi: qla2xxx: Update BPM enablement semantics (bsc#1157424). - scsi: qla2xxx: Update driver version to 10.01.00.22-k (bsc#1158013). - scsi: qla2xxx: Update driver version to 10.01.00.24-k (bsc#1157424). - scsi: qla2xxx: Update driver version to 10.01.00.25-k (bsc#1157424). - scsi: qla2xxx: Use FC generic update firmware options routine for ISP27xx (bsc#1157424). - scsi: qla2xxx: Use QLA_FW_STOPPED macro to propagate flag (bsc#1157424). - scsi: qla2xxx: Use a dedicated interrupt handler for 'handshake-required' ISPs (bsc#1157424). - scsi: qla2xxx: Use common routine to free fcport struct (bsc#1158013). - scsi: qla2xxx: Use correct ISP28xx active FW region (bsc#1157424). - scsi: qla2xxx: Use endian macros to assign static fields in fwdump header (bsc#1157424). - scsi: qla2xxx: Use get_unaligned_*() instead of open-coding these functions (bsc#1158013). - scsi: qla2xxx: add more FW debug information (bsc#1157424). - scsi: qla2xxx: fix FW resource count values (bsc#1157424). - scsi: tcm_qla2xxx: Make qlt_alloc_qfull_cmd() set cmd->se_cmd.map_tag (bsc#1157424). - scsi: zfcp: trace channel log even for FCP command responses (git-fixes). - sctp: cache netns in sctp_ep_common (networking-stable-19_12_03). - sctp: free cmd->obj.chunk for the unprocessed SCTP_CMD_REPLY (networking-stable-20_01_11). - sctp: fully initialize v4 addr in some functions (networking-stable-19_12_28). - serial: 8250_bcm2835aux: Fix line mismatch on driver unbind (bsc#1051510). - serial: ifx6x60: add missed pm_runtime_disable (bsc#1051510). - serial: max310x: Fix tx_empty() callback (bsc#1051510). - serial: pl011: Fix DMA ->flush_buffer() (bsc#1051510). - serial: serial_core: Perform NULL checks for break_ctl ops (bsc#1051510). - serial: stm32: fix transmit_chars when tx is stopped (bsc#1051510). - sfc: Only cancel the PPS workqueue if it exists (networking-stable-19_11_25). - sfc: Remove 'PCIE error reporting unavailable' (bsc#1161472). - sh_eth: TSU_QTAG0/1 registers the same as TSU_QTAGM0/1 (bsc#1051510). - sh_eth: check sh_eth_cpu_data::dual_port when dumping registers (bsc#1051510). - sh_eth: fix TSU init on SH7734/R8A7740 (bsc#1051510). - sh_eth: fix TXALCR1 offsets (bsc#1051510). - sh_eth: fix dumping ARSTR (bsc#1051510). - sh_eth: fix invalid context bug while calling auto-negotiation by ethtool (bsc#1051510). - sh_eth: fix invalid context bug while changing link options by ethtool (bsc#1051510). - smb3: Add defines for new information level, FileIdInformation (bsc#1144333). - smb3: Add missing reparse tags (bsc#1144333). - smb3: Fix regression in time handling (bsc#1144333). - smb3: add debug messages for closing unmatched open (bsc#1144333). - smb3: add dynamic tracepoints for flush and close (bsc#1144333). - smb3: add missing flag definitions (bsc#1144333). - smb3: add missing worker function for SMB3 change notify (bsc#1144333). - smb3: add mount option to allow RW caching of share accessed by only 1 client (bsc#1144333). - smb3: add mount option to allow forced caching of read only share (bsc#1144333). - smb3: add one more dynamic tracepoint missing from strict fsync path (bsc#1144333). - smb3: add some more descriptive messages about share when mounting cache=ro (bsc#1144333). - smb3: allow decryption keys to be dumped by admin for debugging (bsc#1144333). - smb3: allow disabling requesting leases (bsc#1144333). - smb3: allow parallelizing decryption of reads (bsc#1144333). - smb3: allow skipping signature verification for perf sensitive configurations (bsc#1144333). - smb3: cleanup some recent endian errors spotted by updated sparse (bsc#1144333). - smb3: display max smb3 requests in flight at any one time (bsc#1144333). - smb3: dump in_send and num_waiters stats counters by default (bsc#1144333). - smb3: enable offload of decryption of large reads via mount option (bsc#1144333). - smb3: fix default permissions on new files when mounting with modefromsid (bsc#1144333). - smb3: fix mode passed in on create for modetosid mount option (bsc#1144333). - smb3: fix performance regression with setting mtime (bsc#1144333). - smb3: fix potential null dereference in decrypt offload (bsc#1144333). - smb3: fix problem with null cifs super block with previous patch (bsc#1144333). - smb3: fix refcount underflow warning on unmount when no directory leases (bsc#1144333). - smb3: improve check for when we send the security descriptor context on create (bsc#1144333). - smb3: log warning if CSC policy conflicts with cache mount option (bsc#1144333). - smb3: missing ACL related flags (bsc#1144333). - smb3: only offload decryption of read responses if multiple requests (bsc#1144333). - smb3: pass mode bits into create calls (bsc#1144333). - smb3: query attributes on file close (bsc#1144333). - smb3: remove confusing dmesg when mounting with encryption ('seal') (bsc#1144333). - smb3: remove noisy debug message and minor cleanup (bsc#1144333). - smb3: remove unused flag passed into close functions (bsc#1144333). - soc/tegra: fuse: Correct straps' address for older Tegra124 device trees (bsc#1051510). - soc: renesas: rcar-sysc: Add goto to of_node_put() before return (bsc#1051510). - soc: ti: wkup_m3_ipc: Fix race condition with rproc_boot (bsc#1051510). - spi: omap2-mcspi: Fix DMA and FIFO event trigger size mismatch (bsc#1051510). - spi: omap2-mcspi: Set FIFO DMA trigger level to word length (bsc#1051510). - spi: tegra114: clear packed bit for unpacked mode (bsc#1051510). - spi: tegra114: configure dma burst size to fifo trig level (bsc#1051510). - spi: tegra114: fix for unpacked mode transfers (bsc#1051510). - spi: tegra114: flush fifos (bsc#1051510). - spi: tegra114: terminate dma and reset on transfer timeout (bsc#1051510). - sr_vendor: support Beurer GL50 evo CD-on-a-chip devices (boo#1164632). - staging: comedi: adv_pci1710: fix AI channels 16-31 for PCI-1713 (bsc#1051510). - staging: rtl8188eu: fix interface sanity check (bsc#1051510). - staging: rtl8192e: fix potential use after free (bsc#1051510). - staging: rtl8723bs: Add 024c:0525 to the list of SDIO device-ids (bsc#1051510). - staging: rtl8723bs: Drop ACPI device ids (bsc#1051510). - staging: vt6656: Fix false Tx excessive retries reporting (bsc#1051510). - staging: vt6656: correct packet types for CTS protect, mode (bsc#1051510). - staging: vt6656: use NULLFUCTION stack on mac80211 (bsc#1051510). - staging: wlan-ng: ensure error return is actually returned (bsc#1051510). - stm class: Fix a double free of stm_source_device (bsc#1051510). - stop_machine, sched: Fix migrate_swap() vs. active_balance() deadlock (bsc#1088810, bsc#1161702). - stop_machine: Atomically queue and wake stopper threads (bsc#1088810, bsc#1161702). - stop_machine: Disable preemption after queueing stopper threads (bsc#1088810, bsc#1161702). - stop_machine: Disable preemption when waking two stopper threads (bsc#1088810, bsc#1161702). - tcp: clear tp->data_segs{in|out} in tcp_disconnect() (networking-stable-20_02_05). - tcp: clear tp->delivered in tcp_disconnect() (networking-stable-20_02_05). - tcp: clear tp->packets_out when purging write queue (bsc#1160560). - tcp: clear tp->segs_{in|out} in tcp_disconnect() (networking-stable-20_02_05). - tcp: clear tp->total_retrans in tcp_disconnect() (networking-stable-20_02_05). - tcp: do not send empty skb from tcp_write_xmit() (networking-stable-20_01_01). - tcp: exit if nothing to retransmit on RTO timeout (bsc#1160560, stable 4.14.159). - tcp: fix 'old stuff' D-SACK causing SACK to be treated as D-SACK (networking-stable-20_01_11). - tcp: fix marked lost packets not being retransmitted (networking-stable-20_01_20). - tcp: md5: fix potential overestimation of TCP option space (networking-stable-19_12_16). - tcp_bbr: improve arithmetic division in bbr_update_bw() (networking-stable-20_01_27). - thermal: Fix deadlock in thermal thermal_zone_device_check (bsc#1051510). - thunderbolt: Prevent crash if non-active NVMem file is read (git-fixes). - tipc: fix a missing check of genlmsg_put (bsc#1051510). - tipc: fix link name length check (bsc#1051510). - tipc: fix memory leak in tipc_nl_compat_publ_dump (bsc#1051510). - tipc: fix skb may be leaky in tipc_link_input (bsc#1051510). - tools lib traceevent: Do not free tep->cmdlines in add_new_comm() on failure (git-fixes). - tracing: Annotate ftrace_graph_hash pointer with __rcu (git-fixes). - tracing: Annotate ftrace_graph_notrace_hash pointer with __rcu (git-fixes). - tracing: Fix tracing_stat return values in error handling paths (git-fixes). - tracing: Fix very unlikely race of registering two stat tracers (git-fixes). - tracing: Have the histogram compare functions convert to u64 first (bsc#1160210). - tracing: xen: Ordered comparison of function pointers (git-fixes). - tty/serial: atmel: Add is_half_duplex helper (bsc#1051510). - tty: n_hdlc: fix build on SPARC (bsc#1051510). - tty: serial: msm_serial: Fix lockup for sysrq and oops (bsc#1051510). - tty: vt: keyboard: reject invalid keycodes (bsc#1051510). - ttyprintk: fix a potential deadlock in interrupt context issue (git-fixes). - tun: add mutex_unlock() call and napi.skb clearing in tun_get_user() (bsc#1109837). - uaccess: Add non-pagefault user-space write function (bsc#1083647). - ubifs: Fix FS_IOC_SETFLAGS unexpectedly clearing encrypt flag (bsc#1163855). - ubifs: Fix deadlock in concurrent bulk-read and writepage (bsc#1163856). - ubifs: Reject unsupported ioctl flags explicitly (bsc#1163844). - ubifs: do not trigger assertion on invalid no-key filename (bsc#1163850). - udp: fix integer overflow while computing available space in sk_rcvbuf (networking-stable-20_01_01). - usb-storage: Disable UAS on JMicron SATA enclosure (bsc#1051510). - usb: Allow USB device to be warm reset in suspended state (bsc#1051510). - usb: chipidea: host: Disable port power only if previously enabled (bsc#1051510). - usb: core: hub: Improved device recognition on remote wakeup (bsc#1051510). - usb: core: urb: fix URB structure initialization function (bsc#1051510). - usb: dwc3: debugfs: Properly print/set link state for HS (bsc#1051510). - usb: dwc3: do not log probe deferrals; but do log other error codes (bsc#1051510). - usb: dwc3: ep0: Clear started flag on completion (bsc#1051510). - usb: dwc3: turn off VBUS when leaving host mode (bsc#1051510). - usb: gadget: Zero ffs_io_data (bsc#1051510). - usb: gadget: f_ecm: Use atomic_t to track in-flight request (bsc#1051510). - usb: gadget: f_ncm: Use atomic_t to track in-flight request (bsc#1051510). - usb: gadget: legacy: set max_speed to super-speed (bsc#1051510). - usb: gadget: pch_udc: fix use after free (bsc#1051510). - usb: gadget: u_serial: add missing port entry locking (bsc#1051510). - usb: host: xhci-hub: fix extra endianness conversion (bsc#1051510). - usb: mon: Fix a deadlock in usbmon between mmap and read (bsc#1051510). - usb: mtu3: fix dbginfo in qmu_tx_zlp_error_handler (bsc#1051510). - usb: musb: dma: Correct parameter passed to IRQ handler (bsc#1051510). - usb: musb: fix idling for suspend after disconnect interrupt (bsc#1051510). - usb: roles: fix a potential use after free (git-fixes). - usb: typec: tcpci: mask event interrupts when remove driver (bsc#1051510). - usb: xhci: Fix build warning seen with CONFIG_PM=n (bsc#1051510). - usb: xhci: only set D3hot for pci device (bsc#1051510). - usbip: Fix error path of vhci_recv_ret_submit() (git-fixes). - usbip: Fix receive error in vhci-hcd when using scatter-gather (bsc#1051510). - usbip: Fix uninitialized symbol 'nents' in stub_recv_cmd_submit() (git-fixes). - vfs: fix preadv64v2 and pwritev64v2 compat syscalls with offset == -1 (bsc#1051510). - vhost/vsock: accept only packets with the right dst_cid (networking-stable-20_01_01). - video: backlight: Add devres versions of of_find_backlight (bsc#1090888) Taken for 6010831dde5. - video: backlight: Add of_find_backlight helper in backlight.c (bsc#1090888) Taken for 6010831dde5. - vlan: fix memory leak in vlan_dev_set_egress_priority (networking-stable-20_01_11). - vlan: vlan_changelink() should propagate errors (networking-stable-20_01_11). - vxlan: fix tos value before xmit (networking-stable-20_01_11). - watchdog: max77620_wdt: fix potential build errors (bsc#1051510). - watchdog: rn5t618_wdt: fix module aliases (bsc#1051510). - watchdog: sama5d4: fix WDD value to be always set to max (bsc#1051510). - watchdog: wdat_wdt: fix get_timeleft call for wdat_wdt (bsc#1162557). - wireless: fix enabling channel 12 for custom regulatory domain (bsc#1051510). - wireless: wext: avoid gcc -O3 warning (bsc#1051510). - workqueue: Fix pwq ref leak in rescuer_thread() (bsc#1160211). - x86/MCE/AMD: Allow Reserved types to be overwritten in smca_banks (bsc#1114279). - x86/MCE/AMD: Do not use rdmsr_safe_on_cpu() in smca_configure() (bsc#1114279). - x86/amd_nb: Add PCI device IDs for family 17h, model 70h (bsc#1163206). - x86/cpu: Update cached HLE state on write to TSX_CTRL_CPUID_CLEAR (bsc#1162619). - x86/intel_rdt: Split resource group removal in two (bsc#1112178). - x86/intel_rdt: Split resource group removal in two (bsc#1112178). - x86/kgbd: Use NMI_VECTOR not APIC_DM_NMI (bsc#1114279). - x86/mce/AMD: Allow any CPU to initialize the smca_banks array (bsc#1114279). - x86/mce: Fix possibly incorrect severity calculation on AMD (bsc#1114279). - x86/resctrl: Check monitoring static key in the MBM overflow handler (bsc#1114279). - x86/resctrl: Fix a deadlock due to inaccurate reference (bsc#1112178). - x86/resctrl: Fix a deadlock due to inaccurate reference (bsc#1112178). - x86/resctrl: Fix an imbalance in domain_remove_cpu() (bsc#1114279). - x86/resctrl: Fix potential memory leak (bsc#1114279). - x86/resctrl: Fix use-after-free due to inaccurate refcount of rdtgroup (bsc#1112178). - x86/resctrl: Fix use-after-free due to inaccurate refcount of rdtgroup (bsc#1112178). - x86/resctrl: Fix use-after-free when deleting resource groups (bsc#1114279). - x86/speculation: Fix incorrect MDS/TAA mitigation status (bsc#1114279). - x86/speculation: Fix redundant MDS mitigation message (bsc#1114279). - xen-blkfront: switch kcalloc to kvcalloc for large array allocation (bsc#1160917). - xen/balloon: Support xend-based toolstack take two (bsc#1065600). - xen/blkback: Avoid unmapping unmapped grant pages (bsc#1065600). - xen/blkfront: Adjust indentation in xlvbd_alloc_gendisk (bsc#1065600). - xen: Enable interrupts when calling _cond_resched() (bsc#1065600). - xfrm: Fix transport mode skb control buffer usage (bsc#1161552). - xfs: Fix tail rounding in xfs_alloc_file_space() (bsc#1161087, bsc#1153917). - xhci: Fix memory leak in xhci_add_in_port() (bsc#1051510). - xhci: Increase STS_HALT timeout in xhci_suspend() (bsc#1051510). - xhci: fix USB3 device initiated resume race with roothub autosuspend (bsc#1051510). - xhci: handle some XHCI_TRUST_TX_LENGTH quirks cases as default behaviour (bsc#1051510). - xhci: make sure interrupts are restored to correct state (bsc#1051510). - zd1211rw: fix storage endpoint lookup (git-fixes).

Patchnames: openSUSE-2020-336

CVE-2019-14615

6.2 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 21 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-14896

8.1 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 21 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2019-14897

8.1 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 21 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2019-16746

7.3 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Affected products

Recommended 21 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-16994

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 21 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-18808

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 21 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-19036

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Affected products

Recommended 21 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-19045

6.2 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 21 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-19051

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 21 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-19054

2.9 (Low)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 21 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-19066

4.4 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 21 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-19318

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Affected products

Recommended 21 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-19319

6.6 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H

Affected products

Recommended 21 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-19332

6.7 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 21 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-19338

6.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

Affected products

Recommended 21 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-19447

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected products

Recommended 21 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2019-19523

5.7 (Medium)


                        
                          CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H

Affected products

Recommended 21 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-19526

4.6 (Medium)


                        
                          CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 21 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-19527

5.7 (Medium)


                        
                          CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H

Affected products

Recommended 21 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-19532

6.8 (Medium)


                        
                          CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 21 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-19533

2.4 (Low)


                        
                          CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Affected products

Recommended 21 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-19535

4.6 (Medium)


                        
                          CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 21 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-19537

4.6 (Medium)


                        
                          CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 21 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-19767

5.3 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

Affected products

Recommended 21 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-19927

4 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Affected products

Recommended 21 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-19965

4.2 (Medium)


                        
                          CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 21 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-19966

3.5 (Low)


                        
                          CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L

Affected products

Recommended 21 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2019-20054

6.2 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 21 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-20095

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 21 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2019-20096

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 21 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-2732

3.2 (Low)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:N

Affected products

Recommended 21 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-7053

5.3 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Affected products

Recommended 21 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-8428

6.1 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H

Affected products

Recommended 21 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-8648

6.1 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H

Affected products

Recommended 21 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-8992

2.1 (Low)


                        
                          CVSS:3.1/AV:P/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

Affected products

Recommended 21 products

Product	Version	Remediation
Unresolved product id: openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64	—	Vendor Fix

Threats

Impact low

References

361 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/o…	self
https://lists.opensuse.org/archives/list/security…	self
https://lists.opensuse.org/archives/list/security…	self
https://bugzilla.suse.com/1046303	self
https://bugzilla.suse.com/1050244	self
https://bugzilla.suse.com/1050549	self
https://bugzilla.suse.com/1051510	self
https://bugzilla.suse.com/1051858	self
https://bugzilla.suse.com/1060463	self
https://bugzilla.suse.com/1061840	self
https://bugzilla.suse.com/1065600	self
https://bugzilla.suse.com/1065729	self
https://bugzilla.suse.com/1071995	self
https://bugzilla.suse.com/1083647	self
https://bugzilla.suse.com/1085030	self
https://bugzilla.suse.com/1086301	self
https://bugzilla.suse.com/1086313	self
https://bugzilla.suse.com/1086314	self
https://bugzilla.suse.com/1088810	self
https://bugzilla.suse.com/1090888	self
https://bugzilla.suse.com/1103989	self
https://bugzilla.suse.com/1103990	self
https://bugzilla.suse.com/1103991	self
https://bugzilla.suse.com/1103992	self
https://bugzilla.suse.com/1104353	self
https://bugzilla.suse.com/1104427	self
https://bugzilla.suse.com/1104745	self
https://bugzilla.suse.com/1105392	self
https://bugzilla.suse.com/1109837	self
https://bugzilla.suse.com/1111666	self
https://bugzilla.suse.com/1112178	self
https://bugzilla.suse.com/1112374	self
https://bugzilla.suse.com/1112504	self
https://bugzilla.suse.com/1113956	self
https://bugzilla.suse.com/1114279	self
https://bugzilla.suse.com/1114685	self
https://bugzilla.suse.com/1115026	self
https://bugzilla.suse.com/1118338	self
https://bugzilla.suse.com/1118661	self
https://bugzilla.suse.com/1123328	self
https://bugzilla.suse.com/1126206	self
https://bugzilla.suse.com/1127371	self
https://bugzilla.suse.com/1127611	self
https://bugzilla.suse.com/1127682	self
https://bugzilla.suse.com/1129551	self
https://bugzilla.suse.com/1129770	self
https://bugzilla.suse.com/1133021	self
https://bugzilla.suse.com/1133147	self
https://bugzilla.suse.com/1134090	self
https://bugzilla.suse.com/1134973	self
https://bugzilla.suse.com/1136157	self
https://bugzilla.suse.com/1136333	self
https://bugzilla.suse.com/1140025	self
https://bugzilla.suse.com/1142685	self
https://bugzilla.suse.com/1143959	self
https://bugzilla.suse.com/1144162	self
https://bugzilla.suse.com/1144333	self
https://bugzilla.suse.com/1146539	self
https://bugzilla.suse.com/1151548	self
https://bugzilla.suse.com/1151910	self
https://bugzilla.suse.com/1151927	self
https://bugzilla.suse.com/1152107	self
https://bugzilla.suse.com/1152631	self
https://bugzilla.suse.com/1153535	self
https://bugzilla.suse.com/1153917	self
https://bugzilla.suse.com/1154243	self
https://bugzilla.suse.com/1154601	self
https://bugzilla.suse.com/1154768	self
https://bugzilla.suse.com/1154916	self
https://bugzilla.suse.com/1155331	self
https://bugzilla.suse.com/1155334	self
https://bugzilla.suse.com/1155689	self
https://bugzilla.suse.com/1156259	self
https://bugzilla.suse.com/1156286	self
https://bugzilla.suse.com/1156462	self
https://bugzilla.suse.com/1157155	self
https://bugzilla.suse.com/1157157	self
https://bugzilla.suse.com/1157169	self
https://bugzilla.suse.com/1157303	self
https://bugzilla.suse.com/1157424	self
https://bugzilla.suse.com/1157480	self
https://bugzilla.suse.com/1157692	self
https://bugzilla.suse.com/1157853	self
https://bugzilla.suse.com/1157895	self
https://bugzilla.suse.com/1157908	self
https://bugzilla.suse.com/1157966	self
https://bugzilla.suse.com/1158013	self
https://bugzilla.suse.com/1158021	self
https://bugzilla.suse.com/1158026	self
https://bugzilla.suse.com/1158071	self
https://bugzilla.suse.com/1158094	self
https://bugzilla.suse.com/1158132	self
https://bugzilla.suse.com/1158533	self
https://bugzilla.suse.com/1158819	self
https://bugzilla.suse.com/1158823	self
https://bugzilla.suse.com/1158824	self
https://bugzilla.suse.com/1158827	self
https://bugzilla.suse.com/1158834	self
https://bugzilla.suse.com/1158893	self
https://bugzilla.suse.com/1158900	self
https://bugzilla.suse.com/1158903	self
https://bugzilla.suse.com/1158904	self
https://bugzilla.suse.com/1158954	self
https://bugzilla.suse.com/1159024	self
https://bugzilla.suse.com/1159028	self
https://bugzilla.suse.com/1159271	self
https://bugzilla.suse.com/1159297	self
https://bugzilla.suse.com/1159377	self
https://bugzilla.suse.com/1159394	self
https://bugzilla.suse.com/1159483	self
https://bugzilla.suse.com/1159484	self
https://bugzilla.suse.com/1159500	self
https://bugzilla.suse.com/1159569	self
https://bugzilla.suse.com/1159588	self
https://bugzilla.suse.com/1159841	self
https://bugzilla.suse.com/1159908	self
https://bugzilla.suse.com/1159909	self
https://bugzilla.suse.com/1159910	self
https://bugzilla.suse.com/1159911	self
https://bugzilla.suse.com/1159955	self
https://bugzilla.suse.com/1160147	self
https://bugzilla.suse.com/1160195	self
https://bugzilla.suse.com/1160210	self
https://bugzilla.suse.com/1160211	self
https://bugzilla.suse.com/1160218	self
https://bugzilla.suse.com/1160433	self
https://bugzilla.suse.com/1160442	self
https://bugzilla.suse.com/1160469	self
https://bugzilla.suse.com/1160470	self
https://bugzilla.suse.com/1160476	self
https://bugzilla.suse.com/1160560	self
https://bugzilla.suse.com/1160618	self
https://bugzilla.suse.com/1160659	self
https://bugzilla.suse.com/1160678	self
https://bugzilla.suse.com/1160755	self
https://bugzilla.suse.com/1160756	self
https://bugzilla.suse.com/1160784	self
https://bugzilla.suse.com/1160787	self
https://bugzilla.suse.com/1160802	self
https://bugzilla.suse.com/1160803	self
https://bugzilla.suse.com/1160804	self
https://bugzilla.suse.com/1160917	self
https://bugzilla.suse.com/1160966	self
https://bugzilla.suse.com/1160979	self
https://bugzilla.suse.com/1161087	self
https://bugzilla.suse.com/1161243	self
https://bugzilla.suse.com/1161360	self
https://bugzilla.suse.com/1161472	self
https://bugzilla.suse.com/1161514	self
https://bugzilla.suse.com/1161518	self
https://bugzilla.suse.com/1161522	self
https://bugzilla.suse.com/1161523	self
https://bugzilla.suse.com/1161549	self
https://bugzilla.suse.com/1161552	self
https://bugzilla.suse.com/1161674	self
https://bugzilla.suse.com/1161702	self
https://bugzilla.suse.com/1161907	self
https://bugzilla.suse.com/1161931	self
https://bugzilla.suse.com/1161933	self
https://bugzilla.suse.com/1161934	self
https://bugzilla.suse.com/1161935	self
https://bugzilla.suse.com/1161936	self
https://bugzilla.suse.com/1161937	self
https://bugzilla.suse.com/1161951	self
https://bugzilla.suse.com/1162028	self
https://bugzilla.suse.com/1162067	self
https://bugzilla.suse.com/1162109	self
https://bugzilla.suse.com/1162139	self
https://bugzilla.suse.com/1162557	self
https://bugzilla.suse.com/1162617	self
https://bugzilla.suse.com/1162618	self
https://bugzilla.suse.com/1162619	self
https://bugzilla.suse.com/1162623	self
https://bugzilla.suse.com/1162928	self
https://bugzilla.suse.com/1162943	self
https://bugzilla.suse.com/1163206	self
https://bugzilla.suse.com/1163383	self
https://bugzilla.suse.com/1163384	self
https://bugzilla.suse.com/1163762	self
https://bugzilla.suse.com/1163774	self
https://bugzilla.suse.com/1163836	self
https://bugzilla.suse.com/1163840	self
https://bugzilla.suse.com/1163841	self
https://bugzilla.suse.com/1163842	self
https://bugzilla.suse.com/1163843	self
https://bugzilla.suse.com/1163844	self
https://bugzilla.suse.com/1163845	self
https://bugzilla.suse.com/1163846	self
https://bugzilla.suse.com/1163849	self
https://bugzilla.suse.com/1163850	self
https://bugzilla.suse.com/1163851	self
https://bugzilla.suse.com/1163852	self
https://bugzilla.suse.com/1163853	self
https://bugzilla.suse.com/1163855	self
https://bugzilla.suse.com/1163856	self
https://bugzilla.suse.com/1163857	self
https://bugzilla.suse.com/1163858	self
https://bugzilla.suse.com/1163859	self
https://bugzilla.suse.com/1163860	self
https://bugzilla.suse.com/1163861	self
https://bugzilla.suse.com/1163862	self
https://bugzilla.suse.com/1163863	self
https://bugzilla.suse.com/1163867	self
https://bugzilla.suse.com/1163869	self
https://bugzilla.suse.com/1163880	self
https://bugzilla.suse.com/1163971	self
https://bugzilla.suse.com/1164051	self
https://bugzilla.suse.com/1164069	self
https://bugzilla.suse.com/1164098	self
https://bugzilla.suse.com/1164115	self
https://bugzilla.suse.com/1164314	self
https://bugzilla.suse.com/1164315	self
https://bugzilla.suse.com/1164388	self
https://bugzilla.suse.com/1164471	self
https://bugzilla.suse.com/1164598	self
https://bugzilla.suse.com/1164632	self
https://bugzilla.suse.com/1164705	self
https://bugzilla.suse.com/1164712	self
https://bugzilla.suse.com/1164727	self
https://bugzilla.suse.com/1164728	self
https://bugzilla.suse.com/1164729	self
https://bugzilla.suse.com/1164730	self
https://bugzilla.suse.com/1164731	self
https://bugzilla.suse.com/1164732	self
https://bugzilla.suse.com/1164733	self
https://bugzilla.suse.com/1164734	self
https://bugzilla.suse.com/1164735	self
https://bugzilla.suse.com/1165404	self
https://bugzilla.suse.com/1165488	self
https://bugzilla.suse.com/1165527	self
https://bugzilla.suse.com/1165813	self
https://bugzilla.suse.com/1165881	self
https://www.suse.com/security/cve/CVE-2019-14615/	self
https://www.suse.com/security/cve/CVE-2019-14896/	self
https://www.suse.com/security/cve/CVE-2019-14897/	self
https://www.suse.com/security/cve/CVE-2019-16746/	self
https://www.suse.com/security/cve/CVE-2019-16994/	self
https://www.suse.com/security/cve/CVE-2019-18808/	self
https://www.suse.com/security/cve/CVE-2019-19036/	self
https://www.suse.com/security/cve/CVE-2019-19045/	self
https://www.suse.com/security/cve/CVE-2019-19051/	self
https://www.suse.com/security/cve/CVE-2019-19054/	self
https://www.suse.com/security/cve/CVE-2019-19066/	self
https://www.suse.com/security/cve/CVE-2019-19318/	self
https://www.suse.com/security/cve/CVE-2019-19319/	self
https://www.suse.com/security/cve/CVE-2019-19332/	self
https://www.suse.com/security/cve/CVE-2019-19338/	self
https://www.suse.com/security/cve/CVE-2019-19447/	self
https://www.suse.com/security/cve/CVE-2019-19523/	self
https://www.suse.com/security/cve/CVE-2019-19526/	self
https://www.suse.com/security/cve/CVE-2019-19527/	self
https://www.suse.com/security/cve/CVE-2019-19532/	self
https://www.suse.com/security/cve/CVE-2019-19533/	self
https://www.suse.com/security/cve/CVE-2019-19535/	self
https://www.suse.com/security/cve/CVE-2019-19537/	self
https://www.suse.com/security/cve/CVE-2019-19767/	self
https://www.suse.com/security/cve/CVE-2019-19927/	self
https://www.suse.com/security/cve/CVE-2019-19965/	self
https://www.suse.com/security/cve/CVE-2019-19966/	self
https://www.suse.com/security/cve/CVE-2019-20054/	self
https://www.suse.com/security/cve/CVE-2019-20095/	self
https://www.suse.com/security/cve/CVE-2019-20096/	self
https://www.suse.com/security/cve/CVE-2020-2732/	self
https://www.suse.com/security/cve/CVE-2020-7053/	self
https://www.suse.com/security/cve/CVE-2020-8428/	self
https://www.suse.com/security/cve/CVE-2020-8648/	self
https://www.suse.com/security/cve/CVE-2020-8992/	self
https://www.suse.com/security/cve/CVE-2019-14615	external
https://bugzilla.suse.com/1160195	external
https://bugzilla.suse.com/1165881	external
https://www.suse.com/security/cve/CVE-2019-14896	external
https://bugzilla.suse.com/1157157	external
https://bugzilla.suse.com/1160468	external
https://www.suse.com/security/cve/CVE-2019-14897	external
https://bugzilla.suse.com/1157155	external
https://bugzilla.suse.com/1160467	external
https://bugzilla.suse.com/1160468	external
https://www.suse.com/security/cve/CVE-2019-16746	external
https://bugzilla.suse.com/1152107	external
https://bugzilla.suse.com/1173659	external
https://www.suse.com/security/cve/CVE-2019-16994	external
https://bugzilla.suse.com/1161523	external
https://www.suse.com/security/cve/CVE-2019-18808	external
https://bugzilla.suse.com/1156259	external
https://bugzilla.suse.com/1189884	external
https://bugzilla.suse.com/1190534	external
https://www.suse.com/security/cve/CVE-2019-19036	external
https://bugzilla.suse.com/1157692	external
https://www.suse.com/security/cve/CVE-2019-19045	external
https://bugzilla.suse.com/1161522	external
https://www.suse.com/security/cve/CVE-2019-19051	external
https://bugzilla.suse.com/1159024	external
https://www.suse.com/security/cve/CVE-2019-19054	external
https://bugzilla.suse.com/1161518	external
https://www.suse.com/security/cve/CVE-2019-19066	external
https://bugzilla.suse.com/1157303	external
https://www.suse.com/security/cve/CVE-2019-19318	external
https://bugzilla.suse.com/1158026	external
https://www.suse.com/security/cve/CVE-2019-19319	external
https://bugzilla.suse.com/1158021	external
https://www.suse.com/security/cve/CVE-2019-19332	external
https://bugzilla.suse.com/1158827	external
https://www.suse.com/security/cve/CVE-2019-19338	external
https://bugzilla.suse.com/1158954	external
https://www.suse.com/security/cve/CVE-2019-19447	external
https://bugzilla.suse.com/1158819	external
https://bugzilla.suse.com/1173869	external
https://www.suse.com/security/cve/CVE-2019-19523	external
https://bugzilla.suse.com/1158381	external
https://bugzilla.suse.com/1158823	external
https://bugzilla.suse.com/1158834	external
https://www.suse.com/security/cve/CVE-2019-19526	external
https://bugzilla.suse.com/1158381	external
https://bugzilla.suse.com/1158834	external
https://bugzilla.suse.com/1158893	external
https://www.suse.com/security/cve/CVE-2019-19527	external
https://bugzilla.suse.com/1158381	external
https://bugzilla.suse.com/1158834	external
https://bugzilla.suse.com/1158900	external
https://www.suse.com/security/cve/CVE-2019-19532	external
https://bugzilla.suse.com/1158381	external
https://bugzilla.suse.com/1158823	external
https://bugzilla.suse.com/1158824	external
https://bugzilla.suse.com/1158834	external
https://www.suse.com/security/cve/CVE-2019-19533	external
https://bugzilla.suse.com/1158381	external
https://bugzilla.suse.com/1158834	external
https://www.suse.com/security/cve/CVE-2019-19535	external
https://bugzilla.suse.com/1158381	external
https://bugzilla.suse.com/1158834	external
https://bugzilla.suse.com/1158903	external
https://www.suse.com/security/cve/CVE-2019-19537	external
https://bugzilla.suse.com/1158381	external
https://bugzilla.suse.com/1158834	external
https://bugzilla.suse.com/1158904	external
https://www.suse.com/security/cve/CVE-2019-19767	external
https://bugzilla.suse.com/1159297	external
https://www.suse.com/security/cve/CVE-2019-19927	external
https://bugzilla.suse.com/1160147	external
https://www.suse.com/security/cve/CVE-2019-19965	external
https://bugzilla.suse.com/1159911	external
https://www.suse.com/security/cve/CVE-2019-19966	external
https://bugzilla.suse.com/1159841	external
https://www.suse.com/security/cve/CVE-2019-20054	external
https://bugzilla.suse.com/1159910	external
https://www.suse.com/security/cve/CVE-2019-20095	external
https://bugzilla.suse.com/1159909	external
https://bugzilla.suse.com/1159914	external
https://www.suse.com/security/cve/CVE-2019-20096	external
https://bugzilla.suse.com/1159908	external
https://www.suse.com/security/cve/CVE-2020-2732	external
https://bugzilla.suse.com/1163971	external
https://www.suse.com/security/cve/CVE-2020-7053	external
https://bugzilla.suse.com/1160966	external
https://www.suse.com/security/cve/CVE-2020-8428	external
https://bugzilla.suse.com/1162109	external
https://www.suse.com/security/cve/CVE-2020-8648	external
https://bugzilla.suse.com/1162928	external
https://www.suse.com/security/cve/CVE-2020-8992	external
https://bugzilla.suse.com/1164069	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for the Linux Kernel",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "\n\nThe openSUSE Leap 15.1 kernel was updated to receive various security and bugfixes.\n\nThe following security bugs were fixed:\n\n- CVE-2019-14615: Insufficient control flow in certain data structures for some Intel(R) Processors with Intel(R) Processor Graphics may have allowed an unauthenticated user to potentially enable information disclosure via local access (bnc#1160195 bnc#1165881).\n- CVE-2019-14896: A heap-based buffer overflow vulnerability was found in the Marvell WiFi chip driver. A remote attacker could cause a denial of service (system crash) or, possibly execute arbitrary code, when the lbs_ibss_join_existing function is called after a STA connects to an AP (bnc#1157157).\n- CVE-2019-14897: A stack-based buffer overflow was found in the Marvell WiFi chip driver. An attacker is able to cause a denial of service (system crash) or, possibly execute arbitrary code, when a STA works in IBSS mode (allows connecting stations together without the use of an AP) and connects to another STA (bnc#1157155).\n- CVE-2019-16746: An issue was discovered in net/wireless/nl80211.c. It did not check the length of variable elements in a beacon head, leading to a buffer overflow (bnc#1152107).\n- CVE-2019-16994: In the Linux kernel before 5.0, a memory leak exists in sit_init_net() in net/ipv6/sit.c when register_netdev() fails to register sitn-\u003efb_tunnel_dev, which may cause denial of service, aka CID-07f12b26e21a (bnc#1161523).\n- CVE-2019-18808: A memory leak in the ccp_run_sha_cmd() function in drivers/crypto/ccp/ccp-ops.c allowed attackers to cause a denial of service (memory consumption), aka CID-128c66429247 (bnc#1156259).\n- CVE-2019-19036: btrfs_root_node in fs/btrfs/ctree.c allowed a NULL pointer dereference because rcu_dereference(root-\u003enode) can be zero (bnc#1157692).\n- CVE-2019-19045: A memory leak in the mlx5_fpga_conn_create_cq() function in drivers/net/ethernet/mellanox/mlx5/core/fpga/conn.c allowed attackers to cause a denial of service (memory consumption) by triggering mlx5_vector2eqn() failures, aka CID-c8c2a057fdc7 (bnc#1161522).\n- CVE-2019-19051: A memory leak in the i2400m_op_rfkill_sw_toggle() function in drivers/net/wimax/i2400m/op-rfkill.c allowed attackers to cause a denial of service (memory consumption), aka CID-6f3ef5c25cc7 (bnc#1159024).\n- CVE-2019-19054: A memory leak in the cx23888_ir_probe() function in drivers/media/pci/cx23885/cx23888-ir.c allowed attackers to cause a denial of service (memory consumption) by triggering kfifo_alloc() failures, aka CID-a7b2df76b42b (bnc#1161518).\n- CVE-2019-19066: A memory leak in the bfad_im_get_stats() function in drivers/scsi/bfa/bfad_attr.c allowed attackers to cause a denial of service (memory consumption) by triggering bfa_port_get_stats() failures, aka CID-0e62395da2bd (bnc#1157303).\n- CVE-2019-19318: Mounting a crafted btrfs image twice can cause an rwsem_down_write_slowpath use-after-free because (in rwsem_can_spin_on_owner in kernel/locking/rwsem (bnc#1158026).\n- CVE-2019-19319: A setxattr operation, after a mount of a crafted ext4 image, can cause a slab-out-of-bounds write access because of an ext4_xattr_set_entry use-after-free in fs/ext4/xattr.c when a large old_size value is used in a memset call (bnc#1158021).\n- CVE-2019-19332: An out-of-bounds memory write issue was found in the way the Linux kernel\u0027s KVM hypervisor handled the \u0027KVM_GET_EMULATED_CPUID\u0027 ioctl(2) request to get CPUID features emulated by the KVM hypervisor. A user or process able to access the \u0027/dev/kvm\u0027 device could use this flaw to crash the system, resulting in a denial of service (bnc#1158827).\n- CVE-2019-19338: There was an incomplete fix for Transaction Asynchronous Abort (TAA) (bnc#1158954).\n- CVE-2019-19447: Mounting a crafted ext4 filesystem image, performing some operations, and unmounting can lead to a use-after-free in ext4_put_super in fs/ext4/super.c, related to dump_orphan_list in fs/ext4/super.c (bnc#1158819).\n- CVE-2019-19526: There was a use-after-free bug that can be caused by a malicious USB device in the drivers/nfc/pn533/usb.c driver, aka CID-6af3aa57a098 (bnc#1158893).\n- CVE-2019-19527: There was a use-after-free bug that can be caused by a malicious USB device in the drivers/hid/usbhid/hiddev.c driver, aka CID-9c09b214f30e (bnc#1158900).\n- CVE-2019-19532: There were multiple out-of-bounds write bugs that can be caused by a malicious USB device in the Linux kernel HID drivers, aka CID-d9d4b1e46d95. This affects drivers/hid/hid-axff.c, drivers/hid/hid-dr.c, drivers/hid/hid-emsff.c, drivers/hid/hid-gaff.c, drivers/hid/hid-holtekff.c, drivers/hid/hid-lg2ff.c, drivers/hid/hid-lg3ff.c, drivers/hid/hid-lg4ff.c, drivers/hid/hid-lgff.c, drivers/hid/hid-logitech-hidpp.c, drivers/hid/hid-microsoft.c, drivers/hid/hid-sony.c, drivers/hid/hid-tmff.c, and drivers/hid/hid-zpff.c (bnc#1158824).\n- CVE-2019-19533: There was an info-leak bug that can be caused by a malicious USB device in the drivers/media/usb/ttusb-dec/ttusb_dec.c driver, aka CID-a10feaf8c464 (bnc#1158834).\n- CVE-2019-19535: There was an info-leak bug that can be caused by a malicious USB device in the drivers/net/can/usb/peak_usb/pcan_usb_fd.c driver, aka CID-30a8beeb3042 (bnc#1158903).\n- CVE-2019-19537: There was a race condition bug that can be caused by a malicious USB device in the USB character device driver layer, aka CID-303911cfc5b9. This affects drivers/usb/core/file.c (bnc#1158904).\n- CVE-2019-19767: The Linux kernel mishandled ext4_expand_extra_isize, as demonstrated by use-after-free errors in __ext4_expand_extra_isize and ext4_xattr_set_entry, related to fs/ext4/inode.c and fs/ext4/super.c, aka CID-4ea99936a163 (bnc#1159297).\n- CVE-2019-19927: Mounting a crafted f2fs filesystem image and performing some operations can lead to slab-out-of-bounds read access in ttm_put_pages in drivers/gpu/drm/ttm/ttm_page_alloc.c. This is related to the vmwgfx or ttm module (bnc#1160147).\n- CVE-2019-19965: There was a NULL pointer dereference in drivers/scsi/libsas/sas_discover.c because of mishandling of port disconnection during discovery, related to a PHY down race condition, aka CID-f70267f379b5 (bnc#1159911).\n- CVE-2019-19966: There was a use-after-free in cpia2_exit() in drivers/media/usb/cpia2/cpia2_v4l.c that will cause denial of service, aka CID-dea37a972655 (bnc#1159841).\n- CVE-2019-20054: There was a NULL pointer dereference in drop_sysctl_table() in fs/proc/proc_sysctl.c, related to put_links, aka CID-23da9588037e (bnc#1159910).\n- CVE-2019-20095: mwifiex_tm_cmd in drivers/net/wireless/marvell/mwifiex/cfg80211.c had some error-handling cases that did not free allocated hostcmd memory, aka CID-003b686ace82. This will cause a memory leak and denial of service (bnc#1159909).\n- CVE-2019-20096: There was a memory leak in __feat_register_sp() in net/dccp/feat.c, which may cause denial of service, aka CID-1d3ff0950e2b (bnc#1159908).\n- CVE-2020-2732: Fixed an issue affecting Intel CPUs where an L2 guest may trick the L0 hypervisor into accessing sensitive L1 resources (bsc#1163971).\n- CVE-2020-7053: There was a use-after-free (write) in the i915_ppgtt_close function in drivers/gpu/drm/i915/i915_gem_gtt.c, aka CID-7dc40713618c. This is related to i915_gem_context_destroy_ioctl in drivers/gpu/drm/i915/i915_gem_context.c (bnc#1160966).\n- CVE-2020-8428: fs/namei.c has a may_create_in_sticky use-after-free, which allowed local users to cause a denial of service (OOPS) or possibly obtain sensitive information from kernel memory, aka CID-d0cb50185ae9. One attack vector may be an open system call for a UNIX domain socket, if the socket is being moved to a new parent directory and its old parent directory is being removed (bnc#1162109).\n- CVE-2020-8648: There was a use-after-free vulnerability in the n_tty_receive_buf_common function in drivers/tty/n_tty.c (bnc#1162928).\n- CVE-2020-8992: ext4_protect_reserved_inode in fs/ext4/block_validity.c allowed attackers to cause a denial of service (soft lockup) via a crafted journal size (bnc#1164069).\n- CVE-2019-19523: There was a use-after-free bug that can be caused by a malicious USB device in the drivers/usb/misc/adutux.c driver, aka CID-44efc269db79 (bnc#1158823).\n\nThe following non-security bugs were fixed:\n\n- smb3: print warning once if posix context returned on open  (bsc#1144333).\n- 6pack,mkiss: fix possible deadlock (bsc#1051510).\n- ACPI / APEI: Do not wait to serialise with oops messages when panic()ing (bsc#1051510).\n- ACPI / APEI: Switch estatus pool to use vmalloc memory (bsc#1051510).\n- ACPI / LPSS: Ignore acpi_device_fix_up_power() return value (bsc#1051510).\n- ACPI / video: Add force_none quirk for Dell OptiPlex 9020M (bsc#1051510).\n- ACPI / watchdog: Fix init failure with overlapping register regions (bsc#1162557).\n- ACPI / watchdog: Set default timeout in probe (bsc#1162557).\n- ACPI: OSL: only free map once in osl.c (bsc#1051510).\n- ACPI: PM: Avoid attaching ACPI PM domain to certain devices (bsc#1051510).\n- ACPI: bus: Fix NULL pointer check in acpi_bus_get_private_data() (bsc#1051510).\n- ACPI: fix acpi_find_child_device() invocation in acpi_preset_companion() (bsc#1051510).\n- ACPI: sysfs: Change ACPI_MASKABLE_GPE_MAX to 0x100 (bsc#1051510).\n- ACPI: video: Do not export a non working backlight interface on MSI MS-7721 boards (bsc#1051510).\n- ACPI: watchdog: Allow disabling WDAT at boot (bsc#1162557).\n- ALSA: control: remove useless assignment in .info callback of PCM chmap element (git-fixes).\n- ALSA: dummy: Fix PCM format loop in proc output (bsc#1111666).\n- ALSA: echoaudio: simplify get_audio_levels (bsc#1051510).\n- ALSA: fireface: fix return value in error path of isochronous resources reservation (bsc#1051510).\n- ALSA: hda - Add docking station support for Lenovo Thinkpad T420s (git-fixes).\n- ALSA: hda - Apply sync-write workaround to old Intel platforms, too (bsc#1111666).\n- ALSA: hda - Downgrade error message for single-cmd fallback (git-fixes).\n- ALSA: hda - constify and cleanup static NodeID tables (bsc#1111666).\n- ALSA: hda - fixup for the bass speaker on Lenovo Carbon X1 7th gen (git-fixes).\n- ALSA: hda/analog - Minor optimization for SPDIF mux connections (git-fixes).\n- ALSA: hda/ca0132 - Avoid endless loop (git-fixes).\n- ALSA: hda/ca0132 - Fix work handling in delayed HP detection (git-fixes).\n- ALSA: hda/ca0132 - Keep power on during processing DSP response (git-fixes).\n- ALSA: hda/hdmi - Add new pci ids for AMD GPU display audio (git-fixes).\n- ALSA: hda/hdmi - Clean up Intel platform-specific fixup checks (bsc#1111666).\n- ALSA: hda/hdmi - Fix duplicate unref of pci_dev (bsc#1051510).\n- ALSA: hda/hdmi - add retry logic to parse_intel_hdmi() (git-fixes).\n- ALSA: hda/hdmi - fix atpx_present when CLASS is not VGA (bsc#1051510).\n- ALSA: hda/hdmi - fix vgaswitcheroo detection for AMD (git-fixes).\n- ALSA: hda/realtek - Add Bass Speaker and fixed dac for bass speaker (bsc#1111666).\n- ALSA: hda/realtek - Add Headset Mic supported for HP cPC (bsc#1111666).\n- ALSA: hda/realtek - Add headset Mic no shutup for ALC283 (bsc#1051510).\n- ALSA: hda/realtek - Add new codec supported for ALCS1200A (bsc#1111666).\n- ALSA: hda/realtek - Add quirk for the bass speaker on Lenovo Yoga X1 7th gen (bsc#1111666).\n- ALSA: hda/realtek - Apply mic mute LED quirk for Dell E7xx laptops, too (bsc#1111666).\n- ALSA: hda/realtek - Dell headphone has noise on unmute for ALC236 (git-fixes).\n- ALSA: hda/realtek - Enable the bass speaker of ASUS UX431FLC (bsc#1111666).\n- ALSA: hda/realtek - Fix inverted bass GPIO pin on Acer 8951G (git-fixes).\n- ALSA: hda/realtek - Fix silent output on MSI-GL73 (git-fixes).\n- ALSA: hda/realtek - Fixed one of HP ALC671 platform Headset Mic supported (bsc#1111666).\n- ALSA: hda/realtek - Line-out jack does not work on a Dell AIO (bsc#1051510).\n- ALSA: hda/realtek - More constifications (bsc#1111666).\n- ALSA: hda/realtek - Set EAPD control to default for ALC222 (bsc#1111666).\n- ALSA: hda: Add Clevo W65_67SB the power_save blacklist (git-fixes).\n- ALSA: hda: Add JasperLake PCI ID and codec vid (bsc#1111666).\n- ALSA: hda: Clear RIRB status before reading WP (bsc#1111666).\n- ALSA: hda: Constify snd_kcontrol_new items (bsc#1111666).\n- ALSA: hda: Constify snd_pci_quirk tables (bsc#1111666).\n- ALSA: hda: More constifications (bsc#1111666).\n- ALSA: hda: Reset stream if DMA RUN bit not cleared (bsc#1111666).\n- ALSA: hda: Use scnprintf() for printing texts for sysfs/procfs (git-fixes).\n- ALSA: hda: constify copied structure (bsc#1111666).\n- ALSA: hda: correct kernel-doc parameter descriptions (bsc#1111666).\n- ALSA: hda: hdmi - add Tigerlake support (bsc#1111666).\n- ALSA: hda: hdmi - fix pin setup on Tigerlake (bsc#1111666).\n- ALSA: hda: patch_hdmi: remove warnings with empty body (bsc#1111666).\n- ALSA: hda: patch_realtek: fix empty macro usage in if block (bsc#1111666).\n- ALSA: ice1724: Fix sleep-in-atomic in Infrasonic Quartet support code (bsc#1051510).\n- ALSA: oxfw: fix return value in error path of isochronous resources reservation (bsc#1051510).\n- ALSA: pcm: Avoid possible info leaks from PCM stream buffers (git-fixes).\n- ALSA: pcm: oss: Avoid potential buffer overflows (git-fixes).\n- ALSA: seq: Avoid concurrent access to queue flags (git-fixes).\n- ALSA: seq: Fix concurrent access to queue current tick/time (git-fixes).\n- ALSA: seq: Fix racy access for queue timer in proc read (bsc#1051510).\n- ALSA: sh: Fix compile warning wrt const (git-fixes).\n- ALSA: sh: Fix unused variable warnings (bsc#1111666).\n- ALSA: usb-audio: Apply sample rate quirk for Audioengine D1 (git-fixes).\n- ALSA: usb-audio: Apply the sample rate quirk for Bose Companion 5 (bsc#1111666).\n- ALSA: usb-audio: Fix endianess in descriptor validation (bsc#1111666).\n- ALSA: usb-audio: fix set_format altsetting sanity check (bsc#1051510).\n- ALSA: usb-audio: fix sync-ep altsetting sanity check (bsc#1051510).\n- ASoC: Jack: Fix NULL pointer dereference in snd_soc_jack_report (bsc#1051510).\n- ASoC: au8540: use 64-bit arithmetic instead of 32-bit (bsc#1051510).\n- ASoC: compress: fix unsigned integer overflow check (bsc#1051510).\n- ASoC: cs4349: Use PM ops \u0027cs4349_runtime_pm\u0027 (bsc#1051510).\n- ASoC: msm8916-wcd-analog: Fix selected events for MIC BIAS External1 (bsc#1051510).\n- ASoC: samsung: i2s: Fix prescaler setting for the secondary DAI (bsc#1111666).\n- ASoC: sun8i-codec: Fix setting DAI data format (git-fixes).\n- ASoC: wm8962: fix lambda value (git-fixes).\n- Bluetooth: Fix race condition in hci_release_sock() (bsc#1051510).\n- Bluetooth: hci_bcm: Handle specific unknown packets after firmware loading (bsc#1051510).\n- btrfs: add missing extents release on file extent cluster relocation error (bsc#1159483).\n- btrfs: avoid fallback to transaction commit during fsync of files with holes (bsc#1159569).\n- btrfs: fix block group remaining RO forever after error during device replace (bsc#1160442).\n- btrfs: fix btrfs_write_inode vs delayed iput deadlock (bsc#1154243).\n- btrfs: fix infinite loop during fsync after rename operations (bsc#1163383).\n- btrfs: fix infinite loop during nocow writeback due to race (bsc#1160804).\n- btrfs: fix missing data checksums after replaying a log tree (bsc#1161931).\n- btrfs: fix negative subv_writers counter and data space leak after buffered write (bsc#1160802).\n- btrfs: fix race between adding and putting tree mod seq elements and nodes (bsc#1163384).\n- btrfs: fix removal logic of the tree mod log that leads to use-after-free issues (bsc#1160803).\n- btrfs: fix selftests failure due to uninitialized i_mode in test inodes (Fix for dependency of bsc#1157692).\n- btrfs: make tree checker detect checksum items with overlapping ranges (bsc#1161931).\n- btrfs: send, skip backreference walking for extents with many references (bsc#1162139).\n- CDC-NCM: handle incomplete transfer of MTU (networking-stable-19_11_10).\n- CIFS: Add support for setting owner info, dos attributes, and create time (bsc#1144333).\n- CIFS: Close cached root handle only if it had a lease (bsc#1144333).\n- CIFS: Close open handle after interrupted close (bsc#1144333).\n- CIFS: Do not miss cancelled OPEN responses (bsc#1144333).\n- CIFS: Fix NULL pointer dereference in mid callback (bsc#1144333).\n- CIFS: Fix NULL-pointer dereference in smb2_push_mandatory_locks (bsc#1144333).\n- CIFS: Fix task struct use-after-free on reconnect (bsc#1144333).\n- CIFS: Properly process SMB3 lease breaks (bsc#1144333).\n- CIFS: Respect O_SYNC and O_DIRECT flags during reconnect (bsc#1144333).\n- CIFS: Return directly after a failed build_path_from_dentry() in cifs_do_create() (bsc#1144333).\n- CIFS: Use common error handling code in smb2_ioctl_query_info() (bsc#1144333).\n- CIFS: Use memdup_user() rather than duplicating its implementation (bsc#1144333).\n- CIFS: fix a white space issue in cifs_get_inode_info() (bsc#1144333).\n- CIFS: refactor cifs_get_inode_info() (bsc#1144333).\n- CIFS: remove set but not used variables \u0027cinode\u0027 and \u0027netfid\u0027 (bsc#1144333).\n- Cover up kABI breakage due to DH key verification (bsc#1155331).\n- Delete patches which cause regression (bsc#1165527 ltc#184149).\n- Documentation: Document arm64 kpti control (bsc#1162623).\n- Enable CONFIG_BLK_DEV_SR_VENDOR (boo#1164632).\n- Fix the locking in dcache_readdir() and friends (bsc#1123328).\n- HID: doc: fix wrong data structure reference for UHID_OUTPUT (bsc#1051510).\n- HID: hiddev: Fix race in in hiddev_disconnect() (git-fixes).\n- HID: hidraw, uhid: Always report EPOLLOUT (bsc#1051510).\n- HID: hidraw: Fix returning EPOLLOUT from hidraw_poll (bsc#1051510).\n- HID: intel-ish-hid: fixes incorrect error handling (bsc#1051510).\n- HID: uhid: Fix returning EPOLLOUT from uhid_char_poll (bsc#1051510).\n- IB/hfi1: Close window for pq and request coliding (bsc#1060463 ).\n- IB/hfi1: Do not cancel unused work item (bsc#1114685 ).\n- IB/mlx5: Fix steering rule of drop and count (bsc#1103991 ).\n- IB/mlx5: Remove dead code (bsc#1103991).\n- Input: aiptek - fix endpoint sanity check (bsc#1051510).\n- Input: cyttsp4_core - fix use after free bug (bsc#1051510).\n- Input: goodix - add upside-down quirk for Teclast X89 tablet (bsc#1051510).\n- Input: gtco - fix endpoint sanity check (bsc#1051510).\n- Input: keyspan-remote - fix control-message timeouts (bsc#1051510).\n- Input: pegasus_notetaker - fix endpoint sanity check (bsc#1051510).\n- Input: pm8xxx-vib - fix handling of separate enable register (bsc#1051510).\n- Input: rmi_f54 - read from FIFO in 32 byte blocks (bsc#1051510).\n- Input: sun4i-ts - add a check for devm_thermal_zone_of_sensor_register (bsc#1051510).\n- Input: sur40 - fix interface sanity checks (bsc#1051510).\n- Input: synaptics - switch another X1 Carbon 6 to RMI/SMbus (bsc#1051510).\n- Input: synaptics-rmi4 - do not increment rmiaddr for SMBus transfers (bsc#1051510).\n- Input: synaptics-rmi4 - simplify data read in rmi_f54_work (bsc#1051510).\n- KVM: Clean up __kvm_gfn_to_hva_cache_init() and its callers (bsc#1133021).\n- KVM: PPC: Book3S HV: Uninit vCPU if vcore creation fails (bsc#1061840).\n- KVM: PPC: Book3S PR: Fix -Werror=return-type build failure (bsc#1061840).\n- KVM: PPC: Book3S PR: Free shared page if mmu initialization fails (bsc#1061840).\n- KVM: SVM: Override default MMIO mask if memory encryption is enabled (bsc#1162618).\n- KVM: arm64: Store vcpu on the stack during __guest_enter() (bsc#1133021).\n- KVM: fix spectrev1 gadgets (bsc#1164705).\n- KVM: s390: Do not leak kernel stack data in the KVM_S390_INTERRUPT ioctl (git-fixes).\n- KVM: s390: ENOTSUPP -\u003e EOPNOTSUPP fixups (bsc#1133021).\n- KVM: s390: Test for bad access register and size at the start of S390_MEM_OP (git-fixes).\n- KVM: s390: do not clobber registers during guest reset/store status (bsc#1133021).\n- KVM: x86: Protect DR-based index computations from Spectre-v1/L1TF attacks (bsc#1164734).\n- KVM: x86: Protect MSR-based index computations from Spectre-v1/L1TF attacks in x86.c (bsc#1164733).\n- KVM: x86: Protect MSR-based index computations in fixed_msr_to_seg_unit() from Spectre-v1/L1TF attacks (bsc#1164731).\n- KVM: x86: Protect MSR-based index computations in pmu.h from Spectre-v1/L1TF attacks (bsc#1164732).\n- KVM: x86: Protect ioapic_read_indirect() from Spectre-v1/L1TF attacks (bsc#1164728).\n- KVM: x86: Protect ioapic_write_indirect() from Spectre-v1/L1TF attacks (bsc#1164729).\n- KVM: x86: Protect kvm_hv_msr_[get|set]_crash_data() from Spectre-v1/L1TF attacks (bsc#1164712).\n- KVM: x86: Protect kvm_lapic_reg_write() from Spectre-v1/L1TF attacks (bsc#1164730).\n- KVM: x86: Protect pmu_intel.c from Spectre-v1/L1TF attacks (bsc#1164735).\n- KVM: x86: Protect x86_decode_insn from Spectre-v1/L1TF attacks (bsc#1164705).\n- KVM: x86: Refactor picdev_write() to prevent Spectre-v1/L1TF attacks (bsc#1164727).\n- KVM: x86: Remove a spurious export of a static function (bsc#1158954).\n- NFC: fdp: fix incorrect free object (networking-stable-19_11_10).\n- NFC: pn533: fix bulk-message timeout (bsc#1051510).\n- NFC: pn544: Adjust indentation in pn544_hci_check_presence (git-fixes).\n- NFC: st21nfca: fix double free (networking-stable-19_11_10).\n- PCI/IOV: Fix memory leak in pci_iov_add_virtfn() (git-fixes).\n- PCI/MSI: Return -ENOSPC from pci_alloc_irq_vectors_affinity() (bsc#1051510).\n- PCI/switchtec: Fix vep_vector_number ioread width (bsc#1051510).\n- PCI: Add DMA alias quirk for Intel VCA NTB (bsc#1051510).\n- PCI: Do not disable bridge BARs when assigning bus resources (bsc#1051510).\n- PCI: pciehp: Avoid returning prematurely from sysfs requests (git-fixes).\n- PCI: rpaphp: Add drc-info support for hotplug slot registration (bsc#1157480 ltc#181028).\n- PCI: rpaphp: Annotate and correctly byte swap DRC properties (bsc#1157480 ltc#181028).\n- PCI: rpaphp: Avoid a sometimes-uninitialized warning (bsc#1157480 ltc#181028).\n- PCI: rpaphp: Correctly match ibm, my-drc-index to drc-name when using drc-info (bsc#1157480 ltc#181028).\n- PCI: rpaphp: Do not rely on firmware feature to imply drc-info support (bsc#1157480 ltc#181028).\n- PCI: rpaphp: Fix up pointer to first drc-info entry (bsc#1157480 ltc#181028).\n- PM / AVS: SmartReflex: NULL check before some freeing functions is not needed (bsc#1051510).\n- PM / Domains: Deal with multiple states but no governor in genpd (bsc#1051510).\n- RDMA/bnxt_re: Avoid freeing MR resources if dereg fails (bsc#1050244).\n- RDMA/bnxt_re: Enable SRIOV VF support on Broadcom\u0027s 57500 adapter series (bsc#1154916).\n- RDMA/bnxt_re: Fix chip number validation Broadcom\u0027s Gen P5 series (bsc#1157895).\n- RDMA/bnxt_re: Fix missing le16_to_cpu (bsc#1157895).\n- RDMA/cma: Fix unbalanced cm_id reference count during address resolve (bsc#1103992).\n- RDMA/hfi1: Fix memory leak in _dev_comp_vect_mappings_create (bsc#1114685).\n- RDMA/hns: Bugfix for qpc/cqc timer configuration (bsc#1104427 bsc#1126206).\n- RDMA/hns: Correct the value of srq_desc_size (bsc#1104427 ).\n- RDMA/hns: Fix to support 64K page for srq (bsc#1104427 ).\n- RDMA/hns: Prevent memory leaks of eq-\u003ebuf_list (bsc#1104427 ).\n- RDMA/uverbs: Verify MR access flags (bsc#1103992).\n- crypto/dh: Adjust for change of DH_KPP_SECRET_MIN_SIZE in 35f7d5225ffcbf1b759f641aec1735e3a89b1914\n- crypto/dh: Remove the fips=1 check in dh.c dh.c is not fips-specific and should perform the same regardless of this setting.\n- Revert \u0027HID: add NOGET quirk for Eaton Ellipse MAX UPS\u0027 (git-fixes).\n- Revert \u0027Input: synaptics-rmi4 - do not increment rmiaddr for SMBus transfers\u0027 (bsc#1051510).\n- Revert \u0027ath10k: fix DMA related firmware crashes on multiple devices\u0027 (git-fixes).\n- Revert \u0027locking/pvqspinlock: Do not wait if vCPU is preempted\u0027 (bsc#1050549).\n- Revert \u0027mmc: sdhci: Fix incorrect switch to HS mode\u0027 (bsc#1051510).\n- Revert patches.suse/samples-bpf-add-a-test-for-bpf_override_return.patch (bsc#1159500)\n- SMB3: Backup intent flag missing from some more ops (bsc#1144333).\n- SMB3: Fix crash in SMB2_open_init due to uninitialized field in compounding path (bsc#1144333).\n- SMB3: Fix persistent handles reconnect (bsc#1144333).\n- SUNRPC: Fix svcauth_gss_proxy_init() (bsc#1103992).\n- Staging: iio: adt7316: Fix i2c data reading, set the data field (bsc#1051510).\n- USB: EHCI: Do not return -EPIPE when hub is disconnected (git-fixes).\n- USB: adutux: fix interface sanity check (bsc#1051510).\n- USB: atm: ueagle-atm: add missing endpoint check (bsc#1051510).\n- USB: core: add endpoint-blacklist quirk (git-fixes).\n- USB: core: fix check for duplicate endpoints (git-fixes).\n- USB: documentation: flags on usb-storage versus UAS (bsc#1051510).\n- USB: idmouse: fix interface sanity checks (bsc#1051510).\n- USB: quirks: blacklist duplicate ep on Sound Devices USBPre2 (git-fixes).\n- USB: serial: ch341: handle unbound port at reset_resume (bsc#1051510).\n- USB: serial: ftdi_sio: add device IDs for U-Blox C099-F9P (bsc#1051510).\n- USB: serial: io_edgeport: add missing active-port sanity check (bsc#1051510).\n- USB: serial: io_edgeport: fix epic endpoint lookup (bsc#1051510).\n- USB: serial: io_edgeport: handle unbound ports on URB completion (bsc#1051510).\n- USB: serial: io_edgeport: use irqsave() in USB\u0027s complete callback (bsc#1051510).\n- USB: serial: ir-usb: add missing endpoint sanity check (bsc#1051510).\n- USB: serial: ir-usb: fix IrLAP framing (bsc#1051510).\n- USB: serial: ir-usb: fix link-speed handling (bsc#1051510).\n- USB: serial: keyspan: handle unbound ports (bsc#1051510).\n- USB: serial: opticon: fix control-message timeouts (bsc#1051510).\n- USB: serial: option: Add support for Quectel RM500Q (bsc#1051510).\n- USB: serial: option: add Telit ME910G1 0x110a composition (git-fixes).\n- USB: serial: option: add ZLP support for 0x1bc7/0x9010 (git-fixes).\n- USB: serial: option: add support for Quectel RM500Q in QDL mode (git-fixes).\n- USB: serial: quatech2: handle unbound ports (bsc#1051510).\n- USB: serial: simple: Add Motorola Solutions TETRA MTP3xxx and MTP85xx (bsc#1051510).\n- USB: serial: suppress driver bind attributes (bsc#1051510).\n- USB: uas: heed CAPACITY_HEURISTICS (bsc#1051510).\n- USB: uas: honor flag to avoid CAPACITY16 (bsc#1051510).\n- Update patches.suse/powerpc-xive-Implement-get_irqchip_state-method-for-.patch (bsc#1085030).\n- af_packet: set defaule value for tmo (bsc#1051510).\n- apparmor: fix unsigned len comparison with less than zero (git-fixes).\n- ar5523: check NULL before memcpy() in ar5523_cmd() (bsc#1051510).\n- arm64: Revert support for execute-only user mappings (bsc#1160218).\n- ata: ahci: Add shutdown to freeze hardware resources of ahci (bsc#1164388).\n- ath10k: Correct the DMA direction for management tx buffers (bsc#1111666).\n- ath10k: fix fw crash by moving chip reset after napi disabled (bsc#1051510).\n- ath10k: pci: Fix comment on ath10k_pci_dump_memory_sram (bsc#1111666).\n- ath10k: pci: Only dump ATH10K_MEM_REGION_TYPE_IOREG when safe (bsc#1111666).\n- ath6kl: Fix off by one error in scan completion (bsc#1051510).\n- ath9k: fix storage endpoint lookup (git-fixes).\n- atl1e: checking the status of atl1e_write_phy_reg (bsc#1051510).\n- audit: Allow auditd to set pid to 0 to end auditing (bsc#1158094).\n- batman-adv: Fix DAT candidate selection on little endian systems (bsc#1051510).\n- bcache: Fix an error code in bch_dump_read() (bsc#1163762).\n- bcache: Revert \u0027bcache: shrink btree node cache after bch_btree_check()\u0027 (bsc#1163762, bsc#1112504).\n- bcache: add code comment bch_keylist_pop() and bch_keylist_pop_front() (bsc#1163762).\n- bcache: add code comments for state-\u003epool in __btree_sort() (bsc#1163762).\n- bcache: add code comments in bch_btree_leaf_dirty() (bsc#1163762).\n- bcache: add cond_resched() in __bch_cache_cmp() (bsc#1163762).\n- bcache: add idle_max_writeback_rate sysfs interface (bsc#1163762).\n- bcache: add more accurate error messages in read_super() (bsc#1163762).\n- bcache: add readahead cache policy options via sysfs interface (bsc#1163762).\n- bcache: at least try to shrink 1 node in bch_mca_scan() (bsc#1163762).\n- bcache: avoid unnecessary btree nodes flushing in btree_flush_write() (bsc#1163762).\n- bcache: check return value of prio_read() (bsc#1163762).\n- bcache: deleted code comments for dead code in bch_data_insert_keys() (bsc#1163762).\n- bcache: do not export symbols (bsc#1163762).\n- bcache: explicity type cast in bset_bkey_last() (bsc#1163762).\n- bcache: fix a lost wake-up problem caused by mca_cannibalize_lock (bsc#1163762).\n- bcache: fix deadlock in bcache_allocator (bsc#1163762).\n- bcache: fix incorrect data type usage in btree_flush_write() (bsc#1163762).\n- bcache: fix memory corruption in bch_cache_accounting_clear() (bsc#1163762).\n- bcache: fix static checker warning in bcache_device_free() (bsc#1163762).\n- bcache: ignore pending signals when creating gc and allocator thread (bsc#1163762, bsc#1112504).\n- bcache: print written and keys in trace_bcache_btree_write (bsc#1163762).\n- bcache: reap c-\u003ebtree_cache_freeable from the tail in bch_mca_scan() (bsc#1163762).\n- bcache: reap from tail of c-\u003ebtree_cache in bch_mca_scan() (bsc#1163762).\n- bcache: remove macro nr_to_fifo_front() (bsc#1163762).\n- bcache: remove member accessed from struct btree (bsc#1163762).\n- bcache: remove the extra cflags for request.o (bsc#1163762).\n- bcma: remove set but not used variable \u0027sizel\u0027 (git-fixes).\n- blk-mq: avoid sysfs buffer overflow with too many CPU cores (bsc#1159377).\n- blk-mq: avoid sysfs buffer overflow with too many CPU cores (bsc#1163840).\n- blk-mq: make sure that line break can be printed (bsc#1159377).\n- blk-mq: make sure that line break can be printed (bsc#1164098).\n- bnxt: apply computed clamp value for coalece parameter (bsc#1104745).\n- bnxt_en: Fix MSIX request logic for RDMA driver (bsc#1104745 ).\n- bnxt_en: Fix NTUPLE firmware command failures (bsc#1104745 ).\n- bnxt_en: Fix TC queue mapping (networking-stable-20_02_05).\n- bnxt_en: Improve device shutdown method (bsc#1104745 ).\n- bnxt_en: Issue PCIe FLR in kdump kernel to cleanup pending DMAs (bsc#1134090 jsc#SLE-5954).\n- bnxt_en: Return error if FW returns more data than dump length (bsc#1104745).\n- bonding: fix active-backup transition after link failure (git-fixes).\n- bonding: fix potential NULL deref in bond_update_slave_arr (bsc#1051510).\n- bonding: fix slave stuck in BOND_LINK_FAIL state (networking-stable-19_11_10).\n- bonding: fix state transition issue in link monitoring (networking-stable-19_11_10).\n- bonding: fix unexpected IFF_BONDING bit unset (bsc#1051510).\n- bpf, offload: Replace bitwise AND by logical AND in bpf_prog_offload_info_fill (bsc#1109837).\n- bpf, offload: Unlock on error in bpf_offload_dev_create() (bsc#1109837).\n- bpf/sockmap: Read psock ingress_msg before sk_receive_queue (bsc#1083647).\n- bpf/stackmap: Fix deadlock with rq_lock in bpf_get_stack() (bsc#1083647).\n- bpf: Fix incorrect verifier simulation of ARSH under ALU32 (bsc#1083647).\n- bpf: Make use of probe_user_write in probe write helper (bsc#1083647).\n- bpf: Reject indirect var_off stack access in raw mode (bsc#1160618).\n- bpf: Reject indirect var_off stack access in unpriv mode (bco#1160618).\n- bpf: Sanity check max value for var_off stack access (bco#1160618).\n- bpf: Support variable offset stack access from helpers (bco#1160618).\n- bpf: add self-check logic to liveness analysis (bsc#1160618).\n- bpf: add verifier stats and log_level bit 2 (bsc#1160618).\n- bpf: improve stacksafe state comparison (bco#1160618).\n- bpf: improve verification speed by droping states (bsc#1160618).\n- bpf: improve verification speed by not remarking live_read (bsc#1160618).\n- bpf: improve verifier branch analysis (bsc#1160618).\n- bpf: increase complexity limit and maximum program size (bsc#1160618).\n- bpf: increase verifier log limit (bsc#1160618).\n- bpf: skmsg, fix potential psock NULL pointer dereference (bsc#1109837).\n- bpf: speed up stacksafe check (bco#1160618).\n- bpf: verifier: teach the verifier to reason about the BPF_JSET instruction (bco#1160618).\n- brcmfmac: Fix memory leak in brcmf_p2p_create_p2pdev() (bsc#1111666).\n- brcmfmac: Fix memory leak in brcmf_usbdev_qinit (git-fixes).\n- brcmfmac: Fix use after free in brcmf_sdio_readframes() (git-fixes).\n- brcmfmac: fix interface sanity check (git-fixes).\n- brcmfmac: sdio: Fix OOB interrupt initialization on brcm43362 (bsc#1111666).\n- brcmfmac: set F2 watermark to 256 for 4373 (bsc#1111666).\n- brcmfmac: set SDIO F1 MesBusyCtrl for CYW4373 (bsc#1111666).\n- btrfs: Ensure we trim ranges across block group boundary (bsc#1151910).\n- btrfs: Move btrfs_check_chunk_valid() to tree-check.[ch] and export it (dependency for bsc#1157692).\n- btrfs: abort transaction after failed inode updates in create_subvol (bsc#1161936).\n- btrfs: dev-replace: remove warning for unknown return codes when finished (dependency for bsc#1162067).\n- btrfs: do not call synchronize_srcu() in inode_tree_del (bsc#1161934).\n- btrfs: do not double lock the subvol_sem for rename exchange (bsc#1162943).\n- btrfs: fix integer overflow in calc_reclaim_items_nr (bsc#1160433).\n- btrfs: handle ENOENT in btrfs_uuid_tree_iterate (bsc#1161937).\n- btrfs: harden agaist duplicate fsid on scanned devices (bsc#1134973).\n- btrfs: inode: Verify inode mode to avoid NULL pointer dereference (dependency for bsc#1157692).\n- btrfs: record all roots for rename exchange on a subvol (bsc#1161933).\n- btrfs: relocation: fix reloc_root lifespan and access (bsc#1159588).\n- btrfs: scrub: Require mandatory block group RO for dev-replace (bsc#1162067).\n- btrfs: simplify inode locking for RWF_NOWAIT (git-fixes).\n- btrfs: skip log replay on orphaned roots (bsc#1161935).\n- btrfs: tree-checker: Check chunk item at tree block read time (dependency for bsc#1157692).\n- btrfs: tree-checker: Check level for leaves and nodes (dependency for bsc#1157692).\n- btrfs: tree-checker: Enhance chunk checker to validate chunk profile (dependency for bsc#1157692).\n- btrfs: tree-checker: Fix wrong check on max devid (fixes for dependency of bsc#1157692).\n- btrfs: tree-checker: Make btrfs_check_chunk_valid() return EUCLEAN instead of EIO (dependency for bsc#1157692).\n- btrfs: tree-checker: Make chunk item checker messages more readable (dependency for bsc#1157692).\n- btrfs: tree-checker: Verify dev item (dependency for bsc#1157692).\n- btrfs: tree-checker: Verify inode item (dependency for bsc#1157692).\n- btrfs: tree-checker: get fs_info from eb in block_group_err (dependency for bsc#1157692).\n- btrfs: tree-checker: get fs_info from eb in check_block_group_item (dependency for bsc#1157692).\n- btrfs: tree-checker: get fs_info from eb in check_csum_item (dependency for bsc#1157692).\n- btrfs: tree-checker: get fs_info from eb in check_dev_item (dependency for bsc#1157692).\n- btrfs: tree-checker: get fs_info from eb in check_dir_item (dependency for bsc#1157692).\n- btrfs: tree-checker: get fs_info from eb in check_extent_data_item (dependency for bsc#1157692).\n- btrfs: tree-checker: get fs_info from eb in check_inode_item (dependency for bsc#1157692).\n- btrfs: tree-checker: get fs_info from eb in check_leaf_item (dependency for bsc#1157692).\n- btrfs: tree-checker: get fs_info from eb in dev_item_err (dependency for bsc#1157692).\n- btrfs: tree-checker: get fs_info from eb in dir_item_err (dependency for bsc#1157692).\n- btrfs: tree-checker: get fs_info from eb in file_extent_err (dependency for bsc#1157692).\n- btrfs: tree-checker: get fs_info from eb in check_leaf (dependency for bsc#1157692).\n- btrfs: tree-checker: get fs_info from eb in chunk_err (dependency for bsc#1157692).\n- btrfs: tree-checker: get fs_info from eb in generic_err (dependency for bsc#1157692).\n- btrfs: volumes: Use more straightforward way to calculate map length (bsc#1151910).\n- can, slip: Protect tty-\u003edisc_data in write_wakeup and close with RCU (bsc#1051510).\n- can: c_can: D_CAN: c_can_chip_config(): perform a sofware reset on open (bsc#1051510).\n- can: can_dropped_invalid_skb(): ensure an initialized headroom in outgoing CAN sk_buffs (bsc#1051510).\n- can: gs_usb: gs_usb_probe(): use descriptors of current altsetting (bsc#1051510).\n- can: mscan: mscan_rx_poll(): fix rx path lockup when returning from polling to irq mode (bsc#1051510).\n- can: peak_usb: report bus recovery as well (bsc#1051510).\n- can: rx-offload: can_rx_offload_irq_offload_fifo(): continue on error (bsc#1051510).\n- can: rx-offload: can_rx_offload_irq_offload_timestamp(): continue on error (bsc#1051510).\n- can: rx-offload: can_rx_offload_offload_one(): increment rx_fifo_errors on queue overflow or OOM (bsc#1051510).\n- can: rx-offload: can_rx_offload_offload_one(): use ERR_PTR() to propagate error value in case of errors (bsc#1051510).\n- can: slcan: Fix use-after-free Read in slcan_open (bsc#1051510).\n- cdrom: respect device capabilities during opening action (boo#1164632).\n- cfg80211/mac80211: make ieee80211_send_layer2_update a public function (bsc#1051510).\n- cfg80211: check for set_wiphy_params (bsc#1051510).\n- cfg80211: fix deadlocks in autodisconnect work (bsc#1111666).\n- cfg80211: fix memory leak in cfg80211_cqm_rssi_update (bsc#1111666).\n- cfg80211: fix page refcount issue in A-MSDU decap (bsc#1051510).\n- cgroup: pids: use atomic64_t for pids-\u003elimit (bsc#1161514).\n- chardev: Avoid potential use-after-free in \u0027chrdev_open()\u0027 (bsc#1163849).\n- cifs: Add tracepoints for errors on flush or fsync (bsc#1144333).\n- cifs: Adjust indentation in smb2_open_file (bsc#1144333).\n- cifs: Avoid doing network I/O while holding cache lock (bsc#1144333).\n- cifs: Clean up DFS referral cache (bsc#1144333).\n- cifs: Do not display RDMA transport on reconnect (bsc#1144333).\n- cifs: Fix lookup of root ses in DFS referral cache (bsc#1144333).\n- cifs: Fix memory allocation in __smb2_handle_cancelled_cmd() (bsc#1144333).\n- cifs: Fix memory allocation in __smb2_handle_cancelled_cmd() (bsc#1144333).\n- cifs: Fix mode output in debugging statements (bsc#1144333).\n- cifs: Fix mount options set in automount (bsc#1144333).\n- cifs: Fix mount options set in automount (bsc#1144333).\n- cifs: Fix potential deadlock when updating vol in cifs_reconnect() (bsc#1144333).\n- cifs: Fix potential softlockups while refreshing DFS cache (bsc#1144333).\n- cifs: Fix retrieval of DFS referrals in cifs_mount() (bsc#1144333).\n- cifs: Fix return value in __update_cache_entry (bsc#1144333).\n- cifs: Fix use-after-free bug in cifs_reconnect() (bsc#1144333).\n- cifs: Get rid of kstrdup_const()\u0027d paths (bsc#1144333).\n- cifs: Introduce helpers for finding TCP connection (bsc#1144333).\n- cifs: Merge is_path_valid() into get_normalized_path() (bsc#1144333).\n- cifs: Optimize readdir on reparse points (bsc#1144333).\n- cifs: Use #define in cifs_dbg (bsc#1144333).\n- cifs: add SMB2_open() arg to return POSIX data (bsc#1144333).\n- cifs: add SMB3 change notification support (bsc#1144333).\n- cifs: add a debug macro that prints \\\\server\\share for errors (bsc#1144333).\n- cifs: add missing mount option to /proc/mounts (bsc#1144333).\n- cifs: add new debugging macro cifs_server_dbg (bsc#1144333).\n- cifs: add passthrough for smb2 setinfo (bsc#1144333).\n- cifs: add smb2 POSIX info level (bsc#1144333).\n- cifs: add support for fallocate mode 0 for non-sparse files (bsc#1144333).\n- cifs: add support for flock (bsc#1144333).\n- cifs: allow chmod to set mode bits using special sid (bsc#1144333).\n- cifs: call wake_up(\u0026server-\u003eresponse_q) inside of cifs_reconnect() (bsc#1144333).\n- cifs: close the shared root handle on tree disconnect (bsc#1144333).\n- cifs: create a helper function to parse the query-directory response buffer (bsc#1144333).\n- cifs: do d_move in rename (bsc#1144333).\n- cifs: do not ignore the SYNC flags in getattr (bsc#1144333).\n- cifs: do not leak -EAGAIN for stat() during reconnect (bsc#1144333).\n- cifs: do not use \u0027pre:\u0027 for MODULE_SOFTDEP (bsc#1144333).\n- cifs: enable change notification for SMB2.1 dialect (bsc#1144333).\n- cifs: fail i/o on soft mounts if sessionsetup errors out (bsc#1144333).\n- cifs: fix NULL dereference in match_prepath (bsc#1144333).\n- cifs: fix a comment for the timeouts when sending echos (bsc#1144333).\n- cifs: fix dereference on ses before it is null checked (bsc#1144333).\n- cifs: fix mode bits from dir listing when mounted with modefromsid (bsc#1144333).\n- cifs: fix mount option display for sec=krb5i (bsc#1161907).\n- cifs: fix potential mismatch of UNC paths (bsc#1144333).\n- cifs: fix rename() by ensuring source handle opened with DELETE bit (bsc#1144333).\n- cifs: fix soft mounts hanging in the reconnect code (bsc#1144333).\n- cifs: fix soft mounts hanging in the reconnect code (bsc#1144333).\n- cifs: fix unitialized variable poential problem with network I/O cache lock patch (bsc#1144333).\n- cifs: get mode bits from special sid on stat (bsc#1144333).\n- cifs: handle prefix paths in reconnect (bsc#1144333).\n- cifs: log warning message (once) if out of disk space (bsc#1144333).\n- cifs: make sure we do not overflow the max EA buffer size (bsc#1144333).\n- cifs: make use of cap_unix(ses) in cifs_reconnect_tcon() (bsc#1144333).\n- cifs: modefromsid: make room for 4 ACE (bsc#1144333).\n- cifs: modefromsid: write mode ACE first (bsc#1144333).\n- cifs: plumb smb2 POSIX dir enumeration (bsc#1144333).\n- cifs: potential unintitliazed error code in cifs_getattr() (bsc#1144333).\n- cifs: prepare SMB2_query_directory to be used with compounding (bsc#1144333).\n- cifs: print warning once if mounting with vers=1.0 (bsc#1144333).\n- cifs: remove redundant assignment to pointer pneg_ctxt (bsc#1144333).\n- cifs: remove redundant assignment to variable rc (bsc#1144333).\n- cifs: remove set but not used variable \u0027server\u0027 (bsc#1144333).\n- cifs: remove set but not used variables (bsc#1144333).\n- cifs: remove unused variable \u0027sid_user\u0027 (bsc#1144333).\n- cifs: remove unused variable (bsc#1144333).\n- cifs: rename a variable in SendReceive() (bsc#1144333).\n- cifs: rename posix create rsp (bsc#1144333).\n- cifs: replace various strncpy with strscpy and similar (bsc#1144333).\n- cifs: set correct max-buffer-size for smb2_ioctl_init() (bsc#1144333).\n- cifs: smbd: Add messages on RDMA session destroy and reconnection (bsc#1144333).\n- cifs: smbd: Invalidate and deregister memory registration on re-send for direct I/O (bsc#1144333).\n- cifs: smbd: Only queue work for error recovery on memory registration (bsc#1144333).\n- cifs: smbd: Return -EAGAIN when transport is reconnecting (bsc#1144333).\n- cifs: smbd: Return -ECONNABORTED when trasnport is not in connected state (bsc#1144333).\n- cifs: smbd: Return -EINVAL when the number of iovs exceeds SMBDIRECT_MAX_SGE (bsc#1144333).\n- cifs: use PTR_ERR_OR_ZERO() to simplify code (bsc#1144333).\n- cifs: use compounding for open and first query-dir for readdir() (bsc#1144333).\n- cifs: use mod_delayed_work() for \u0026server-\u003ereconnect if already queued (bsc#1144333).\n- clk: Do not try to enable critical clocks if prepare failed (bsc#1051510).\n- clk: imx: clk-composite-8m: add lock to gate/mux (git-fixes).\n- clk: mmp2: Fix the order of timer mux parents (bsc#1051510).\n- clk: qcom: rcg2: Do not crash if our parent can\u0027t be found; return an error (bsc#1051510).\n- clk: rockchip: fix I2S1 clock gate register for rk3328 (bsc#1051510).\n- clk: rockchip: fix ID of 8ch clock of I2S1 for rk3328 (bsc#1051510).\n- clk: rockchip: fix rk3188 sclk_mac_lbtest parameter ordering (bsc#1051510).\n- clk: rockchip: fix rk3188 sclk_smc gate data (bsc#1051510).\n- clk: sunxi-ng: add mux and pll notifiers for A64 CPU clock (bsc#1051510).\n- clk: sunxi: sun9i-mmc: Implement reset callback for reset controls (bsc#1051510).\n- clk: tegra: Mark fuse clock as critical (bsc#1051510).\n- clocksource/drivers/bcm2835_timer: Fix memory leak of timer (bsc#1051510).\n- clocksource: Prevent double add_timer_on() for watchdog_timer (bsc#1051510).\n- closures: fix a race on wakeup from closure_sync (bsc#1163762).\n- cls_rsvp: fix rsvp_policy (networking-stable-20_02_05).\n- configfs_register_group() shouldn\u0027t be (and isn\u0027t) called in rmdirable parts (bsc#1051510).\n- copy/pasted \u0027Recommends:\u0027 instead of \u0027Provides:\u0027, \u0027Obsoletes:\u0027 and \u0027Conflicts:\n- core: Do not skip generic XDP program execution for cloned SKBs (bsc#1109837).\n- crypto: DRBG - add FIPS 140-2 CTRNG for noise source (bsc#1155334).\n- crypto: af_alg - Use bh_lock_sock in sk_destruct (bsc#1051510).\n- crypto: api - Check spawn-\u003ealg under lock in crypto_drop_spawn (bsc#1051510).\n- crypto: api - Fix race condition in crypto_spawn_alg (bsc#1051510).\n- crypto: atmel-sha - fix error handling when setting hmac key (bsc#1051510).\n- crypto: caam/qi2 - fix typo in algorithm\u0027s driver name (bsc#1111666).\n- crypto: ccp - fix uninitialized list head (bsc#1051510).\n- crypto: chelsio - fix writing tfm flags to wrong place (bsc#1051510).\n- crypto: dh - add public key verification test (bsc#1155331).\n- crypto: dh - fix calculating encoded key size (bsc#1155331).\n- crypto: dh - fix memory leak (bsc#1155331).\n- crypto: dh - update test for public key verification (bsc#1155331).\n- crypto: ecdh - add public key verification test (bsc#1155331).\n- crypto: ecdh - fix typo of P-192 b value (bsc#1155331).\n- crypto: mxc-scc - fix build warnings on ARM64 (bsc#1051510).\n- crypto: pcrypt - Do not clear MAY_SLEEP flag in original request (bsc#1051510).\n- crypto: picoxcell - adjust the position of tasklet_init and fix missed tasklet_kill (bsc#1051510).\n- crypto: reexport crypto_shoot_alg() (bsc#1051510, kABI fix).\n- cxgb4: request the TX CIDX updates to status page (bsc#1127371).\n- devlink: report 0 after hitting end in region read (bsc#1109837).\n- dma-buf: Fix memory leak in sync_file_merge() (git-fixes).\n- dma-mapping: fix return type of dma_set_max_seg_size() (bsc#1051510).\n- dmaengine: Fix access to uninitialized dma_slave_caps (bsc#1051510).\n- dmaengine: coh901318: Fix a double-lock bug (bsc#1051510).\n- dmaengine: coh901318: Remove unused variable (bsc#1051510).\n- drivers/base/memory.c: cache blocks in radix tree to accelerate lookup (bsc#1159955 ltc#182993).\n- drivers/base/memory.c: do not access uninitialized memmaps in soft_offline_page_store() (bsc#1051510).\n- drivers/base/platform.c: kmemleak ignore a known leak (bsc#1051510).\n- drivers/regulator: fix a missing check of return value (bsc#1051510).\n- drm/amd/display: Retrain dongles when SINK_COUNT becomes non-zero (bsc#1111666).\n- drm/amd/powerplay: remove set but not used variable \u0027us_mvdd\u0027 (bsc#1111666).\n- drm/amdgpu/{uvd,vcn}: fetch ring\u0027s read_ptr after alloc (bsc#1111666).\n- drm/amdgpu: add function parameter description in \u0027amdgpu_device_set_cg_state\u0027 (bsc#1111666).\n- drm/amdgpu: add function parameter description in \u0027amdgpu_gart_bind\u0027 (bsc#1051510).\n- drm/amdgpu: fix bad DMA from INTERRUPT_CNTL2 (bsc#1114279)\n- drm/amdgpu: fix ring test failure issue during s3 in vce 3.0 (V2) (bsc#1111666).\n- drm/amdgpu: remove 4 set but not used variable in amdgpu_atombios_get_connector_info_from_object_table (bsc#1051510).\n- drm/amdgpu: remove always false comparison in \u0027amdgpu_atombios_i2c_process_i2c_ch\u0027 (bsc#1051510).\n- drm/amdgpu: remove set but not used variable \u0027amdgpu_connector\u0027 (bsc#1051510).\n- drm/amdgpu: remove set but not used variable \u0027dig\u0027 (bsc#1051510).\n- drm/amdgpu: remove set but not used variable \u0027dig_connector\u0027 (bsc#1051510).\n- drm/amdgpu: remove set but not used variable \u0027invalid\u0027 (bsc#1111666).\n- drm/amdgpu: remove set but not used variable \u0027mc_shared_chmap\u0027 (bsc#1051510).\n- drm/amdgpu: remove set but not used variable \u0027mc_shared_chmap\u0027 from \u0027gfx_v6_0.c\u0027 and \u0027gfx_v7_0.c\u0027 (bsc#1051510).\n- drm/amdkfd: fix a use after free race with mmu_notifer unregister (bsc#1114279)\n- drm/dp_mst: correct the shifting in DP_REMOTE_I2C_READ (bsc#1051510).\n- drm/etnaviv: fix dumping of iommuv2 (bsc#1114279)\n- drm/fb-helper: Round up bits_per_pixel if possible (bsc#1051510).\n- drm/i810: Prevent underflow in ioctl (bsc#1114279)\n- drm/i915/gvt: Pin vgpu dma address before using (bsc#1112178)\n- drm/i915/gvt: Separate display reset from ALL_ENGINES reset (bsc#1114279)\n- drm/i915/gvt: set guest display buffer as readonly (bsc#1112178)\n- drm/i915/gvt: use vgpu lock for active state setting (bsc#1112178)\n- drm/i915/perf: add missing delay for OA muxes configuration (bsc#1111666).\n- drm/i915/userptr: Try to acquire the page lock around (bsc#1114279)\n- drm/i915/userptr: fix size calculation (bsc#1114279)\n- drm/i915: Add missing include file \u003clinux/math64.h\u003e (bsc#1051510).\n- drm/i915: Call dma_set_max_seg_size() in i915_driver_hw_probe() (bsc#1111666).\n- drm/i915: Fix pid leak with banned clients (bsc#1114279)\n- drm/i915: Handle vm_mmap error during I915_GEM_MMAP ioctl with WC set (bsc#1111666).\n- drm/i915: Make sure cdclk is high enough for DP audio on VLV/CHV (bsc#1111666).\n- drm/i915: Reacquire priolist cache after dropping the engine lock (bsc#1129770) Fixes a const function argument in the patch.\n- drm/i915: Sanity check mmap length against object size (bsc#1111666).\n- drm/i915: Wean off drm_pci_alloc/drm_pci_free (bsc#1114279)\n- drm/mediatek: Add gamma property according to hardware capability (bsc#1114279)\n- drm/mediatek: disable all the planes in atomic_disable (bsc#1114279)\n- drm/mipi_dbi: Fix off-by-one bugs in mipi_dbi_blank() (bsc#1114279)\n- drm/msm: include linux/sched/task.h (bsc#1112178)\n- drm/mst: Fix MST sideband up-reply failure handling (bsc#1051510).\n- drm/nouveau/bar/gf100: ensure BAR is mapped (bsc#1111666).\n- drm/nouveau/bar/nv50: check bar1 vmm return value (bsc#1111666).\n- drm/nouveau/mmu: qualify vmm during dtor (bsc#1111666).\n- drm/nouveau/secboot/gm20b: initialize pointer in gm20b_secboot_new() (bsc#1051510).\n- drm/nouveau: Fix copy-paste error in nouveau_fence_wait_uevent_handler (bsc#1051510).\n- drm/qxl: Return error if fbdev is not 32 bpp (bsc#1159028)\n- drm/qxl: Return error if fbdev is not 32 bpp (bsc#1159028)\n- drm/radeon: fix r1xx/r2xx register checker for POT textures (bsc#1114279)\n- drm/rect: Avoid division by zero (bsc#1111666).\n- drm/rect: update kerneldoc for drm_rect_clip_scaled() (bsc#1111666).\n- drm/rockchip: Round up _before_ giving to the clock framework (bsc#1114279)\n- drm/rockchip: lvds: Fix indentation of a #define (bsc#1051510).\n- drm/sun4i: hdmi: Remove duplicate cleanup calls (bsc#1113956)\n- drm/sun4i: tcon: Set RGB DCLK min. divider based on hardware model (bsc#1111666).\n- drm/sun4i: tcon: Set min division of TCON0_DCLK to 1 (bsc#1111666).\n- drm/ttm: ttm_tt_init_fields() can be static (bsc#1111666).\n- drm/vmwgfx: prevent memory leak in vmw_cmdbuf_res_add (bsc#1051510).\n- drm: atmel-hlcdc: enable clock before configuring timing engine (bsc#1114279)\n- drm: bridge: dw-hdmi: constify copied structure (bsc#1051510).\n- drm: limit to INT_MAX in create_blob ioctl (bsc#1051510).\n- drm: meson: venc: cvbs: fix CVBS mode matching (bsc#1051510).\n- drm: msm: mdp4: Adjust indentation in mdp4_dsi_encoder_enable (bsc#1111666).\n- drm: msm: mdp4: Adjust indentation in mdp4_dsi_encoder_enable (bsc#1114279)\n- drm: panel-lvds: Potential Oops in probe error handling (bsc#1114279)\n- drm: rcar-du: Recognize \u0027renesas,vsps\u0027 in addition to \u0027vsps\u0027 (bsc#1114279)\n- e1000e: Add support for Comet Lake (bsc#1158533).\n- e1000e: Add support for Tiger Lake (bsc#1158533).\n- e1000e: Increase pause and refresh time (bsc#1158533).\n- e100: Fix passing zero to \u0027PTR_ERR\u0027 warning in e100_load_ucode_wait (bsc#1051510).\n- enic: prevent waking up stopped tx queues over watchdog reset (bsc#1133147).\n- ethtool: Factored out similar ethtool link settings for virtual devices to core (bsc#1136157 ltc#177197).\n- exit: panic before exit_mm() on global init exit (bsc#1161549).\n- ext2: check err when partial != NULL (bsc#1163859).\n- ext4, jbd2: ensure panic when aborting with zero errno (bsc#1163853).\n- ext4: Fix mount failure with quota configured as module (bsc#1164471).\n- ext4: check for directory entries too close to block end (bsc#1163861).\n- ext4: fix a bug in ext4_wait_for_tail_page_commit (bsc#1163841).\n- ext4: fix checksum errors with indexed dirs (bsc#1160979).\n- ext4: fix deadlock allocating crypto bounce page from mempool (bsc#1163842).\n- ext4: fix mount failure with quota configured as module (bsc#1164471).\n- ext4: improve explanation of a mount failure caused by a misconfigured kernel (bsc#1163843).\n- extcon: max8997: Fix lack of path setting in USB device mode (bsc#1051510).\n- firestream: fix memory leaks (bsc#1051510).\n- fix autofs regression caused by follow_managed() changes (bsc#1159271).\n- fix dget_parent() fastpath race (bsc#1159271).\n- fix memory leak in large read decrypt offload (bsc#1144333).\n- fjes: fix missed check in fjes_acpi_add (bsc#1051510).\n- fs/cifs/cifssmb.c: use true,false for bool variable (bsc#1144333).\n- fs/cifs/sess.c: Remove set but not used variable \u0027capabilities\u0027 (bsc#1144333).\n- fs/cifs/smb2ops.c: use true,false for bool variable (bsc#1144333).\n- fs/cifs/smb2pdu.c: Make SMB2_notify_init static (bsc#1144333).\n- fs/namei.c: fix missing barriers when checking positivity (bsc#1159271).\n- fs/namei.c: pull positivity check into follow_managed() (bsc#1159271).\n- fs/open.c: allow opening only regular files during execve() (bsc#1163845).\n- fs: cifs: Fix atime update check vs mtime (bsc#1144333).\n- fs: cifs: Initialize filesystem timestamp ranges (bsc#1144333).\n- fs: cifs: cifsssmb: remove redundant assignment to variable ret (bsc#1144333).\n- fs: cifs: mute -Wunused-const-variable message (bsc#1144333).\n- fscrypt: do not set policy for a dead directory (bsc#1163846).\n- ftrace: Add comment to why rcu_dereference_sched() is open coded (git-fixes).\n- ftrace: Avoid potential division by zero in function profiler (bsc#1160784).\n- ftrace: Protect ftrace_graph_hash with ftrace_sync (git-fixes).\n- genirq/proc: Return proper error code when irq_set_affinity() fails (bnc#1105392).\n- genirq: Prevent NULL pointer dereference in resend_irqs() (bsc#1051510).\n- genirq: Properly pair kobject_del() with kobject_add() (bsc#1051510).\n- gpio: Fix error message on out-of-range GPIO in lookup table (bsc#1051510).\n- gtp: avoid zero size hashtable (networking-stable-20_01_01).\n- gtp: do not allow adding duplicate tid and ms_addr pdp context (networking-stable-20_01_01).\n- gtp: fix an use-after-free in ipv4_pdp_find() (networking-stable-20_01_01).\n- gtp: fix wrong condition in gtp_genl_dump_pdp() (networking-stable-20_01_01).\n- gtp: make sure only SOCK_DGRAM UDP sockets are accepted (networking-stable-20_01_27).\n- gtp: use __GFP_NOWARN to avoid memalloc warning (networking-stable-20_02_05).\n- hidraw: Return EPOLLOUT from hidraw_poll (bsc#1051510).\n- hotplug/drc-info: Add code to search ibm,drc-info property (bsc#1157480 ltc#181028).\n- hv_netvsc: Fix memory leak when removing rndis device (networking-stable-20_01_20).\n- hv_netvsc: Fix offset usage in netvsc_send_table() (bsc#1164598).\n- hv_netvsc: Fix send_table offset in case of a host bug (bsc#1164598).\n- hv_netvsc: Fix tx_table init in rndis_set_subchannel() (bsc#1164598).\n- hv_netvsc: Fix unwanted rx_table reset (bsc#1164598).\n- hwmon: (adt7475) Make volt2reg return same reg as reg2volt input (bsc#1051510).\n- hwmon: (core) Do not use device managed functions for memory allocations (bsc#1051510).\n- hwmon: (k10temp) Add support for AMD family 17h, model 70h CPUs (bsc#1163206).\n- hwmon: (nct7802) Fix voltage limits to wrong registers (bsc#1051510).\n- hwmon: (pmbus/ltc2978) Fix PMBus polling of MFR_COMMON definitions (bsc#1051510).\n- hwrng: stm32 - fix unbalanced pm_runtime_enable (bsc#1051510).\n- i2c: imx: do not print error message on probe defer (bsc#1051510).\n- ibmveth: Detect unsupported packets before sending to the hypervisor (bsc#1159484 ltc#182983).\n- ibmvfc: Fix NULL return compiler warning (bsc#1161951 ltc#183551).\n- ibmvnic: Bound waits for device queries (bsc#1155689 ltc#182047).\n- ibmvnic: Fix completion structure initialization (bsc#1155689 ltc#182047).\n- ibmvnic: Serialize device queries (bsc#1155689 ltc#182047).\n- ibmvnic: Terminate waiting device threads after loss of service (bsc#1155689 ltc#182047).\n- ice: fix stack leakage (bsc#1118661).\n- idr: Fix idr_alloc_u32 on 32-bit systems (bsc#1051510).\n- iio: adc: max9611: Fix too short conversion time delay (bsc#1051510).\n- iio: buffer: align the size of scan bytes to size of the largest element (bsc#1051510).\n- inet: protect against too small mtu values (networking-stable-19_12_16).\n- iommu/amd: Fix IOMMU perf counter clobbering during init (bsc#1162617).\n- iommu/arm-smmu-v3: Populate VMID field for CMDQ_OP_TLBI_NH_VA (bsc#1164314).\n- iommu/io-pgtable-arm: Fix race handling in split_blk_unmap() (bsc#1164115).\n- iommu/iova: Init the struct iova to fix the possible memleak (bsc#1160469).\n- iommu/mediatek: Correct the flush_iotlb_all callback (bsc#1160470).\n- iommu/vt-d: Unlink device if failed to add to group (bsc#1160756).\n- iommu: Remove device link to group on failure (bsc#1160755).\n- ipmi: Do not allow device module unload when in use (bsc#1154768).\n- ipv4: Fix table id reference in fib_sync_down_addr (networking-stable-19_11_10).\n- ipv4: ensure rcu_read_lock() in cipso_v4_error() (git-fixes).\n- ipv6: restrict IPV6_ADDRFORM operation (bsc#1109837).\n- iwlegacy: ensure loop counter addr does not wrap and cause an infinite loop (git-fixes).\n- iwlwifi: change monitor DMA to be coherent (bsc#1161243).\n- iwlwifi: clear persistence bit according to device family (bsc#1111666).\n- iwlwifi: do not throw error when trying to remove IGTK (bsc#1051510).\n- iwlwifi: mvm: Send non offchannel traffic via AP sta (bsc#1051510).\n- iwlwifi: mvm: fix NVM check for 3168 devices (bsc#1051510).\n- iwlwifi: mvm: force TCM re-evaluation on TCM resume (bsc#1111666).\n- iwlwifi: mvm: synchronize TID queue removal (bsc#1051510).\n- iwlwifi: pcie: fix erroneous print (bsc#1111666).\n- iwlwifi: trans: Clear persistence bit when starting the FW (bsc#1111666).\n- jbd2: Fix possible overflow in jbd2_log_space_left() (bsc#1163860).\n- jbd2: clear JBD2_ABORT flag before journal_reset to update log tail info when load journal (bsc#1163862).\n- jbd2: do not clear the BH_Mapped flag when forgetting a metadata buffer (bsc#1163836).\n- jbd2: make sure ESHUTDOWN to be recorded in the journal superblock (bsc#1163863).\n- jbd2: move the clearing of b_modified flag to the journal_unmap_buffer() (bsc#1163880).\n- jbd2: switch to use jbd2_journal_abort() when failed to submit the commit record (bsc#1163852).\n- kABI fix for \u0027ipmi: Do not allow device module unload when in use\u0027 (bsc#1154768).\n- kABI fixup for alloc_dax_region (bsc#1158071,bsc#1160678).\n- kABI workaround for can/skb.h inclusion (bsc#1051510).\n- crypto/dh: Make sure the FIPS pubkey check is only executed in FIPS mode.\n- kABI: Protest new fields in BPF structs (bsc#1160618).\n- kABI: add _q suffix to exports that take struct dh (bsc#1155331).\n- kABI: protect struct sctp_ep_common (kabi).\n- kabi/severities: Whitelist rpaphp_get_drc_props (bsc#1157480 ltc#181028).\n- kconfig: fix broken dependency in randconfig-generated .config (bsc#1051510).\n- kernel-binary.spec.in: do not recommend firmware for kvmsmall and azure flavor (boo#1161360).\n- kernel/module.c: Only return -EEXIST for modules that have finished loading (bsc#1165488).\n- kernel/module.c: wakeup processes in module_wq on module unload (bsc#1165488).\n- kernel/trace: Fix do not unregister tracepoints when register sched_migrate_task fail (bsc#1160787).\n- kernfs: Fix range checks in kernfs_get_target_path (bsc#1051510).\n- kexec: bail out upon SIGKILL when allocating memory (git-fixes).\n- kvm: x86: Host feature SSBD does not imply guest feature SPEC_CTRL_SSBD (bsc#1160476).\n- l2tp: Allow duplicate session creation with UDP (networking-stable-20_02_05).\n- lcoking/rwsem: Add missing ACQUIRE to read_slowpath sleep loop (bsc#1050549).\n- leds: Allow to call led_classdev_unregister() unconditionally (bsc#1161674).\n- leds: class: ensure workqueue is initialized before setting brightness (bsc#1161674).\n- lib/scatterlist.c: adjust indentation in __sg_alloc_table (bsc#1051510).\n- lib/test_kasan.c: fix memory leak in kmalloc_oob_krealloc_more() (bsc#1051510).\n- lib: crc64: include \u003clinux/crc64.h\u003e for \u0027crc64_be\u0027 (bsc#1163762).\n- libnvdimm-fix-devm_nsio_enable-kabi.patch: Fixup compiler warning\n- libnvdimm/namespace: Differentiate between probe mapping and runtime mapping (bsc#1153535).\n- libnvdimm/pfn: Account for PAGE_SIZE \u003e info-block-size in nd_pfn_init() (bsc#1127682 bsc#1153535 ltc#175033 ltc#181834).\n- libnvdimm: Fix devm_nsio_enable() kabi (bsc#1153535).\n- livepatch/samples/selftest: Use klp_shadow_alloc() API correctly (bsc#1071995).\n- livepatch/selftest: Clean up shadow variable names and type (bsc#1071995).\n- locking/rwsem: Prevent decrement of reader count before increment (bsc#1050549).\n- mac80211: Do not send Layer 2 Update frame before authorization (bsc#1051510).\n- mac80211: Fix TKIP replay protection immediately after key setup (bsc#1051510).\n- mac80211: fix ieee80211_txq_setup_flows() failure path (bsc#1111666).\n- mac80211: fix station inactive_time shortly after boot (bsc#1051510).\n- mac80211: mesh: restrict airtime metric to peered established plinks (bsc#1051510).\n- macvlan: do not assume mac_header is set in macvlan_broadcast() (bsc#1051510).\n- macvlan: use skb_reset_mac_header() in macvlan_queue_xmit() (bsc#1051510).\n- mailbox: mailbox-test: fix null pointer if no mmio (bsc#1051510).\n- md/raid0: Fix buffer overflow at debug print (bsc#1164051).\n- media/v4l2-core: set pages dirty upon releasing DMA buffers (bsc#1051510).\n- media: af9005: uninitialized variable printked (bsc#1051510).\n- media: cec.h: CEC_OP_REC_FLAG_ values were swapped (bsc#1051510).\n- media: cec: CEC 2.0-only bcast messages were ignored (git-fixes).\n- media: cec: report Vendor ID after initialization (bsc#1051510).\n- media: digitv: do not continue if remote control state can\u0027t be read (bsc#1051510).\n- media: dvb-usb/dvb-usb-urb.c: initialize actlen to 0 (bsc#1051510).\n- media: exynos4-is: fix wrong mdev and v4l2 dev order in error path (git-fixes).\n- media: gspca: zero usb_buf (bsc#1051510).\n- media: iguanair: fix endpoint sanity check (bsc#1051510).\n- media: ov6650: Fix control handler not freed on init error (git-fixes).\n- media: ov6650: Fix crop rectangle alignment not passed back (git-fixes).\n- media: ov6650: Fix incorrect use of JPEG colorspace (git-fixes).\n- media: pulse8-cec: fix lost cec_transmit_attempt_done() call.\n- media: pulse8-cec: return 0 when invalidating the logical address (bsc#1051510).\n- media: stkwebcam: Bugfix for wrong return values (bsc#1051510).\n- media: uvcvideo: Avoid cyclic entity chains due to malformed USB descriptors (bsc#1051510).\n- media: uvcvideo: Fix error path in control parsing failure (git-fixes).\n- media: v4l2-ctrl: fix flags for DO_WHITE_BALANCE (bsc#1051510).\n- media: v4l2-ioctl.c: zero reserved fields for S/TRY_FMT (bsc#1051510).\n- media: v4l2-rect.h: fix v4l2_rect_map_inside() top/left adjustments (bsc#1051510).\n- mei: bus: prefix device names on bus with the bus name (bsc#1051510).\n- mfd: da9062: Fix watchdog compatible string (bsc#1051510).\n- mfd: dln2: More sanity checking for endpoints (bsc#1051510).\n- mfd: rn5t618: Mark ADC control register volatile (bsc#1051510).\n- missing escaping of backslashes in macro expansions (bsc#1143959)\n- mlxsw: spectrum: Wipe xstats.backlog of down ports (bsc#1112374).\n- mlxsw: spectrum_qdisc: Ignore grafting of invisible FIFO (bsc#1112374).\n- mlxsw: spectrum_qdisc: Include MC TCs in Qdisc counters (bsc#1112374).\n- mlxsw: spectrum_router: Fix determining underlay for a GRE tunnel (bsc#1112374).\n- mm, memory_hotplug: do not clear numa_node association after hot_remove (bnc#1115026).\n- mm/page-writeback.c: fix range_cyclic writeback vs writepages deadlock (bsc#1159394).\n- mm: memory_hotplug: use put_device() if device_register fail (bsc#1159955 ltc#182993).\n- mmc: mediatek: fix CMD_TA to 2 for MT8173 HS200/HS400 mode (bsc#1051510).\n- mmc: sdhci-of-esdhc: Revert \u0027mmc: sdhci-of-esdhc: add erratum A-009204 support\u0027 (bsc#1051510).\n- mmc: sdhci-of-esdhc: fix P2020 errata handling (bsc#1051510).\n- mmc: sdhci: Add a quirk for broken command queuing (git-fixes).\n- mmc: sdhci: Workaround broken command queuing on Intel GLK (git-fixes).\n- mmc: sdhci: fix minimum clock rate for v3 controller (bsc#1051510).\n- mmc: spi: Toggle SPI polarity, do not hardcode it (bsc#1051510).\n- mmc: tegra: fix SDR50 tuning override (bsc#1051510).\n- mod_devicetable: fix PHY module format (networking-stable-19_12_28).\n- moduleparam: fix parameter description mismatch (bsc#1051510).\n- mqprio: Fix out-of-bounds access in mqprio_dump (bsc#1109837).\n- mtd: fix mtd_oobavail() incoherent returned value (bsc#1051510).\n- mwifiex: debugfs: correct histogram spacing, formatting (bsc#1051510).\n- mwifiex: delete unused mwifiex_get_intf_num() (bsc#1111666).\n- mwifiex: drop most magic numbers from mwifiex_process_tdls_action_frame() (git-fixes).\n- mwifiex: fix potential NULL dereference and use after free (bsc#1051510).\n- mwifiex: update set_mac_address logic (bsc#1111666).\n- namei: only return -ECHILD from follow_dotdot_rcu() (bsc#1163851).\n- net, ip6_tunnel: fix namespaces move (networking-stable-20_01_27).\n- net, ip_tunnel: fix namespaces move (networking-stable-20_01_27).\n- net, sysctl: Fix compiler warning when only cBPF is present (bsc#1109837).\n- net-sysfs: Fix reference count leak (networking-stable-20_01_27).\n- net/ethtool: Introduce link_ksettings API for virtual network devices (bsc#1136157 ltc#177197).\n- net/ibmvnic: Fix typo in retry check (bsc#1155689 ltc#182047).\n- net/mlx4_en: Fix wrong limitation for number of TX rings (bsc#1103989).\n- net/mlx4_en: fix mlx4 ethtool -N insertion (networking-stable-19_11_25).\n- net/mlx5: Accumulate levels for chains prio namespaces (bsc#1103990).\n- net/mlx5: Fix lowest FDB pool size (bsc#1103990).\n- net/mlx5: IPsec, Fix esp modify function attribute (bsc#1103990 ).\n- net/mlx5: IPsec, fix memory leak at mlx5_fpga_ipsec_delete_sa_ctx (bsc#1103990).\n- net/mlx5: Update the list of the PCI supported devices (bsc#1127611).\n- net/mlx5: Update the list of the PCI supported devices (bsc#1127611).\n- net/mlx5: prevent memory leak in mlx5_fpga_conn_create_cq (bsc#1046303).\n- net/mlx5e: Fix SFF 8472 eeprom length (git-fixes).\n- net/mlx5e: Fix set vf link state error flow (networking-stable-19_11_25).\n- net/mlx5e: Query global pause state before setting prio2buffer (bsc#1103990).\n- net/mlxfw: Fix out-of-memory error in mfa2 flash burning (bsc#1051858).\n- net/mlxfw: Verify FSM error code translation does not exceed array size (bsc#1051858).\n- net/sched: act_pedit: fix WARN() in the traffic path (networking-stable-19_11_25).\n- net/tls: fix async operation (bsc#1109837).\n- net/tls: free the record on encryption error (bsc#1109837).\n- net/tls: take into account that bpf_exec_tx_verdict() may free the record (bsc#1109837).\n- net/wan/fsl_ucc_hdlc: fix out of bounds write on array utdm_info (networking-stable-20_01_20).\n- net: Fix Tx hash bound checking (bsc#1109837).\n- net: add sendmsg_locked and sendpage_locked to af_inet6 (bsc#1144162).\n- net: bridge: deny dev_set_mac_address() when unregistering (networking-stable-19_12_16).\n- net: cdc_ncm: Signedness bug in cdc_ncm_set_dgram_size() (git-fixes).\n- net: cxgb3_main: Add CAP_NET_ADMIN check to CHELSIO_GET_MEM (networking-stable-20_01_27).\n- net: dsa: mv88e6xxx: Preserve priority when setting CPU port (networking-stable-20_01_11).\n- net: dsa: tag_qca: fix doubled Tx statistics (networking-stable-20_01_20).\n- net: dst: Force 4-byte alignment of dst_metrics (networking-stable-19_12_28).\n- net: ena: fix napi handler misbehavior when the napi budget is zero (networking-stable-20_01_01).\n- net: ethernet: octeon_mgmt: Account for second possible VLAN header (networking-stable-19_11_10).\n- net: ethernet: ti: cpsw: fix extra rx interrupt (networking-stable-19_12_16).\n- net: fix data-race in neigh_event_send() (networking-stable-19_11_10).\n- net: hisilicon: Fix a BUG trigered by wrong bytes_compl (networking-stable-19_12_28).\n- net: hns3: fix ETS bandwidth validation bug (bsc#1104353 ).\n- net: hns3: fix a copying IPv6 address error in hclge_fd_get_flow_tuples() (bsc#1104353).\n- net: hns: fix soft lockup when there is not enough memory (networking-stable-20_01_20).\n- net: hsr: fix possible NULL deref in hsr_handle_frame() (networking-stable-20_02_05).\n- net: ip6_gre: fix moving ip6gre between namespaces (networking-stable-20_01_27).\n- net: nfc: nci: fix a possible sleep-in-atomic-context bug in nci_uart_tty_receive() (networking-stable-19_12_28).\n- net: phy: Check against net_device being NULL (bsc#1051510).\n- net: phy: Fix not to call phy_resume() if PHY is not attached (bsc#1051510).\n- net: phy: Fix the register offsets in Broadcom iProc mdio mux driver (bsc#1051510).\n- net: phy: at803x: Change error to EINVAL for invalid MAC (bsc#1051510).\n- net: phy: broadcom: Use strlcpy() for ethtool::get_strings (bsc#1051510).\n- net: phy: dp83867: Set up RGMII TX delay (bsc#1051510).\n- net: phy: fixed_phy: Fix fixed_phy not checking GPIO (bsc#1051510).\n- net: phy: marvell: Use strlcpy() for ethtool::get_strings (bsc#1051510).\n- net: phy: marvell: clear wol event before setting it (bsc#1051510).\n- net: phy: meson-gxl: check phy_write return value (bsc#1051510).\n- net: phy: micrel: Use strlcpy() for ethtool::get_strings (bsc#1051510).\n- net: phy: mscc: read \u0027vsc8531, edge-slowdown\u0027 as an u32 (bsc#1051510).\n- net: phy: mscc: read \u0027vsc8531,vddmac\u0027 as an u32 (bsc#1051510).\n- net: phy: xgene: disable clk on error paths (bsc#1051510).\n- net: phy: xgmiitorgmii: Check phy_driver ready before accessing (bsc#1051510).\n- net: phy: xgmiitorgmii: Check read_status results (bsc#1051510).\n- net: phy: xgmiitorgmii: Support generic PHY status read (bsc#1051510).\n- net: psample: fix skb_over_panic (networking-stable-19_12_03).\n- net: qlogic: Fix error paths in ql_alloc_large_buffers() (networking-stable-19_12_28).\n- net: rtnetlink: prevent underflows in do_setvfinfo() (networking-stable-19_11_25).\n- net: rtnetlink: validate IFLA_MTU attribute in rtnl_create_link() (networking-stable-20_01_27).\n- net: sch_prio: When ungrafting, replace with FIFO (networking-stable-20_01_11).\n- net: sched: correct flower port blocking (git-fixes).\n- net: sched: ensure opts_len \u003c= IP_TUNNEL_OPTS_MAX in act_tunnel_key (bsc#1109837).\n- net: sched: fix `tc -s class show` no bstats on class with nolock subqueues (networking-stable-19_12_03).\n- net: sched: fix dump qlen for sch_mq/sch_mqprio with NOLOCK subqueues (bsc#1109837).\n- net: stmmac: Delete txtimer in suspend() (networking-stable-20_02_05).\n- net: stmmac: dwmac-sunxi: Allow all RGMII modes (networking-stable-20_01_11).\n- net: usb: lan78xx: Add .ndo_features_check (networking-stable-20_01_27).\n- net: usb: lan78xx: Fix suspend/resume PHY register access error (networking-stable-19_12_28).\n- net: usb: lan78xx: fix possible skb leak (networking-stable-20_01_11).\n- net: usb: lan78xx: limit size of local TSO packets (bsc#1051510).\n- net: usb: qmi_wwan: add support for DW5821e with eSIM support (networking-stable-19_11_10).\n- net: usb: qmi_wwan: add support for Foxconn T77W968 LTE modules (networking-stable-19_11_18).\n- net_sched: ematch: reject invalid TCF_EM_SIMPLE (networking-stable-20_01_30).\n- net_sched: fix an OOB access in cls_tcindex (networking-stable-20_02_05).\n- net_sched: fix datalen for ematch (networking-stable-20_01_27).\n- netfilter: nf_queue: enqueue skbs with NULL dst (git-fixes).\n- new helper: lookup_positive_unlocked() (bsc#1159271).\n- nvme: fix the parameter order for nvme_get_log in nvme_get_fw_slot_info (bsc#1163774).\n- openvswitch: drop unneeded BUG_ON() in ovs_flow_cmd_build_info() (networking-stable-19_12_03).\n- openvswitch: remove another BUG_ON() (networking-stable-19_12_03).\n- openvswitch: support asymmetric conntrack (networking-stable-19_12_16).\n- orinoco_usb: fix interface sanity check (git-fixes).\n- percpu: Separate decrypted varaibles anytime encryption can be enabled (bsc#1114279).\n- perf/x86/intel: Fix inaccurate period in context switch for auto-reload (bsc#1164315).\n- phy: qualcomm: Adjust indentation in read_poll_timeout (bsc#1051510).\n- pinctrl: cherryview: Fix irq_valid_mask calculation (bsc#1111666).\n- pinctrl: qcom: ssbi-gpio: fix gpio-hog related boot issues (bsc#1051510).\n- pinctrl: sh-pfc: r8a7778: Fix duplicate SDSELF_B and SD1_CLK_B (bsc#1051510).\n- pinctrl: xway: fix gpio-hog related boot issues (bsc#1051510).\n- pkt_sched: fq: do not accept silly TCA_FQ_QUANTUM (networking-stable-20_01_11).\n- pktcdvd: remove warning on attempting to register non-passthrough dev (bsc#1051510).\n- platform/mellanox: fix potential deadlock in the tmfifo driver (bsc#1136333 jsc#SLE-4994).\n- platform/x86: asus-wmi: Fix keyboard brightness cannot be set to 0 (bsc#1051510).\n- platform/x86: hp-wmi: Fix ACPI errors caused by passing 0 as input size (bsc#1051510).\n- platform/x86: hp-wmi: Fix ACPI errors caused by too small buffer (bsc#1051510).\n- platform/x86: hp-wmi: Make buffer for HPWMI_FEATURE2_QUERY 128 bytes (bsc#1051510).\n- platform/x86: pmc_atom: Add Siemens CONNECT X300 to critclk_systems DMI table (bsc#1051510).\n- power: supply: ltc2941-battery-gauge: fix use-after-free (bsc#1051510).\n- powerpc/archrandom: fix arch_get_random_seed_int() (bsc#1065729).\n- powerpc/irq: fix stack overflow verification (bsc#1065729).\n- powerpc/mm: Remove kvm radix prefetch workaround for Power9 DD2.2 (bsc#1061840).\n- powerpc/mm: drop #ifdef CONFIG_MMU in is_ioremap_addr() (bsc#1065729).\n- powerpc/papr_scm: Do not enable direct map for a region by default (bsc#1129551).\n- powerpc/papr_scm: Fix leaking \u0027bus_desc.provider_name\u0027 in some paths (bsc#1142685 ltc#179509).\n- powerpc/pkeys: remove unused pkey_allows_readwrite (bsc#1065729).\n- powerpc/powernv: Disable native PCIe port management (bsc#1065729).\n- powerpc/pseries/hotplug-memory: Change rc variable to bool (bsc#1065729).\n- powerpc/pseries/lparcfg: Fix display of Maximum Memory (bsc#1162028 ltc#181740).\n- powerpc/pseries/memory-hotplug: Only update DT once per memory DLPAR request (bsc#1165404 ltc#183498).\n- powerpc/pseries/mobility: notify network peers after migration (bsc#1152631 ltc#181798).\n- powerpc/pseries/vio: Fix iommu_table use-after-free refcount warning (bsc#1065729).\n- powerpc/pseries: Add cpu DLPAR support for drc-info property (bsc#1157480 ltc#181028).\n- powerpc/pseries: Advance pfn if section is not present in lmb_is_removable() (bsc#1065729).\n- powerpc/pseries: Allow not having ibm, hypertas-functions::hcall-multi-tce for DDW (bsc#1065729).\n- powerpc/pseries: Avoid NULL pointer dereference when drmem is unavailable (bsc#1160659).\n- powerpc/pseries: Drop pointless static qualifier in vpa_debugfs_init() (git-fixes).\n- powerpc/pseries: Enable support for ibm,drc-info property (bsc#1157480 ltc#181028).\n- powerpc/pseries: Fix bad drc_index_start value parsing of drc-info entry (bsc#1157480 ltc#181028).\n- powerpc/pseries: Fix drc-info mappings of logical cpus to drc-index (bsc#1157480 ltc#181028).\n- powerpc/pseries: Fix vector5 in ibm architecture vector table (bsc#1157480 ltc#181028).\n- powerpc/pseries: Revert support for ibm,drc-info devtree property (bsc#1157480 ltc#181028).\n- powerpc/pseries: group lmb operation and memblock\u0027s (bsc#1165404 ltc#183498).\n- powerpc/pseries: update device tree before ejecting hotplug uevents (bsc#1165404 ltc#183498).\n- powerpc/security: Fix debugfs data leak on 32-bit (bsc#1065729).\n- powerpc/smp: Use nid as fallback for package_id (bsc#1165813 ltc#184091).\n- powerpc/tm: Fix clearing MSR[TS] in current when reclaiming on signal delivery (bsc#1118338 ltc#173734).\n- powerpc/tools: Do not quote $objdump in scripts (bsc#1065729).\n- powerpc/xive: Discard ESB load value when interrupt is invalid (bsc#1085030).\n- powerpc/xive: Skip ioremap() of ESB pages for LSI interrupts (bsc#1085030).\n- powerpc/xmon: do not access ASDR in VMs (bsc#1065729).\n- powerpc: Allow 64bit VDSO __kernel_sync_dicache to work across ranges \u003e4GB (bnc#1151927 5.3.17).\n- powerpc: Allow flush_icache_range to work across ranges \u003e4GB (bnc#1151927 5.3.17).\n- powerpc: Enable support for ibm,drc-info devtree property (bsc#1157480 ltc#181028).\n- powerpc: Fix vDSO clock_getres() (bsc#1065729).\n- powerpc: avoid adjusting memory_limit for capture kernel memory reservation (bsc#1140025 ltc#176086).\n- powerpc: reserve memory for capture kernel after hugepages init (bsc#1140025 ltc#176086).\n- ppp: Adjust indentation into ppp_async_input (git-fixes).\n- prevent active file list thrashing due to refault detection (VM Performance, bsc#1156286).\n- pseries/drc-info: Search DRC properties for CPU indexes (bsc#1157480 ltc#181028).\n- pstore/ram: Write new dumps to start of recycled zones (bsc#1051510).\n- ptr_ring: add include of linux/mm.h (bsc#1109837).\n- pwm: Clear chip_data in pwm_put() (bsc#1051510).\n- pwm: Remove set but not set variable \u0027pwm\u0027 (git-fixes).\n- pwm: clps711x: Fix period calculation (bsc#1051510).\n- pwm: omap-dmtimer: Remove PWM chip in .remove before making it unfunctional (git-fixes).\n- pxa168fb: Fix the function used to release some memory in an error (bsc#1114279)\n- qede: Disable hardware gro when xdp prog is installed (bsc#1086314 bsc#1086313 bsc#1086301 ).\n- qede: Fix multicast mac configuration (networking-stable-19_12_28).\n- qede: fix NULL pointer deref in __qede_remove() (networking-stable-19_11_10).\n- qmi_wwan: Add support for Quectel RM500Q (bsc#1051510).\n- quota: Check that quota is not dirty before release (bsc#1163858).\n- quota: fix livelock in dquot_writeback_dquots (bsc#1163857).\n- r8152: add missing endpoint sanity check (bsc#1051510).\n- r8152: get default setting of WOL before initializing (bsc#1051510).\n- random: move FIPS continuous test to output functions (bsc#1155334).\n- regulator: Fix return value of _set_load() stub (bsc#1051510).\n- regulator: rk808: Lower log level on optional GPIOs being not available (bsc#1051510).\n- regulator: rn5t618: fix module aliases (bsc#1051510).\n- regulator: tps65910: fix a missing check of return value (bsc#1051510).\n- reiserfs: Fix memory leak of journal device string (bsc#1163867).\n- reiserfs: Fix spurious unlock in reiserfs_fill_super() error handling (bsc#1163869).\n- reset: fix reset_control_ops kerneldoc comment (bsc#1051510).\n- resource: fix locking in find_next_iomem_res() (bsc#1114279).\n- rpm/kabi.pl: support new (\u003e=5.4) Module.symvers format (new symbol namespace field)\n- rpm/kernel-binary.spec.in: Conflict with too old powerpc-utils (jsc#ECO-920, jsc#SLE-11054, jsc#SLE-11322).\n- rpm/kernel-subpackage-spec: Exclude kernel-firmware recommends (bsc#1143959) For reducing the dependency on kernel-firmware in sub packages\n- rpm/kernel-subpackage-spec: Fix empty Recommends tag (bsc#1143959)\n- rpm/modules.fips: update module list (bsc#1157853)\n- rsi_91x_usb: fix interface sanity check (git-fixes).\n- rtc: cmos: Stop using shared IRQ (bsc#1051510).\n- rtc: dt-binding: abx80x: fix resistance scale (bsc#1051510).\n- rtc: hym8563: Return -EINVAL if the time is known to be invalid (bsc#1051510).\n- rtc: max8997: Fix the returned value in case of error in \u0027max8997_rtc_read_alarm()\u0027 (bsc#1051510).\n- rtc: msm6242: Fix reading of 10-hour digit (bsc#1051510).\n- rtc: pcf8523: set xtal load capacitance from DT (bsc#1051510).\n- rtc: s35390a: Change buf\u0027s type to u8 in s35390a_init (bsc#1051510).\n- rtl818x: fix potential use after free (bsc#1051510).\n- rtl8xxxu: fix interface sanity check (git-fixes).\n- rtlwifi: Fix MAX MPDU of VHT capability (git-fixes).\n- rtlwifi: Remove redundant semicolon in wifi.h (git-fixes).\n- rtlwifi: rtl8192de: Fix missing callback that tests for hw release of buffer (bsc#1111666).\n- rxrpc: Fix insufficient receive notification generation (networking-stable-20_02_05).\n- s390/qeth: clean up page frag creation (git-fixes).\n- s390/qeth: consolidate skb allocation (git-fixes).\n- s390/qeth: ensure linear access to packet headers (git-fixes).\n- s390/qeth: guard against runt packets (git-fixes).\n- sched/fair: Add tmp_alone_branch assertion (bnc#1156462).\n- sched/fair: Fix O(nr_cgroups) in the load balancing path (bnc#1156462).\n- sched/fair: Fix insertion in rq-\u003eleaf_cfs_rq_list (bnc#1156462).\n- sched/fair: Optimize update_blocked_averages() (bnc#1156462).\n- sched/fair: WARN() and refuse to set buddy when !se-\u003eon_rq (bsc#1158132).\n- scsi-qla2xxx-Fix-qla2x00_request_irqs-for-MSI.patch\n- scsi-qla2xxx-fix-rports-not-being-mark-as-lost-in-sy.patch\n- scsi-qla2xxx-unregister-ports-after-GPN_FT-failure.patch\n- scsi: fnic: do not queue commands during fwreset (bsc#1146539).\n- scsi: ibmvfc: Add failed PRLI to cmd_status lookup array (bsc#1161951 ltc#183551).\n- scsi: ibmvfc: Avoid loss of all paths during SVC node reboot (bsc#1161951 ltc#183551).\n- scsi: ibmvfc: Byte swap status and error codes when logging (bsc#1161951 ltc#183551).\n- scsi: ibmvfc: Clean up transport events (bsc#1161951 ltc#183551).\n- scsi: ibmvfc: Do not call fc_block_scsi_eh() on host reset (bsc#1161951 ltc#183551).\n- scsi: ibmvfc: Mark expected switch fall-throughs (bsc#1161951 ltc#183551).\n- scsi: ibmvfc: Remove \u0027failed\u0027 from logged errors (bsc#1161951 ltc#183551).\n- scsi: ibmvfc: Remove unneeded semicolons (bsc#1161951 ltc#183551).\n- scsi: ibmvfc: constify dev_pm_ops structures (bsc#1161951 ltc#183551).\n- scsi: ibmvfc: ibmvscsi: ibmvscsi_tgt: constify vio_device_id (bsc#1161951 ltc#183551).\n- scsi: ibmvscsi: Do not use rc uninitialized in ibmvscsi_do_work (bsc#1161951 ltc#183551).\n- scsi: ibmvscsi: Improve strings handling (bsc#1161951 ltc#183551).\n- scsi: ibmvscsi: Wire up host_reset() in the driver\u0027s scsi_host_template (bsc#1161951 ltc#183551).\n- scsi: ibmvscsi: change strncpy+truncation to strlcpy (bsc#1161951 ltc#183551).\n- scsi: ibmvscsi: constify dev_pm_ops structures (bsc#1161951 ltc#183551).\n- scsi: ibmvscsi: fix tripping of blk_mq_run_hw_queue WARN_ON (bsc#1161951 ltc#183551).\n- scsi: ibmvscsi: redo driver work thread to use enum action states (bsc#1161951 ltc#183551).\n- scsi: lpfc: fix build failure with DEBUGFS disabled (bsc#1154601).\n- scsi: qla2xxx: Add 16.0GT for PCI String (bsc#1157424).\n- scsi: qla2xxx: Add D-Port Diagnostic reason explanation logs (bsc#1158013).\n- scsi: qla2xxx: Add a shadow variable to hold disc_state history of fcport (bsc#1158013).\n- scsi: qla2xxx: Add beacon LED config sysfs interface (bsc#1157424).\n- scsi: qla2xxx: Add changes in preparation for vendor extended FDMI/RDP (bsc#1157424).\n- scsi: qla2xxx: Add deferred queue for processing ABTS and RDP (bsc#1157424).\n- scsi: qla2xxx: Add endianizer macro calls to fc host stats (bsc#1157424).\n- scsi: qla2xxx: Add fixes for mailbox command (bsc#1157424).\n- scsi: qla2xxx: Add ql2xrdpenable module parameter for RDP (bsc#1157424).\n- scsi: qla2xxx: Add sysfs node for D-Port Diagnostics AEN data (bsc#1157424).\n- scsi: qla2xxx: Add vendor extended FDMI commands (bsc#1157424).\n- scsi: qla2xxx: Add vendor extended RDP additions and amendments (bsc#1157424).\n- scsi: qla2xxx: Added support for MPI and PEP regions for ISP28XX (bsc#1157424, bsc#1157908, bsc#1157169, bsc#1151548).\n- scsi: qla2xxx: Avoid setting firmware options twice in 24xx_update_fw_options (bsc#1157424).\n- scsi: qla2xxx: Check locking assumptions at runtime in qla2x00_abort_srb() (bsc#1157424).\n- scsi: qla2xxx: Cleanup ELS/PUREX iocb fields (bsc#1157424).\n- scsi: qla2xxx: Cleanup unused async_logout_done (bsc#1158013).\n- scsi: qla2xxx: Consolidate fabric scan (bsc#1158013).\n- scsi: qla2xxx: Convert MAKE_HANDLE() from a define into an inline function (bsc#1157424).\n- scsi: qla2xxx: Correct fcport flags handling (bsc#1158013).\n- scsi: qla2xxx: Correction to selection of loopback/echo test (bsc#1157424).\n- scsi: qla2xxx: Correctly retrieve and interpret active flash region (bsc#1157424, bsc#1157908, bsc#1157169, bsc#1151548).\n- scsi: qla2xxx: Display message for FCE enabled (bsc#1157424).\n- scsi: qla2xxx: Fix FCP-SCSI FC4 flag passing error (bsc#1157424).\n- scsi: qla2xxx: Fix NPIV instantiation after FW dump (bsc#1157424).\n- scsi: qla2xxx: Fix RDP respond data format (bsc#1157424).\n- scsi: qla2xxx: Fix RDP response size (bsc#1157424).\n- scsi: qla2xxx: Fix RIDA Format-2 (bsc#1158013).\n- scsi: qla2xxx: Fix a NULL pointer dereference in an error path (bsc#1157966 bsc#1158013 bsc#1157424).\n- scsi: qla2xxx: Fix control flags for login/logout IOCB (bsc#1157424).\n- scsi: qla2xxx: Fix fabric scan hang (bsc#1158013).\n- scsi: qla2xxx: Fix incorrect SFUB length used for Secure Flash Update MB Cmd (bsc#1157424, bsc#1157908, bsc#1157169, bsc#1151548).\n- scsi: qla2xxx: Fix mtcp dump collection failure (bsc#1158013).\n- scsi: qla2xxx: Fix qla2x00_echo_test() based on ISP type (bsc#1157424).\n- scsi: qla2xxx: Fix sparse warning reported by kbuild bot (bsc#1157424).\n- scsi: qla2xxx: Fix sparse warnings triggered by the PCI state checking code (bsc#1157424).\n- scsi: qla2xxx: Fix stuck login session using prli_pend_timer (bsc#1158013).\n- scsi: qla2xxx: Fix stuck session in GNL (bsc#1158013).\n- scsi: qla2xxx: Fix the endianness of the qla82xx_get_fw_size() return type (bsc#1158013).\n- scsi: qla2xxx: Fix unbound NVME response length (bsc#1157966 bsc#1158013 bsc#1157424).\n- scsi: qla2xxx: Fix update_fcport for current_topology (bsc#1158013).\n- scsi: qla2xxx: Force semaphore on flash validation failure (bsc#1157424).\n- scsi: qla2xxx: Handle NVME status iocb correctly (bsc#1157424).\n- scsi: qla2xxx: Handle cases for limiting RDP response payload length (bsc#1157424).\n- scsi: qla2xxx: Improve readability of the code that handles qla_flt_header (bsc#1158013).\n- scsi: qla2xxx: Improved secure flash support messages (bsc#1157424).\n- scsi: qla2xxx: Move free of fcport out of interrupt context (bsc#1157424).\n- scsi: qla2xxx: Print portname for logging in qla24xx_logio_entry() (bsc#1157424).\n- scsi: qla2xxx: Remove defer flag to indicate immeadiate port loss (bsc#1158013).\n- scsi: qla2xxx: Remove restriction of FC T10-PI and FC-NVMe (bsc#1157424).\n- scsi: qla2xxx: Return appropriate failure through BSG Interface (bsc#1157424).\n- scsi: qla2xxx: Save rscn_gen for new fcport (bsc#1157424).\n- scsi: qla2xxx: Serialize fc_port alloc in N2N (bsc#1157424).\n- scsi: qla2xxx: Set Nport ID for N2N (bsc#1157424).\n- scsi: qla2xxx: Show correct port speed capabilities for RDP command (bsc#1157424).\n- scsi: qla2xxx: Simplify the code for aborting SCSI commands (bsc#1157424).\n- scsi: qla2xxx: Suppress endianness complaints in qla2x00_configure_local_loop() (bsc#1157424).\n- scsi: qla2xxx: Update BPM enablement semantics (bsc#1157424).\n- scsi: qla2xxx: Update driver version to 10.01.00.22-k (bsc#1158013).\n- scsi: qla2xxx: Update driver version to 10.01.00.24-k (bsc#1157424).\n- scsi: qla2xxx: Update driver version to 10.01.00.25-k (bsc#1157424).\n- scsi: qla2xxx: Use FC generic update firmware options routine for ISP27xx (bsc#1157424).\n- scsi: qla2xxx: Use QLA_FW_STOPPED macro to propagate flag (bsc#1157424).\n- scsi: qla2xxx: Use a dedicated interrupt handler for \u0027handshake-required\u0027 ISPs (bsc#1157424).\n- scsi: qla2xxx: Use common routine to free fcport struct (bsc#1158013).\n- scsi: qla2xxx: Use correct ISP28xx active FW region (bsc#1157424).\n- scsi: qla2xxx: Use endian macros to assign static fields in fwdump header (bsc#1157424).\n- scsi: qla2xxx: Use get_unaligned_*() instead of open-coding these functions (bsc#1158013).\n- scsi: qla2xxx: add more FW debug information (bsc#1157424).\n- scsi: qla2xxx: fix FW resource count values (bsc#1157424).\n- scsi: tcm_qla2xxx: Make qlt_alloc_qfull_cmd() set cmd-\u003ese_cmd.map_tag (bsc#1157424).\n- scsi: zfcp: trace channel log even for FCP command responses (git-fixes).\n- sctp: cache netns in sctp_ep_common (networking-stable-19_12_03).\n- sctp: free cmd-\u003eobj.chunk for the unprocessed SCTP_CMD_REPLY (networking-stable-20_01_11).\n- sctp: fully initialize v4 addr in some functions (networking-stable-19_12_28).\n- serial: 8250_bcm2835aux: Fix line mismatch on driver unbind (bsc#1051510).\n- serial: ifx6x60: add missed pm_runtime_disable (bsc#1051510).\n- serial: max310x: Fix tx_empty() callback (bsc#1051510).\n- serial: pl011: Fix DMA -\u003eflush_buffer() (bsc#1051510).\n- serial: serial_core: Perform NULL checks for break_ctl ops (bsc#1051510).\n- serial: stm32: fix transmit_chars when tx is stopped (bsc#1051510).\n- sfc: Only cancel the PPS workqueue if it exists (networking-stable-19_11_25).\n- sfc: Remove \u0027PCIE error reporting unavailable\u0027 (bsc#1161472).\n- sh_eth: TSU_QTAG0/1 registers the same as TSU_QTAGM0/1 (bsc#1051510).\n- sh_eth: check sh_eth_cpu_data::dual_port when dumping registers (bsc#1051510).\n- sh_eth: fix TSU init on SH7734/R8A7740 (bsc#1051510).\n- sh_eth: fix TXALCR1 offsets (bsc#1051510).\n- sh_eth: fix dumping ARSTR (bsc#1051510).\n- sh_eth: fix invalid context bug while calling auto-negotiation by ethtool (bsc#1051510).\n- sh_eth: fix invalid context bug while changing link options by ethtool (bsc#1051510).\n- smb3: Add defines for new information level, FileIdInformation (bsc#1144333).\n- smb3: Add missing reparse tags (bsc#1144333).\n- smb3: Fix regression in time handling (bsc#1144333).\n- smb3: add debug messages for closing unmatched open (bsc#1144333).\n- smb3: add dynamic tracepoints for flush and close (bsc#1144333).\n- smb3: add missing flag definitions (bsc#1144333).\n- smb3: add missing worker function for SMB3 change notify (bsc#1144333).\n- smb3: add mount option to allow RW caching of share accessed by only 1 client (bsc#1144333).\n- smb3: add mount option to allow forced caching of read only share (bsc#1144333).\n- smb3: add one more dynamic tracepoint missing from strict fsync path (bsc#1144333).\n- smb3: add some more descriptive messages about share when mounting cache=ro (bsc#1144333).\n- smb3: allow decryption keys to be dumped by admin for debugging (bsc#1144333).\n- smb3: allow disabling requesting leases (bsc#1144333).\n- smb3: allow parallelizing decryption of reads (bsc#1144333).\n- smb3: allow skipping signature verification for perf sensitive configurations (bsc#1144333).\n- smb3: cleanup some recent endian errors spotted by updated sparse (bsc#1144333).\n- smb3: display max smb3 requests in flight at any one time (bsc#1144333).\n- smb3: dump in_send and num_waiters stats counters by default (bsc#1144333).\n- smb3: enable offload of decryption of large reads via mount option (bsc#1144333).\n- smb3: fix default permissions on new files when mounting with modefromsid (bsc#1144333).\n- smb3: fix mode passed in on create for modetosid mount option (bsc#1144333).\n- smb3: fix performance regression with setting mtime (bsc#1144333).\n- smb3: fix potential null dereference in decrypt offload (bsc#1144333).\n- smb3: fix problem with null cifs super block with previous patch (bsc#1144333).\n- smb3: fix refcount underflow warning on unmount when no directory leases (bsc#1144333).\n- smb3: improve check for when we send the security descriptor context on create (bsc#1144333).\n- smb3: log warning if CSC policy conflicts with cache mount option (bsc#1144333).\n- smb3: missing ACL related flags (bsc#1144333).\n- smb3: only offload decryption of read responses if multiple requests (bsc#1144333).\n- smb3: pass mode bits into create calls (bsc#1144333).\n- smb3: query attributes on file close (bsc#1144333).\n- smb3: remove confusing dmesg when mounting with encryption (\u0027seal\u0027) (bsc#1144333).\n- smb3: remove noisy debug message and minor cleanup (bsc#1144333).\n- smb3: remove unused flag passed into close functions (bsc#1144333).\n- soc/tegra: fuse: Correct straps\u0027 address for older Tegra124 device trees (bsc#1051510).\n- soc: renesas: rcar-sysc: Add goto to of_node_put() before return (bsc#1051510).\n- soc: ti: wkup_m3_ipc: Fix race condition with rproc_boot (bsc#1051510).\n- spi: omap2-mcspi: Fix DMA and FIFO event trigger size mismatch (bsc#1051510).\n- spi: omap2-mcspi: Set FIFO DMA trigger level to word length (bsc#1051510).\n- spi: tegra114: clear packed bit for unpacked mode (bsc#1051510).\n- spi: tegra114: configure dma burst size to fifo trig level (bsc#1051510).\n- spi: tegra114: fix for unpacked mode transfers (bsc#1051510).\n- spi: tegra114: flush fifos (bsc#1051510).\n- spi: tegra114: terminate dma and reset on transfer timeout (bsc#1051510).\n- sr_vendor: support Beurer GL50 evo CD-on-a-chip devices (boo#1164632).\n- staging: comedi: adv_pci1710: fix AI channels 16-31 for PCI-1713 (bsc#1051510).\n- staging: rtl8188eu: fix interface sanity check (bsc#1051510).\n- staging: rtl8192e: fix potential use after free (bsc#1051510).\n- staging: rtl8723bs: Add 024c:0525 to the list of SDIO device-ids (bsc#1051510).\n- staging: rtl8723bs: Drop ACPI device ids (bsc#1051510).\n- staging: vt6656: Fix false Tx excessive retries reporting (bsc#1051510).\n- staging: vt6656: correct packet types for CTS protect, mode (bsc#1051510).\n- staging: vt6656: use NULLFUCTION stack on mac80211 (bsc#1051510).\n- staging: wlan-ng: ensure error return is actually returned (bsc#1051510).\n- stm class: Fix a double free of stm_source_device (bsc#1051510).\n- stop_machine, sched: Fix migrate_swap() vs. active_balance() deadlock (bsc#1088810, bsc#1161702).\n- stop_machine: Atomically queue and wake stopper threads (bsc#1088810, bsc#1161702).\n- stop_machine: Disable preemption after queueing stopper threads (bsc#1088810, bsc#1161702).\n- stop_machine: Disable preemption when waking two stopper threads (bsc#1088810, bsc#1161702).\n- tcp: clear tp-\u003edata_segs{in|out} in tcp_disconnect() (networking-stable-20_02_05).\n- tcp: clear tp-\u003edelivered in tcp_disconnect() (networking-stable-20_02_05).\n- tcp: clear tp-\u003epackets_out when purging write queue (bsc#1160560).\n- tcp: clear tp-\u003esegs_{in|out} in tcp_disconnect() (networking-stable-20_02_05).\n- tcp: clear tp-\u003etotal_retrans in tcp_disconnect() (networking-stable-20_02_05).\n- tcp: do not send empty skb from tcp_write_xmit() (networking-stable-20_01_01).\n- tcp: exit if nothing to retransmit on RTO timeout (bsc#1160560, stable 4.14.159).\n- tcp: fix \u0027old stuff\u0027 D-SACK causing SACK to be treated as D-SACK (networking-stable-20_01_11).\n- tcp: fix marked lost packets not being retransmitted (networking-stable-20_01_20).\n- tcp: md5: fix potential overestimation of TCP option space (networking-stable-19_12_16).\n- tcp_bbr: improve arithmetic division in bbr_update_bw() (networking-stable-20_01_27).\n- thermal: Fix deadlock in thermal thermal_zone_device_check (bsc#1051510).\n- thunderbolt: Prevent crash if non-active NVMem file is read (git-fixes).\n- tipc: fix a missing check of genlmsg_put (bsc#1051510).\n- tipc: fix link name length check (bsc#1051510).\n- tipc: fix memory leak in tipc_nl_compat_publ_dump (bsc#1051510).\n- tipc: fix skb may be leaky in tipc_link_input (bsc#1051510).\n- tools lib traceevent: Do not free tep-\u003ecmdlines in add_new_comm() on failure (git-fixes).\n- tracing: Annotate ftrace_graph_hash pointer with __rcu (git-fixes).\n- tracing: Annotate ftrace_graph_notrace_hash pointer with __rcu (git-fixes).\n- tracing: Fix tracing_stat return values in error handling paths (git-fixes).\n- tracing: Fix very unlikely race of registering two stat tracers (git-fixes).\n- tracing: Have the histogram compare functions convert to u64 first (bsc#1160210).\n- tracing: xen: Ordered comparison of function pointers (git-fixes).\n- tty/serial: atmel: Add is_half_duplex helper (bsc#1051510).\n- tty: n_hdlc: fix build on SPARC (bsc#1051510).\n- tty: serial: msm_serial: Fix lockup for sysrq and oops (bsc#1051510).\n- tty: vt: keyboard: reject invalid keycodes (bsc#1051510).\n- ttyprintk: fix a potential deadlock in interrupt context issue (git-fixes).\n- tun: add mutex_unlock() call and napi.skb clearing in tun_get_user() (bsc#1109837).\n- uaccess: Add non-pagefault user-space write function (bsc#1083647).\n- ubifs: Fix FS_IOC_SETFLAGS unexpectedly clearing encrypt flag (bsc#1163855).\n- ubifs: Fix deadlock in concurrent bulk-read and writepage (bsc#1163856).\n- ubifs: Reject unsupported ioctl flags explicitly (bsc#1163844).\n- ubifs: do not trigger assertion on invalid no-key filename (bsc#1163850).\n- udp: fix integer overflow while computing available space in sk_rcvbuf (networking-stable-20_01_01).\n- usb-storage: Disable UAS on JMicron SATA enclosure (bsc#1051510).\n- usb: Allow USB device to be warm reset in suspended state (bsc#1051510).\n- usb: chipidea: host: Disable port power only if previously enabled (bsc#1051510).\n- usb: core: hub: Improved device recognition on remote wakeup (bsc#1051510).\n- usb: core: urb: fix URB structure initialization function (bsc#1051510).\n- usb: dwc3: debugfs: Properly print/set link state for HS (bsc#1051510).\n- usb: dwc3: do not log probe deferrals; but do log other error codes (bsc#1051510).\n- usb: dwc3: ep0: Clear started flag on completion (bsc#1051510).\n- usb: dwc3: turn off VBUS when leaving host mode (bsc#1051510).\n- usb: gadget: Zero ffs_io_data (bsc#1051510).\n- usb: gadget: f_ecm: Use atomic_t to track in-flight request (bsc#1051510).\n- usb: gadget: f_ncm: Use atomic_t to track in-flight request (bsc#1051510).\n- usb: gadget: legacy: set max_speed to super-speed (bsc#1051510).\n- usb: gadget: pch_udc: fix use after free (bsc#1051510).\n- usb: gadget: u_serial: add missing port entry locking (bsc#1051510).\n- usb: host: xhci-hub: fix extra endianness conversion (bsc#1051510).\n- usb: mon: Fix a deadlock in usbmon between mmap and read (bsc#1051510).\n- usb: mtu3: fix dbginfo in qmu_tx_zlp_error_handler (bsc#1051510).\n- usb: musb: dma: Correct parameter passed to IRQ handler (bsc#1051510).\n- usb: musb: fix idling for suspend after disconnect interrupt (bsc#1051510).\n- usb: roles: fix a potential use after free (git-fixes).\n- usb: typec: tcpci: mask event interrupts when remove driver (bsc#1051510).\n- usb: xhci: Fix build warning seen with CONFIG_PM=n (bsc#1051510).\n- usb: xhci: only set D3hot for pci device (bsc#1051510).\n- usbip: Fix error path of vhci_recv_ret_submit() (git-fixes).\n- usbip: Fix receive error in vhci-hcd when using scatter-gather (bsc#1051510).\n- usbip: Fix uninitialized symbol \u0027nents\u0027 in stub_recv_cmd_submit() (git-fixes).\n- vfs: fix preadv64v2 and pwritev64v2 compat syscalls with offset == -1 (bsc#1051510).\n- vhost/vsock: accept only packets with the right dst_cid (networking-stable-20_01_01).\n- video: backlight: Add devres versions of of_find_backlight (bsc#1090888) Taken for 6010831dde5.\n- video: backlight: Add of_find_backlight helper in backlight.c (bsc#1090888) Taken for 6010831dde5.\n- vlan: fix memory leak in vlan_dev_set_egress_priority (networking-stable-20_01_11).\n- vlan: vlan_changelink() should propagate errors (networking-stable-20_01_11).\n- vxlan: fix tos value before xmit (networking-stable-20_01_11).\n- watchdog: max77620_wdt: fix potential build errors (bsc#1051510).\n- watchdog: rn5t618_wdt: fix module aliases (bsc#1051510).\n- watchdog: sama5d4: fix WDD value to be always set to max (bsc#1051510).\n- watchdog: wdat_wdt: fix get_timeleft call for wdat_wdt (bsc#1162557).\n- wireless: fix enabling channel 12 for custom regulatory domain (bsc#1051510).\n- wireless: wext: avoid gcc -O3 warning (bsc#1051510).\n- workqueue: Fix pwq ref leak in rescuer_thread() (bsc#1160211).\n- x86/MCE/AMD: Allow Reserved types to be overwritten in smca_banks (bsc#1114279).\n- x86/MCE/AMD: Do not use rdmsr_safe_on_cpu() in smca_configure() (bsc#1114279).\n- x86/amd_nb: Add PCI device IDs for family 17h, model 70h (bsc#1163206).\n- x86/cpu: Update cached HLE state on write to TSX_CTRL_CPUID_CLEAR (bsc#1162619).\n- x86/intel_rdt: Split resource group removal in two (bsc#1112178).\n- x86/intel_rdt: Split resource group removal in two (bsc#1112178).\n- x86/kgbd: Use NMI_VECTOR not APIC_DM_NMI (bsc#1114279).\n- x86/mce/AMD: Allow any CPU to initialize the smca_banks array (bsc#1114279).\n- x86/mce: Fix possibly incorrect severity calculation on AMD (bsc#1114279).\n- x86/resctrl: Check monitoring static key in the MBM overflow handler (bsc#1114279).\n- x86/resctrl: Fix a deadlock due to inaccurate reference (bsc#1112178).\n- x86/resctrl: Fix a deadlock due to inaccurate reference (bsc#1112178).\n- x86/resctrl: Fix an imbalance in domain_remove_cpu() (bsc#1114279).\n- x86/resctrl: Fix potential memory leak (bsc#1114279).\n- x86/resctrl: Fix use-after-free due to inaccurate refcount of rdtgroup (bsc#1112178).\n- x86/resctrl: Fix use-after-free due to inaccurate refcount of rdtgroup (bsc#1112178).\n- x86/resctrl: Fix use-after-free when deleting resource groups (bsc#1114279).\n- x86/speculation: Fix incorrect MDS/TAA mitigation status (bsc#1114279).\n- x86/speculation: Fix redundant MDS mitigation message (bsc#1114279).\n- xen-blkfront: switch kcalloc to kvcalloc for large array allocation (bsc#1160917).\n- xen/balloon: Support xend-based toolstack take two (bsc#1065600).\n- xen/blkback: Avoid unmapping unmapped grant pages (bsc#1065600).\n- xen/blkfront: Adjust indentation in xlvbd_alloc_gendisk (bsc#1065600).\n- xen: Enable interrupts when calling _cond_resched() (bsc#1065600).\n- xfrm: Fix transport mode skb control buffer usage (bsc#1161552).\n- xfs: Fix tail rounding in xfs_alloc_file_space() (bsc#1161087, bsc#1153917).\n- xhci: Fix memory leak in xhci_add_in_port() (bsc#1051510).\n- xhci: Increase STS_HALT timeout in xhci_suspend() (bsc#1051510).\n- xhci: fix USB3 device initiated resume race with roothub autosuspend (bsc#1051510).\n- xhci: handle some XHCI_TRUST_TX_LENGTH quirks cases as default behaviour (bsc#1051510).\n- xhci: make sure interrupts are restored to correct state (bsc#1051510).\n- zd1211rw: fix storage endpoint lookup (git-fixes).\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "openSUSE-2020-336",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2020_0336-1.json"
      },
      {
        "category": "self",
        "summary": "URL for openSUSE-SU-2020:0336-1",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/LSSHQFX4IJH5UZIPQACYQ6RIWLLJPS6R/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for openSUSE-SU-2020:0336-1",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/LSSHQFX4IJH5UZIPQACYQ6RIWLLJPS6R/"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1046303",
        "url": "https://bugzilla.suse.com/1046303"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1050244",
        "url": "https://bugzilla.suse.com/1050244"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1050549",
        "url": "https://bugzilla.suse.com/1050549"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1051510",
        "url": "https://bugzilla.suse.com/1051510"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1051858",
        "url": "https://bugzilla.suse.com/1051858"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1060463",
        "url": "https://bugzilla.suse.com/1060463"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1061840",
        "url": "https://bugzilla.suse.com/1061840"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1065600",
        "url": "https://bugzilla.suse.com/1065600"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1065729",
        "url": "https://bugzilla.suse.com/1065729"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1071995",
        "url": "https://bugzilla.suse.com/1071995"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1083647",
        "url": "https://bugzilla.suse.com/1083647"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1085030",
        "url": "https://bugzilla.suse.com/1085030"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1086301",
        "url": "https://bugzilla.suse.com/1086301"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1086313",
        "url": "https://bugzilla.suse.com/1086313"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1086314",
        "url": "https://bugzilla.suse.com/1086314"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1088810",
        "url": "https://bugzilla.suse.com/1088810"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1090888",
        "url": "https://bugzilla.suse.com/1090888"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1103989",
        "url": "https://bugzilla.suse.com/1103989"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1103990",
        "url": "https://bugzilla.suse.com/1103990"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1103991",
        "url": "https://bugzilla.suse.com/1103991"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1103992",
        "url": "https://bugzilla.suse.com/1103992"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1104353",
        "url": "https://bugzilla.suse.com/1104353"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1104427",
        "url": "https://bugzilla.suse.com/1104427"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1104745",
        "url": "https://bugzilla.suse.com/1104745"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1105392",
        "url": "https://bugzilla.suse.com/1105392"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1109837",
        "url": "https://bugzilla.suse.com/1109837"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1111666",
        "url": "https://bugzilla.suse.com/1111666"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112178",
        "url": "https://bugzilla.suse.com/1112178"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112374",
        "url": "https://bugzilla.suse.com/1112374"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1112504",
        "url": "https://bugzilla.suse.com/1112504"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1113956",
        "url": "https://bugzilla.suse.com/1113956"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1114279",
        "url": "https://bugzilla.suse.com/1114279"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1114685",
        "url": "https://bugzilla.suse.com/1114685"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1115026",
        "url": "https://bugzilla.suse.com/1115026"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1118338",
        "url": "https://bugzilla.suse.com/1118338"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1118661",
        "url": "https://bugzilla.suse.com/1118661"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1123328",
        "url": "https://bugzilla.suse.com/1123328"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1126206",
        "url": "https://bugzilla.suse.com/1126206"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1127371",
        "url": "https://bugzilla.suse.com/1127371"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1127611",
        "url": "https://bugzilla.suse.com/1127611"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1127682",
        "url": "https://bugzilla.suse.com/1127682"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1129551",
        "url": "https://bugzilla.suse.com/1129551"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1129770",
        "url": "https://bugzilla.suse.com/1129770"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1133021",
        "url": "https://bugzilla.suse.com/1133021"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1133147",
        "url": "https://bugzilla.suse.com/1133147"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1134090",
        "url": "https://bugzilla.suse.com/1134090"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1134973",
        "url": "https://bugzilla.suse.com/1134973"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1136157",
        "url": "https://bugzilla.suse.com/1136157"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1136333",
        "url": "https://bugzilla.suse.com/1136333"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1140025",
        "url": "https://bugzilla.suse.com/1140025"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1142685",
        "url": "https://bugzilla.suse.com/1142685"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1143959",
        "url": "https://bugzilla.suse.com/1143959"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1144162",
        "url": "https://bugzilla.suse.com/1144162"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1144333",
        "url": "https://bugzilla.suse.com/1144333"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1146539",
        "url": "https://bugzilla.suse.com/1146539"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1151548",
        "url": "https://bugzilla.suse.com/1151548"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1151910",
        "url": "https://bugzilla.suse.com/1151910"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1151927",
        "url": "https://bugzilla.suse.com/1151927"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1152107",
        "url": "https://bugzilla.suse.com/1152107"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1152631",
        "url": "https://bugzilla.suse.com/1152631"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1153535",
        "url": "https://bugzilla.suse.com/1153535"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1153917",
        "url": "https://bugzilla.suse.com/1153917"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1154243",
        "url": "https://bugzilla.suse.com/1154243"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1154601",
        "url": "https://bugzilla.suse.com/1154601"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1154768",
        "url": "https://bugzilla.suse.com/1154768"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1154916",
        "url": "https://bugzilla.suse.com/1154916"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1155331",
        "url": "https://bugzilla.suse.com/1155331"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1155334",
        "url": "https://bugzilla.suse.com/1155334"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1155689",
        "url": "https://bugzilla.suse.com/1155689"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1156259",
        "url": "https://bugzilla.suse.com/1156259"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1156286",
        "url": "https://bugzilla.suse.com/1156286"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1156462",
        "url": "https://bugzilla.suse.com/1156462"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1157155",
        "url": "https://bugzilla.suse.com/1157155"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1157157",
        "url": "https://bugzilla.suse.com/1157157"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1157169",
        "url": "https://bugzilla.suse.com/1157169"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1157303",
        "url": "https://bugzilla.suse.com/1157303"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1157424",
        "url": "https://bugzilla.suse.com/1157424"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1157480",
        "url": "https://bugzilla.suse.com/1157480"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1157692",
        "url": "https://bugzilla.suse.com/1157692"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1157853",
        "url": "https://bugzilla.suse.com/1157853"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1157895",
        "url": "https://bugzilla.suse.com/1157895"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1157908",
        "url": "https://bugzilla.suse.com/1157908"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1157966",
        "url": "https://bugzilla.suse.com/1157966"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1158013",
        "url": "https://bugzilla.suse.com/1158013"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1158021",
        "url": "https://bugzilla.suse.com/1158021"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1158026",
        "url": "https://bugzilla.suse.com/1158026"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1158071",
        "url": "https://bugzilla.suse.com/1158071"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1158094",
        "url": "https://bugzilla.suse.com/1158094"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1158132",
        "url": "https://bugzilla.suse.com/1158132"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1158533",
        "url": "https://bugzilla.suse.com/1158533"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1158819",
        "url": "https://bugzilla.suse.com/1158819"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1158823",
        "url": "https://bugzilla.suse.com/1158823"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1158824",
        "url": "https://bugzilla.suse.com/1158824"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1158827",
        "url": "https://bugzilla.suse.com/1158827"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1158834",
        "url": "https://bugzilla.suse.com/1158834"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1158893",
        "url": "https://bugzilla.suse.com/1158893"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1158900",
        "url": "https://bugzilla.suse.com/1158900"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1158903",
        "url": "https://bugzilla.suse.com/1158903"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1158904",
        "url": "https://bugzilla.suse.com/1158904"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1158954",
        "url": "https://bugzilla.suse.com/1158954"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1159024",
        "url": "https://bugzilla.suse.com/1159024"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1159028",
        "url": "https://bugzilla.suse.com/1159028"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1159271",
        "url": "https://bugzilla.suse.com/1159271"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1159297",
        "url": "https://bugzilla.suse.com/1159297"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1159377",
        "url": "https://bugzilla.suse.com/1159377"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1159394",
        "url": "https://bugzilla.suse.com/1159394"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1159483",
        "url": "https://bugzilla.suse.com/1159483"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1159484",
        "url": "https://bugzilla.suse.com/1159484"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1159500",
        "url": "https://bugzilla.suse.com/1159500"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1159569",
        "url": "https://bugzilla.suse.com/1159569"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1159588",
        "url": "https://bugzilla.suse.com/1159588"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1159841",
        "url": "https://bugzilla.suse.com/1159841"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1159908",
        "url": "https://bugzilla.suse.com/1159908"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1159909",
        "url": "https://bugzilla.suse.com/1159909"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1159910",
        "url": "https://bugzilla.suse.com/1159910"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1159911",
        "url": "https://bugzilla.suse.com/1159911"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1159955",
        "url": "https://bugzilla.suse.com/1159955"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1160147",
        "url": "https://bugzilla.suse.com/1160147"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1160195",
        "url": "https://bugzilla.suse.com/1160195"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1160210",
        "url": "https://bugzilla.suse.com/1160210"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1160211",
        "url": "https://bugzilla.suse.com/1160211"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1160218",
        "url": "https://bugzilla.suse.com/1160218"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1160433",
        "url": "https://bugzilla.suse.com/1160433"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1160442",
        "url": "https://bugzilla.suse.com/1160442"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1160469",
        "url": "https://bugzilla.suse.com/1160469"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1160470",
        "url": "https://bugzilla.suse.com/1160470"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1160476",
        "url": "https://bugzilla.suse.com/1160476"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1160560",
        "url": "https://bugzilla.suse.com/1160560"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1160618",
        "url": "https://bugzilla.suse.com/1160618"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1160659",
        "url": "https://bugzilla.suse.com/1160659"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1160678",
        "url": "https://bugzilla.suse.com/1160678"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1160755",
        "url": "https://bugzilla.suse.com/1160755"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1160756",
        "url": "https://bugzilla.suse.com/1160756"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1160784",
        "url": "https://bugzilla.suse.com/1160784"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1160787",
        "url": "https://bugzilla.suse.com/1160787"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1160802",
        "url": "https://bugzilla.suse.com/1160802"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1160803",
        "url": "https://bugzilla.suse.com/1160803"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1160804",
        "url": "https://bugzilla.suse.com/1160804"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1160917",
        "url": "https://bugzilla.suse.com/1160917"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1160966",
        "url": "https://bugzilla.suse.com/1160966"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1160979",
        "url": "https://bugzilla.suse.com/1160979"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1161087",
        "url": "https://bugzilla.suse.com/1161087"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1161243",
        "url": "https://bugzilla.suse.com/1161243"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1161360",
        "url": "https://bugzilla.suse.com/1161360"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1161472",
        "url": "https://bugzilla.suse.com/1161472"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1161514",
        "url": "https://bugzilla.suse.com/1161514"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1161518",
        "url": "https://bugzilla.suse.com/1161518"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1161522",
        "url": "https://bugzilla.suse.com/1161522"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1161523",
        "url": "https://bugzilla.suse.com/1161523"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1161549",
        "url": "https://bugzilla.suse.com/1161549"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1161552",
        "url": "https://bugzilla.suse.com/1161552"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1161674",
        "url": "https://bugzilla.suse.com/1161674"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1161702",
        "url": "https://bugzilla.suse.com/1161702"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1161907",
        "url": "https://bugzilla.suse.com/1161907"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1161931",
        "url": "https://bugzilla.suse.com/1161931"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1161933",
        "url": "https://bugzilla.suse.com/1161933"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1161934",
        "url": "https://bugzilla.suse.com/1161934"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1161935",
        "url": "https://bugzilla.suse.com/1161935"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1161936",
        "url": "https://bugzilla.suse.com/1161936"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1161937",
        "url": "https://bugzilla.suse.com/1161937"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1161951",
        "url": "https://bugzilla.suse.com/1161951"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1162028",
        "url": "https://bugzilla.suse.com/1162028"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1162067",
        "url": "https://bugzilla.suse.com/1162067"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1162109",
        "url": "https://bugzilla.suse.com/1162109"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1162139",
        "url": "https://bugzilla.suse.com/1162139"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1162557",
        "url": "https://bugzilla.suse.com/1162557"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1162617",
        "url": "https://bugzilla.suse.com/1162617"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1162618",
        "url": "https://bugzilla.suse.com/1162618"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1162619",
        "url": "https://bugzilla.suse.com/1162619"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1162623",
        "url": "https://bugzilla.suse.com/1162623"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1162928",
        "url": "https://bugzilla.suse.com/1162928"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1162943",
        "url": "https://bugzilla.suse.com/1162943"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1163206",
        "url": "https://bugzilla.suse.com/1163206"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1163383",
        "url": "https://bugzilla.suse.com/1163383"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1163384",
        "url": "https://bugzilla.suse.com/1163384"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1163762",
        "url": "https://bugzilla.suse.com/1163762"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1163774",
        "url": "https://bugzilla.suse.com/1163774"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1163836",
        "url": "https://bugzilla.suse.com/1163836"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1163840",
        "url": "https://bugzilla.suse.com/1163840"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1163841",
        "url": "https://bugzilla.suse.com/1163841"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1163842",
        "url": "https://bugzilla.suse.com/1163842"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1163843",
        "url": "https://bugzilla.suse.com/1163843"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1163844",
        "url": "https://bugzilla.suse.com/1163844"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1163845",
        "url": "https://bugzilla.suse.com/1163845"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1163846",
        "url": "https://bugzilla.suse.com/1163846"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1163849",
        "url": "https://bugzilla.suse.com/1163849"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1163850",
        "url": "https://bugzilla.suse.com/1163850"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1163851",
        "url": "https://bugzilla.suse.com/1163851"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1163852",
        "url": "https://bugzilla.suse.com/1163852"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1163853",
        "url": "https://bugzilla.suse.com/1163853"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1163855",
        "url": "https://bugzilla.suse.com/1163855"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1163856",
        "url": "https://bugzilla.suse.com/1163856"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1163857",
        "url": "https://bugzilla.suse.com/1163857"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1163858",
        "url": "https://bugzilla.suse.com/1163858"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1163859",
        "url": "https://bugzilla.suse.com/1163859"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1163860",
        "url": "https://bugzilla.suse.com/1163860"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1163861",
        "url": "https://bugzilla.suse.com/1163861"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1163862",
        "url": "https://bugzilla.suse.com/1163862"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1163863",
        "url": "https://bugzilla.suse.com/1163863"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1163867",
        "url": "https://bugzilla.suse.com/1163867"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1163869",
        "url": "https://bugzilla.suse.com/1163869"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1163880",
        "url": "https://bugzilla.suse.com/1163880"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1163971",
        "url": "https://bugzilla.suse.com/1163971"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1164051",
        "url": "https://bugzilla.suse.com/1164051"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1164069",
        "url": "https://bugzilla.suse.com/1164069"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1164098",
        "url": "https://bugzilla.suse.com/1164098"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1164115",
        "url": "https://bugzilla.suse.com/1164115"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1164314",
        "url": "https://bugzilla.suse.com/1164314"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1164315",
        "url": "https://bugzilla.suse.com/1164315"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1164388",
        "url": "https://bugzilla.suse.com/1164388"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1164471",
        "url": "https://bugzilla.suse.com/1164471"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1164598",
        "url": "https://bugzilla.suse.com/1164598"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1164632",
        "url": "https://bugzilla.suse.com/1164632"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1164705",
        "url": "https://bugzilla.suse.com/1164705"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1164712",
        "url": "https://bugzilla.suse.com/1164712"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1164727",
        "url": "https://bugzilla.suse.com/1164727"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1164728",
        "url": "https://bugzilla.suse.com/1164728"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1164729",
        "url": "https://bugzilla.suse.com/1164729"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1164730",
        "url": "https://bugzilla.suse.com/1164730"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1164731",
        "url": "https://bugzilla.suse.com/1164731"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1164732",
        "url": "https://bugzilla.suse.com/1164732"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1164733",
        "url": "https://bugzilla.suse.com/1164733"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1164734",
        "url": "https://bugzilla.suse.com/1164734"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1164735",
        "url": "https://bugzilla.suse.com/1164735"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1165404",
        "url": "https://bugzilla.suse.com/1165404"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1165488",
        "url": "https://bugzilla.suse.com/1165488"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1165527",
        "url": "https://bugzilla.suse.com/1165527"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1165813",
        "url": "https://bugzilla.suse.com/1165813"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1165881",
        "url": "https://bugzilla.suse.com/1165881"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-14615 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-14615/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-14896 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-14896/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-14897 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-14897/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-16746 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-16746/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-16994 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-16994/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-18808 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-18808/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-19036 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-19036/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-19045 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-19045/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-19051 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-19051/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-19054 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-19054/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-19066 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-19066/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-19318 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-19318/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-19319 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-19319/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-19332 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-19332/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-19338 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-19338/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-19447 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-19447/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-19523 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-19523/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-19526 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-19526/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-19527 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-19527/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-19532 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-19532/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-19533 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-19533/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-19535 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-19535/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-19537 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-19537/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-19767 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-19767/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-19927 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-19927/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-19965 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-19965/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-19966 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-19966/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-20054 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-20054/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-20095 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-20095/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-20096 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-20096/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-2732 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-2732/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-7053 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-7053/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-8428 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-8428/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-8648 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-8648/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-8992 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-8992/"
      }
    ],
    "title": "Security update for the Linux Kernel",
    "tracking": {
      "current_release_date": "2020-03-13T05:15:16Z",
      "generator": {
        "date": "2020-03-13T05:15:16Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "openSUSE-SU-2020:0336-1",
      "initial_release_date": "2020-03-13T05:15:16Z",
      "revision_history": [
        {
          "date": "2020-03-13T05:15:16Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-devel-4.12.14-lp151.28.40.1.noarch",
                "product": {
                  "name": "kernel-devel-4.12.14-lp151.28.40.1.noarch",
                  "product_id": "kernel-devel-4.12.14-lp151.28.40.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-docs-4.12.14-lp151.28.40.1.noarch",
                "product": {
                  "name": "kernel-docs-4.12.14-lp151.28.40.1.noarch",
                  "product_id": "kernel-docs-4.12.14-lp151.28.40.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
                "product": {
                  "name": "kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
                  "product_id": "kernel-docs-html-4.12.14-lp151.28.40.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-macros-4.12.14-lp151.28.40.1.noarch",
                "product": {
                  "name": "kernel-macros-4.12.14-lp151.28.40.1.noarch",
                  "product_id": "kernel-macros-4.12.14-lp151.28.40.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-source-4.12.14-lp151.28.40.1.noarch",
                "product": {
                  "name": "kernel-source-4.12.14-lp151.28.40.1.noarch",
                  "product_id": "kernel-source-4.12.14-lp151.28.40.1.noarch"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
                "product": {
                  "name": "kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
                  "product_id": "kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch"
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-debug-4.12.14-lp151.28.40.1.x86_64",
                "product": {
                  "name": "kernel-debug-4.12.14-lp151.28.40.1.x86_64",
                  "product_id": "kernel-debug-4.12.14-lp151.28.40.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
                "product": {
                  "name": "kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
                  "product_id": "kernel-debug-base-4.12.14-lp151.28.40.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
                "product": {
                  "name": "kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
                  "product_id": "kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-4.12.14-lp151.28.40.1.x86_64",
                "product": {
                  "name": "kernel-default-4.12.14-lp151.28.40.1.x86_64",
                  "product_id": "kernel-default-4.12.14-lp151.28.40.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
                "product": {
                  "name": "kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
                  "product_id": "kernel-default-base-4.12.14-lp151.28.40.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
                "product": {
                  "name": "kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
                  "product_id": "kernel-default-devel-4.12.14-lp151.28.40.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
                "product": {
                  "name": "kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
                  "product_id": "kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
                "product": {
                  "name": "kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
                  "product_id": "kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
                "product": {
                  "name": "kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
                  "product_id": "kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
                "product": {
                  "name": "kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
                  "product_id": "kernel-obs-build-4.12.14-lp151.28.40.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
                "product": {
                  "name": "kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
                  "product_id": "kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-syms-4.12.14-lp151.28.40.1.x86_64",
                "product": {
                  "name": "kernel-syms-4.12.14-lp151.28.40.1.x86_64",
                  "product_id": "kernel-syms-4.12.14-lp151.28.40.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
                "product": {
                  "name": "kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
                  "product_id": "kernel-vanilla-4.12.14-lp151.28.40.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
                "product": {
                  "name": "kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
                  "product_id": "kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64",
                "product": {
                  "name": "kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64",
                  "product_id": "kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "openSUSE Leap 15.1",
                "product": {
                  "name": "openSUSE Leap 15.1",
                  "product_id": "openSUSE Leap 15.1",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:leap:15.1"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debug-4.12.14-lp151.28.40.1.x86_64 as component of openSUSE Leap 15.1",
          "product_id": "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64"
        },
        "product_reference": "kernel-debug-4.12.14-lp151.28.40.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debug-base-4.12.14-lp151.28.40.1.x86_64 as component of openSUSE Leap 15.1",
          "product_id": "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64"
        },
        "product_reference": "kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64 as component of openSUSE Leap 15.1",
          "product_id": "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64"
        },
        "product_reference": "kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-4.12.14-lp151.28.40.1.x86_64 as component of openSUSE Leap 15.1",
          "product_id": "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64"
        },
        "product_reference": "kernel-default-4.12.14-lp151.28.40.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-base-4.12.14-lp151.28.40.1.x86_64 as component of openSUSE Leap 15.1",
          "product_id": "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64"
        },
        "product_reference": "kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-default-devel-4.12.14-lp151.28.40.1.x86_64 as component of openSUSE Leap 15.1",
          "product_id": "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64"
        },
        "product_reference": "kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-4.12.14-lp151.28.40.1.noarch as component of openSUSE Leap 15.1",
          "product_id": "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch"
        },
        "product_reference": "kernel-devel-4.12.14-lp151.28.40.1.noarch",
        "relates_to_product_reference": "openSUSE Leap 15.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-docs-4.12.14-lp151.28.40.1.noarch as component of openSUSE Leap 15.1",
          "product_id": "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch"
        },
        "product_reference": "kernel-docs-4.12.14-lp151.28.40.1.noarch",
        "relates_to_product_reference": "openSUSE Leap 15.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-docs-html-4.12.14-lp151.28.40.1.noarch as component of openSUSE Leap 15.1",
          "product_id": "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch"
        },
        "product_reference": "kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
        "relates_to_product_reference": "openSUSE Leap 15.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64 as component of openSUSE Leap 15.1",
          "product_id": "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64"
        },
        "product_reference": "kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64 as component of openSUSE Leap 15.1",
          "product_id": "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64"
        },
        "product_reference": "kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64 as component of openSUSE Leap 15.1",
          "product_id": "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64"
        },
        "product_reference": "kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-macros-4.12.14-lp151.28.40.1.noarch as component of openSUSE Leap 15.1",
          "product_id": "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch"
        },
        "product_reference": "kernel-macros-4.12.14-lp151.28.40.1.noarch",
        "relates_to_product_reference": "openSUSE Leap 15.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-obs-build-4.12.14-lp151.28.40.1.x86_64 as component of openSUSE Leap 15.1",
          "product_id": "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64"
        },
        "product_reference": "kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64 as component of openSUSE Leap 15.1",
          "product_id": "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64"
        },
        "product_reference": "kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-4.12.14-lp151.28.40.1.noarch as component of openSUSE Leap 15.1",
          "product_id": "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch"
        },
        "product_reference": "kernel-source-4.12.14-lp151.28.40.1.noarch",
        "relates_to_product_reference": "openSUSE Leap 15.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch as component of openSUSE Leap 15.1",
          "product_id": "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch"
        },
        "product_reference": "kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
        "relates_to_product_reference": "openSUSE Leap 15.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-syms-4.12.14-lp151.28.40.1.x86_64 as component of openSUSE Leap 15.1",
          "product_id": "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64"
        },
        "product_reference": "kernel-syms-4.12.14-lp151.28.40.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-vanilla-4.12.14-lp151.28.40.1.x86_64 as component of openSUSE Leap 15.1",
          "product_id": "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64"
        },
        "product_reference": "kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64 as component of openSUSE Leap 15.1",
          "product_id": "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64"
        },
        "product_reference": "kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64 as component of openSUSE Leap 15.1",
          "product_id": "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
        },
        "product_reference": "kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64",
        "relates_to_product_reference": "openSUSE Leap 15.1"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2019-14615",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-14615"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Insufficient control flow in certain data structures for some Intel(R) Processors with Intel(R) Processor Graphics may allow an unauthenticated user to potentially enable information disclosure via local access.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-14615",
          "url": "https://www.suse.com/security/cve/CVE-2019-14615"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1160195 for CVE-2019-14615",
          "url": "https://bugzilla.suse.com/1160195"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1165881 for CVE-2019-14615",
          "url": "https://bugzilla.suse.com/1165881"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2020-03-13T05:15:16Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-14615"
    },
    {
      "cve": "CVE-2019-14896",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-14896"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A heap-based buffer overflow vulnerability was found in the Linux kernel, version kernel-2.6.32, in Marvell WiFi chip driver. A remote attacker could cause a denial of service (system crash) or, possibly execute arbitrary code, when the lbs_ibss_join_existing function is called after a STA connects to an AP.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-14896",
          "url": "https://www.suse.com/security/cve/CVE-2019-14896"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1157157 for CVE-2019-14896",
          "url": "https://bugzilla.suse.com/1157157"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1160468 for CVE-2019-14896",
          "url": "https://bugzilla.suse.com/1160468"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2020-03-13T05:15:16Z",
          "details": "important"
        }
      ],
      "title": "CVE-2019-14896"
    },
    {
      "cve": "CVE-2019-14897",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-14897"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A stack-based buffer overflow was found in the Linux kernel, version kernel-2.6.32, in Marvell WiFi chip driver. An attacker is able to cause a denial of service (system crash) or, possibly execute arbitrary code, when a STA works in IBSS mode (allows connecting stations together without the use of an AP) and connects to another STA.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-14897",
          "url": "https://www.suse.com/security/cve/CVE-2019-14897"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1157155 for CVE-2019-14897",
          "url": "https://bugzilla.suse.com/1157155"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1160467 for CVE-2019-14897",
          "url": "https://bugzilla.suse.com/1160467"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1160468 for CVE-2019-14897",
          "url": "https://bugzilla.suse.com/1160468"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2020-03-13T05:15:16Z",
          "details": "important"
        }
      ],
      "title": "CVE-2019-14897"
    },
    {
      "cve": "CVE-2019-16746",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-16746"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in net/wireless/nl80211.c in the Linux kernel through 5.2.17. It does not check the length of variable elements in a beacon head, leading to a buffer overflow.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-16746",
          "url": "https://www.suse.com/security/cve/CVE-2019-16746"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1152107 for CVE-2019-16746",
          "url": "https://bugzilla.suse.com/1152107"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1173659 for CVE-2019-16746",
          "url": "https://bugzilla.suse.com/1173659"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.3,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2020-03-13T05:15:16Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-16746"
    },
    {
      "cve": "CVE-2019-16994",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-16994"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel before 5.0, a memory leak exists in sit_init_net() in net/ipv6/sit.c when register_netdev() fails to register sitn-\u003efb_tunnel_dev, which may cause denial of service, aka CID-07f12b26e21a.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-16994",
          "url": "https://www.suse.com/security/cve/CVE-2019-16994"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1161523 for CVE-2019-16994",
          "url": "https://bugzilla.suse.com/1161523"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2020-03-13T05:15:16Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-16994"
    },
    {
      "cve": "CVE-2019-18808",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-18808"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A memory leak in the ccp_run_sha_cmd() function in drivers/crypto/ccp/ccp-ops.c in the Linux kernel through 5.3.9 allows attackers to cause a denial of service (memory consumption), aka CID-128c66429247.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-18808",
          "url": "https://www.suse.com/security/cve/CVE-2019-18808"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1156259 for CVE-2019-18808",
          "url": "https://bugzilla.suse.com/1156259"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1189884 for CVE-2019-18808",
          "url": "https://bugzilla.suse.com/1189884"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1190534 for CVE-2019-18808",
          "url": "https://bugzilla.suse.com/1190534"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2020-03-13T05:15:16Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-18808"
    },
    {
      "cve": "CVE-2019-19036",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-19036"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "btrfs_root_node in fs/btrfs/ctree.c in the Linux kernel through 5.3.12 allows a NULL pointer dereference because rcu_dereference(root-\u003enode) can be zero.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-19036",
          "url": "https://www.suse.com/security/cve/CVE-2019-19036"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1157692 for CVE-2019-19036",
          "url": "https://bugzilla.suse.com/1157692"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2020-03-13T05:15:16Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-19036"
    },
    {
      "cve": "CVE-2019-19045",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-19045"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A memory leak in the mlx5_fpga_conn_create_cq() function in drivers/net/ethernet/mellanox/mlx5/core/fpga/conn.c in the Linux kernel before 5.3.11 allows attackers to cause a denial of service (memory consumption) by triggering mlx5_vector2eqn() failures, aka CID-c8c2a057fdc7.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-19045",
          "url": "https://www.suse.com/security/cve/CVE-2019-19045"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1161522 for CVE-2019-19045",
          "url": "https://bugzilla.suse.com/1161522"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2020-03-13T05:15:16Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-19045"
    },
    {
      "cve": "CVE-2019-19051",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-19051"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A memory leak in the i2400m_op_rfkill_sw_toggle() function in drivers/net/wimax/i2400m/op-rfkill.c in the Linux kernel before 5.3.11 allows attackers to cause a denial of service (memory consumption), aka CID-6f3ef5c25cc7.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-19051",
          "url": "https://www.suse.com/security/cve/CVE-2019-19051"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1159024 for CVE-2019-19051",
          "url": "https://bugzilla.suse.com/1159024"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2020-03-13T05:15:16Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-19051"
    },
    {
      "cve": "CVE-2019-19054",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-19054"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A memory leak in the cx23888_ir_probe() function in drivers/media/pci/cx23885/cx23888-ir.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memory consumption) by triggering kfifo_alloc() failures, aka CID-a7b2df76b42b.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-19054",
          "url": "https://www.suse.com/security/cve/CVE-2019-19054"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1161518 for CVE-2019-19054",
          "url": "https://bugzilla.suse.com/1161518"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 2.9,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2020-03-13T05:15:16Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-19054"
    },
    {
      "cve": "CVE-2019-19066",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-19066"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A memory leak in the bfad_im_get_stats() function in drivers/scsi/bfa/bfad_attr.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service (memory consumption) by triggering bfa_port_get_stats() failures, aka CID-0e62395da2bd.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-19066",
          "url": "https://www.suse.com/security/cve/CVE-2019-19066"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1157303 for CVE-2019-19066",
          "url": "https://bugzilla.suse.com/1157303"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2020-03-13T05:15:16Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-19066"
    },
    {
      "cve": "CVE-2019-19318",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-19318"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel 5.3.11, mounting a crafted btrfs image twice can cause an rwsem_down_write_slowpath use-after-free because (in rwsem_can_spin_on_owner in kernel/locking/rwsem.c) rwsem_owner_flags returns an already freed pointer,",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-19318",
          "url": "https://www.suse.com/security/cve/CVE-2019-19318"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1158026 for CVE-2019-19318",
          "url": "https://bugzilla.suse.com/1158026"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2020-03-13T05:15:16Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-19318"
    },
    {
      "cve": "CVE-2019-19319",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-19319"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel before 5.2, a setxattr operation, after a mount of a crafted ext4 image, can cause a slab-out-of-bounds write access because of an ext4_xattr_set_entry use-after-free in fs/ext4/xattr.c when a large old_size value is used in a memset call, aka CID-345c0dbf3a30.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-19319",
          "url": "https://www.suse.com/security/cve/CVE-2019-19319"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1158021 for CVE-2019-19319",
          "url": "https://bugzilla.suse.com/1158021"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2020-03-13T05:15:16Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-19319"
    },
    {
      "cve": "CVE-2019-19332",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-19332"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An out-of-bounds memory write issue was found in the Linux Kernel, version 3.13 through 5.4, in the way the Linux kernel\u0027s KVM hypervisor handled the \u0027KVM_GET_EMULATED_CPUID\u0027 ioctl(2) request to get CPUID features emulated by the KVM hypervisor. A user or process able to access the \u0027/dev/kvm\u0027 device could use this flaw to crash the system, resulting in a denial of service.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-19332",
          "url": "https://www.suse.com/security/cve/CVE-2019-19332"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1158827 for CVE-2019-19332",
          "url": "https://bugzilla.suse.com/1158827"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2020-03-13T05:15:16Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-19332"
    },
    {
      "cve": "CVE-2019-19338",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-19338"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the fix for CVE-2019-11135, in the Linux upstream kernel versions before 5.5 where, the way Intel CPUs handle speculative execution of instructions when a TSX Asynchronous Abort (TAA) error occurs. When a guest is running on a host CPU affected by the TAA flaw (TAA_NO=0), but is not affected by the MDS issue (MDS_NO=1), the guest was to clear the affected buffers by using a VERW instruction mechanism. But when the MDS_NO=1 bit was exported to the guests, the guests did not use the VERW mechanism to clear the affected buffers. This issue affects guests running on Cascade Lake CPUs and requires that host has \u0027TSX\u0027 enabled. Confidentiality of data is the highest threat associated with this vulnerability.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-19338",
          "url": "https://www.suse.com/security/cve/CVE-2019-19338"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1158954 for CVE-2019-19338",
          "url": "https://bugzilla.suse.com/1158954"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2020-03-13T05:15:16Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-19338"
    },
    {
      "cve": "CVE-2019-19447",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-19447"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel 5.0.21, mounting a crafted ext4 filesystem image, performing some operations, and unmounting can lead to a use-after-free in ext4_put_super in fs/ext4/super.c, related to dump_orphan_list in fs/ext4/super.c.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-19447",
          "url": "https://www.suse.com/security/cve/CVE-2019-19447"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1158819 for CVE-2019-19447",
          "url": "https://bugzilla.suse.com/1158819"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1173869 for CVE-2019-19447",
          "url": "https://bugzilla.suse.com/1173869"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2020-03-13T05:15:16Z",
          "details": "important"
        }
      ],
      "title": "CVE-2019-19447"
    },
    {
      "cve": "CVE-2019-19523",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-19523"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel before 5.3.7, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/usb/misc/adutux.c driver, aka CID-44efc269db79.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-19523",
          "url": "https://www.suse.com/security/cve/CVE-2019-19523"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1158381 for CVE-2019-19523",
          "url": "https://bugzilla.suse.com/1158381"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1158823 for CVE-2019-19523",
          "url": "https://bugzilla.suse.com/1158823"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1158834 for CVE-2019-19523",
          "url": "https://bugzilla.suse.com/1158834"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2020-03-13T05:15:16Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-19523"
    },
    {
      "cve": "CVE-2019-19526",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-19526"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel before 5.3.9, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/nfc/pn533/usb.c driver, aka CID-6af3aa57a098.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-19526",
          "url": "https://www.suse.com/security/cve/CVE-2019-19526"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1158381 for CVE-2019-19526",
          "url": "https://bugzilla.suse.com/1158381"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1158834 for CVE-2019-19526",
          "url": "https://bugzilla.suse.com/1158834"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1158893 for CVE-2019-19526",
          "url": "https://bugzilla.suse.com/1158893"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2020-03-13T05:15:16Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-19526"
    },
    {
      "cve": "CVE-2019-19527",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-19527"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel before 5.2.10, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/hid/usbhid/hiddev.c driver, aka CID-9c09b214f30e.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-19527",
          "url": "https://www.suse.com/security/cve/CVE-2019-19527"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1158381 for CVE-2019-19527",
          "url": "https://bugzilla.suse.com/1158381"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1158834 for CVE-2019-19527",
          "url": "https://bugzilla.suse.com/1158834"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1158900 for CVE-2019-19527",
          "url": "https://bugzilla.suse.com/1158900"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2020-03-13T05:15:16Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-19527"
    },
    {
      "cve": "CVE-2019-19532",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-19532"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel before 5.3.9, there are multiple out-of-bounds write bugs that can be caused by a malicious USB device in the Linux kernel HID drivers, aka CID-d9d4b1e46d95. This affects drivers/hid/hid-axff.c, drivers/hid/hid-dr.c, drivers/hid/hid-emsff.c, drivers/hid/hid-gaff.c, drivers/hid/hid-holtekff.c, drivers/hid/hid-lg2ff.c, drivers/hid/hid-lg3ff.c, drivers/hid/hid-lg4ff.c, drivers/hid/hid-lgff.c, drivers/hid/hid-logitech-hidpp.c, drivers/hid/hid-microsoft.c, drivers/hid/hid-sony.c, drivers/hid/hid-tmff.c, and drivers/hid/hid-zpff.c.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-19532",
          "url": "https://www.suse.com/security/cve/CVE-2019-19532"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1158381 for CVE-2019-19532",
          "url": "https://bugzilla.suse.com/1158381"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1158823 for CVE-2019-19532",
          "url": "https://bugzilla.suse.com/1158823"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1158824 for CVE-2019-19532",
          "url": "https://bugzilla.suse.com/1158824"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1158834 for CVE-2019-19532",
          "url": "https://bugzilla.suse.com/1158834"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.8,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2020-03-13T05:15:16Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-19532"
    },
    {
      "cve": "CVE-2019-19533",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-19533"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel before 5.3.4, there is an info-leak bug that can be caused by a malicious USB device in the drivers/media/usb/ttusb-dec/ttusb_dec.c driver, aka CID-a10feaf8c464.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-19533",
          "url": "https://www.suse.com/security/cve/CVE-2019-19533"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1158381 for CVE-2019-19533",
          "url": "https://bugzilla.suse.com/1158381"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1158834 for CVE-2019-19533",
          "url": "https://bugzilla.suse.com/1158834"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 2.4,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2020-03-13T05:15:16Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-19533"
    },
    {
      "cve": "CVE-2019-19535",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-19535"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel before 5.2.9, there is an info-leak bug that can be caused by a malicious USB device in the drivers/net/can/usb/peak_usb/pcan_usb_fd.c driver, aka CID-30a8beeb3042.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-19535",
          "url": "https://www.suse.com/security/cve/CVE-2019-19535"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1158381 for CVE-2019-19535",
          "url": "https://bugzilla.suse.com/1158381"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1158834 for CVE-2019-19535",
          "url": "https://bugzilla.suse.com/1158834"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1158903 for CVE-2019-19535",
          "url": "https://bugzilla.suse.com/1158903"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2020-03-13T05:15:16Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-19535"
    },
    {
      "cve": "CVE-2019-19537",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-19537"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel before 5.2.10, there is a race condition bug that can be caused by a malicious USB device in the USB character device driver layer, aka CID-303911cfc5b9. This affects drivers/usb/core/file.c.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-19537",
          "url": "https://www.suse.com/security/cve/CVE-2019-19537"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1158381 for CVE-2019-19537",
          "url": "https://bugzilla.suse.com/1158381"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1158834 for CVE-2019-19537",
          "url": "https://bugzilla.suse.com/1158834"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1158904 for CVE-2019-19537",
          "url": "https://bugzilla.suse.com/1158904"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2020-03-13T05:15:16Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-19537"
    },
    {
      "cve": "CVE-2019-19767",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-19767"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The Linux kernel before 5.4.2 mishandles ext4_expand_extra_isize, as demonstrated by use-after-free errors in __ext4_expand_extra_isize and ext4_xattr_set_entry, related to fs/ext4/inode.c and fs/ext4/super.c, aka CID-4ea99936a163.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-19767",
          "url": "https://www.suse.com/security/cve/CVE-2019-19767"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1159297 for CVE-2019-19767",
          "url": "https://bugzilla.suse.com/1159297"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2020-03-13T05:15:16Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-19767"
    },
    {
      "cve": "CVE-2019-19927",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-19927"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel 5.0.0-rc7 (as distributed in ubuntu/linux.git on kernel.ubuntu.com), mounting a crafted f2fs filesystem image and performing some operations can lead to slab-out-of-bounds read access in ttm_put_pages in drivers/gpu/drm/ttm/ttm_page_alloc.c. This is related to the vmwgfx or ttm module.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-19927",
          "url": "https://www.suse.com/security/cve/CVE-2019-19927"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1160147 for CVE-2019-19927",
          "url": "https://bugzilla.suse.com/1160147"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2020-03-13T05:15:16Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-19927"
    },
    {
      "cve": "CVE-2019-19965",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-19965"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel through 5.4.6, there is a NULL pointer dereference in drivers/scsi/libsas/sas_discover.c because of mishandling of port disconnection during discovery, related to a PHY down race condition, aka CID-f70267f379b5.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-19965",
          "url": "https://www.suse.com/security/cve/CVE-2019-19965"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1159911 for CVE-2019-19965",
          "url": "https://bugzilla.suse.com/1159911"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2020-03-13T05:15:16Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-19965"
    },
    {
      "cve": "CVE-2019-19966",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-19966"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel before 5.1.6, there is a use-after-free in cpia2_exit() in drivers/media/usb/cpia2/cpia2_v4l.c that will cause denial of service, aka CID-dea37a972655.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-19966",
          "url": "https://www.suse.com/security/cve/CVE-2019-19966"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1159841 for CVE-2019-19966",
          "url": "https://bugzilla.suse.com/1159841"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.5,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2020-03-13T05:15:16Z",
          "details": "low"
        }
      ],
      "title": "CVE-2019-19966"
    },
    {
      "cve": "CVE-2019-20054",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-20054"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel before 5.0.6, there is a NULL pointer dereference in drop_sysctl_table() in fs/proc/proc_sysctl.c, related to put_links, aka CID-23da9588037e.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-20054",
          "url": "https://www.suse.com/security/cve/CVE-2019-20054"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1159910 for CVE-2019-20054",
          "url": "https://bugzilla.suse.com/1159910"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2020-03-13T05:15:16Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-20054"
    },
    {
      "cve": "CVE-2019-20095",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-20095"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "mwifiex_tm_cmd in drivers/net/wireless/marvell/mwifiex/cfg80211.c in the Linux kernel before 5.1.6 has some error-handling cases that did not free allocated hostcmd memory, aka CID-003b686ace82. This will cause a memory leak and denial of service.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-20095",
          "url": "https://www.suse.com/security/cve/CVE-2019-20095"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1159909 for CVE-2019-20095",
          "url": "https://bugzilla.suse.com/1159909"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1159914 for CVE-2019-20095",
          "url": "https://bugzilla.suse.com/1159914"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2020-03-13T05:15:16Z",
          "details": "important"
        }
      ],
      "title": "CVE-2019-20095"
    },
    {
      "cve": "CVE-2019-20096",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-20096"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel before 5.1, there is a memory leak in __feat_register_sp() in net/dccp/feat.c, which may cause denial of service, aka CID-1d3ff0950e2b.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-20096",
          "url": "https://www.suse.com/security/cve/CVE-2019-20096"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1159908 for CVE-2019-20096",
          "url": "https://bugzilla.suse.com/1159908"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2020-03-13T05:15:16Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-20096"
    },
    {
      "cve": "CVE-2020-2732",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-2732"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was discovered in the way that the KVM hypervisor handled instruction emulation for an L2 guest when nested virtualisation is enabled. Under some circumstances, an L2 guest may trick the L0 guest into accessing sensitive L1 resources that should be inaccessible to the L2 guest.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-2732",
          "url": "https://www.suse.com/security/cve/CVE-2020-2732"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1163971 for CVE-2020-2732",
          "url": "https://bugzilla.suse.com/1163971"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.2,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2020-03-13T05:15:16Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-2732"
    },
    {
      "cve": "CVE-2020-7053",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-7053"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel 4.14 longterm through 4.14.165 and 4.19 longterm through 4.19.96 (and 5.x before 5.2), there is a use-after-free (write) in the i915_ppgtt_close function in drivers/gpu/drm/i915/i915_gem_gtt.c, aka CID-7dc40713618c. This is related to i915_gem_context_destroy_ioctl in drivers/gpu/drm/i915/i915_gem_context.c.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-7053",
          "url": "https://www.suse.com/security/cve/CVE-2020-7053"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1160966 for CVE-2020-7053",
          "url": "https://bugzilla.suse.com/1160966"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2020-03-13T05:15:16Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-7053"
    },
    {
      "cve": "CVE-2020-8428",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-8428"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "fs/namei.c in the Linux kernel before 5.5 has a may_create_in_sticky use-after-free, which allows local users to cause a denial of service (OOPS) or possibly obtain sensitive information from kernel memory, aka CID-d0cb50185ae9. One attack vector may be an open system call for a UNIX domain socket, if the socket is being moved to a new parent directory and its old parent directory is being removed.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-8428",
          "url": "https://www.suse.com/security/cve/CVE-2020-8428"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1162109 for CVE-2020-8428",
          "url": "https://bugzilla.suse.com/1162109"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2020-03-13T05:15:16Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-8428"
    },
    {
      "cve": "CVE-2020-8648",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-8648"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "There is a use-after-free vulnerability in the Linux kernel through 5.5.2 in the n_tty_receive_buf_common function in drivers/tty/n_tty.c.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-8648",
          "url": "https://www.suse.com/security/cve/CVE-2020-8648"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1162928 for CVE-2020-8648",
          "url": "https://bugzilla.suse.com/1162928"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2020-03-13T05:15:16Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-8648"
    },
    {
      "cve": "CVE-2020-8992",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-8992"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "ext4_protect_reserved_inode in fs/ext4/block_validity.c in the Linux kernel through 5.5.3 allows attackers to cause a denial of service (soft lockup) via a crafted journal size.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
          "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
          "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-8992",
          "url": "https://www.suse.com/security/cve/CVE-2020-8992"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1164069 for CVE-2020-8992",
          "url": "https://bugzilla.suse.com/1164069"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 2.1,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Leap 15.1:kernel-debug-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-debug-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-default-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-devel-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-docs-html-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-kvmsmall-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-kvmsmall-devel-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-macros-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-obs-build-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-obs-qa-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-source-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-source-vanilla-4.12.14-lp151.28.40.1.noarch",
            "openSUSE Leap 15.1:kernel-syms-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-base-4.12.14-lp151.28.40.1.x86_64",
            "openSUSE Leap 15.1:kernel-vanilla-devel-4.12.14-lp151.28.40.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2020-03-13T05:15:16Z",
          "details": "low"
        }
      ],
      "title": "CVE-2020-8992"
    }
  ]
}

OPENSUSE-SU-2024:10728-1

Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00

Summary

kernel-devel-5.14.6-1.4 on GA media

Severity

Moderate

Notes

Title of the patch: kernel-devel-5.14.6-1.4 on GA media

Description of the patch: These are all security issues fixed in the kernel-devel-5.14.6-1.4 package on the GA media of openSUSE Tumbleweed.

Patchnames: openSUSE-Tumbleweed-2024-10728

CVE-2017-1000251

8.8 (High)


                        
                          CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-12153

4.4 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2017-13080

8.1 (High)


                        
                          CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-14051

6.4 (Medium)


                        
                          CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-15129

6.1 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-15265

5.5 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-16536

4.6 (Medium)


                        
                          CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-16537

4.6 (Medium)


                        
                          CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-16645

4.6 (Medium)


                        
                          CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-16646

4.6 (Medium)


                        
                          CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-16647

4.6 (Medium)


                        
                          CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-16648

4.6 (Medium)


                        
                          CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-16995

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-16996

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-17448

5.7 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-17449

4.3 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-17450

4.4 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-17852

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-17853

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-17854

6.2 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-17855

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-17856

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-17857

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-17862

5.5 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-5123

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2017-5715

7.1 (High)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2017-5753

5.6 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2017-5754

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2017-7541

6.2 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-7542

6.2 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-8824

8.4 (High)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2017-8831

6.7 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-1000004

5.5 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-10322

4.6 (Medium)


                        
                          CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-10323

4.6 (Medium)


                        
                          CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-1068

8.4 (High)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2018-1118

5.5 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2018-12232

5.5 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-12714

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2018-13053

3.3 (Low)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2018-18710

5.5 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-19824

6.6 (Medium)


                        
                          CVSS:3.0/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-5332

3.6 (Low)


                        
                          CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2018-5333

2.9 (Low)


                        
                          CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2018-8043

0 (None)


                        
                          CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2018-8087

5.5 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-8822

6.4 (Medium)


                        
                          CVSS:3.0/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-10207

5.3 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2019-11477

8.2 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2019-11478

5.3 (Medium)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2019-11479

7.5 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2019-14615

6.2 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-14814

7.5 (High)


                        
                          CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-14896

8.1 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2019-15030

4.4 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-15031

4.4 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-15098

5.2 (Medium)


                        
                          CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-15099

4.6 (Medium)


                        
                          CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-15290

5.2 (Medium)


                        
                          CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-15504

8.4 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2019-15902

6.2 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-16231

4 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-16232

4 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-16234

4 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2019-17133

8.8 (High)


                        
                          CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-17666

5.4 (Medium)


                        
                          CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-18808

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-18812

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-18813

4.3 (Medium)


                        
                          CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-19252

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-19332

6.7 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-19338

6.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-3016

4.7 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-3846

7.5 (High)


                        
                          CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-3882

4.7 (Medium)


                        
                          CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-3887

5.6 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-6974

7.8 (High)


                        
                          CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-7221

7.5 (High)


                        
                          CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-7222

2.8 (Low)


                        
                          CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2019-8564

4.2 (Medium)


                        
                          CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-8912

7.8 (High)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-9500

5 (Medium)


                        
                          CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-10135

5 (Medium)


                        
                          CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-10766

5.6 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-10767

5.9 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-10768

6.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-12351

7.5 (High)


                        
                          CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2020-12352

3.1 (Low)


                        
                          CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-14331

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2020-14386

8.4 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2020-24586

4.7 (Medium)


                        
                          CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-24587

4.2 (Medium)


                        
                          CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-24588

6.5 (Medium)


                        
                          CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-25639

4.4 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-25656

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-25668

7 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2020-26141

4.2 (Medium)


                        
                          CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-2732

3.2 (Low)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-29660

7.4 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2020-29661

7.4 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2020-8648

6.1 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-8694

5.1 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2021-23133

7 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-26708

7 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-28971

5.1 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2021-32606

8.4 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-33909

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-3483

6.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2021-3489

8.4 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-3490

8.4 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-3491

7.4 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-3640

7.4 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-3653

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-3656

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-3744

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2021-3753

2.9 (Low)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2021-37576

8.4 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-3759

6.2 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2021-38166

6.7 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 16 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64	—	Vendor Fix

Threats

Impact moderate

References

537 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/o…	self
https://www.suse.com/security/cve/CVE-2017-1000251/	self
https://www.suse.com/security/cve/CVE-2017-12153/	self
https://www.suse.com/security/cve/CVE-2017-13080/	self
https://www.suse.com/security/cve/CVE-2017-14051/	self
https://www.suse.com/security/cve/CVE-2017-15129/	self
https://www.suse.com/security/cve/CVE-2017-15265/	self
https://www.suse.com/security/cve/CVE-2017-16536/	self
https://www.suse.com/security/cve/CVE-2017-16537/	self
https://www.suse.com/security/cve/CVE-2017-16645/	self
https://www.suse.com/security/cve/CVE-2017-16646/	self
https://www.suse.com/security/cve/CVE-2017-16647/	self
https://www.suse.com/security/cve/CVE-2017-16648/	self
https://www.suse.com/security/cve/CVE-2017-16995/	self
https://www.suse.com/security/cve/CVE-2017-16996/	self
https://www.suse.com/security/cve/CVE-2017-17448/	self
https://www.suse.com/security/cve/CVE-2017-17449/	self
https://www.suse.com/security/cve/CVE-2017-17450/	self
https://www.suse.com/security/cve/CVE-2017-17852/	self
https://www.suse.com/security/cve/CVE-2017-17853/	self
https://www.suse.com/security/cve/CVE-2017-17854/	self
https://www.suse.com/security/cve/CVE-2017-17855/	self
https://www.suse.com/security/cve/CVE-2017-17856/	self
https://www.suse.com/security/cve/CVE-2017-17857/	self
https://www.suse.com/security/cve/CVE-2017-17862/	self
https://www.suse.com/security/cve/CVE-2017-5123/	self
https://www.suse.com/security/cve/CVE-2017-5715/	self
https://www.suse.com/security/cve/CVE-2017-5753/	self
https://www.suse.com/security/cve/CVE-2017-5754/	self
https://www.suse.com/security/cve/CVE-2017-7541/	self
https://www.suse.com/security/cve/CVE-2017-7542/	self
https://www.suse.com/security/cve/CVE-2017-8824/	self
https://www.suse.com/security/cve/CVE-2017-8831/	self
https://www.suse.com/security/cve/CVE-2018-1000004/	self
https://www.suse.com/security/cve/CVE-2018-10322/	self
https://www.suse.com/security/cve/CVE-2018-10323/	self
https://www.suse.com/security/cve/CVE-2018-1068/	self
https://www.suse.com/security/cve/CVE-2018-1118/	self
https://www.suse.com/security/cve/CVE-2018-12232/	self
https://www.suse.com/security/cve/CVE-2018-12714/	self
https://www.suse.com/security/cve/CVE-2018-13053/	self
https://www.suse.com/security/cve/CVE-2018-18710/	self
https://www.suse.com/security/cve/CVE-2018-19824/	self
https://www.suse.com/security/cve/CVE-2018-5332/	self
https://www.suse.com/security/cve/CVE-2018-5333/	self
https://www.suse.com/security/cve/CVE-2018-8043/	self
https://www.suse.com/security/cve/CVE-2018-8087/	self
https://www.suse.com/security/cve/CVE-2018-8822/	self
https://www.suse.com/security/cve/CVE-2019-10207/	self
https://www.suse.com/security/cve/CVE-2019-11477/	self
https://www.suse.com/security/cve/CVE-2019-11478/	self
https://www.suse.com/security/cve/CVE-2019-11479/	self
https://www.suse.com/security/cve/CVE-2019-14615/	self
https://www.suse.com/security/cve/CVE-2019-14814/	self
https://www.suse.com/security/cve/CVE-2019-14896/	self
https://www.suse.com/security/cve/CVE-2019-15030/	self
https://www.suse.com/security/cve/CVE-2019-15031/	self
https://www.suse.com/security/cve/CVE-2019-15098/	self
https://www.suse.com/security/cve/CVE-2019-15099/	self
https://www.suse.com/security/cve/CVE-2019-15290/	self
https://www.suse.com/security/cve/CVE-2019-15504/	self
https://www.suse.com/security/cve/CVE-2019-15902/	self
https://www.suse.com/security/cve/CVE-2019-16231/	self
https://www.suse.com/security/cve/CVE-2019-16232/	self
https://www.suse.com/security/cve/CVE-2019-16234/	self
https://www.suse.com/security/cve/CVE-2019-17133/	self
https://www.suse.com/security/cve/CVE-2019-17666/	self
https://www.suse.com/security/cve/CVE-2019-18808/	self
https://www.suse.com/security/cve/CVE-2019-18812/	self
https://www.suse.com/security/cve/CVE-2019-18813/	self
https://www.suse.com/security/cve/CVE-2019-19252/	self
https://www.suse.com/security/cve/CVE-2019-19332/	self
https://www.suse.com/security/cve/CVE-2019-19338/	self
https://www.suse.com/security/cve/CVE-2019-3016/	self
https://www.suse.com/security/cve/CVE-2019-3846/	self
https://www.suse.com/security/cve/CVE-2019-3882/	self
https://www.suse.com/security/cve/CVE-2019-3887/	self
https://www.suse.com/security/cve/CVE-2019-6974/	self
https://www.suse.com/security/cve/CVE-2019-7221/	self
https://www.suse.com/security/cve/CVE-2019-7222/	self
https://www.suse.com/security/cve/CVE-2019-8564/	self
https://www.suse.com/security/cve/CVE-2019-8912/	self
https://www.suse.com/security/cve/CVE-2019-9500/	self
https://www.suse.com/security/cve/CVE-2020-10135/	self
https://www.suse.com/security/cve/CVE-2020-10766/	self
https://www.suse.com/security/cve/CVE-2020-10767/	self
https://www.suse.com/security/cve/CVE-2020-10768/	self
https://www.suse.com/security/cve/CVE-2020-12351/	self
https://www.suse.com/security/cve/CVE-2020-12352/	self
https://www.suse.com/security/cve/CVE-2020-14331/	self
https://www.suse.com/security/cve/CVE-2020-14386/	self
https://www.suse.com/security/cve/CVE-2020-24586/	self
https://www.suse.com/security/cve/CVE-2020-24587/	self
https://www.suse.com/security/cve/CVE-2020-24588/	self
https://www.suse.com/security/cve/CVE-2020-25639/	self
https://www.suse.com/security/cve/CVE-2020-25656/	self
https://www.suse.com/security/cve/CVE-2020-25668/	self
https://www.suse.com/security/cve/CVE-2020-26141/	self
https://www.suse.com/security/cve/CVE-2020-2732/	self
https://www.suse.com/security/cve/CVE-2020-29660/	self
https://www.suse.com/security/cve/CVE-2020-29661/	self
https://www.suse.com/security/cve/CVE-2020-8648/	self
https://www.suse.com/security/cve/CVE-2020-8694/	self
https://www.suse.com/security/cve/CVE-2021-23133/	self
https://www.suse.com/security/cve/CVE-2021-26708/	self
https://www.suse.com/security/cve/CVE-2021-28971/	self
https://www.suse.com/security/cve/CVE-2021-32606/	self
https://www.suse.com/security/cve/CVE-2021-33909/	self
https://www.suse.com/security/cve/CVE-2021-3483/	self
https://www.suse.com/security/cve/CVE-2021-3489/	self
https://www.suse.com/security/cve/CVE-2021-3490/	self
https://www.suse.com/security/cve/CVE-2021-3491/	self
https://www.suse.com/security/cve/CVE-2021-3640/	self
https://www.suse.com/security/cve/CVE-2021-3653/	self
https://www.suse.com/security/cve/CVE-2021-3656/	self
https://www.suse.com/security/cve/CVE-2021-3744/	self
https://www.suse.com/security/cve/CVE-2021-3753/	self
https://www.suse.com/security/cve/CVE-2021-37576/	self
https://www.suse.com/security/cve/CVE-2021-3759/	self
https://www.suse.com/security/cve/CVE-2021-38166/	self
https://www.suse.com/security/cve/CVE-2017-1000251	external
https://bugzilla.suse.com/1057389	external
https://bugzilla.suse.com/1057950	external
https://bugzilla.suse.com/1070535	external
https://bugzilla.suse.com/1072117	external
https://bugzilla.suse.com/1072162	external
https://bugzilla.suse.com/1120758	external
https://www.suse.com/security/cve/CVE-2017-12153	external
https://bugzilla.suse.com/1058410	external
https://bugzilla.suse.com/1058624	external
https://www.suse.com/security/cve/CVE-2017-13080	external
https://bugzilla.suse.com/1056061	external
https://bugzilla.suse.com/1063479	external
https://bugzilla.suse.com/1063667	external
https://bugzilla.suse.com/1063671	external
https://bugzilla.suse.com/1066295	external
https://bugzilla.suse.com/1105108	external
https://bugzilla.suse.com/1178872	external
https://bugzilla.suse.com/1179588	external
https://www.suse.com/security/cve/CVE-2017-14051	external
https://bugzilla.suse.com/1056588	external
https://www.suse.com/security/cve/CVE-2017-15129	external
https://bugzilla.suse.com/1074839	external
https://www.suse.com/security/cve/CVE-2017-15265	external
https://bugzilla.suse.com/1062520	external
https://bugzilla.suse.com/1115893	external
https://www.suse.com/security/cve/CVE-2017-16536	external
https://bugzilla.suse.com/1066606	external
https://bugzilla.suse.com/1087082	external
https://bugzilla.suse.com/1146519	external
https://www.suse.com/security/cve/CVE-2017-16537	external
https://bugzilla.suse.com/1066573	external
https://bugzilla.suse.com/1087082	external
https://bugzilla.suse.com/1146519	external
https://www.suse.com/security/cve/CVE-2017-16645	external
https://bugzilla.suse.com/1067132	external
https://bugzilla.suse.com/1087082	external
https://bugzilla.suse.com/1146519	external
https://www.suse.com/security/cve/CVE-2017-16646	external
https://bugzilla.suse.com/1067105	external
https://bugzilla.suse.com/1146519	external
https://www.suse.com/security/cve/CVE-2017-16647	external
https://bugzilla.suse.com/1067102	external
https://bugzilla.suse.com/1146519	external
https://www.suse.com/security/cve/CVE-2017-16648	external
https://bugzilla.suse.com/1067087	external
https://bugzilla.suse.com/1087082	external
https://bugzilla.suse.com/1146519	external
https://www.suse.com/security/cve/CVE-2017-16995	external
https://bugzilla.suse.com/1073928	external
https://www.suse.com/security/cve/CVE-2017-16996	external
https://bugzilla.suse.com/1073928	external
https://www.suse.com/security/cve/CVE-2017-17448	external
https://bugzilla.suse.com/1071693	external
https://www.suse.com/security/cve/CVE-2017-17449	external
https://bugzilla.suse.com/1071694	external
https://www.suse.com/security/cve/CVE-2017-17450	external
https://bugzilla.suse.com/1071695	external
https://bugzilla.suse.com/1074033	external
https://bugzilla.suse.com/1115893	external
https://www.suse.com/security/cve/CVE-2017-17852	external
https://bugzilla.suse.com/1073928	external
https://www.suse.com/security/cve/CVE-2017-17853	external
https://bugzilla.suse.com/1073928	external
https://www.suse.com/security/cve/CVE-2017-17854	external
https://bugzilla.suse.com/1073928	external
https://www.suse.com/security/cve/CVE-2017-17855	external
https://bugzilla.suse.com/1073928	external
https://www.suse.com/security/cve/CVE-2017-17856	external
https://bugzilla.suse.com/1073928	external
https://www.suse.com/security/cve/CVE-2017-17857	external
https://bugzilla.suse.com/1073928	external
https://www.suse.com/security/cve/CVE-2017-17862	external
https://bugzilla.suse.com/1073928	external
https://www.suse.com/security/cve/CVE-2017-5123	external
https://bugzilla.suse.com/1062473	external
https://bugzilla.suse.com/1122971	external
https://www.suse.com/security/cve/CVE-2017-5715	external
https://bugzilla.suse.com/1068032	external
https://bugzilla.suse.com/1074562	external
https://bugzilla.suse.com/1074578	external
https://bugzilla.suse.com/1074701	external
https://bugzilla.suse.com/1074741	external
https://bugzilla.suse.com/1074919	external
https://bugzilla.suse.com/1075006	external
https://bugzilla.suse.com/1075007	external
https://bugzilla.suse.com/1075262	external
https://bugzilla.suse.com/1075419	external
https://bugzilla.suse.com/1076115	external
https://bugzilla.suse.com/1076372	external
https://bugzilla.suse.com/1076606	external
https://bugzilla.suse.com/1078353	external
https://bugzilla.suse.com/1080039	external
https://bugzilla.suse.com/1087887	external
https://bugzilla.suse.com/1087939	external
https://bugzilla.suse.com/1088147	external
https://bugzilla.suse.com/1089055	external
https://bugzilla.suse.com/1091815	external
https://bugzilla.suse.com/1095735	external
https://bugzilla.suse.com/1102517	external
https://bugzilla.suse.com/1105108	external
https://bugzilla.suse.com/1126516	external
https://bugzilla.suse.com/1173489	external
https://bugzilla.suse.com/1178658	external
https://bugzilla.suse.com/1201457	external
https://bugzilla.suse.com/1201877	external
https://bugzilla.suse.com/1203236	external
https://www.suse.com/security/cve/CVE-2017-5753	external
https://bugzilla.suse.com/1068032	external
https://bugzilla.suse.com/1074562	external
https://bugzilla.suse.com/1074578	external
https://bugzilla.suse.com/1074701	external
https://bugzilla.suse.com/1075006	external
https://bugzilla.suse.com/1075419	external
https://bugzilla.suse.com/1075748	external
https://bugzilla.suse.com/1080039	external
https://bugzilla.suse.com/1087084	external
https://bugzilla.suse.com/1087939	external
https://bugzilla.suse.com/1089055	external
https://bugzilla.suse.com/1136865	external
https://bugzilla.suse.com/1178658	external
https://bugzilla.suse.com/1201877	external
https://bugzilla.suse.com/1209547	external
https://www.suse.com/security/cve/CVE-2017-5754	external
https://bugzilla.suse.com/1068032	external
https://bugzilla.suse.com/1074562	external
https://bugzilla.suse.com/1074578	external
https://bugzilla.suse.com/1074701	external
https://bugzilla.suse.com/1075006	external
https://bugzilla.suse.com/1075008	external
https://bugzilla.suse.com/1087939	external
https://bugzilla.suse.com/1089055	external
https://bugzilla.suse.com/1115045	external
https://bugzilla.suse.com/1136865	external
https://bugzilla.suse.com/1178658	external
https://bugzilla.suse.com/1201877	external
https://www.suse.com/security/cve/CVE-2017-7541	external
https://bugzilla.suse.com/1049645	external
https://www.suse.com/security/cve/CVE-2017-7542	external
https://bugzilla.suse.com/1049882	external
https://bugzilla.suse.com/1061936	external
https://www.suse.com/security/cve/CVE-2017-8824	external
https://bugzilla.suse.com/1070771	external
https://bugzilla.suse.com/1076734	external
https://bugzilla.suse.com/1092904	external
https://bugzilla.suse.com/1115893	external
https://www.suse.com/security/cve/CVE-2017-8831	external
https://bugzilla.suse.com/1037994	external
https://bugzilla.suse.com/1061936	external
https://bugzilla.suse.com/1087082	external
https://bugzilla.suse.com/1115893	external
https://www.suse.com/security/cve/CVE-2018-1000004	external
https://bugzilla.suse.com/1076017	external
https://bugzilla.suse.com/1091815	external
https://www.suse.com/security/cve/CVE-2018-10322	external
https://bugzilla.suse.com/1087082	external
https://bugzilla.suse.com/1090749	external
https://www.suse.com/security/cve/CVE-2018-10323	external
https://bugzilla.suse.com/1087082	external
https://bugzilla.suse.com/1090717	external
https://www.suse.com/security/cve/CVE-2018-1068	external
https://bugzilla.suse.com/1085107	external
https://bugzilla.suse.com/1085114	external
https://bugzilla.suse.com/1087082	external
https://bugzilla.suse.com/1123903	external
https://www.suse.com/security/cve/CVE-2018-1118	external
https://bugzilla.suse.com/1087082	external
https://bugzilla.suse.com/1092472	external
https://www.suse.com/security/cve/CVE-2018-12232	external
https://bugzilla.suse.com/1087082	external
https://bugzilla.suse.com/1097593	external
https://bugzilla.suse.com/1125907	external
https://bugzilla.suse.com/1127757	external
https://www.suse.com/security/cve/CVE-2018-12714	external
https://bugzilla.suse.com/1098933	external
https://www.suse.com/security/cve/CVE-2018-13053	external
https://bugzilla.suse.com/1099924	external
https://bugzilla.suse.com/1115893	external
https://www.suse.com/security/cve/CVE-2018-18710	external
https://bugzilla.suse.com/1113751	external
https://www.suse.com/security/cve/CVE-2018-19824	external
https://bugzilla.suse.com/1118152	external
https://www.suse.com/security/cve/CVE-2018-5332	external
https://bugzilla.suse.com/1075621	external
https://bugzilla.suse.com/1091815	external
https://bugzilla.suse.com/1115893	external
https://www.suse.com/security/cve/CVE-2018-5333	external
https://bugzilla.suse.com/1075617	external
https://bugzilla.suse.com/1091815	external
https://www.suse.com/security/cve/CVE-2018-8043	external
https://bugzilla.suse.com/1084829	external
https://www.suse.com/security/cve/CVE-2018-8087	external
https://bugzilla.suse.com/1085053	external
https://www.suse.com/security/cve/CVE-2018-8822	external
https://bugzilla.suse.com/1086162	external
https://bugzilla.suse.com/1090404	external
https://bugzilla.suse.com/1091815	external
https://www.suse.com/security/cve/CVE-2019-10207	external
https://bugzilla.suse.com/1123959	external
https://bugzilla.suse.com/1142857	external
https://www.suse.com/security/cve/CVE-2019-11477	external
https://bugzilla.suse.com/1132686	external
https://bugzilla.suse.com/1137586	external
https://bugzilla.suse.com/1142129	external
https://bugzilla.suse.com/1153242	external
https://www.suse.com/security/cve/CVE-2019-11478	external
https://bugzilla.suse.com/1132686	external
https://bugzilla.suse.com/1137586	external
https://bugzilla.suse.com/1142129	external
https://bugzilla.suse.com/1143542	external
https://www.suse.com/security/cve/CVE-2019-11479	external
https://bugzilla.suse.com/1132686	external
https://bugzilla.suse.com/1137586	external
https://bugzilla.suse.com/1142129	external
https://bugzilla.suse.com/1143542	external
https://www.suse.com/security/cve/CVE-2019-14615	external
https://bugzilla.suse.com/1160195	external
https://bugzilla.suse.com/1165881	external
https://www.suse.com/security/cve/CVE-2019-14814	external
https://bugzilla.suse.com/1146512	external
https://bugzilla.suse.com/1173664	external
https://bugzilla.suse.com/1173665	external
https://www.suse.com/security/cve/CVE-2019-14896	external
https://bugzilla.suse.com/1157157	external
https://bugzilla.suse.com/1160468	external
https://www.suse.com/security/cve/CVE-2019-15030	external
https://bugzilla.suse.com/1149713	external
https://www.suse.com/security/cve/CVE-2019-15031	external
https://bugzilla.suse.com/1149713	external
https://www.suse.com/security/cve/CVE-2019-15098	external
https://bugzilla.suse.com/1146378	external
https://bugzilla.suse.com/1146543	external
https://www.suse.com/security/cve/CVE-2019-15099	external
https://bugzilla.suse.com/1146368	external
https://www.suse.com/security/cve/CVE-2019-15290	external
https://bugzilla.suse.com/1146378	external
https://bugzilla.suse.com/1146519	external
https://bugzilla.suse.com/1146543	external
https://bugzilla.suse.com/1158381	external
https://bugzilla.suse.com/1158834	external
https://www.suse.com/security/cve/CVE-2019-15504	external
https://bugzilla.suse.com/1147116	external
https://bugzilla.suse.com/1185852	external
https://www.suse.com/security/cve/CVE-2019-15902	external
https://bugzilla.suse.com/1149376	external
https://bugzilla.suse.com/1155131	external
https://www.suse.com/security/cve/CVE-2019-16231	external
https://bugzilla.suse.com/1150466	external
https://www.suse.com/security/cve/CVE-2019-16232	external
https://bugzilla.suse.com/1150465	external
https://www.suse.com/security/cve/CVE-2019-16234	external
https://bugzilla.suse.com/1150452	external
https://www.suse.com/security/cve/CVE-2019-17133	external
https://bugzilla.suse.com/1153158	external
https://bugzilla.suse.com/1153161	external
https://www.suse.com/security/cve/CVE-2019-17666	external
https://bugzilla.suse.com/1154372	external
https://www.suse.com/security/cve/CVE-2019-18808	external
https://bugzilla.suse.com/1156259	external
https://bugzilla.suse.com/1189884	external
https://bugzilla.suse.com/1190534	external
https://www.suse.com/security/cve/CVE-2019-18812	external
https://bugzilla.suse.com/1156277	external
https://www.suse.com/security/cve/CVE-2019-18813	external
https://bugzilla.suse.com/1156278	external
https://www.suse.com/security/cve/CVE-2019-19252	external
https://bugzilla.suse.com/1157813	external
https://www.suse.com/security/cve/CVE-2019-19332	external
https://bugzilla.suse.com/1158827	external
https://www.suse.com/security/cve/CVE-2019-19338	external
https://bugzilla.suse.com/1158954	external
https://www.suse.com/security/cve/CVE-2019-3016	external
https://bugzilla.suse.com/1159281	external
https://bugzilla.suse.com/1161154	external
https://www.suse.com/security/cve/CVE-2019-3846	external
https://bugzilla.suse.com/1136424	external
https://bugzilla.suse.com/1136446	external
https://bugzilla.suse.com/1156330	external
https://www.suse.com/security/cve/CVE-2019-3882	external
https://bugzilla.suse.com/1131416	external
https://bugzilla.suse.com/1131427	external
https://bugzilla.suse.com/1133319	external
https://www.suse.com/security/cve/CVE-2019-3887	external
https://bugzilla.suse.com/1131800	external
https://www.suse.com/security/cve/CVE-2019-6974	external
https://bugzilla.suse.com/1124728	external
https://bugzilla.suse.com/1124729	external
https://www.suse.com/security/cve/CVE-2019-7221	external
https://bugzilla.suse.com/1124732	external
https://bugzilla.suse.com/1124734	external
https://www.suse.com/security/cve/CVE-2019-7222	external
https://bugzilla.suse.com/1124735	external
https://www.suse.com/security/cve/CVE-2019-8564	external
https://bugzilla.suse.com/1132673	external
https://bugzilla.suse.com/1132828	external
https://www.suse.com/security/cve/CVE-2019-8912	external
https://bugzilla.suse.com/1125907	external
https://bugzilla.suse.com/1126284	external
https://www.suse.com/security/cve/CVE-2019-9500	external
https://bugzilla.suse.com/1132681	external
https://www.suse.com/security/cve/CVE-2020-10135	external
https://bugzilla.suse.com/1171988	external
https://www.suse.com/security/cve/CVE-2020-10766	external
https://bugzilla.suse.com/1159281	external
https://bugzilla.suse.com/1172781	external
https://www.suse.com/security/cve/CVE-2020-10767	external
https://bugzilla.suse.com/1159281	external
https://bugzilla.suse.com/1172782	external
https://www.suse.com/security/cve/CVE-2020-10768	external
https://bugzilla.suse.com/1159281	external
https://bugzilla.suse.com/1172783	external
https://www.suse.com/security/cve/CVE-2020-12351	external
https://bugzilla.suse.com/1177724	external
https://bugzilla.suse.com/1177729	external
https://bugzilla.suse.com/1178397	external
https://www.suse.com/security/cve/CVE-2020-12352	external
https://bugzilla.suse.com/1177725	external
https://bugzilla.suse.com/1178398	external
https://www.suse.com/security/cve/CVE-2020-14331	external
https://bugzilla.suse.com/1174205	external
https://bugzilla.suse.com/1174247	external
https://www.suse.com/security/cve/CVE-2020-14386	external
https://bugzilla.suse.com/1176069	external
https://bugzilla.suse.com/1176072	external
https://www.suse.com/security/cve/CVE-2020-24586	external
https://bugzilla.suse.com/1185859	external
https://bugzilla.suse.com/1192868	external
https://www.suse.com/security/cve/CVE-2020-24587	external
https://bugzilla.suse.com/1185859	external
https://bugzilla.suse.com/1185862	external
https://bugzilla.suse.com/1192868	external
https://www.suse.com/security/cve/CVE-2020-24588	external
https://bugzilla.suse.com/1185861	external
https://bugzilla.suse.com/1192868	external
https://bugzilla.suse.com/1199701	external
https://www.suse.com/security/cve/CVE-2020-25639	external
https://bugzilla.suse.com/1176846	external
https://www.suse.com/security/cve/CVE-2020-25656	external
https://bugzilla.suse.com/1177766	external
https://www.suse.com/security/cve/CVE-2020-25668	external
https://bugzilla.suse.com/1178123	external
https://bugzilla.suse.com/1178622	external
https://bugzilla.suse.com/1196914	external
https://www.suse.com/security/cve/CVE-2020-26141	external
https://bugzilla.suse.com/1185987	external
https://www.suse.com/security/cve/CVE-2020-2732	external
https://bugzilla.suse.com/1163971	external
https://www.suse.com/security/cve/CVE-2020-29660	external
https://bugzilla.suse.com/1179745	external
https://bugzilla.suse.com/1179877	external
https://www.suse.com/security/cve/CVE-2020-29661	external
https://bugzilla.suse.com/1179745	external
https://bugzilla.suse.com/1179877	external
https://bugzilla.suse.com/1214268	external
https://bugzilla.suse.com/1218966	external
https://www.suse.com/security/cve/CVE-2020-8648	external
https://bugzilla.suse.com/1162928	external
https://www.suse.com/security/cve/CVE-2020-8694	external
https://bugzilla.suse.com/1170415	external
https://bugzilla.suse.com/1170446	external
https://bugzilla.suse.com/1178591	external
https://bugzilla.suse.com/1178700	external
https://bugzilla.suse.com/1179661	external
https://www.suse.com/security/cve/CVE-2021-23133	external
https://bugzilla.suse.com/1184675	external
https://bugzilla.suse.com/1185901	external
https://www.suse.com/security/cve/CVE-2021-26708	external
https://bugzilla.suse.com/1181806	external
https://bugzilla.suse.com/1183298	external
https://www.suse.com/security/cve/CVE-2021-28971	external
https://bugzilla.suse.com/1184196	external
https://www.suse.com/security/cve/CVE-2021-32606	external
https://bugzilla.suse.com/1185953	external
https://www.suse.com/security/cve/CVE-2021-33909	external
https://bugzilla.suse.com/1188062	external
https://bugzilla.suse.com/1188063	external
https://bugzilla.suse.com/1188257	external
https://bugzilla.suse.com/1189302	external
https://bugzilla.suse.com/1190859	external
https://www.suse.com/security/cve/CVE-2021-3483	external
https://bugzilla.suse.com/1184393	external
https://www.suse.com/security/cve/CVE-2021-3489	external
https://bugzilla.suse.com/1185640	external
https://bugzilla.suse.com/1185856	external
https://www.suse.com/security/cve/CVE-2021-3490	external
https://bugzilla.suse.com/1185641	external
https://bugzilla.suse.com/1185796	external
https://www.suse.com/security/cve/CVE-2021-3491	external
https://bugzilla.suse.com/1185642	external
https://bugzilla.suse.com/1187090	external
https://www.suse.com/security/cve/CVE-2021-3640	external
https://bugzilla.suse.com/1188172	external
https://bugzilla.suse.com/1188613	external
https://bugzilla.suse.com/1191530	external
https://bugzilla.suse.com/1196810	external
https://bugzilla.suse.com/1196914	external
https://www.suse.com/security/cve/CVE-2021-3653	external
https://bugzilla.suse.com/1189399	external
https://bugzilla.suse.com/1189420	external
https://bugzilla.suse.com/1196914	external
https://www.suse.com/security/cve/CVE-2021-3656	external
https://bugzilla.suse.com/1189400	external
https://bugzilla.suse.com/1189418	external
https://www.suse.com/security/cve/CVE-2021-3744	external
https://bugzilla.suse.com/1189884	external
https://bugzilla.suse.com/1190534	external
https://www.suse.com/security/cve/CVE-2021-3753	external
https://bugzilla.suse.com/1190025	external
https://www.suse.com/security/cve/CVE-2021-37576	external
https://bugzilla.suse.com/1188838	external
https://bugzilla.suse.com/1188842	external
https://bugzilla.suse.com/1190276	external
https://www.suse.com/security/cve/CVE-2021-3759	external
https://bugzilla.suse.com/1190115	external
https://www.suse.com/security/cve/CVE-2021-38166	external
https://bugzilla.suse.com/1189233	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "kernel-devel-5.14.6-1.4 on GA media",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "These are all security issues fixed in the kernel-devel-5.14.6-1.4 package on the GA media of openSUSE Tumbleweed.",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "openSUSE-Tumbleweed-2024-10728",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_10728-1.json"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-1000251 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-1000251/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-12153 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-12153/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-13080 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-13080/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-14051 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-14051/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-15129 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-15129/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-15265 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-15265/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-16536 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-16536/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-16537 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-16537/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-16645 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-16645/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-16646 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-16646/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-16647 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-16647/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-16648 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-16648/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-16995 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-16995/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-16996 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-16996/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-17448 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-17448/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-17449 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-17449/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-17450 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-17450/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-17852 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-17852/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-17853 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-17853/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-17854 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-17854/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-17855 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-17855/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-17856 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-17856/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-17857 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-17857/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-17862 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-17862/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-5123 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-5123/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-5715 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-5715/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-5753 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-5753/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-5754 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-5754/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-7541 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-7541/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-7542 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-7542/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-8824 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-8824/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-8831 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-8831/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-1000004 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-1000004/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-10322 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-10322/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-10323 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-10323/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-1068 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-1068/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-1118 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-1118/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-12232 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-12232/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-12714 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-12714/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-13053 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-13053/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-18710 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-18710/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-19824 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-19824/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-5332 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-5332/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-5333 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-5333/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-8043 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-8043/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-8087 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-8087/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-8822 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-8822/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-10207 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-10207/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-11477 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-11477/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-11478 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-11478/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-11479 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-11479/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-14615 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-14615/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-14814 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-14814/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-14896 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-14896/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-15030 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-15030/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-15031 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-15031/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-15098 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-15098/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-15099 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-15099/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-15290 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-15290/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-15504 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-15504/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-15902 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-15902/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-16231 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-16231/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-16232 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-16232/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-16234 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-16234/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-17133 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-17133/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-17666 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-17666/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-18808 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-18808/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-18812 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-18812/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-18813 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-18813/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-19252 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-19252/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-19332 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-19332/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-19338 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-19338/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-3016 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-3016/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-3846 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-3846/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-3882 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-3882/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-3887 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-3887/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-6974 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-6974/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-7221 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-7221/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-7222 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-7222/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-8564 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-8564/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-8912 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-8912/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-9500 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-9500/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-10135 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-10135/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-10766 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-10766/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-10767 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-10767/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-10768 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-10768/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-12351 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-12351/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-12352 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-12352/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-14331 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-14331/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-14386 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-14386/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-24586 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-24586/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-24587 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-24587/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-24588 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-24588/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-25639 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-25639/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-25656 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-25656/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-25668 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-25668/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-26141 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-26141/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-2732 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-2732/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-29660 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-29660/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-29661 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-29661/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-8648 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-8648/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-8694 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-8694/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-23133 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-23133/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-26708 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-26708/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-28971 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-28971/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-32606 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-32606/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-33909 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-33909/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-3483 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-3483/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-3489 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-3489/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-3490 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-3490/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-3491 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-3491/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-3640 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-3640/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-3653 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-3653/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-3656 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-3656/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-3744 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-3744/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-3753 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-3753/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-37576 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-37576/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-3759 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-3759/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-38166 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-38166/"
      }
    ],
    "title": "kernel-devel-5.14.6-1.4 on GA media",
    "tracking": {
      "current_release_date": "2024-06-15T00:00:00Z",
      "generator": {
        "date": "2024-06-15T00:00:00Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "openSUSE-SU-2024:10728-1",
      "initial_release_date": "2024-06-15T00:00:00Z",
      "revision_history": [
        {
          "date": "2024-06-15T00:00:00Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-devel-5.14.6-1.4.aarch64",
                "product": {
                  "name": "kernel-devel-5.14.6-1.4.aarch64",
                  "product_id": "kernel-devel-5.14.6-1.4.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-macros-5.14.6-1.4.aarch64",
                "product": {
                  "name": "kernel-macros-5.14.6-1.4.aarch64",
                  "product_id": "kernel-macros-5.14.6-1.4.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-source-5.14.6-1.4.aarch64",
                "product": {
                  "name": "kernel-source-5.14.6-1.4.aarch64",
                  "product_id": "kernel-source-5.14.6-1.4.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-source-vanilla-5.14.6-1.4.aarch64",
                "product": {
                  "name": "kernel-source-vanilla-5.14.6-1.4.aarch64",
                  "product_id": "kernel-source-vanilla-5.14.6-1.4.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-devel-5.14.6-1.4.ppc64le",
                "product": {
                  "name": "kernel-devel-5.14.6-1.4.ppc64le",
                  "product_id": "kernel-devel-5.14.6-1.4.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-macros-5.14.6-1.4.ppc64le",
                "product": {
                  "name": "kernel-macros-5.14.6-1.4.ppc64le",
                  "product_id": "kernel-macros-5.14.6-1.4.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-source-5.14.6-1.4.ppc64le",
                "product": {
                  "name": "kernel-source-5.14.6-1.4.ppc64le",
                  "product_id": "kernel-source-5.14.6-1.4.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-source-vanilla-5.14.6-1.4.ppc64le",
                "product": {
                  "name": "kernel-source-vanilla-5.14.6-1.4.ppc64le",
                  "product_id": "kernel-source-vanilla-5.14.6-1.4.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-devel-5.14.6-1.4.s390x",
                "product": {
                  "name": "kernel-devel-5.14.6-1.4.s390x",
                  "product_id": "kernel-devel-5.14.6-1.4.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-macros-5.14.6-1.4.s390x",
                "product": {
                  "name": "kernel-macros-5.14.6-1.4.s390x",
                  "product_id": "kernel-macros-5.14.6-1.4.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-source-5.14.6-1.4.s390x",
                "product": {
                  "name": "kernel-source-5.14.6-1.4.s390x",
                  "product_id": "kernel-source-5.14.6-1.4.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-source-vanilla-5.14.6-1.4.s390x",
                "product": {
                  "name": "kernel-source-vanilla-5.14.6-1.4.s390x",
                  "product_id": "kernel-source-vanilla-5.14.6-1.4.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-devel-5.14.6-1.4.x86_64",
                "product": {
                  "name": "kernel-devel-5.14.6-1.4.x86_64",
                  "product_id": "kernel-devel-5.14.6-1.4.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-macros-5.14.6-1.4.x86_64",
                "product": {
                  "name": "kernel-macros-5.14.6-1.4.x86_64",
                  "product_id": "kernel-macros-5.14.6-1.4.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-source-5.14.6-1.4.x86_64",
                "product": {
                  "name": "kernel-source-5.14.6-1.4.x86_64",
                  "product_id": "kernel-source-5.14.6-1.4.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-source-vanilla-5.14.6-1.4.x86_64",
                "product": {
                  "name": "kernel-source-vanilla-5.14.6-1.4.x86_64",
                  "product_id": "kernel-source-vanilla-5.14.6-1.4.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "openSUSE Tumbleweed",
                "product": {
                  "name": "openSUSE Tumbleweed",
                  "product_id": "openSUSE Tumbleweed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:tumbleweed"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-5.14.6-1.4.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64"
        },
        "product_reference": "kernel-devel-5.14.6-1.4.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-5.14.6-1.4.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le"
        },
        "product_reference": "kernel-devel-5.14.6-1.4.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-5.14.6-1.4.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x"
        },
        "product_reference": "kernel-devel-5.14.6-1.4.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-5.14.6-1.4.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64"
        },
        "product_reference": "kernel-devel-5.14.6-1.4.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-macros-5.14.6-1.4.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64"
        },
        "product_reference": "kernel-macros-5.14.6-1.4.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-macros-5.14.6-1.4.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le"
        },
        "product_reference": "kernel-macros-5.14.6-1.4.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-macros-5.14.6-1.4.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x"
        },
        "product_reference": "kernel-macros-5.14.6-1.4.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-macros-5.14.6-1.4.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64"
        },
        "product_reference": "kernel-macros-5.14.6-1.4.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-5.14.6-1.4.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64"
        },
        "product_reference": "kernel-source-5.14.6-1.4.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-5.14.6-1.4.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le"
        },
        "product_reference": "kernel-source-5.14.6-1.4.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-5.14.6-1.4.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x"
        },
        "product_reference": "kernel-source-5.14.6-1.4.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-5.14.6-1.4.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64"
        },
        "product_reference": "kernel-source-5.14.6-1.4.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-vanilla-5.14.6-1.4.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64"
        },
        "product_reference": "kernel-source-vanilla-5.14.6-1.4.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-vanilla-5.14.6-1.4.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le"
        },
        "product_reference": "kernel-source-vanilla-5.14.6-1.4.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-vanilla-5.14.6-1.4.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x"
        },
        "product_reference": "kernel-source-vanilla-5.14.6-1.4.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-vanilla-5.14.6-1.4.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        },
        "product_reference": "kernel-source-vanilla-5.14.6-1.4.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2017-1000251",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-1000251"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The native Bluetooth stack in the Linux Kernel (BlueZ), starting at the Linux kernel version 2.6.32 and up to and including 4.13.1, are vulnerable to a stack overflow vulnerability in the processing of L2CAP configuration responses resulting in Remote code execution in kernel space.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-1000251",
          "url": "https://www.suse.com/security/cve/CVE-2017-1000251"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1057389 for CVE-2017-1000251",
          "url": "https://bugzilla.suse.com/1057389"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1057950 for CVE-2017-1000251",
          "url": "https://bugzilla.suse.com/1057950"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1070535 for CVE-2017-1000251",
          "url": "https://bugzilla.suse.com/1070535"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1072117 for CVE-2017-1000251",
          "url": "https://bugzilla.suse.com/1072117"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1072162 for CVE-2017-1000251",
          "url": "https://bugzilla.suse.com/1072162"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1120758 for CVE-2017-1000251",
          "url": "https://bugzilla.suse.com/1120758"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-1000251"
    },
    {
      "cve": "CVE-2017-12153",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-12153"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A security flaw was discovered in the nl80211_set_rekey_data() function in net/wireless/nl80211.c in the Linux kernel through 4.13.3. This function does not check whether the required attributes are present in a Netlink request. This request can be issued by a user with the CAP_NET_ADMIN capability and may result in a NULL pointer dereference and system crash.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-12153",
          "url": "https://www.suse.com/security/cve/CVE-2017-12153"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1058410 for CVE-2017-12153",
          "url": "https://bugzilla.suse.com/1058410"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1058624 for CVE-2017-12153",
          "url": "https://bugzilla.suse.com/1058624"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2017-12153"
    },
    {
      "cve": "CVE-2017-13080",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-13080"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Group Temporal Key (GTK) during the group key handshake, allowing an attacker within radio range to replay frames from access points to clients.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-13080",
          "url": "https://www.suse.com/security/cve/CVE-2017-13080"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1056061 for CVE-2017-13080",
          "url": "https://bugzilla.suse.com/1056061"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1063479 for CVE-2017-13080",
          "url": "https://bugzilla.suse.com/1063479"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1063667 for CVE-2017-13080",
          "url": "https://bugzilla.suse.com/1063667"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1063671 for CVE-2017-13080",
          "url": "https://bugzilla.suse.com/1063671"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1066295 for CVE-2017-13080",
          "url": "https://bugzilla.suse.com/1066295"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1105108 for CVE-2017-13080",
          "url": "https://bugzilla.suse.com/1105108"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178872 for CVE-2017-13080",
          "url": "https://bugzilla.suse.com/1178872"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1179588 for CVE-2017-13080",
          "url": "https://bugzilla.suse.com/1179588"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-13080"
    },
    {
      "cve": "CVE-2017-14051",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-14051"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An integer overflow in the qla2x00_sysfs_write_optrom_ctl function in drivers/scsi/qla2xxx/qla_attr.c in the Linux kernel through 4.12.10 allows local users to cause a denial of service (memory corruption and system crash) by leveraging root access.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-14051",
          "url": "https://www.suse.com/security/cve/CVE-2017-14051"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1056588 for CVE-2017-14051",
          "url": "https://bugzilla.suse.com/1056588"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-14051"
    },
    {
      "cve": "CVE-2017-15129",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-15129"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A use-after-free vulnerability was found in network namespaces code affecting the Linux kernel before 4.14.11. The function get_net_ns_by_id() in net/core/net_namespace.c does not check for the net::count value after it has found a peer network in netns_ids idr, which could lead to double free and memory corruption. This vulnerability could allow an unprivileged local user to induce kernel memory corruption on the system, leading to a crash. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although it is thought to be unlikely.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-15129",
          "url": "https://www.suse.com/security/cve/CVE-2017-15129"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074839 for CVE-2017-15129",
          "url": "https://bugzilla.suse.com/1074839"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-15129"
    },
    {
      "cve": "CVE-2017-15265",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-15265"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Race condition in the ALSA subsystem in the Linux kernel before 4.13.8 allows local users to cause a denial of service (use-after-free) or possibly have unspecified other impact via crafted /dev/snd/seq ioctl calls, related to sound/core/seq/seq_clientmgr.c and sound/core/seq/seq_ports.c.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-15265",
          "url": "https://www.suse.com/security/cve/CVE-2017-15265"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1062520 for CVE-2017-15265",
          "url": "https://bugzilla.suse.com/1062520"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1115893 for CVE-2017-15265",
          "url": "https://bugzilla.suse.com/1115893"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-15265"
    },
    {
      "cve": "CVE-2017-16536",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-16536"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The cx231xx_usb_probe function in drivers/media/usb/cx231xx/cx231xx-cards.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via a crafted USB device.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-16536",
          "url": "https://www.suse.com/security/cve/CVE-2017-16536"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1066606 for CVE-2017-16536",
          "url": "https://bugzilla.suse.com/1066606"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2017-16536",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146519 for CVE-2017-16536",
          "url": "https://bugzilla.suse.com/1146519"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-16536"
    },
    {
      "cve": "CVE-2017-16537",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-16537"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The imon_probe function in drivers/media/rc/imon.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via a crafted USB device.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-16537",
          "url": "https://www.suse.com/security/cve/CVE-2017-16537"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1066573 for CVE-2017-16537",
          "url": "https://bugzilla.suse.com/1066573"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2017-16537",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146519 for CVE-2017-16537",
          "url": "https://bugzilla.suse.com/1146519"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-16537"
    },
    {
      "cve": "CVE-2017-16645",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-16645"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The ims_pcu_get_cdc_union_desc function in drivers/input/misc/ims-pcu.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (ims_pcu_parse_cdc_data out-of-bounds read and system crash) or possibly have unspecified other impact via a crafted USB device.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-16645",
          "url": "https://www.suse.com/security/cve/CVE-2017-16645"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1067132 for CVE-2017-16645",
          "url": "https://bugzilla.suse.com/1067132"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2017-16645",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146519 for CVE-2017-16645",
          "url": "https://bugzilla.suse.com/1146519"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-16645"
    },
    {
      "cve": "CVE-2017-16646",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-16646"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "drivers/media/usb/dvb-usb/dib0700_devices.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (BUG and system crash) or possibly have unspecified other impact via a crafted USB device.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-16646",
          "url": "https://www.suse.com/security/cve/CVE-2017-16646"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1067105 for CVE-2017-16646",
          "url": "https://bugzilla.suse.com/1067105"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146519 for CVE-2017-16646",
          "url": "https://bugzilla.suse.com/1146519"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-16646"
    },
    {
      "cve": "CVE-2017-16647",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-16647"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "drivers/net/usb/asix_devices.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via a crafted USB device.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-16647",
          "url": "https://www.suse.com/security/cve/CVE-2017-16647"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1067102 for CVE-2017-16647",
          "url": "https://bugzilla.suse.com/1067102"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146519 for CVE-2017-16647",
          "url": "https://bugzilla.suse.com/1146519"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-16647"
    },
    {
      "cve": "CVE-2017-16648",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-16648"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The dvb_frontend_free function in drivers/media/dvb-core/dvb_frontend.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (use-after-free and system crash) or possibly have unspecified other impact via a crafted USB device. NOTE: the function was later renamed __dvb_frontend_free.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-16648",
          "url": "https://www.suse.com/security/cve/CVE-2017-16648"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1067087 for CVE-2017-16648",
          "url": "https://bugzilla.suse.com/1067087"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2017-16648",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146519 for CVE-2017-16648",
          "url": "https://bugzilla.suse.com/1146519"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-16648"
    },
    {
      "cve": "CVE-2017-16995",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-16995"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The check_alu_op function in kernel/bpf/verifier.c in the Linux kernel through 4.4 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging incorrect sign extension.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-16995",
          "url": "https://www.suse.com/security/cve/CVE-2017-16995"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1073928 for CVE-2017-16995",
          "url": "https://bugzilla.suse.com/1073928"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-16995"
    },
    {
      "cve": "CVE-2017-16996",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-16996"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "kernel/bpf/verifier.c in the Linux kernel through 4.14.8 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging register truncation mishandling.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-16996",
          "url": "https://www.suse.com/security/cve/CVE-2017-16996"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1073928 for CVE-2017-16996",
          "url": "https://bugzilla.suse.com/1073928"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-16996"
    },
    {
      "cve": "CVE-2017-17448",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-17448"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "net/netfilter/nfnetlink_cthelper.c in the Linux kernel through 4.14.4 does not require the CAP_NET_ADMIN capability for new, get, and del operations, which allows local users to bypass intended access restrictions because the nfnl_cthelper_list data structure is shared across all net namespaces.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-17448",
          "url": "https://www.suse.com/security/cve/CVE-2017-17448"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1071693 for CVE-2017-17448",
          "url": "https://bugzilla.suse.com/1071693"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-17448"
    },
    {
      "cve": "CVE-2017-17449",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-17449"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The __netlink_deliver_tap_skb function in net/netlink/af_netlink.c in the Linux kernel through 4.14.4, when CONFIG_NLMON is enabled, does not restrict observations of Netlink messages to a single net namespace, which allows local users to obtain sensitive information by leveraging the CAP_NET_ADMIN capability to sniff an nlmon interface for all Netlink activity on the system.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-17449",
          "url": "https://www.suse.com/security/cve/CVE-2017-17449"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1071694 for CVE-2017-17449",
          "url": "https://bugzilla.suse.com/1071694"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-17449"
    },
    {
      "cve": "CVE-2017-17450",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-17450"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "net/netfilter/xt_osf.c in the Linux kernel through 4.14.4 does not require the CAP_NET_ADMIN capability for add_callback and remove_callback operations, which allows local users to bypass intended access restrictions because the xt_osf_fingers data structure is shared across all net namespaces.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-17450",
          "url": "https://www.suse.com/security/cve/CVE-2017-17450"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1071695 for CVE-2017-17450",
          "url": "https://bugzilla.suse.com/1071695"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074033 for CVE-2017-17450",
          "url": "https://bugzilla.suse.com/1074033"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1115893 for CVE-2017-17450",
          "url": "https://bugzilla.suse.com/1115893"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-17450"
    },
    {
      "cve": "CVE-2017-17852",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-17852"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "kernel/bpf/verifier.c in the Linux kernel through 4.14.8 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging mishandling of 32-bit ALU ops.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-17852",
          "url": "https://www.suse.com/security/cve/CVE-2017-17852"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1073928 for CVE-2017-17852",
          "url": "https://bugzilla.suse.com/1073928"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-17852"
    },
    {
      "cve": "CVE-2017-17853",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-17853"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "kernel/bpf/verifier.c in the Linux kernel through 4.14.8 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging incorrect BPF_RSH signed bounds calculations.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-17853",
          "url": "https://www.suse.com/security/cve/CVE-2017-17853"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1073928 for CVE-2017-17853",
          "url": "https://bugzilla.suse.com/1073928"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-17853"
    },
    {
      "cve": "CVE-2017-17854",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-17854"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "kernel/bpf/verifier.c in the Linux kernel through 4.14.8 allows local users to cause a denial of service (integer overflow and memory corruption) or possibly have unspecified other impact by leveraging unrestricted integer values for pointer arithmetic.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-17854",
          "url": "https://www.suse.com/security/cve/CVE-2017-17854"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1073928 for CVE-2017-17854",
          "url": "https://bugzilla.suse.com/1073928"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-17854"
    },
    {
      "cve": "CVE-2017-17855",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-17855"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "kernel/bpf/verifier.c in the Linux kernel through 4.14.8 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging improper use of pointers in place of scalars.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-17855",
          "url": "https://www.suse.com/security/cve/CVE-2017-17855"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1073928 for CVE-2017-17855",
          "url": "https://bugzilla.suse.com/1073928"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-17855"
    },
    {
      "cve": "CVE-2017-17856",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-17856"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "kernel/bpf/verifier.c in the Linux kernel through 4.14.8 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging the lack of stack-pointer alignment enforcement.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-17856",
          "url": "https://www.suse.com/security/cve/CVE-2017-17856"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1073928 for CVE-2017-17856",
          "url": "https://bugzilla.suse.com/1073928"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-17856"
    },
    {
      "cve": "CVE-2017-17857",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-17857"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The check_stack_boundary function in kernel/bpf/verifier.c in the Linux kernel through 4.14.8 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging mishandling of invalid variable stack read operations.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-17857",
          "url": "https://www.suse.com/security/cve/CVE-2017-17857"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1073928 for CVE-2017-17857",
          "url": "https://bugzilla.suse.com/1073928"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-17857"
    },
    {
      "cve": "CVE-2017-17862",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-17862"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "kernel/bpf/verifier.c in the Linux kernel through 4.14.8 ignores unreachable code, even though it would still be processed by JIT compilers. This behavior, also considered an improper branch-pruning logic issue, could possibly be used by local users for denial of service.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-17862",
          "url": "https://www.suse.com/security/cve/CVE-2017-17862"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1073928 for CVE-2017-17862",
          "url": "https://bugzilla.suse.com/1073928"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-17862"
    },
    {
      "cve": "CVE-2017-5123",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-5123"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Insufficient data validation in waitid allowed an user to escape sandboxes on Linux.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-5123",
          "url": "https://www.suse.com/security/cve/CVE-2017-5123"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1062473 for CVE-2017-5123",
          "url": "https://bugzilla.suse.com/1062473"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1122971 for CVE-2017-5123",
          "url": "https://bugzilla.suse.com/1122971"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2017-5123"
    },
    {
      "cve": "CVE-2017-5715",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-5715"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-5715",
          "url": "https://www.suse.com/security/cve/CVE-2017-5715"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1068032 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1068032"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074562 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1074562"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074578 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1074578"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074701 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1074701"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074741 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1074741"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074919 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1074919"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075006 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1075006"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075007 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1075007"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075262 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1075262"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075419 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1075419"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1076115 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1076115"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1076372 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1076372"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1076606 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1076606"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1078353 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1078353"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1080039 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1080039"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087887 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1087887"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087939 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1087939"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1088147 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1088147"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1089055 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1089055"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1091815 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1091815"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1095735 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1095735"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1102517 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1102517"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1105108 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1105108"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1126516 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1126516"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1173489 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1173489"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178658 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1178658"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1201457 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1201457"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1201877 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1201877"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1203236 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1203236"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2017-5715"
    },
    {
      "cve": "CVE-2017-5753",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-5753"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-5753",
          "url": "https://www.suse.com/security/cve/CVE-2017-5753"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1068032 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1068032"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074562 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1074562"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074578 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1074578"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074701 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1074701"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075006 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1075006"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075419 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1075419"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075748 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1075748"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1080039 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1080039"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087084 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1087084"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087939 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1087939"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1089055 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1089055"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1136865 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1136865"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178658 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1178658"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1201877 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1201877"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1209547 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1209547"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2017-5753"
    },
    {
      "cve": "CVE-2017-5754",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-5754"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis of the data cache.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-5754",
          "url": "https://www.suse.com/security/cve/CVE-2017-5754"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1068032 for CVE-2017-5754",
          "url": "https://bugzilla.suse.com/1068032"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074562 for CVE-2017-5754",
          "url": "https://bugzilla.suse.com/1074562"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074578 for CVE-2017-5754",
          "url": "https://bugzilla.suse.com/1074578"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074701 for CVE-2017-5754",
          "url": "https://bugzilla.suse.com/1074701"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075006 for CVE-2017-5754",
          "url": "https://bugzilla.suse.com/1075006"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075008 for CVE-2017-5754",
          "url": "https://bugzilla.suse.com/1075008"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087939 for CVE-2017-5754",
          "url": "https://bugzilla.suse.com/1087939"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1089055 for CVE-2017-5754",
          "url": "https://bugzilla.suse.com/1089055"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1115045 for CVE-2017-5754",
          "url": "https://bugzilla.suse.com/1115045"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1136865 for CVE-2017-5754",
          "url": "https://bugzilla.suse.com/1136865"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178658 for CVE-2017-5754",
          "url": "https://bugzilla.suse.com/1178658"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1201877 for CVE-2017-5754",
          "url": "https://bugzilla.suse.com/1201877"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2017-5754"
    },
    {
      "cve": "CVE-2017-7541",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-7541"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The brcmf_cfg80211_mgmt_tx function in drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c in the Linux kernel before 4.12.3 allows local users to cause a denial of service (buffer overflow and system crash) or possibly gain privileges via a crafted NL80211_CMD_FRAME Netlink packet.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-7541",
          "url": "https://www.suse.com/security/cve/CVE-2017-7541"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1049645 for CVE-2017-7541",
          "url": "https://bugzilla.suse.com/1049645"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-7541"
    },
    {
      "cve": "CVE-2017-7542",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-7542"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The ip6_find_1stfragopt function in net/ipv6/output_core.c in the Linux kernel through 4.12.3 allows local users to cause a denial of service (integer overflow and infinite loop) by leveraging the ability to open a raw socket.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-7542",
          "url": "https://www.suse.com/security/cve/CVE-2017-7542"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1049882 for CVE-2017-7542",
          "url": "https://bugzilla.suse.com/1049882"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1061936 for CVE-2017-7542",
          "url": "https://bugzilla.suse.com/1061936"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-7542"
    },
    {
      "cve": "CVE-2017-8824",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-8824"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The dccp_disconnect function in net/dccp/proto.c in the Linux kernel through 4.14.3 allows local users to gain privileges or cause a denial of service (use-after-free) via an AF_UNSPEC connect system call during the DCCP_LISTEN state.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-8824",
          "url": "https://www.suse.com/security/cve/CVE-2017-8824"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1070771 for CVE-2017-8824",
          "url": "https://bugzilla.suse.com/1070771"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1076734 for CVE-2017-8824",
          "url": "https://bugzilla.suse.com/1076734"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1092904 for CVE-2017-8824",
          "url": "https://bugzilla.suse.com/1092904"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1115893 for CVE-2017-8824",
          "url": "https://bugzilla.suse.com/1115893"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2017-8824"
    },
    {
      "cve": "CVE-2017-8831",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-8831"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The saa7164_bus_get function in drivers/media/pci/saa7164/saa7164-bus.c in the Linux kernel through 4.11.5 allows local users to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact by changing a certain sequence-number value, aka a \"double fetch\" vulnerability.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-8831",
          "url": "https://www.suse.com/security/cve/CVE-2017-8831"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1037994 for CVE-2017-8831",
          "url": "https://bugzilla.suse.com/1037994"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1061936 for CVE-2017-8831",
          "url": "https://bugzilla.suse.com/1061936"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2017-8831",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1115893 for CVE-2017-8831",
          "url": "https://bugzilla.suse.com/1115893"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-8831"
    },
    {
      "cve": "CVE-2018-1000004",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-1000004"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel 4.12, 3.10, 2.6 and possibly earlier versions a race condition vulnerability exists in the sound system, this can lead to a deadlock and denial of service condition.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-1000004",
          "url": "https://www.suse.com/security/cve/CVE-2018-1000004"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1076017 for CVE-2018-1000004",
          "url": "https://bugzilla.suse.com/1076017"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1091815 for CVE-2018-1000004",
          "url": "https://bugzilla.suse.com/1091815"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-1000004"
    },
    {
      "cve": "CVE-2018-10322",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-10322"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The xfs_dinode_verify function in fs/xfs/libxfs/xfs_inode_buf.c in the Linux kernel through 4.16.3 allows local users to cause a denial of service (xfs_ilock_attr_map_shared invalid pointer dereference) via a crafted xfs image.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-10322",
          "url": "https://www.suse.com/security/cve/CVE-2018-10322"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2018-10322",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1090749 for CVE-2018-10322",
          "url": "https://bugzilla.suse.com/1090749"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-10322"
    },
    {
      "cve": "CVE-2018-10323",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-10323"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The xfs_bmap_extents_to_btree function in fs/xfs/libxfs/xfs_bmap.c in the Linux kernel through 4.16.3 allows local users to cause a denial of service (xfs_bmapi_write NULL pointer dereference) via a crafted xfs image.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-10323",
          "url": "https://www.suse.com/security/cve/CVE-2018-10323"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2018-10323",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1090717 for CVE-2018-10323",
          "url": "https://bugzilla.suse.com/1090717"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-10323"
    },
    {
      "cve": "CVE-2018-1068",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-1068"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Linux 4.x kernel\u0027s implementation of 32-bit syscall interface for bridging. This allowed a privileged user to arbitrarily write to a limited range of kernel memory.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-1068",
          "url": "https://www.suse.com/security/cve/CVE-2018-1068"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1085107 for CVE-2018-1068",
          "url": "https://bugzilla.suse.com/1085107"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1085114 for CVE-2018-1068",
          "url": "https://bugzilla.suse.com/1085114"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2018-1068",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1123903 for CVE-2018-1068",
          "url": "https://bugzilla.suse.com/1123903"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2018-1068"
    },
    {
      "cve": "CVE-2018-1118",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-1118"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Linux kernel vhost since version 4.8 does not properly initialize memory in messages passed between virtual guests and the host operating system in the vhost/vhost.c:vhost_new_msg() function. This can allow local privileged users to read some kernel memory contents when reading from the /dev/vhost-net device file.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-1118",
          "url": "https://www.suse.com/security/cve/CVE-2018-1118"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2018-1118",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1092472 for CVE-2018-1118",
          "url": "https://bugzilla.suse.com/1092472"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2018-1118"
    },
    {
      "cve": "CVE-2018-12232",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-12232"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In net/socket.c in the Linux kernel through 4.17.1, there is a race condition between fchownat and close in cases where they target the same socket file descriptor, related to the sock_close and sockfs_setattr functions. fchownat does not increment the file descriptor reference count, which allows close to set the socket to NULL during fchownat\u0027s execution, leading to a NULL pointer dereference and system crash.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-12232",
          "url": "https://www.suse.com/security/cve/CVE-2018-12232"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2018-12232",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1097593 for CVE-2018-12232",
          "url": "https://bugzilla.suse.com/1097593"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1125907 for CVE-2018-12232",
          "url": "https://bugzilla.suse.com/1125907"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1127757 for CVE-2018-12232",
          "url": "https://bugzilla.suse.com/1127757"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-12232"
    },
    {
      "cve": "CVE-2018-12714",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-12714"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in the Linux kernel through 4.17.2. The filter parsing in kernel/trace/trace_events_filter.c could be called with no filter, which is an N=0 case when it expected at least one line to have been read, thus making the N-1 index invalid. This allows attackers to cause a denial of service (slab out-of-bounds write) or possibly have unspecified other impact via crafted perf_event_open and mmap system calls.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-12714",
          "url": "https://www.suse.com/security/cve/CVE-2018-12714"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1098933 for CVE-2018-12714",
          "url": "https://bugzilla.suse.com/1098933"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2018-12714"
    },
    {
      "cve": "CVE-2018-13053",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-13053"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The alarm_timer_nsleep function in kernel/time/alarmtimer.c in the Linux kernel through 4.17.3 has an integer overflow via a large relative timeout because ktime_add_safe is not used.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-13053",
          "url": "https://www.suse.com/security/cve/CVE-2018-13053"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1099924 for CVE-2018-13053",
          "url": "https://bugzilla.suse.com/1099924"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1115893 for CVE-2018-13053",
          "url": "https://bugzilla.suse.com/1115893"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2018-13053"
    },
    {
      "cve": "CVE-2018-18710",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-18710"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in the Linux kernel through 4.19. An information leak in cdrom_ioctl_select_disc in drivers/cdrom/cdrom.c could be used by local attackers to read kernel memory because a cast from unsigned long to int interferes with bounds checking. This is similar to CVE-2018-10940 and CVE-2018-16658.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-18710",
          "url": "https://www.suse.com/security/cve/CVE-2018-18710"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1113751 for CVE-2018-18710",
          "url": "https://bugzilla.suse.com/1113751"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-18710"
    },
    {
      "cve": "CVE-2018-19824",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-19824"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel through 4.19.6, a local user could exploit a use-after-free in the ALSA driver by supplying a malicious USB Sound device (with zero interfaces) that is mishandled in usb_audio_probe in sound/usb/card.c.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-19824",
          "url": "https://www.suse.com/security/cve/CVE-2018-19824"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118152 for CVE-2018-19824",
          "url": "https://bugzilla.suse.com/1118152"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-19824"
    },
    {
      "cve": "CVE-2018-5332",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-5332"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel through 3.2, the rds_message_alloc_sgs() function does not validate a value that is used during DMA page allocation, leading to a heap-based out-of-bounds write (related to the rds_rdma_extra_size function in net/rds/rdma.c).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-5332",
          "url": "https://www.suse.com/security/cve/CVE-2018-5332"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075621 for CVE-2018-5332",
          "url": "https://bugzilla.suse.com/1075621"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1091815 for CVE-2018-5332",
          "url": "https://bugzilla.suse.com/1091815"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1115893 for CVE-2018-5332",
          "url": "https://bugzilla.suse.com/1115893"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.6,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2018-5332"
    },
    {
      "cve": "CVE-2018-5333",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-5333"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel through 4.14.13, the rds_cmsg_atomic function in net/rds/rdma.c mishandles cases where page pinning fails or an invalid address is supplied, leading to an rds_atomic_free_op NULL pointer dereference.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-5333",
          "url": "https://www.suse.com/security/cve/CVE-2018-5333"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075617 for CVE-2018-5333",
          "url": "https://bugzilla.suse.com/1075617"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1091815 for CVE-2018-5333",
          "url": "https://bugzilla.suse.com/1091815"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 2.9,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2018-5333"
    },
    {
      "cve": "CVE-2018-8043",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-8043"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The unimac_mdio_probe function in drivers/net/phy/mdio-bcm-unimac.c in the Linux kernel through 4.15.8 does not validate certain resource availability, which allows local users to cause a denial of service (NULL pointer dereference).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-8043",
          "url": "https://www.suse.com/security/cve/CVE-2018-8043"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1084829 for CVE-2018-8043",
          "url": "https://bugzilla.suse.com/1084829"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 0,
            "baseSeverity": "NONE",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2018-8043"
    },
    {
      "cve": "CVE-2018-8087",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-8087"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Memory leak in the hwsim_new_radio_nl function in drivers/net/wireless/mac80211_hwsim.c in the Linux kernel through 4.15.9 allows local users to cause a denial of service (memory consumption) by triggering an out-of-array error case.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-8087",
          "url": "https://www.suse.com/security/cve/CVE-2018-8087"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1085053 for CVE-2018-8087",
          "url": "https://bugzilla.suse.com/1085053"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-8087"
    },
    {
      "cve": "CVE-2018-8822",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-8822"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Incorrect buffer length handling in the ncp_read_kernel function in fs/ncpfs/ncplib_kernel.c in the Linux kernel through 4.15.11, and in drivers/staging/ncpfs/ncplib_kernel.c in the Linux kernel 4.16-rc through 4.16-rc6, could be exploited by malicious NCPFS servers to crash the kernel or execute code.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-8822",
          "url": "https://www.suse.com/security/cve/CVE-2018-8822"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1086162 for CVE-2018-8822",
          "url": "https://bugzilla.suse.com/1086162"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1090404 for CVE-2018-8822",
          "url": "https://bugzilla.suse.com/1090404"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1091815 for CVE-2018-8822",
          "url": "https://bugzilla.suse.com/1091815"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-8822"
    },
    {
      "cve": "CVE-2019-10207",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-10207"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Linux kernel\u0027s Bluetooth implementation of UART, all versions kernel 3.x.x before 4.18.0 and kernel 5.x.x. An attacker with local access and write permissions to the Bluetooth hardware could use this flaw to issue a specially crafted ioctl function call and cause the system to crash.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-10207",
          "url": "https://www.suse.com/security/cve/CVE-2019-10207"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1123959 for CVE-2019-10207",
          "url": "https://bugzilla.suse.com/1123959"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1142857 for CVE-2019-10207",
          "url": "https://bugzilla.suse.com/1142857"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2019-10207"
    },
    {
      "cve": "CVE-2019-11477",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-11477"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Jonathan Looney discovered that the TCP_SKB_CB(skb)-\u003etcp_gso_segs value was subject to an integer overflow in the Linux kernel when handling TCP Selective Acknowledgments (SACKs). A remote attacker could use this to cause a denial of service. This has been fixed in stable kernel releases 4.4.182, 4.9.182, 4.14.127, 4.19.52, 5.1.11, and is fixed in commit 3b4929f65b0d8249f19a50245cd88ed1a2f78cff.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-11477",
          "url": "https://www.suse.com/security/cve/CVE-2019-11477"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1132686 for CVE-2019-11477",
          "url": "https://bugzilla.suse.com/1132686"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1137586 for CVE-2019-11477",
          "url": "https://bugzilla.suse.com/1137586"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1142129 for CVE-2019-11477",
          "url": "https://bugzilla.suse.com/1142129"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1153242 for CVE-2019-11477",
          "url": "https://bugzilla.suse.com/1153242"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.2,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2019-11477"
    },
    {
      "cve": "CVE-2019-11478",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-11478"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Jonathan Looney discovered that the TCP retransmission queue implementation in tcp_fragment in the Linux kernel could be fragmented when handling certain TCP Selective Acknowledgment (SACK) sequences. A remote attacker could use this to cause a denial of service. This has been fixed in stable kernel releases 4.4.182, 4.9.182, 4.14.127, 4.19.52, 5.1.11, and is fixed in commit f070ef2ac66716357066b683fb0baf55f8191a2e.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-11478",
          "url": "https://www.suse.com/security/cve/CVE-2019-11478"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1132686 for CVE-2019-11478",
          "url": "https://bugzilla.suse.com/1132686"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1137586 for CVE-2019-11478",
          "url": "https://bugzilla.suse.com/1137586"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1142129 for CVE-2019-11478",
          "url": "https://bugzilla.suse.com/1142129"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1143542 for CVE-2019-11478",
          "url": "https://bugzilla.suse.com/1143542"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2019-11478"
    },
    {
      "cve": "CVE-2019-11479",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-11479"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Jonathan Looney discovered that the Linux kernel default MSS is hard-coded to 48 bytes. This allows a remote peer to fragment TCP resend queues significantly more than if a larger MSS were enforced. A remote attacker could use this to cause a denial of service. This has been fixed in stable kernel releases 4.4.182, 4.9.182, 4.14.127, 4.19.52, 5.1.11, and is fixed in commits 967c05aee439e6e5d7d805e195b3a20ef5c433d6 and 5f3e2bf008c2221478101ee72f5cb4654b9fc363.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-11479",
          "url": "https://www.suse.com/security/cve/CVE-2019-11479"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1132686 for CVE-2019-11479",
          "url": "https://bugzilla.suse.com/1132686"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1137586 for CVE-2019-11479",
          "url": "https://bugzilla.suse.com/1137586"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1142129 for CVE-2019-11479",
          "url": "https://bugzilla.suse.com/1142129"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1143542 for CVE-2019-11479",
          "url": "https://bugzilla.suse.com/1143542"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2019-11479"
    },
    {
      "cve": "CVE-2019-14615",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-14615"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Insufficient control flow in certain data structures for some Intel(R) Processors with Intel(R) Processor Graphics may allow an unauthenticated user to potentially enable information disclosure via local access.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-14615",
          "url": "https://www.suse.com/security/cve/CVE-2019-14615"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1160195 for CVE-2019-14615",
          "url": "https://bugzilla.suse.com/1160195"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1165881 for CVE-2019-14615",
          "url": "https://bugzilla.suse.com/1165881"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-14615"
    },
    {
      "cve": "CVE-2019-14814",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-14814"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "There is heap-based buffer overflow in Linux kernel, all versions up to, excluding 5.3, in the marvell wifi chip driver in Linux kernel, that allows local users to cause a denial of service(system crash) or possibly execute arbitrary code.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-14814",
          "url": "https://www.suse.com/security/cve/CVE-2019-14814"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146512 for CVE-2019-14814",
          "url": "https://bugzilla.suse.com/1146512"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1173664 for CVE-2019-14814",
          "url": "https://bugzilla.suse.com/1173664"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1173665 for CVE-2019-14814",
          "url": "https://bugzilla.suse.com/1173665"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-14814"
    },
    {
      "cve": "CVE-2019-14896",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-14896"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A heap-based buffer overflow vulnerability was found in the Linux kernel, version kernel-2.6.32, in Marvell WiFi chip driver. A remote attacker could cause a denial of service (system crash) or, possibly execute arbitrary code, when the lbs_ibss_join_existing function is called after a STA connects to an AP.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-14896",
          "url": "https://www.suse.com/security/cve/CVE-2019-14896"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1157157 for CVE-2019-14896",
          "url": "https://bugzilla.suse.com/1157157"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1160468 for CVE-2019-14896",
          "url": "https://bugzilla.suse.com/1160468"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2019-14896"
    },
    {
      "cve": "CVE-2019-15030",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-15030"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel through 5.2.14 on the powerpc platform, a local user can read vector registers of other users\u0027 processes via a Facility Unavailable exception. To exploit the venerability, a local user starts a transaction (via the hardware transactional memory instruction tbegin) and then accesses vector registers. At some point, the vector registers will be corrupted with the values from a different local Linux process because of a missing arch/powerpc/kernel/process.c check.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-15030",
          "url": "https://www.suse.com/security/cve/CVE-2019-15030"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1149713 for CVE-2019-15030",
          "url": "https://bugzilla.suse.com/1149713"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-15030"
    },
    {
      "cve": "CVE-2019-15031",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-15031"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel through 5.2.14 on the powerpc platform, a local user can read vector registers of other users\u0027 processes via an interrupt. To exploit the venerability, a local user starts a transaction (via the hardware transactional memory instruction tbegin) and then accesses vector registers. At some point, the vector registers will be corrupted with the values from a different local Linux process, because MSR_TM_ACTIVE is misused in arch/powerpc/kernel/process.c.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-15031",
          "url": "https://www.suse.com/security/cve/CVE-2019-15031"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1149713 for CVE-2019-15031",
          "url": "https://bugzilla.suse.com/1149713"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-15031"
    },
    {
      "cve": "CVE-2019-15098",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-15098"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "drivers/net/wireless/ath/ath6kl/usb.c in the Linux kernel through 5.2.9 has a NULL pointer dereference via an incomplete address in an endpoint descriptor.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-15098",
          "url": "https://www.suse.com/security/cve/CVE-2019-15098"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146378 for CVE-2019-15098",
          "url": "https://bugzilla.suse.com/1146378"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146543 for CVE-2019-15098",
          "url": "https://bugzilla.suse.com/1146543"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-15098"
    },
    {
      "cve": "CVE-2019-15099",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-15099"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "drivers/net/wireless/ath/ath10k/usb.c in the Linux kernel through 5.2.8 has a NULL pointer dereference via an incomplete address in an endpoint descriptor.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-15099",
          "url": "https://www.suse.com/security/cve/CVE-2019-15099"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146368 for CVE-2019-15099",
          "url": "https://bugzilla.suse.com/1146368"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-15099"
    },
    {
      "cve": "CVE-2019-15290",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-15290"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2019-15098. Reason: This candidate is a duplicate of CVE-2019-15098. Notes: All CVE users should reference CVE-2019-15098 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-15290",
          "url": "https://www.suse.com/security/cve/CVE-2019-15290"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146378 for CVE-2019-15290",
          "url": "https://bugzilla.suse.com/1146378"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146519 for CVE-2019-15290",
          "url": "https://bugzilla.suse.com/1146519"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146543 for CVE-2019-15290",
          "url": "https://bugzilla.suse.com/1146543"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1158381 for CVE-2019-15290",
          "url": "https://bugzilla.suse.com/1158381"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1158834 for CVE-2019-15290",
          "url": "https://bugzilla.suse.com/1158834"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-15290"
    },
    {
      "cve": "CVE-2019-15504",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-15504"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "drivers/net/wireless/rsi/rsi_91x_usb.c in the Linux kernel through 5.2.9 has a Double Free via crafted USB device traffic (which may be remote via usbip or usbredir).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-15504",
          "url": "https://www.suse.com/security/cve/CVE-2019-15504"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1147116 for CVE-2019-15504",
          "url": "https://bugzilla.suse.com/1147116"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185852 for CVE-2019-15504",
          "url": "https://bugzilla.suse.com/1185852"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2019-15504"
    },
    {
      "cve": "CVE-2019-15902",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-15902"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A backporting error was discovered in the Linux stable/longterm kernel 4.4.x through 4.4.190, 4.9.x through 4.9.190, 4.14.x through 4.14.141, 4.19.x through 4.19.69, and 5.2.x through 5.2.11. Misuse of the upstream \"x86/ptrace: Fix possible spectre-v1 in ptrace_get_debugreg()\" commit reintroduced the Spectre vulnerability that it aimed to eliminate. This occurred because the backport process depends on cherry picking specific commits, and because two (correctly ordered) code lines were swapped.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-15902",
          "url": "https://www.suse.com/security/cve/CVE-2019-15902"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1149376 for CVE-2019-15902",
          "url": "https://bugzilla.suse.com/1149376"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1155131 for CVE-2019-15902",
          "url": "https://bugzilla.suse.com/1155131"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-15902"
    },
    {
      "cve": "CVE-2019-16231",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-16231"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "drivers/net/fjes/fjes_main.c in the Linux kernel 5.2.14 does not check the alloc_workqueue return value, leading to a NULL pointer dereference.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-16231",
          "url": "https://www.suse.com/security/cve/CVE-2019-16231"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1150466 for CVE-2019-16231",
          "url": "https://bugzilla.suse.com/1150466"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-16231"
    },
    {
      "cve": "CVE-2019-16232",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-16232"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "drivers/net/wireless/marvell/libertas/if_sdio.c in the Linux kernel 5.2.14 does not check the alloc_workqueue return value, leading to a NULL pointer dereference.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-16232",
          "url": "https://www.suse.com/security/cve/CVE-2019-16232"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1150465 for CVE-2019-16232",
          "url": "https://bugzilla.suse.com/1150465"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-16232"
    },
    {
      "cve": "CVE-2019-16234",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-16234"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "drivers/net/wireless/intel/iwlwifi/pcie/trans.c in the Linux kernel 5.2.14 does not check the alloc_workqueue return value, leading to a NULL pointer dereference.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-16234",
          "url": "https://www.suse.com/security/cve/CVE-2019-16234"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1150452 for CVE-2019-16234",
          "url": "https://bugzilla.suse.com/1150452"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2019-16234"
    },
    {
      "cve": "CVE-2019-17133",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-17133"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel through 5.3.2, cfg80211_mgd_wext_giwessid in net/wireless/wext-sme.c does not reject a long SSID IE, leading to a Buffer Overflow.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-17133",
          "url": "https://www.suse.com/security/cve/CVE-2019-17133"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1153158 for CVE-2019-17133",
          "url": "https://bugzilla.suse.com/1153158"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1153161 for CVE-2019-17133",
          "url": "https://bugzilla.suse.com/1153161"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-17133"
    },
    {
      "cve": "CVE-2019-17666",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-17666"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "rtl_p2p_noa_ie in drivers/net/wireless/realtek/rtlwifi/ps.c in the Linux kernel through 5.3.6 lacks a certain upper-bound check, leading to a buffer overflow.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-17666",
          "url": "https://www.suse.com/security/cve/CVE-2019-17666"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1154372 for CVE-2019-17666",
          "url": "https://bugzilla.suse.com/1154372"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-17666"
    },
    {
      "cve": "CVE-2019-18808",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-18808"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A memory leak in the ccp_run_sha_cmd() function in drivers/crypto/ccp/ccp-ops.c in the Linux kernel through 5.3.9 allows attackers to cause a denial of service (memory consumption), aka CID-128c66429247.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-18808",
          "url": "https://www.suse.com/security/cve/CVE-2019-18808"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1156259 for CVE-2019-18808",
          "url": "https://bugzilla.suse.com/1156259"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1189884 for CVE-2019-18808",
          "url": "https://bugzilla.suse.com/1189884"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1190534 for CVE-2019-18808",
          "url": "https://bugzilla.suse.com/1190534"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-18808"
    },
    {
      "cve": "CVE-2019-18812",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-18812"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A memory leak in the sof_dfsentry_write() function in sound/soc/sof/debug.c in the Linux kernel through 5.3.9 allows attackers to cause a denial of service (memory consumption), aka CID-c0a333d842ef.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-18812",
          "url": "https://www.suse.com/security/cve/CVE-2019-18812"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1156277 for CVE-2019-18812",
          "url": "https://bugzilla.suse.com/1156277"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-18812"
    },
    {
      "cve": "CVE-2019-18813",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-18813"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A memory leak in the dwc3_pci_probe() function in drivers/usb/dwc3/dwc3-pci.c in the Linux kernel through 5.3.9 allows attackers to cause a denial of service (memory consumption) by triggering platform_device_add_properties() failures, aka CID-9bbfceea12a8.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-18813",
          "url": "https://www.suse.com/security/cve/CVE-2019-18813"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1156278 for CVE-2019-18813",
          "url": "https://bugzilla.suse.com/1156278"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-18813"
    },
    {
      "cve": "CVE-2019-19252",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-19252"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "vcs_write in drivers/tty/vt/vc_screen.c in the Linux kernel through 5.3.13 does not prevent write access to vcsu devices, aka CID-0c9acb1af77a.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-19252",
          "url": "https://www.suse.com/security/cve/CVE-2019-19252"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1157813 for CVE-2019-19252",
          "url": "https://bugzilla.suse.com/1157813"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-19252"
    },
    {
      "cve": "CVE-2019-19332",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-19332"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An out-of-bounds memory write issue was found in the Linux Kernel, version 3.13 through 5.4, in the way the Linux kernel\u0027s KVM hypervisor handled the \u0027KVM_GET_EMULATED_CPUID\u0027 ioctl(2) request to get CPUID features emulated by the KVM hypervisor. A user or process able to access the \u0027/dev/kvm\u0027 device could use this flaw to crash the system, resulting in a denial of service.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-19332",
          "url": "https://www.suse.com/security/cve/CVE-2019-19332"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1158827 for CVE-2019-19332",
          "url": "https://bugzilla.suse.com/1158827"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-19332"
    },
    {
      "cve": "CVE-2019-19338",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-19338"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the fix for CVE-2019-11135, in the Linux upstream kernel versions before 5.5 where, the way Intel CPUs handle speculative execution of instructions when a TSX Asynchronous Abort (TAA) error occurs. When a guest is running on a host CPU affected by the TAA flaw (TAA_NO=0), but is not affected by the MDS issue (MDS_NO=1), the guest was to clear the affected buffers by using a VERW instruction mechanism. But when the MDS_NO=1 bit was exported to the guests, the guests did not use the VERW mechanism to clear the affected buffers. This issue affects guests running on Cascade Lake CPUs and requires that host has \u0027TSX\u0027 enabled. Confidentiality of data is the highest threat associated with this vulnerability.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-19338",
          "url": "https://www.suse.com/security/cve/CVE-2019-19338"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1158954 for CVE-2019-19338",
          "url": "https://bugzilla.suse.com/1158954"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-19338"
    },
    {
      "cve": "CVE-2019-3016",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-3016"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In a Linux KVM guest that has PV TLB enabled, a process in the guest kernel may be able to read memory locations from another process in the same guest. This problem is limit to the host running linux kernel 4.10 with a guest running linux kernel 4.16 or later. The problem mainly affects AMD processors but Intel CPUs cannot be ruled out.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-3016",
          "url": "https://www.suse.com/security/cve/CVE-2019-3016"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1159281 for CVE-2019-3016",
          "url": "https://bugzilla.suse.com/1159281"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1161154 for CVE-2019-3016",
          "url": "https://bugzilla.suse.com/1161154"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-3016"
    },
    {
      "cve": "CVE-2019-3846",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-3846"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw that allowed an attacker to corrupt memory and possibly escalate privileges was found in the mwifiex kernel module while connecting to a malicious wireless network.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-3846",
          "url": "https://www.suse.com/security/cve/CVE-2019-3846"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1136424 for CVE-2019-3846",
          "url": "https://bugzilla.suse.com/1136424"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1136446 for CVE-2019-3846",
          "url": "https://bugzilla.suse.com/1136446"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1156330 for CVE-2019-3846",
          "url": "https://bugzilla.suse.com/1156330"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-3846"
    },
    {
      "cve": "CVE-2019-3882",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-3882"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Linux kernel\u0027s vfio interface implementation that permits violation of the user\u0027s locked memory limit. If a device is bound to a vfio driver, such as vfio-pci, and the local attacker is administratively granted ownership of the device, it may cause a system memory exhaustion and thus a denial of service (DoS). Versions 3.10, 4.14 and 4.18 are vulnerable.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-3882",
          "url": "https://www.suse.com/security/cve/CVE-2019-3882"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1131416 for CVE-2019-3882",
          "url": "https://bugzilla.suse.com/1131416"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1131427 for CVE-2019-3882",
          "url": "https://bugzilla.suse.com/1131427"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1133319 for CVE-2019-3882",
          "url": "https://bugzilla.suse.com/1133319"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-3882"
    },
    {
      "cve": "CVE-2019-3887",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-3887"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the way KVM hypervisor handled x2APIC Machine Specific Rregister (MSR) access with nested(=1) virtualization enabled. In that, L1 guest could access L0\u0027s APIC register values via L2 guest, when \u0027virtualize x2APIC mode\u0027 is enabled. A guest could use this flaw to potentially crash the host kernel resulting in DoS issue. Kernel versions from 4.16 and newer are vulnerable to this issue.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-3887",
          "url": "https://www.suse.com/security/cve/CVE-2019-3887"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1131800 for CVE-2019-3887",
          "url": "https://bugzilla.suse.com/1131800"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-3887"
    },
    {
      "cve": "CVE-2019-6974",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-6974"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel before 4.20.8, kvm_ioctl_create_device in virt/kvm/kvm_main.c mishandles reference counting because of a race condition, leading to a use-after-free.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-6974",
          "url": "https://www.suse.com/security/cve/CVE-2019-6974"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1124728 for CVE-2019-6974",
          "url": "https://bugzilla.suse.com/1124728"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1124729 for CVE-2019-6974",
          "url": "https://bugzilla.suse.com/1124729"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-6974"
    },
    {
      "cve": "CVE-2019-7221",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-7221"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The KVM implementation in the Linux kernel through 4.20.5 has a Use-after-Free.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-7221",
          "url": "https://www.suse.com/security/cve/CVE-2019-7221"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1124732 for CVE-2019-7221",
          "url": "https://bugzilla.suse.com/1124732"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1124734 for CVE-2019-7221",
          "url": "https://bugzilla.suse.com/1124734"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-7221"
    },
    {
      "cve": "CVE-2019-7222",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-7222"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The KVM implementation in the Linux kernel through 4.20.5 has an Information Leak.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-7222",
          "url": "https://www.suse.com/security/cve/CVE-2019-7222"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1124735 for CVE-2019-7222",
          "url": "https://bugzilla.suse.com/1124735"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 2.8,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2019-7222"
    },
    {
      "cve": "CVE-2019-8564",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-8564"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A logic issue was addressed with improved validation. This issue is fixed in macOS Mojave 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra. An attacker in a privileged network position can modify driver state.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-8564",
          "url": "https://www.suse.com/security/cve/CVE-2019-8564"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1132673 for CVE-2019-8564",
          "url": "https://bugzilla.suse.com/1132673"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1132828 for CVE-2019-8564",
          "url": "https://bugzilla.suse.com/1132828"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-8564"
    },
    {
      "cve": "CVE-2019-8912",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-8912"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel through 4.20.11, af_alg_release() in crypto/af_alg.c neglects to set a NULL value for a certain structure member, which leads to a use-after-free in sockfs_setattr.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-8912",
          "url": "https://www.suse.com/security/cve/CVE-2019-8912"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1125907 for CVE-2019-8912",
          "url": "https://bugzilla.suse.com/1125907"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1126284 for CVE-2019-8912",
          "url": "https://bugzilla.suse.com/1126284"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-8912"
    },
    {
      "cve": "CVE-2019-9500",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-9500"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The Broadcom brcmfmac WiFi driver prior to commit 1b5e2423164b3670e8bc9174e4762d297990deff is vulnerable to a heap buffer overflow. If the Wake-up on Wireless LAN functionality is configured, a malicious event frame can be constructed to trigger an heap buffer overflow in the brcmf_wowl_nd_results function. This vulnerability can be exploited with compromised chipsets to compromise the host, or when used in combination with CVE-2019-9503, can be used remotely. In the worst case scenario, by sending specially-crafted WiFi packets, a remote, unauthenticated attacker may be able to execute arbitrary code on a vulnerable system. More typically, this vulnerability will result in denial-of-service conditions.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-9500",
          "url": "https://www.suse.com/security/cve/CVE-2019-9500"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1132681 for CVE-2019-9500",
          "url": "https://bugzilla.suse.com/1132681"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-9500"
    },
    {
      "cve": "CVE-2020-10135",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-10135"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Legacy pairing and secure-connections pairing authentication in Bluetooth BR/EDR Core Specification v5.2 and earlier may allow an unauthenticated user to complete authentication without pairing credentials via adjacent access. An unauthenticated, adjacent attacker could impersonate a Bluetooth BR/EDR master or slave to pair with a previously paired remote device to successfully complete the authentication procedure without knowing the link key.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-10135",
          "url": "https://www.suse.com/security/cve/CVE-2020-10135"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1171988 for CVE-2020-10135",
          "url": "https://bugzilla.suse.com/1171988"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-10135"
    },
    {
      "cve": "CVE-2020-10766",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-10766"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A logic bug flaw was found in Linux kernel before 5.8-rc1 in the implementation of SSBD. A bug in the logic handling allows an attacker with a local account to disable SSBD protection during a context switch when additional speculative execution mitigations are in place. This issue was introduced when the per task/process conditional STIPB switching was added on top of the existing SSBD switching. The highest threat from this vulnerability is to confidentiality.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-10766",
          "url": "https://www.suse.com/security/cve/CVE-2020-10766"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1159281 for CVE-2020-10766",
          "url": "https://bugzilla.suse.com/1159281"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1172781 for CVE-2020-10766",
          "url": "https://bugzilla.suse.com/1172781"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-10766"
    },
    {
      "cve": "CVE-2020-10767",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-10767"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Linux kernel before 5.8-rc1 in the implementation of the Enhanced IBPB (Indirect Branch Prediction Barrier). The IBPB mitigation will be disabled when STIBP is not available or when the Enhanced Indirect Branch Restricted Speculation (IBRS) is available. This flaw allows a local attacker to perform a Spectre V2 style attack when this configuration is active. The highest threat from this vulnerability is to confidentiality.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-10767",
          "url": "https://www.suse.com/security/cve/CVE-2020-10767"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1159281 for CVE-2020-10767",
          "url": "https://bugzilla.suse.com/1159281"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1172782 for CVE-2020-10767",
          "url": "https://bugzilla.suse.com/1172782"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-10767"
    },
    {
      "cve": "CVE-2020-10768",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-10768"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Linux Kernel before 5.8-rc1 in the prctl() function, where it can be used to enable indirect branch speculation after it has been disabled. This call incorrectly reports it as being \u0027force disabled\u0027 when it is not and opens the system to Spectre v2 attacks. The highest threat from this vulnerability is to confidentiality.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-10768",
          "url": "https://www.suse.com/security/cve/CVE-2020-10768"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1159281 for CVE-2020-10768",
          "url": "https://bugzilla.suse.com/1159281"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1172783 for CVE-2020-10768",
          "url": "https://bugzilla.suse.com/1172783"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-10768"
    },
    {
      "cve": "CVE-2020-12351",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-12351"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Improper input validation in BlueZ may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-12351",
          "url": "https://www.suse.com/security/cve/CVE-2020-12351"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1177724 for CVE-2020-12351",
          "url": "https://bugzilla.suse.com/1177724"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1177729 for CVE-2020-12351",
          "url": "https://bugzilla.suse.com/1177729"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178397 for CVE-2020-12351",
          "url": "https://bugzilla.suse.com/1178397"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2020-12351"
    },
    {
      "cve": "CVE-2020-12352",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-12352"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Improper access control in BlueZ may allow an unauthenticated user to potentially enable information disclosure via adjacent access.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-12352",
          "url": "https://www.suse.com/security/cve/CVE-2020-12352"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1177725 for CVE-2020-12352",
          "url": "https://bugzilla.suse.com/1177725"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178398 for CVE-2020-12352",
          "url": "https://bugzilla.suse.com/1178398"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.1,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-12352"
    },
    {
      "cve": "CVE-2020-14331",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-14331"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Linux kernel\u0027s implementation of the invert video code on VGA consoles when a local attacker attempts to resize the console, calling an ioctl VT_RESIZE, which causes an out-of-bounds write to occur. This flaw allows a local user with access to the VGA console to crash the system, potentially escalating their privileges on the system. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-14331",
          "url": "https://www.suse.com/security/cve/CVE-2020-14331"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1174205 for CVE-2020-14331",
          "url": "https://bugzilla.suse.com/1174205"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1174247 for CVE-2020-14331",
          "url": "https://bugzilla.suse.com/1174247"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2020-14331"
    },
    {
      "cve": "CVE-2020-14386",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-14386"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Linux kernel before 5.9-rc4. Memory corruption can be exploited to gain root privileges from unprivileged processes. The highest threat from this vulnerability is to data confidentiality and integrity.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-14386",
          "url": "https://www.suse.com/security/cve/CVE-2020-14386"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1176069 for CVE-2020-14386",
          "url": "https://bugzilla.suse.com/1176069"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1176072 for CVE-2020-14386",
          "url": "https://bugzilla.suse.com/1176072"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2020-14386"
    },
    {
      "cve": "CVE-2020-24586",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-24586"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn\u0027t require that received fragments be cleared from memory after (re)connecting to a network. Under the right circumstances, when another device sends fragmented frames encrypted using WEP, CCMP, or GCMP, this can be abused to inject arbitrary network packets and/or exfiltrate user data.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-24586",
          "url": "https://www.suse.com/security/cve/CVE-2020-24586"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185859 for CVE-2020-24586",
          "url": "https://bugzilla.suse.com/1185859"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1192868 for CVE-2020-24586",
          "url": "https://bugzilla.suse.com/1192868"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-24586"
    },
    {
      "cve": "CVE-2020-24587",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-24587"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn\u0027t require that all fragments of a frame are encrypted under the same key. An adversary can abuse this to decrypt selected fragments when another device sends fragmented frames and the WEP, CCMP, or GCMP encryption key is periodically renewed.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-24587",
          "url": "https://www.suse.com/security/cve/CVE-2020-24587"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185859 for CVE-2020-24587",
          "url": "https://bugzilla.suse.com/1185859"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185862 for CVE-2020-24587",
          "url": "https://bugzilla.suse.com/1185862"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1192868 for CVE-2020-24587",
          "url": "https://bugzilla.suse.com/1192868"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-24587"
    },
    {
      "cve": "CVE-2020-24588",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-24588"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn\u0027t require that the A-MSDU flag in the plaintext QoS header field is authenticated. Against devices that support receiving non-SSP A-MSDU frames (which is mandatory as part of 802.11n), an adversary can abuse this to inject arbitrary network packets.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-24588",
          "url": "https://www.suse.com/security/cve/CVE-2020-24588"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185861 for CVE-2020-24588",
          "url": "https://bugzilla.suse.com/1185861"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1192868 for CVE-2020-24588",
          "url": "https://bugzilla.suse.com/1192868"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1199701 for CVE-2020-24588",
          "url": "https://bugzilla.suse.com/1199701"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-24588"
    },
    {
      "cve": "CVE-2020-25639",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-25639"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A NULL pointer dereference flaw was found in the Linux kernel\u0027s GPU Nouveau driver functionality in versions prior to 5.12-rc1 in the way the user calls ioctl DRM_IOCTL_NOUVEAU_CHANNEL_ALLOC. This flaw allows a local user to crash the system.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-25639",
          "url": "https://www.suse.com/security/cve/CVE-2020-25639"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1176846 for CVE-2020-25639",
          "url": "https://bugzilla.suse.com/1176846"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-25639"
    },
    {
      "cve": "CVE-2020-25656",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-25656"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Linux kernel. A use-after-free was found in the way the console subsystem was using ioctls KDGKBSENT and KDSKBSENT. A local user could use this flaw to get read memory access out of bounds. The highest threat from this vulnerability is to data confidentiality.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-25656",
          "url": "https://www.suse.com/security/cve/CVE-2020-25656"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1177766 for CVE-2020-25656",
          "url": "https://bugzilla.suse.com/1177766"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-25656"
    },
    {
      "cve": "CVE-2020-25668",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-25668"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in Linux Kernel because access to the global variable fg_console is not properly synchronized leading to a use after free in con_font_op.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-25668",
          "url": "https://www.suse.com/security/cve/CVE-2020-25668"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178123 for CVE-2020-25668",
          "url": "https://bugzilla.suse.com/1178123"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178622 for CVE-2020-25668",
          "url": "https://bugzilla.suse.com/1178622"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1196914 for CVE-2020-25668",
          "url": "https://bugzilla.suse.com/1196914"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2020-25668"
    },
    {
      "cve": "CVE-2020-26141",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-26141"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in the ALFA Windows 10 driver 6.1316.1209 for AWUS036H. The Wi-Fi implementation does not verify the Message Integrity Check (authenticity) of fragmented TKIP frames. An adversary can abuse this to inject and possibly decrypt packets in WPA or WPA2 networks that support the TKIP data-confidentiality protocol.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-26141",
          "url": "https://www.suse.com/security/cve/CVE-2020-26141"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185987 for CVE-2020-26141",
          "url": "https://bugzilla.suse.com/1185987"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-26141"
    },
    {
      "cve": "CVE-2020-2732",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-2732"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was discovered in the way that the KVM hypervisor handled instruction emulation for an L2 guest when nested virtualisation is enabled. Under some circumstances, an L2 guest may trick the L0 guest into accessing sensitive L1 resources that should be inaccessible to the L2 guest.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-2732",
          "url": "https://www.suse.com/security/cve/CVE-2020-2732"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1163971 for CVE-2020-2732",
          "url": "https://bugzilla.suse.com/1163971"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.2,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-2732"
    },
    {
      "cve": "CVE-2020-29660",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-29660"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A locking inconsistency issue was discovered in the tty subsystem of the Linux kernel through 5.9.13. drivers/tty/tty_io.c and drivers/tty/tty_jobctrl.c may allow a read-after-free attack against TIOCGSID, aka CID-c8bcd9c5be24.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-29660",
          "url": "https://www.suse.com/security/cve/CVE-2020-29660"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1179745 for CVE-2020-29660",
          "url": "https://bugzilla.suse.com/1179745"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1179877 for CVE-2020-29660",
          "url": "https://bugzilla.suse.com/1179877"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2020-29660"
    },
    {
      "cve": "CVE-2020-29661",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-29661"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A locking issue was discovered in the tty subsystem of the Linux kernel through 5.9.13. drivers/tty/tty_jobctrl.c allows a use-after-free attack against TIOCSPGRP, aka CID-54ffccbf053b.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-29661",
          "url": "https://www.suse.com/security/cve/CVE-2020-29661"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1179745 for CVE-2020-29661",
          "url": "https://bugzilla.suse.com/1179745"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1179877 for CVE-2020-29661",
          "url": "https://bugzilla.suse.com/1179877"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1214268 for CVE-2020-29661",
          "url": "https://bugzilla.suse.com/1214268"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1218966 for CVE-2020-29661",
          "url": "https://bugzilla.suse.com/1218966"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2020-29661"
    },
    {
      "cve": "CVE-2020-8648",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-8648"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "There is a use-after-free vulnerability in the Linux kernel through 5.5.2 in the n_tty_receive_buf_common function in drivers/tty/n_tty.c.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-8648",
          "url": "https://www.suse.com/security/cve/CVE-2020-8648"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1162928 for CVE-2020-8648",
          "url": "https://bugzilla.suse.com/1162928"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-8648"
    },
    {
      "cve": "CVE-2020-8694",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-8694"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Insufficient access control in the Linux kernel driver for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-8694",
          "url": "https://www.suse.com/security/cve/CVE-2020-8694"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1170415 for CVE-2020-8694",
          "url": "https://bugzilla.suse.com/1170415"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1170446 for CVE-2020-8694",
          "url": "https://bugzilla.suse.com/1170446"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178591 for CVE-2020-8694",
          "url": "https://bugzilla.suse.com/1178591"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178700 for CVE-2020-8694",
          "url": "https://bugzilla.suse.com/1178700"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1179661 for CVE-2020-8694",
          "url": "https://bugzilla.suse.com/1179661"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-8694"
    },
    {
      "cve": "CVE-2021-23133",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-23133"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A race condition in Linux kernel SCTP sockets (net/sctp/socket.c) before 5.12-rc8 can lead to kernel privilege escalation from the context of a network service or an unprivileged process. If sctp_destroy_sock is called without sock_net(sk)-\u003esctp.addr_wq_lock then an element is removed from the auto_asconf_splist list without any proper locking. This can be exploited by an attacker with network service privileges to escalate to root or from the context of an unprivileged user directly if a BPF_CGROUP_INET_SOCK_CREATE is attached which denies creation of some SCTP socket.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-23133",
          "url": "https://www.suse.com/security/cve/CVE-2021-23133"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1184675 for CVE-2021-23133",
          "url": "https://bugzilla.suse.com/1184675"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185901 for CVE-2021-23133",
          "url": "https://bugzilla.suse.com/1185901"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-23133"
    },
    {
      "cve": "CVE-2021-26708",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-26708"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A local privilege escalation was discovered in the Linux kernel before 5.10.13. Multiple race conditions in the AF_VSOCK implementation are caused by wrong locking in net/vmw_vsock/af_vsock.c. The race conditions were implicitly introduced in the commits that added VSOCK multi-transport support.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-26708",
          "url": "https://www.suse.com/security/cve/CVE-2021-26708"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1181806 for CVE-2021-26708",
          "url": "https://bugzilla.suse.com/1181806"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1183298 for CVE-2021-26708",
          "url": "https://bugzilla.suse.com/1183298"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-26708"
    },
    {
      "cve": "CVE-2021-28971",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-28971"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In intel_pmu_drain_pebs_nhm in arch/x86/events/intel/ds.c in the Linux kernel through 5.11.8 on some Haswell CPUs, userspace applications (such as perf-fuzzer) can cause a system crash because the PEBS status in a PEBS record is mishandled, aka CID-d88d05a9e0b6.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-28971",
          "url": "https://www.suse.com/security/cve/CVE-2021-28971"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1184196 for CVE-2021-28971",
          "url": "https://bugzilla.suse.com/1184196"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-28971"
    },
    {
      "cve": "CVE-2021-32606",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-32606"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel 5.11 through 5.12.2, isotp_setsockopt in net/can/isotp.c allows privilege escalation to root by leveraging a use-after-free. (This does not affect earlier versions that lack CAN ISOTP SF_BROADCAST support.)",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-32606",
          "url": "https://www.suse.com/security/cve/CVE-2021-32606"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185953 for CVE-2021-32606",
          "url": "https://bugzilla.suse.com/1185953"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-32606"
    },
    {
      "cve": "CVE-2021-33909",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-33909"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "fs/seq_file.c in the Linux kernel 3.16 through 5.13.x before 5.13.4 does not properly restrict seq buffer allocations, leading to an integer overflow, an Out-of-bounds Write, and escalation to root by an unprivileged user, aka CID-8cae8cd89f05.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-33909",
          "url": "https://www.suse.com/security/cve/CVE-2021-33909"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1188062 for CVE-2021-33909",
          "url": "https://bugzilla.suse.com/1188062"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1188063 for CVE-2021-33909",
          "url": "https://bugzilla.suse.com/1188063"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1188257 for CVE-2021-33909",
          "url": "https://bugzilla.suse.com/1188257"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1189302 for CVE-2021-33909",
          "url": "https://bugzilla.suse.com/1189302"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1190859 for CVE-2021-33909",
          "url": "https://bugzilla.suse.com/1190859"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-33909"
    },
    {
      "cve": "CVE-2021-3483",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-3483"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Nosy driver in the Linux kernel. This issue allows a device to be inserted twice into a doubly-linked list, leading to a use-after-free when one of these devices is removed. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability. Versions before kernel 5.12-rc6 are affected",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-3483",
          "url": "https://www.suse.com/security/cve/CVE-2021-3483"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1184393 for CVE-2021-3483",
          "url": "https://bugzilla.suse.com/1184393"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-3483"
    },
    {
      "cve": "CVE-2021-3489",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-3489"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The eBPF RINGBUF bpf_ringbuf_reserve() function in the Linux kernel did not check that the allocated size was smaller than the ringbuf size, allowing an attacker to perform out-of-bounds writes within the kernel and therefore, arbitrary code execution. This issue was fixed via commit 4b81ccebaeee (\"bpf, ringbuf: Deny reserve of buffers larger than ringbuf\") (v5.13-rc4) and backported to the stable kernels in v5.12.4, v5.11.21, and v5.10.37. It was introduced via 457f44363a88 (\"bpf: Implement BPF ring buffer and verifier support for it\") (v5.8-rc1).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-3489",
          "url": "https://www.suse.com/security/cve/CVE-2021-3489"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185640 for CVE-2021-3489",
          "url": "https://bugzilla.suse.com/1185640"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185856 for CVE-2021-3489",
          "url": "https://bugzilla.suse.com/1185856"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-3489"
    },
    {
      "cve": "CVE-2021-3490",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-3490"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The eBPF ALU32 bounds tracking for bitwise ops (AND, OR and XOR) in the Linux kernel did not properly update 32-bit bounds, which could be turned into out of bounds reads and writes in the Linux kernel and therefore, arbitrary code execution. This issue was fixed via commit 049c4e13714e (\"bpf: Fix alu32 const subreg bound tracking on bitwise operations\") (v5.13-rc4) and backported to the stable kernels in v5.12.4, v5.11.21, and v5.10.37. The AND/OR issues were introduced by commit 3f50f132d840 (\"bpf: Verifier, do explicit ALU32 bounds tracking\") (5.7-rc1) and the XOR variant was introduced by 2921c90d4718 (\"bpf:Fix a verifier failure with xor\") ( 5.10-rc1).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-3490",
          "url": "https://www.suse.com/security/cve/CVE-2021-3490"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185641 for CVE-2021-3490",
          "url": "https://bugzilla.suse.com/1185641"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185796 for CVE-2021-3490",
          "url": "https://bugzilla.suse.com/1185796"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-3490"
    },
    {
      "cve": "CVE-2021-3491",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-3491"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The io_uring subsystem in the Linux kernel allowed the MAX_RW_COUNT limit to be bypassed in the PROVIDE_BUFFERS operation, which led to negative values being usedin mem_rw when reading /proc/\u003cPID\u003e/mem. This could be used to create a heap overflow leading to arbitrary code execution in the kernel. It was addressed via commit d1f82808877b (\"io_uring: truncate lengths larger than MAX_RW_COUNT on provide buffers\") (v5.13-rc1) and backported to the stable kernels in v5.12.4, v5.11.21, and v5.10.37. It was introduced in ddf0322db79c (\"io_uring: add IORING_OP_PROVIDE_BUFFERS\") (v5.7-rc1).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-3491",
          "url": "https://www.suse.com/security/cve/CVE-2021-3491"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185642 for CVE-2021-3491",
          "url": "https://bugzilla.suse.com/1185642"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1187090 for CVE-2021-3491",
          "url": "https://bugzilla.suse.com/1187090"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-3491"
    },
    {
      "cve": "CVE-2021-3640",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-3640"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw use-after-free in function sco_sock_sendmsg() of the Linux kernel HCI subsystem was found in the way user calls ioct UFFDIO_REGISTER or other way triggers race condition of the call sco_conn_del() together with the call sco_sock_sendmsg() with the expected controllable faulting memory page. A privileged local user could use this flaw to crash the system or escalate their privileges on the system.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-3640",
          "url": "https://www.suse.com/security/cve/CVE-2021-3640"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1188172 for CVE-2021-3640",
          "url": "https://bugzilla.suse.com/1188172"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1188613 for CVE-2021-3640",
          "url": "https://bugzilla.suse.com/1188613"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1191530 for CVE-2021-3640",
          "url": "https://bugzilla.suse.com/1191530"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1196810 for CVE-2021-3640",
          "url": "https://bugzilla.suse.com/1196810"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1196914 for CVE-2021-3640",
          "url": "https://bugzilla.suse.com/1196914"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-3640"
    },
    {
      "cve": "CVE-2021-3653",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-3653"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the KVM\u0027s AMD code for supporting SVM nested virtualization. The flaw occurs when processing the VMCB (virtual machine control block) provided by the L1 guest to spawn/handle a nested guest (L2). Due to improper validation of the \"int_ctl\" field, this issue could allow a malicious L1 to enable AVIC support (Advanced Virtual Interrupt Controller) for the L2 guest. As a result, the L2 guest would be allowed to read/write physical pages of the host, resulting in a crash of the entire system, leak of sensitive data or potential guest-to-host escape. This flaw affects Linux kernel versions prior to 5.14-rc7.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-3653",
          "url": "https://www.suse.com/security/cve/CVE-2021-3653"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1189399 for CVE-2021-3653",
          "url": "https://bugzilla.suse.com/1189399"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1189420 for CVE-2021-3653",
          "url": "https://bugzilla.suse.com/1189420"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1196914 for CVE-2021-3653",
          "url": "https://bugzilla.suse.com/1196914"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-3653"
    },
    {
      "cve": "CVE-2021-3656",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-3656"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the KVM\u0027s AMD code for supporting SVM nested virtualization. The flaw occurs when processing the VMCB (virtual machine control block) provided by the L1 guest to spawn/handle a nested guest (L2). Due to improper validation of the \"virt_ext\" field, this issue could allow a malicious L1 to disable both VMLOAD/VMSAVE intercepts and VLS (Virtual VMLOAD/VMSAVE) for the L2 guest. As a result, the L2 guest would be allowed to read/write physical pages of the host, resulting in a crash of the entire system, leak of sensitive data or potential guest-to-host escape.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-3656",
          "url": "https://www.suse.com/security/cve/CVE-2021-3656"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1189400 for CVE-2021-3656",
          "url": "https://bugzilla.suse.com/1189400"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1189418 for CVE-2021-3656",
          "url": "https://bugzilla.suse.com/1189418"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-3656"
    },
    {
      "cve": "CVE-2021-3744",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-3744"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A memory leak flaw was found in the Linux kernel in the ccp_run_aes_gcm_cmd() function in drivers/crypto/ccp/ccp-ops.c, which allows attackers to cause a denial of service (memory consumption). This vulnerability is similar with the older CVE-2019-18808.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-3744",
          "url": "https://www.suse.com/security/cve/CVE-2021-3744"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1189884 for CVE-2021-3744",
          "url": "https://bugzilla.suse.com/1189884"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1190534 for CVE-2021-3744",
          "url": "https://bugzilla.suse.com/1190534"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-3744"
    },
    {
      "cve": "CVE-2021-3753",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-3753"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A race problem was seen in the vt_k_ioctl in drivers/tty/vt/vt_ioctl.c in the Linux kernel, which may cause an out of bounds read in vt as the write access to vc_mode is not protected by lock-in vt_ioctl (KDSETMDE). The highest threat from this vulnerability is to data confidentiality.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-3753",
          "url": "https://www.suse.com/security/cve/CVE-2021-3753"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1190025 for CVE-2021-3753",
          "url": "https://bugzilla.suse.com/1190025"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 2.9,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-3753"
    },
    {
      "cve": "CVE-2021-37576",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-37576"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "arch/powerpc/kvm/book3s_rtas.c in the Linux kernel through 5.13.5 on the powerpc platform allows KVM guest OS users to cause host OS memory corruption via rtas_args.nargs, aka CID-f62f3c20647e.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-37576",
          "url": "https://www.suse.com/security/cve/CVE-2021-37576"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1188838 for CVE-2021-37576",
          "url": "https://bugzilla.suse.com/1188838"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1188842 for CVE-2021-37576",
          "url": "https://bugzilla.suse.com/1188842"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1190276 for CVE-2021-37576",
          "url": "https://bugzilla.suse.com/1190276"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-37576"
    },
    {
      "cve": "CVE-2021-3759",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-3759"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A memory overflow vulnerability was found in the Linux kernel\u0027s ipc functionality of the memcg subsystem, in the way a user calls the semget function multiple times, creating semaphores. This flaw allows a local user to starve the resources, causing a denial of service. The highest threat from this vulnerability is to system availability.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-3759",
          "url": "https://www.suse.com/security/cve/CVE-2021-3759"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1190115 for CVE-2021-3759",
          "url": "https://bugzilla.suse.com/1190115"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-3759"
    },
    {
      "cve": "CVE-2021-38166",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-38166"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In kernel/bpf/hashtab.c in the Linux kernel through 5.13.8, there is an integer overflow and out-of-bounds write when many elements are placed in a single bucket. NOTE: exploitation might be impractical without the CAP_SYS_ADMIN capability.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
          "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-38166",
          "url": "https://www.suse.com/security/cve/CVE-2021-38166"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1189233 for CVE-2021-38166",
          "url": "https://bugzilla.suse.com/1189233"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-devel-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-macros-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-5.14.6-1.4.x86_64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.aarch64",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.ppc64le",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.s390x",
            "openSUSE Tumbleweed:kernel-source-vanilla-5.14.6-1.4.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-38166"
    }
  ]
}

OPENSUSE-SU-2024:13704-1

Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00

Summary

kernel-devel-longterm-6.6.17-1.1 on GA media

Severity

Moderate

Notes

Title of the patch: kernel-devel-longterm-6.6.17-1.1 on GA media

Description of the patch: These are all security issues fixed in the kernel-devel-longterm-6.6.17-1.1 package on the GA media of openSUSE Tumbleweed.

Patchnames: openSUSE-Tumbleweed-2024-13704

CVE-2016-3695

2.2 (Low)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:L

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2017-1000251

8.8 (High)


                        
                          CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-12153

4.4 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2017-13080

8.1 (High)


                        
                          CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-14051

6.4 (Medium)


                        
                          CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-15129

6.1 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-15265

5.5 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-16536

4.6 (Medium)


                        
                          CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-16537

4.6 (Medium)


                        
                          CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-16645

4.6 (Medium)


                        
                          CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-16646

4.6 (Medium)


                        
                          CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-16647

4.6 (Medium)


                        
                          CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-16648

4.6 (Medium)


                        
                          CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-16995

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-16996

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-17448

5.7 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:L

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-17449

4.3 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-17450

4.4 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-17852

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-17853

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-17854

6.2 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-17855

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-17856

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-17857

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-17862

5.5 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-5123

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2017-5715

7.1 (High)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2017-5753

5.6 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2017-5754

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2017-7541

6.2 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-7542

6.2 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2017-8824

8.4 (High)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2017-8831

6.7 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-1000004

5.5 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-10322

4.6 (Medium)


                        
                          CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-10323

4.6 (Medium)


                        
                          CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-1068

8.4 (High)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2018-1118

5.5 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2018-12232

5.5 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-12714

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2018-13053

3.3 (Low)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2018-18710

5.5 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-19824

6.6 (Medium)


                        
                          CVSS:3.0/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-5332

3.6 (Low)


                        
                          CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2018-5333

2.9 (Low)


                        
                          CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2018-8043

0 (None)


                        
                          CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2018-8087

5.5 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2018-8822

6.4 (Medium)


                        
                          CVSS:3.0/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-10207

5.3 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2019-11477

8.2 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2019-11478

5.3 (Medium)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2019-11479

7.5 (High)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2019-14615

6.2 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-14814

7.5 (High)


                        
                          CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-14896

8.1 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2019-15030

4.4 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-15031

4.4 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-15098

5.2 (Medium)


                        
                          CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-15099

4.6 (Medium)


                        
                          CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-15290

5.2 (Medium)


                        
                          CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-15504

8.4 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2019-15902

6.2 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-16231

4 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-16232

4 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-16234

4 (Medium)


                        
                          CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2019-17133

8.8 (High)


                        
                          CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-17666

5.4 (Medium)


                        
                          CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-18808

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-18812

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-18813

4.3 (Medium)


                        
                          CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-19252

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-19332

6.7 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-19338

6.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-3016

4.7 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-3846

7.5 (High)


                        
                          CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-3882

4.7 (Medium)


                        
                          CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-3887

5.6 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-6974

7.8 (High)


                        
                          CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-7221

7.5 (High)


                        
                          CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-7222

2.8 (Low)


                        
                          CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2019-8564

4.2 (Medium)


                        
                          CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-8912

7.8 (High)


                        
                          CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2019-9500

5 (Medium)


                        
                          CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-10135

5 (Medium)


                        
                          CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-10766

5.6 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-10767

5.9 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-10768

6.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-12351

7.5 (High)


                        
                          CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2020-12352

3.1 (Low)


                        
                          CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-14331

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2020-14386

8.4 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2020-24586

4.7 (Medium)


                        
                          CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-24587

4.2 (Medium)


                        
                          CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-24588

6.5 (Medium)


                        
                          CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-25639

4.4 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-25656

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-25668

7 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2020-26141

4.2 (Medium)


                        
                          CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-2732

3.2 (Low)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-29660

7.4 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2020-29661

7.4 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2020-8648

6.1 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2020-8694

5.1 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2021-23133

7 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-26708

7 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-28971

5.1 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2021-32606

8.4 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-33909

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-3483

6.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2021-3489

8.4 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-3490

8.4 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-3491

7.4 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-3542

6.4 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-3640

7.4 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-3653

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-3656

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-3744

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2021-3753

2.9 (Low)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2021-37576

8.4 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2021-3759

6.2 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2021-38166

6.7 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2021-43976

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-0185

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2022-0330

7 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2022-0847

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2022-0886

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2022-1462

6.3 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-1516

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-1679

7 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2022-1729

8.2 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2022-1852

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-1966

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2022-1972

7 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2022-1973

7.1 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2022-22942

7 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2022-2308

6.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-24958

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-2588

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2022-2590

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2022-26490

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2022-28388

5.3 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-28389

7 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2022-28390

7 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2022-28893

6.2 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-29900

4.7 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-29901

4.7 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-29968

3.3 (Low)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact low

CVE-2022-3424

7 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2022-34918

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2022-3628

4.6 (Medium)


                        
                          CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-3640

7.1 (High)


                        
                          CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2022-40982

6.2 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-41218

8.4 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2022-41674

8.8 (High)


                        
                          CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2022-42719

7.5 (High)


                        
                          CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2022-42720

7.5 (High)


                        
                          CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2022-42721

7.5 (High)


                        
                          CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2022-42722

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2022-4379

7.4 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2022-44032

4.3 (Medium)


                        
                          CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-44033

4.3 (Medium)


                        
                          CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-44034

6.4 (Medium)


                        
                          CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-45884

4.1 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-45885

4.1 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-45886

4.1 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-45887

4.1 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-45888

4 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-45919

7 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2022-45934

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2023-0045

4.7 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2023-1076

4.7 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2023-1078

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2023-1192

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2023-1380

3.3 (Low)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2023-20569

5.6 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2023-20593

6.2 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2023-2124

6.7 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2023-31084

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2023-3141

6.1 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2023-3269

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2023-39192

6 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2023-39193

5.1 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:L

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2023-4128

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2023-4134

4.1 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2023-4194

4.7 (Medium)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2023-42753

7 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2023-42754

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2023-42756

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2023-4623

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2023-46813

7 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2023-4881

6.1 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2023-5345

7 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2023-6606

6.1 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2023-6610

6.1 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H

Affected products

Recommended 8 products

Product	Version	Remediation
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x	—	Vendor Fix
Unresolved product id: openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64	—	Vendor Fix

Threats

Impact moderate

References

842 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/o…	self
https://www.suse.com/security/cve/CVE-2016-3695/	self
https://www.suse.com/security/cve/CVE-2017-1000251/	self
https://www.suse.com/security/cve/CVE-2017-12153/	self
https://www.suse.com/security/cve/CVE-2017-13080/	self
https://www.suse.com/security/cve/CVE-2017-14051/	self
https://www.suse.com/security/cve/CVE-2017-15129/	self
https://www.suse.com/security/cve/CVE-2017-15265/	self
https://www.suse.com/security/cve/CVE-2017-16536/	self
https://www.suse.com/security/cve/CVE-2017-16537/	self
https://www.suse.com/security/cve/CVE-2017-16645/	self
https://www.suse.com/security/cve/CVE-2017-16646/	self
https://www.suse.com/security/cve/CVE-2017-16647/	self
https://www.suse.com/security/cve/CVE-2017-16648/	self
https://www.suse.com/security/cve/CVE-2017-16995/	self
https://www.suse.com/security/cve/CVE-2017-16996/	self
https://www.suse.com/security/cve/CVE-2017-17448/	self
https://www.suse.com/security/cve/CVE-2017-17449/	self
https://www.suse.com/security/cve/CVE-2017-17450/	self
https://www.suse.com/security/cve/CVE-2017-17852/	self
https://www.suse.com/security/cve/CVE-2017-17853/	self
https://www.suse.com/security/cve/CVE-2017-17854/	self
https://www.suse.com/security/cve/CVE-2017-17855/	self
https://www.suse.com/security/cve/CVE-2017-17856/	self
https://www.suse.com/security/cve/CVE-2017-17857/	self
https://www.suse.com/security/cve/CVE-2017-17862/	self
https://www.suse.com/security/cve/CVE-2017-5123/	self
https://www.suse.com/security/cve/CVE-2017-5715/	self
https://www.suse.com/security/cve/CVE-2017-5753/	self
https://www.suse.com/security/cve/CVE-2017-5754/	self
https://www.suse.com/security/cve/CVE-2017-7541/	self
https://www.suse.com/security/cve/CVE-2017-7542/	self
https://www.suse.com/security/cve/CVE-2017-8824/	self
https://www.suse.com/security/cve/CVE-2017-8831/	self
https://www.suse.com/security/cve/CVE-2018-1000004/	self
https://www.suse.com/security/cve/CVE-2018-10322/	self
https://www.suse.com/security/cve/CVE-2018-10323/	self
https://www.suse.com/security/cve/CVE-2018-1068/	self
https://www.suse.com/security/cve/CVE-2018-1118/	self
https://www.suse.com/security/cve/CVE-2018-12232/	self
https://www.suse.com/security/cve/CVE-2018-12714/	self
https://www.suse.com/security/cve/CVE-2018-13053/	self
https://www.suse.com/security/cve/CVE-2018-18710/	self
https://www.suse.com/security/cve/CVE-2018-19824/	self
https://www.suse.com/security/cve/CVE-2018-5332/	self
https://www.suse.com/security/cve/CVE-2018-5333/	self
https://www.suse.com/security/cve/CVE-2018-8043/	self
https://www.suse.com/security/cve/CVE-2018-8087/	self
https://www.suse.com/security/cve/CVE-2018-8822/	self
https://www.suse.com/security/cve/CVE-2019-10207/	self
https://www.suse.com/security/cve/CVE-2019-11477/	self
https://www.suse.com/security/cve/CVE-2019-11478/	self
https://www.suse.com/security/cve/CVE-2019-11479/	self
https://www.suse.com/security/cve/CVE-2019-14615/	self
https://www.suse.com/security/cve/CVE-2019-14814/	self
https://www.suse.com/security/cve/CVE-2019-14896/	self
https://www.suse.com/security/cve/CVE-2019-15030/	self
https://www.suse.com/security/cve/CVE-2019-15031/	self
https://www.suse.com/security/cve/CVE-2019-15098/	self
https://www.suse.com/security/cve/CVE-2019-15099/	self
https://www.suse.com/security/cve/CVE-2019-15290/	self
https://www.suse.com/security/cve/CVE-2019-15504/	self
https://www.suse.com/security/cve/CVE-2019-15902/	self
https://www.suse.com/security/cve/CVE-2019-16231/	self
https://www.suse.com/security/cve/CVE-2019-16232/	self
https://www.suse.com/security/cve/CVE-2019-16234/	self
https://www.suse.com/security/cve/CVE-2019-17133/	self
https://www.suse.com/security/cve/CVE-2019-17666/	self
https://www.suse.com/security/cve/CVE-2019-18808/	self
https://www.suse.com/security/cve/CVE-2019-18812/	self
https://www.suse.com/security/cve/CVE-2019-18813/	self
https://www.suse.com/security/cve/CVE-2019-19252/	self
https://www.suse.com/security/cve/CVE-2019-19332/	self
https://www.suse.com/security/cve/CVE-2019-19338/	self
https://www.suse.com/security/cve/CVE-2019-3016/	self
https://www.suse.com/security/cve/CVE-2019-3846/	self
https://www.suse.com/security/cve/CVE-2019-3882/	self
https://www.suse.com/security/cve/CVE-2019-3887/	self
https://www.suse.com/security/cve/CVE-2019-6974/	self
https://www.suse.com/security/cve/CVE-2019-7221/	self
https://www.suse.com/security/cve/CVE-2019-7222/	self
https://www.suse.com/security/cve/CVE-2019-8564/	self
https://www.suse.com/security/cve/CVE-2019-8912/	self
https://www.suse.com/security/cve/CVE-2019-9500/	self
https://www.suse.com/security/cve/CVE-2020-10135/	self
https://www.suse.com/security/cve/CVE-2020-10766/	self
https://www.suse.com/security/cve/CVE-2020-10767/	self
https://www.suse.com/security/cve/CVE-2020-10768/	self
https://www.suse.com/security/cve/CVE-2020-12351/	self
https://www.suse.com/security/cve/CVE-2020-12352/	self
https://www.suse.com/security/cve/CVE-2020-14331/	self
https://www.suse.com/security/cve/CVE-2020-14386/	self
https://www.suse.com/security/cve/CVE-2020-24586/	self
https://www.suse.com/security/cve/CVE-2020-24587/	self
https://www.suse.com/security/cve/CVE-2020-24588/	self
https://www.suse.com/security/cve/CVE-2020-25639/	self
https://www.suse.com/security/cve/CVE-2020-25656/	self
https://www.suse.com/security/cve/CVE-2020-25668/	self
https://www.suse.com/security/cve/CVE-2020-26141/	self
https://www.suse.com/security/cve/CVE-2020-2732/	self
https://www.suse.com/security/cve/CVE-2020-29660/	self
https://www.suse.com/security/cve/CVE-2020-29661/	self
https://www.suse.com/security/cve/CVE-2020-8648/	self
https://www.suse.com/security/cve/CVE-2020-8694/	self
https://www.suse.com/security/cve/CVE-2021-23133/	self
https://www.suse.com/security/cve/CVE-2021-26708/	self
https://www.suse.com/security/cve/CVE-2021-28971/	self
https://www.suse.com/security/cve/CVE-2021-32606/	self
https://www.suse.com/security/cve/CVE-2021-33909/	self
https://www.suse.com/security/cve/CVE-2021-3483/	self
https://www.suse.com/security/cve/CVE-2021-3489/	self
https://www.suse.com/security/cve/CVE-2021-3490/	self
https://www.suse.com/security/cve/CVE-2021-3491/	self
https://www.suse.com/security/cve/CVE-2021-3542/	self
https://www.suse.com/security/cve/CVE-2021-3640/	self
https://www.suse.com/security/cve/CVE-2021-3653/	self
https://www.suse.com/security/cve/CVE-2021-3656/	self
https://www.suse.com/security/cve/CVE-2021-3744/	self
https://www.suse.com/security/cve/CVE-2021-3753/	self
https://www.suse.com/security/cve/CVE-2021-37576/	self
https://www.suse.com/security/cve/CVE-2021-3759/	self
https://www.suse.com/security/cve/CVE-2021-38166/	self
https://www.suse.com/security/cve/CVE-2021-43976/	self
https://www.suse.com/security/cve/CVE-2022-0185/	self
https://www.suse.com/security/cve/CVE-2022-0330/	self
https://www.suse.com/security/cve/CVE-2022-0847/	self
https://www.suse.com/security/cve/CVE-2022-0886/	self
https://www.suse.com/security/cve/CVE-2022-1462/	self
https://www.suse.com/security/cve/CVE-2022-1516/	self
https://www.suse.com/security/cve/CVE-2022-1679/	self
https://www.suse.com/security/cve/CVE-2022-1729/	self
https://www.suse.com/security/cve/CVE-2022-1852/	self
https://www.suse.com/security/cve/CVE-2022-1966/	self
https://www.suse.com/security/cve/CVE-2022-1972/	self
https://www.suse.com/security/cve/CVE-2022-1973/	self
https://www.suse.com/security/cve/CVE-2022-22942/	self
https://www.suse.com/security/cve/CVE-2022-2308/	self
https://www.suse.com/security/cve/CVE-2022-24958/	self
https://www.suse.com/security/cve/CVE-2022-2588/	self
https://www.suse.com/security/cve/CVE-2022-2590/	self
https://www.suse.com/security/cve/CVE-2022-26490/	self
https://www.suse.com/security/cve/CVE-2022-28388/	self
https://www.suse.com/security/cve/CVE-2022-28389/	self
https://www.suse.com/security/cve/CVE-2022-28390/	self
https://www.suse.com/security/cve/CVE-2022-28893/	self
https://www.suse.com/security/cve/CVE-2022-29900/	self
https://www.suse.com/security/cve/CVE-2022-29901/	self
https://www.suse.com/security/cve/CVE-2022-29968/	self
https://www.suse.com/security/cve/CVE-2022-3424/	self
https://www.suse.com/security/cve/CVE-2022-34918/	self
https://www.suse.com/security/cve/CVE-2022-3628/	self
https://www.suse.com/security/cve/CVE-2022-3640/	self
https://www.suse.com/security/cve/CVE-2022-40982/	self
https://www.suse.com/security/cve/CVE-2022-41218/	self
https://www.suse.com/security/cve/CVE-2022-41674/	self
https://www.suse.com/security/cve/CVE-2022-42719/	self
https://www.suse.com/security/cve/CVE-2022-42720/	self
https://www.suse.com/security/cve/CVE-2022-42721/	self
https://www.suse.com/security/cve/CVE-2022-42722/	self
https://www.suse.com/security/cve/CVE-2022-4379/	self
https://www.suse.com/security/cve/CVE-2022-44032/	self
https://www.suse.com/security/cve/CVE-2022-44033/	self
https://www.suse.com/security/cve/CVE-2022-44034/	self
https://www.suse.com/security/cve/CVE-2022-45884/	self
https://www.suse.com/security/cve/CVE-2022-45885/	self
https://www.suse.com/security/cve/CVE-2022-45886/	self
https://www.suse.com/security/cve/CVE-2022-45887/	self
https://www.suse.com/security/cve/CVE-2022-45888/	self
https://www.suse.com/security/cve/CVE-2022-45919/	self
https://www.suse.com/security/cve/CVE-2022-45934/	self
https://www.suse.com/security/cve/CVE-2023-0045/	self
https://www.suse.com/security/cve/CVE-2023-1076/	self
https://www.suse.com/security/cve/CVE-2023-1078/	self
https://www.suse.com/security/cve/CVE-2023-1192/	self
https://www.suse.com/security/cve/CVE-2023-1380/	self
https://www.suse.com/security/cve/CVE-2023-20569/	self
https://www.suse.com/security/cve/CVE-2023-20593/	self
https://www.suse.com/security/cve/CVE-2023-2124/	self
https://www.suse.com/security/cve/CVE-2023-31084/	self
https://www.suse.com/security/cve/CVE-2023-3141/	self
https://www.suse.com/security/cve/CVE-2023-3269/	self
https://www.suse.com/security/cve/CVE-2023-39192/	self
https://www.suse.com/security/cve/CVE-2023-39193/	self
https://www.suse.com/security/cve/CVE-2023-4128/	self
https://www.suse.com/security/cve/CVE-2023-4134/	self
https://www.suse.com/security/cve/CVE-2023-4194/	self
https://www.suse.com/security/cve/CVE-2023-42753/	self
https://www.suse.com/security/cve/CVE-2023-42754/	self
https://www.suse.com/security/cve/CVE-2023-42756/	self
https://www.suse.com/security/cve/CVE-2023-4623/	self
https://www.suse.com/security/cve/CVE-2023-46813/	self
https://www.suse.com/security/cve/CVE-2023-4881/	self
https://www.suse.com/security/cve/CVE-2023-5345/	self
https://www.suse.com/security/cve/CVE-2023-6606/	self
https://www.suse.com/security/cve/CVE-2023-6610/	self
https://www.suse.com/security/cve/CVE-2016-3695	external
https://bugzilla.suse.com/1023051	external
https://www.suse.com/security/cve/CVE-2017-1000251	external
https://bugzilla.suse.com/1057389	external
https://bugzilla.suse.com/1057950	external
https://bugzilla.suse.com/1070535	external
https://bugzilla.suse.com/1072117	external
https://bugzilla.suse.com/1072162	external
https://bugzilla.suse.com/1120758	external
https://www.suse.com/security/cve/CVE-2017-12153	external
https://bugzilla.suse.com/1058410	external
https://bugzilla.suse.com/1058624	external
https://www.suse.com/security/cve/CVE-2017-13080	external
https://bugzilla.suse.com/1056061	external
https://bugzilla.suse.com/1063479	external
https://bugzilla.suse.com/1063667	external
https://bugzilla.suse.com/1063671	external
https://bugzilla.suse.com/1066295	external
https://bugzilla.suse.com/1105108	external
https://bugzilla.suse.com/1178872	external
https://bugzilla.suse.com/1179588	external
https://www.suse.com/security/cve/CVE-2017-14051	external
https://bugzilla.suse.com/1056588	external
https://www.suse.com/security/cve/CVE-2017-15129	external
https://bugzilla.suse.com/1074839	external
https://www.suse.com/security/cve/CVE-2017-15265	external
https://bugzilla.suse.com/1062520	external
https://bugzilla.suse.com/1115893	external
https://www.suse.com/security/cve/CVE-2017-16536	external
https://bugzilla.suse.com/1066606	external
https://bugzilla.suse.com/1087082	external
https://bugzilla.suse.com/1146519	external
https://www.suse.com/security/cve/CVE-2017-16537	external
https://bugzilla.suse.com/1066573	external
https://bugzilla.suse.com/1087082	external
https://bugzilla.suse.com/1146519	external
https://www.suse.com/security/cve/CVE-2017-16645	external
https://bugzilla.suse.com/1067132	external
https://bugzilla.suse.com/1087082	external
https://bugzilla.suse.com/1146519	external
https://www.suse.com/security/cve/CVE-2017-16646	external
https://bugzilla.suse.com/1067105	external
https://bugzilla.suse.com/1146519	external
https://www.suse.com/security/cve/CVE-2017-16647	external
https://bugzilla.suse.com/1067102	external
https://bugzilla.suse.com/1146519	external
https://www.suse.com/security/cve/CVE-2017-16648	external
https://bugzilla.suse.com/1067087	external
https://bugzilla.suse.com/1087082	external
https://bugzilla.suse.com/1146519	external
https://www.suse.com/security/cve/CVE-2017-16995	external
https://bugzilla.suse.com/1073928	external
https://www.suse.com/security/cve/CVE-2017-16996	external
https://bugzilla.suse.com/1073928	external
https://www.suse.com/security/cve/CVE-2017-17448	external
https://bugzilla.suse.com/1071693	external
https://www.suse.com/security/cve/CVE-2017-17449	external
https://bugzilla.suse.com/1071694	external
https://www.suse.com/security/cve/CVE-2017-17450	external
https://bugzilla.suse.com/1071695	external
https://bugzilla.suse.com/1074033	external
https://bugzilla.suse.com/1115893	external
https://www.suse.com/security/cve/CVE-2017-17852	external
https://bugzilla.suse.com/1073928	external
https://www.suse.com/security/cve/CVE-2017-17853	external
https://bugzilla.suse.com/1073928	external
https://www.suse.com/security/cve/CVE-2017-17854	external
https://bugzilla.suse.com/1073928	external
https://www.suse.com/security/cve/CVE-2017-17855	external
https://bugzilla.suse.com/1073928	external
https://www.suse.com/security/cve/CVE-2017-17856	external
https://bugzilla.suse.com/1073928	external
https://www.suse.com/security/cve/CVE-2017-17857	external
https://bugzilla.suse.com/1073928	external
https://www.suse.com/security/cve/CVE-2017-17862	external
https://bugzilla.suse.com/1073928	external
https://www.suse.com/security/cve/CVE-2017-5123	external
https://bugzilla.suse.com/1062473	external
https://bugzilla.suse.com/1122971	external
https://www.suse.com/security/cve/CVE-2017-5715	external
https://bugzilla.suse.com/1068032	external
https://bugzilla.suse.com/1074562	external
https://bugzilla.suse.com/1074578	external
https://bugzilla.suse.com/1074701	external
https://bugzilla.suse.com/1074741	external
https://bugzilla.suse.com/1074919	external
https://bugzilla.suse.com/1075006	external
https://bugzilla.suse.com/1075007	external
https://bugzilla.suse.com/1075262	external
https://bugzilla.suse.com/1075419	external
https://bugzilla.suse.com/1076115	external
https://bugzilla.suse.com/1076372	external
https://bugzilla.suse.com/1076606	external
https://bugzilla.suse.com/1078353	external
https://bugzilla.suse.com/1080039	external
https://bugzilla.suse.com/1087887	external
https://bugzilla.suse.com/1087939	external
https://bugzilla.suse.com/1088147	external
https://bugzilla.suse.com/1089055	external
https://bugzilla.suse.com/1091815	external
https://bugzilla.suse.com/1095735	external
https://bugzilla.suse.com/1102517	external
https://bugzilla.suse.com/1105108	external
https://bugzilla.suse.com/1126516	external
https://bugzilla.suse.com/1173489	external
https://bugzilla.suse.com/1178658	external
https://bugzilla.suse.com/1201457	external
https://bugzilla.suse.com/1201877	external
https://bugzilla.suse.com/1203236	external
https://www.suse.com/security/cve/CVE-2017-5753	external
https://bugzilla.suse.com/1068032	external
https://bugzilla.suse.com/1074562	external
https://bugzilla.suse.com/1074578	external
https://bugzilla.suse.com/1074701	external
https://bugzilla.suse.com/1075006	external
https://bugzilla.suse.com/1075419	external
https://bugzilla.suse.com/1075748	external
https://bugzilla.suse.com/1080039	external
https://bugzilla.suse.com/1087084	external
https://bugzilla.suse.com/1087939	external
https://bugzilla.suse.com/1089055	external
https://bugzilla.suse.com/1136865	external
https://bugzilla.suse.com/1178658	external
https://bugzilla.suse.com/1201877	external
https://bugzilla.suse.com/1209547	external
https://www.suse.com/security/cve/CVE-2017-5754	external
https://bugzilla.suse.com/1068032	external
https://bugzilla.suse.com/1074562	external
https://bugzilla.suse.com/1074578	external
https://bugzilla.suse.com/1074701	external
https://bugzilla.suse.com/1075006	external
https://bugzilla.suse.com/1075008	external
https://bugzilla.suse.com/1087939	external
https://bugzilla.suse.com/1089055	external
https://bugzilla.suse.com/1115045	external
https://bugzilla.suse.com/1136865	external
https://bugzilla.suse.com/1178658	external
https://bugzilla.suse.com/1201877	external
https://www.suse.com/security/cve/CVE-2017-7541	external
https://bugzilla.suse.com/1049645	external
https://www.suse.com/security/cve/CVE-2017-7542	external
https://bugzilla.suse.com/1049882	external
https://bugzilla.suse.com/1061936	external
https://www.suse.com/security/cve/CVE-2017-8824	external
https://bugzilla.suse.com/1070771	external
https://bugzilla.suse.com/1076734	external
https://bugzilla.suse.com/1092904	external
https://bugzilla.suse.com/1115893	external
https://www.suse.com/security/cve/CVE-2017-8831	external
https://bugzilla.suse.com/1037994	external
https://bugzilla.suse.com/1061936	external
https://bugzilla.suse.com/1087082	external
https://bugzilla.suse.com/1115893	external
https://www.suse.com/security/cve/CVE-2018-1000004	external
https://bugzilla.suse.com/1076017	external
https://bugzilla.suse.com/1091815	external
https://www.suse.com/security/cve/CVE-2018-10322	external
https://bugzilla.suse.com/1087082	external
https://bugzilla.suse.com/1090749	external
https://www.suse.com/security/cve/CVE-2018-10323	external
https://bugzilla.suse.com/1087082	external
https://bugzilla.suse.com/1090717	external
https://www.suse.com/security/cve/CVE-2018-1068	external
https://bugzilla.suse.com/1085107	external
https://bugzilla.suse.com/1085114	external
https://bugzilla.suse.com/1087082	external
https://bugzilla.suse.com/1123903	external
https://www.suse.com/security/cve/CVE-2018-1118	external
https://bugzilla.suse.com/1087082	external
https://bugzilla.suse.com/1092472	external
https://www.suse.com/security/cve/CVE-2018-12232	external
https://bugzilla.suse.com/1087082	external
https://bugzilla.suse.com/1097593	external
https://bugzilla.suse.com/1125907	external
https://bugzilla.suse.com/1127757	external
https://www.suse.com/security/cve/CVE-2018-12714	external
https://bugzilla.suse.com/1098933	external
https://www.suse.com/security/cve/CVE-2018-13053	external
https://bugzilla.suse.com/1099924	external
https://bugzilla.suse.com/1115893	external
https://www.suse.com/security/cve/CVE-2018-18710	external
https://bugzilla.suse.com/1113751	external
https://www.suse.com/security/cve/CVE-2018-19824	external
https://bugzilla.suse.com/1118152	external
https://www.suse.com/security/cve/CVE-2018-5332	external
https://bugzilla.suse.com/1075621	external
https://bugzilla.suse.com/1091815	external
https://bugzilla.suse.com/1115893	external
https://www.suse.com/security/cve/CVE-2018-5333	external
https://bugzilla.suse.com/1075617	external
https://bugzilla.suse.com/1091815	external
https://www.suse.com/security/cve/CVE-2018-8043	external
https://bugzilla.suse.com/1084829	external
https://www.suse.com/security/cve/CVE-2018-8087	external
https://bugzilla.suse.com/1085053	external
https://www.suse.com/security/cve/CVE-2018-8822	external
https://bugzilla.suse.com/1086162	external
https://bugzilla.suse.com/1090404	external
https://bugzilla.suse.com/1091815	external
https://www.suse.com/security/cve/CVE-2019-10207	external
https://bugzilla.suse.com/1123959	external
https://bugzilla.suse.com/1142857	external
https://www.suse.com/security/cve/CVE-2019-11477	external
https://bugzilla.suse.com/1132686	external
https://bugzilla.suse.com/1137586	external
https://bugzilla.suse.com/1142129	external
https://bugzilla.suse.com/1153242	external
https://www.suse.com/security/cve/CVE-2019-11478	external
https://bugzilla.suse.com/1132686	external
https://bugzilla.suse.com/1137586	external
https://bugzilla.suse.com/1142129	external
https://bugzilla.suse.com/1143542	external
https://www.suse.com/security/cve/CVE-2019-11479	external
https://bugzilla.suse.com/1132686	external
https://bugzilla.suse.com/1137586	external
https://bugzilla.suse.com/1142129	external
https://bugzilla.suse.com/1143542	external
https://www.suse.com/security/cve/CVE-2019-14615	external
https://bugzilla.suse.com/1160195	external
https://bugzilla.suse.com/1165881	external
https://www.suse.com/security/cve/CVE-2019-14814	external
https://bugzilla.suse.com/1146512	external
https://bugzilla.suse.com/1173664	external
https://bugzilla.suse.com/1173665	external
https://www.suse.com/security/cve/CVE-2019-14896	external
https://bugzilla.suse.com/1157157	external
https://bugzilla.suse.com/1160468	external
https://www.suse.com/security/cve/CVE-2019-15030	external
https://bugzilla.suse.com/1149713	external
https://www.suse.com/security/cve/CVE-2019-15031	external
https://bugzilla.suse.com/1149713	external
https://www.suse.com/security/cve/CVE-2019-15098	external
https://bugzilla.suse.com/1146378	external
https://bugzilla.suse.com/1146543	external
https://www.suse.com/security/cve/CVE-2019-15099	external
https://bugzilla.suse.com/1146368	external
https://www.suse.com/security/cve/CVE-2019-15290	external
https://bugzilla.suse.com/1146378	external
https://bugzilla.suse.com/1146519	external
https://bugzilla.suse.com/1146543	external
https://bugzilla.suse.com/1158381	external
https://bugzilla.suse.com/1158834	external
https://www.suse.com/security/cve/CVE-2019-15504	external
https://bugzilla.suse.com/1147116	external
https://bugzilla.suse.com/1185852	external
https://www.suse.com/security/cve/CVE-2019-15902	external
https://bugzilla.suse.com/1149376	external
https://bugzilla.suse.com/1155131	external
https://www.suse.com/security/cve/CVE-2019-16231	external
https://bugzilla.suse.com/1150466	external
https://www.suse.com/security/cve/CVE-2019-16232	external
https://bugzilla.suse.com/1150465	external
https://www.suse.com/security/cve/CVE-2019-16234	external
https://bugzilla.suse.com/1150452	external
https://www.suse.com/security/cve/CVE-2019-17133	external
https://bugzilla.suse.com/1153158	external
https://bugzilla.suse.com/1153161	external
https://www.suse.com/security/cve/CVE-2019-17666	external
https://bugzilla.suse.com/1154372	external
https://www.suse.com/security/cve/CVE-2019-18808	external
https://bugzilla.suse.com/1156259	external
https://bugzilla.suse.com/1189884	external
https://bugzilla.suse.com/1190534	external
https://www.suse.com/security/cve/CVE-2019-18812	external
https://bugzilla.suse.com/1156277	external
https://www.suse.com/security/cve/CVE-2019-18813	external
https://bugzilla.suse.com/1156278	external
https://www.suse.com/security/cve/CVE-2019-19252	external
https://bugzilla.suse.com/1157813	external
https://www.suse.com/security/cve/CVE-2019-19332	external
https://bugzilla.suse.com/1158827	external
https://www.suse.com/security/cve/CVE-2019-19338	external
https://bugzilla.suse.com/1158954	external
https://www.suse.com/security/cve/CVE-2019-3016	external
https://bugzilla.suse.com/1159281	external
https://bugzilla.suse.com/1161154	external
https://www.suse.com/security/cve/CVE-2019-3846	external
https://bugzilla.suse.com/1136424	external
https://bugzilla.suse.com/1136446	external
https://bugzilla.suse.com/1156330	external
https://www.suse.com/security/cve/CVE-2019-3882	external
https://bugzilla.suse.com/1131416	external
https://bugzilla.suse.com/1131427	external
https://bugzilla.suse.com/1133319	external
https://www.suse.com/security/cve/CVE-2019-3887	external
https://bugzilla.suse.com/1131800	external
https://www.suse.com/security/cve/CVE-2019-6974	external
https://bugzilla.suse.com/1124728	external
https://bugzilla.suse.com/1124729	external
https://www.suse.com/security/cve/CVE-2019-7221	external
https://bugzilla.suse.com/1124732	external
https://bugzilla.suse.com/1124734	external
https://www.suse.com/security/cve/CVE-2019-7222	external
https://bugzilla.suse.com/1124735	external
https://www.suse.com/security/cve/CVE-2019-8564	external
https://bugzilla.suse.com/1132673	external
https://bugzilla.suse.com/1132828	external
https://www.suse.com/security/cve/CVE-2019-8912	external
https://bugzilla.suse.com/1125907	external
https://bugzilla.suse.com/1126284	external
https://www.suse.com/security/cve/CVE-2019-9500	external
https://bugzilla.suse.com/1132681	external
https://www.suse.com/security/cve/CVE-2020-10135	external
https://bugzilla.suse.com/1171988	external
https://www.suse.com/security/cve/CVE-2020-10766	external
https://bugzilla.suse.com/1159281	external
https://bugzilla.suse.com/1172781	external
https://www.suse.com/security/cve/CVE-2020-10767	external
https://bugzilla.suse.com/1159281	external
https://bugzilla.suse.com/1172782	external
https://www.suse.com/security/cve/CVE-2020-10768	external
https://bugzilla.suse.com/1159281	external
https://bugzilla.suse.com/1172783	external
https://www.suse.com/security/cve/CVE-2020-12351	external
https://bugzilla.suse.com/1177724	external
https://bugzilla.suse.com/1177729	external
https://bugzilla.suse.com/1178397	external
https://www.suse.com/security/cve/CVE-2020-12352	external
https://bugzilla.suse.com/1177725	external
https://bugzilla.suse.com/1178398	external
https://www.suse.com/security/cve/CVE-2020-14331	external
https://bugzilla.suse.com/1174205	external
https://bugzilla.suse.com/1174247	external
https://www.suse.com/security/cve/CVE-2020-14386	external
https://bugzilla.suse.com/1176069	external
https://bugzilla.suse.com/1176072	external
https://www.suse.com/security/cve/CVE-2020-24586	external
https://bugzilla.suse.com/1185859	external
https://bugzilla.suse.com/1192868	external
https://www.suse.com/security/cve/CVE-2020-24587	external
https://bugzilla.suse.com/1185859	external
https://bugzilla.suse.com/1185862	external
https://bugzilla.suse.com/1192868	external
https://www.suse.com/security/cve/CVE-2020-24588	external
https://bugzilla.suse.com/1185861	external
https://bugzilla.suse.com/1192868	external
https://bugzilla.suse.com/1199701	external
https://www.suse.com/security/cve/CVE-2020-25639	external
https://bugzilla.suse.com/1176846	external
https://www.suse.com/security/cve/CVE-2020-25656	external
https://bugzilla.suse.com/1177766	external
https://www.suse.com/security/cve/CVE-2020-25668	external
https://bugzilla.suse.com/1178123	external
https://bugzilla.suse.com/1178622	external
https://bugzilla.suse.com/1196914	external
https://www.suse.com/security/cve/CVE-2020-26141	external
https://bugzilla.suse.com/1185987	external
https://www.suse.com/security/cve/CVE-2020-2732	external
https://bugzilla.suse.com/1163971	external
https://www.suse.com/security/cve/CVE-2020-29660	external
https://bugzilla.suse.com/1179745	external
https://bugzilla.suse.com/1179877	external
https://www.suse.com/security/cve/CVE-2020-29661	external
https://bugzilla.suse.com/1179745	external
https://bugzilla.suse.com/1179877	external
https://bugzilla.suse.com/1214268	external
https://bugzilla.suse.com/1218966	external
https://www.suse.com/security/cve/CVE-2020-8648	external
https://bugzilla.suse.com/1162928	external
https://www.suse.com/security/cve/CVE-2020-8694	external
https://bugzilla.suse.com/1170415	external
https://bugzilla.suse.com/1170446	external
https://bugzilla.suse.com/1178591	external
https://bugzilla.suse.com/1178700	external
https://bugzilla.suse.com/1179661	external
https://www.suse.com/security/cve/CVE-2021-23133	external
https://bugzilla.suse.com/1184675	external
https://bugzilla.suse.com/1185901	external
https://www.suse.com/security/cve/CVE-2021-26708	external
https://bugzilla.suse.com/1181806	external
https://bugzilla.suse.com/1183298	external
https://www.suse.com/security/cve/CVE-2021-28971	external
https://bugzilla.suse.com/1184196	external
https://www.suse.com/security/cve/CVE-2021-32606	external
https://bugzilla.suse.com/1185953	external
https://www.suse.com/security/cve/CVE-2021-33909	external
https://bugzilla.suse.com/1188062	external
https://bugzilla.suse.com/1188063	external
https://bugzilla.suse.com/1188257	external
https://bugzilla.suse.com/1189302	external
https://bugzilla.suse.com/1190859	external
https://www.suse.com/security/cve/CVE-2021-3483	external
https://bugzilla.suse.com/1184393	external
https://www.suse.com/security/cve/CVE-2021-3489	external
https://bugzilla.suse.com/1185640	external
https://bugzilla.suse.com/1185856	external
https://www.suse.com/security/cve/CVE-2021-3490	external
https://bugzilla.suse.com/1185641	external
https://bugzilla.suse.com/1185796	external
https://www.suse.com/security/cve/CVE-2021-3491	external
https://bugzilla.suse.com/1185642	external
https://bugzilla.suse.com/1187090	external
https://www.suse.com/security/cve/CVE-2021-3542	external
https://bugzilla.suse.com/1184673	external
https://bugzilla.suse.com/1186063	external
https://www.suse.com/security/cve/CVE-2021-3640	external
https://bugzilla.suse.com/1188172	external
https://bugzilla.suse.com/1188613	external
https://bugzilla.suse.com/1191530	external
https://bugzilla.suse.com/1196810	external
https://bugzilla.suse.com/1196914	external
https://www.suse.com/security/cve/CVE-2021-3653	external
https://bugzilla.suse.com/1189399	external
https://bugzilla.suse.com/1189420	external
https://bugzilla.suse.com/1196914	external
https://www.suse.com/security/cve/CVE-2021-3656	external
https://bugzilla.suse.com/1189400	external
https://bugzilla.suse.com/1189418	external
https://www.suse.com/security/cve/CVE-2021-3744	external
https://bugzilla.suse.com/1189884	external
https://bugzilla.suse.com/1190534	external
https://www.suse.com/security/cve/CVE-2021-3753	external
https://bugzilla.suse.com/1190025	external
https://www.suse.com/security/cve/CVE-2021-37576	external
https://bugzilla.suse.com/1188838	external
https://bugzilla.suse.com/1188842	external
https://bugzilla.suse.com/1190276	external
https://www.suse.com/security/cve/CVE-2021-3759	external
https://bugzilla.suse.com/1190115	external
https://www.suse.com/security/cve/CVE-2021-38166	external
https://bugzilla.suse.com/1189233	external
https://www.suse.com/security/cve/CVE-2021-43976	external
https://bugzilla.suse.com/1192847	external
https://www.suse.com/security/cve/CVE-2022-0185	external
https://bugzilla.suse.com/1194517	external
https://bugzilla.suse.com/1194737	external
https://www.suse.com/security/cve/CVE-2022-0330	external
https://bugzilla.suse.com/1194880	external
https://bugzilla.suse.com/1195950	external
https://www.suse.com/security/cve/CVE-2022-0847	external
https://bugzilla.suse.com/1196584	external
https://bugzilla.suse.com/1196601	external
https://www.suse.com/security/cve/CVE-2022-0886	external
https://bugzilla.suse.com/1197131	external
https://bugzilla.suse.com/1197133	external
https://bugzilla.suse.com/1197462	external
https://www.suse.com/security/cve/CVE-2022-1462	external
https://bugzilla.suse.com/1198829	external
https://www.suse.com/security/cve/CVE-2022-1516	external
https://bugzilla.suse.com/1199012	external
https://www.suse.com/security/cve/CVE-2022-1679	external
https://bugzilla.suse.com/1199487	external
https://bugzilla.suse.com/1201080	external
https://bugzilla.suse.com/1201832	external
https://bugzilla.suse.com/1204132	external
https://bugzilla.suse.com/1212316	external
https://www.suse.com/security/cve/CVE-2022-1729	external
https://bugzilla.suse.com/1199507	external
https://bugzilla.suse.com/1199697	external
https://bugzilla.suse.com/1201832	external
https://www.suse.com/security/cve/CVE-2022-1852	external
https://bugzilla.suse.com/1199875	external
https://www.suse.com/security/cve/CVE-2022-1966	external
https://bugzilla.suse.com/1200015	external
https://bugzilla.suse.com/1200268	external
https://bugzilla.suse.com/1200494	external
https://bugzilla.suse.com/1200529	external
https://www.suse.com/security/cve/CVE-2022-1972	external
https://bugzilla.suse.com/1200019	external
https://bugzilla.suse.com/1200266	external
https://www.suse.com/security/cve/CVE-2022-1973	external
https://bugzilla.suse.com/1200023	external
https://www.suse.com/security/cve/CVE-2022-22942	external
https://bugzilla.suse.com/1195065	external
https://bugzilla.suse.com/1195951	external
https://www.suse.com/security/cve/CVE-2022-2308	external
https://bugzilla.suse.com/1202573	external
https://www.suse.com/security/cve/CVE-2022-24958	external
https://bugzilla.suse.com/1195905	external
https://www.suse.com/security/cve/CVE-2022-2588	external
https://bugzilla.suse.com/1202096	external
https://bugzilla.suse.com/1203613	external
https://bugzilla.suse.com/1204183	external
https://bugzilla.suse.com/1209225	external
https://www.suse.com/security/cve/CVE-2022-2590	external
https://bugzilla.suse.com/1202013	external
https://bugzilla.suse.com/1202089	external
https://www.suse.com/security/cve/CVE-2022-26490	external
https://bugzilla.suse.com/1196830	external
https://bugzilla.suse.com/1201656	external
https://bugzilla.suse.com/1201969	external
https://bugzilla.suse.com/1211495	external
https://www.suse.com/security/cve/CVE-2022-28388	external
https://bugzilla.suse.com/1198032	external
https://www.suse.com/security/cve/CVE-2022-28389	external
https://bugzilla.suse.com/1198033	external
https://bugzilla.suse.com/1201657	external
https://www.suse.com/security/cve/CVE-2022-28390	external
https://bugzilla.suse.com/1198031	external
https://bugzilla.suse.com/1201517	external
https://bugzilla.suse.com/1207969	external
https://www.suse.com/security/cve/CVE-2022-28893	external
https://bugzilla.suse.com/1198330	external
https://www.suse.com/security/cve/CVE-2022-29900	external
https://bugzilla.suse.com/1199657	external
https://bugzilla.suse.com/1201469	external
https://bugzilla.suse.com/1207894	external
https://www.suse.com/security/cve/CVE-2022-29901	external
https://bugzilla.suse.com/1199657	external
https://bugzilla.suse.com/1201469	external
https://bugzilla.suse.com/1207894	external
https://www.suse.com/security/cve/CVE-2022-29968	external
https://bugzilla.suse.com/1199087	external
https://www.suse.com/security/cve/CVE-2022-3424	external
https://bugzilla.suse.com/1204166	external
https://bugzilla.suse.com/1204167	external
https://bugzilla.suse.com/1208044	external
https://bugzilla.suse.com/1212309	external
https://www.suse.com/security/cve/CVE-2022-34918	external
https://bugzilla.suse.com/1201171	external
https://bugzilla.suse.com/1201177	external
https://bugzilla.suse.com/1201222	external
https://www.suse.com/security/cve/CVE-2022-3628	external
https://bugzilla.suse.com/1204868	external
https://www.suse.com/security/cve/CVE-2022-3640	external
https://bugzilla.suse.com/1204619	external
https://bugzilla.suse.com/1204624	external
https://bugzilla.suse.com/1209225	external
https://www.suse.com/security/cve/CVE-2022-40982	external
https://bugzilla.suse.com/1206418	external
https://bugzilla.suse.com/1215674	external
https://www.suse.com/security/cve/CVE-2022-41218	external
https://bugzilla.suse.com/1202960	external
https://bugzilla.suse.com/1203606	external
https://bugzilla.suse.com/1205313	external
https://bugzilla.suse.com/1209225	external
https://www.suse.com/security/cve/CVE-2022-41674	external
https://bugzilla.suse.com/1203770	external
https://bugzilla.suse.com/1203994	external
https://bugzilla.suse.com/1209225	external
https://www.suse.com/security/cve/CVE-2022-42719	external
https://bugzilla.suse.com/1204051	external
https://bugzilla.suse.com/1204292	external
https://bugzilla.suse.com/1209225	external
https://www.suse.com/security/cve/CVE-2022-42720	external
https://bugzilla.suse.com/1204059	external
https://bugzilla.suse.com/1204291	external
https://bugzilla.suse.com/1209225	external
https://www.suse.com/security/cve/CVE-2022-42721	external
https://bugzilla.suse.com/1204060	external
https://bugzilla.suse.com/1204290	external
https://bugzilla.suse.com/1209225	external
https://www.suse.com/security/cve/CVE-2022-42722	external
https://bugzilla.suse.com/1204125	external
https://bugzilla.suse.com/1204289	external
https://bugzilla.suse.com/1209225	external
https://www.suse.com/security/cve/CVE-2022-4379	external
https://bugzilla.suse.com/1206209	external
https://bugzilla.suse.com/1206373	external
https://www.suse.com/security/cve/CVE-2022-44032	external
https://bugzilla.suse.com/1204894	external
https://bugzilla.suse.com/1212290	external
https://www.suse.com/security/cve/CVE-2022-44033	external
https://bugzilla.suse.com/1204922	external
https://bugzilla.suse.com/1212306	external
https://www.suse.com/security/cve/CVE-2022-44034	external
https://bugzilla.suse.com/1204901	external
https://www.suse.com/security/cve/CVE-2022-45884	external
https://bugzilla.suse.com/1205756	external
https://www.suse.com/security/cve/CVE-2022-45885	external
https://bugzilla.suse.com/1205758	external
https://www.suse.com/security/cve/CVE-2022-45886	external
https://bugzilla.suse.com/1205760	external
https://www.suse.com/security/cve/CVE-2022-45887	external
https://bugzilla.suse.com/1205762	external
https://bugzilla.suse.com/1220015	external
https://www.suse.com/security/cve/CVE-2022-45888	external
https://bugzilla.suse.com/1205764	external
https://www.suse.com/security/cve/CVE-2022-45919	external
https://bugzilla.suse.com/1205803	external
https://bugzilla.suse.com/1208600	external
https://bugzilla.suse.com/1208912	external
https://bugzilla.suse.com/1214128	external
https://bugzilla.suse.com/1215674	external
https://www.suse.com/security/cve/CVE-2022-45934	external
https://bugzilla.suse.com/1205796	external
https://bugzilla.suse.com/1212292	external
https://www.suse.com/security/cve/CVE-2023-0045	external
https://bugzilla.suse.com/1207773	external
https://www.suse.com/security/cve/CVE-2023-1076	external
https://bugzilla.suse.com/1208599	external
https://bugzilla.suse.com/1214019	external
https://www.suse.com/security/cve/CVE-2023-1078	external
https://bugzilla.suse.com/1208601	external
https://bugzilla.suse.com/1208603	external
https://www.suse.com/security/cve/CVE-2023-1192	external
https://bugzilla.suse.com/1208995	external
https://www.suse.com/security/cve/CVE-2023-1380	external
https://bugzilla.suse.com/1209287	external
https://www.suse.com/security/cve/CVE-2023-20569	external
https://bugzilla.suse.com/1213287	external
https://www.suse.com/security/cve/CVE-2023-20593	external
https://bugzilla.suse.com/1213286	external
https://bugzilla.suse.com/1213616	external
https://bugzilla.suse.com/1215674	external
https://www.suse.com/security/cve/CVE-2023-2124	external
https://bugzilla.suse.com/1210498	external
https://www.suse.com/security/cve/CVE-2023-31084	external
https://bugzilla.suse.com/1210783	external
https://www.suse.com/security/cve/CVE-2023-3141	external
https://bugzilla.suse.com/1212129	external
https://bugzilla.suse.com/1215674	external
https://www.suse.com/security/cve/CVE-2023-3269	external
https://bugzilla.suse.com/1212395	external
https://bugzilla.suse.com/1213760	external
https://www.suse.com/security/cve/CVE-2023-39192	external
https://bugzilla.suse.com/1215858	external
https://bugzilla.suse.com/1220015	external
https://www.suse.com/security/cve/CVE-2023-39193	external
https://bugzilla.suse.com/1215860	external
https://bugzilla.suse.com/1220015	external
https://www.suse.com/security/cve/CVE-2023-4128	external
https://bugzilla.suse.com/1214149	external
https://www.suse.com/security/cve/CVE-2023-4134	external
https://bugzilla.suse.com/1213971	external
https://www.suse.com/security/cve/CVE-2023-4194	external
https://bugzilla.suse.com/1214019	external
https://www.suse.com/security/cve/CVE-2023-42753	external
https://bugzilla.suse.com/1215150	external
https://bugzilla.suse.com/1218613	external
https://www.suse.com/security/cve/CVE-2023-42754	external
https://bugzilla.suse.com/1215467	external
https://bugzilla.suse.com/1222212	external
https://www.suse.com/security/cve/CVE-2023-42756	external
https://bugzilla.suse.com/1215767	external
https://www.suse.com/security/cve/CVE-2023-4623	external
https://bugzilla.suse.com/1215115	external
https://bugzilla.suse.com/1215440	external
https://bugzilla.suse.com/1217444	external
https://bugzilla.suse.com/1217531	external
https://bugzilla.suse.com/1219698	external
https://bugzilla.suse.com/1221578	external
https://bugzilla.suse.com/1221598	external
https://www.suse.com/security/cve/CVE-2023-46813	external
https://bugzilla.suse.com/1212649	external
https://bugzilla.suse.com/1216896	external
https://www.suse.com/security/cve/CVE-2023-4881	external
https://bugzilla.suse.com/1215221	external
https://www.suse.com/security/cve/CVE-2023-5345	external
https://bugzilla.suse.com/1215899	external
https://bugzilla.suse.com/1215971	external
https://www.suse.com/security/cve/CVE-2023-6606	external
https://bugzilla.suse.com/1217947	external
https://bugzilla.suse.com/1220015	external
https://www.suse.com/security/cve/CVE-2023-6610	external
https://bugzilla.suse.com/1217946	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "kernel-devel-longterm-6.6.17-1.1 on GA media",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "These are all security issues fixed in the kernel-devel-longterm-6.6.17-1.1 package on the GA media of openSUSE Tumbleweed.",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "openSUSE-Tumbleweed-2024-13704",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_13704-1.json"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2016-3695 page",
        "url": "https://www.suse.com/security/cve/CVE-2016-3695/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-1000251 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-1000251/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-12153 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-12153/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-13080 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-13080/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-14051 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-14051/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-15129 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-15129/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-15265 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-15265/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-16536 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-16536/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-16537 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-16537/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-16645 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-16645/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-16646 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-16646/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-16647 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-16647/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-16648 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-16648/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-16995 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-16995/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-16996 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-16996/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-17448 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-17448/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-17449 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-17449/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-17450 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-17450/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-17852 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-17852/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-17853 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-17853/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-17854 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-17854/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-17855 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-17855/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-17856 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-17856/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-17857 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-17857/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-17862 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-17862/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-5123 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-5123/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-5715 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-5715/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-5753 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-5753/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-5754 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-5754/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-7541 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-7541/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-7542 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-7542/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-8824 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-8824/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2017-8831 page",
        "url": "https://www.suse.com/security/cve/CVE-2017-8831/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-1000004 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-1000004/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-10322 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-10322/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-10323 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-10323/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-1068 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-1068/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-1118 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-1118/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-12232 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-12232/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-12714 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-12714/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-13053 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-13053/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-18710 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-18710/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-19824 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-19824/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-5332 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-5332/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-5333 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-5333/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-8043 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-8043/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-8087 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-8087/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2018-8822 page",
        "url": "https://www.suse.com/security/cve/CVE-2018-8822/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-10207 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-10207/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-11477 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-11477/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-11478 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-11478/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-11479 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-11479/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-14615 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-14615/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-14814 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-14814/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-14896 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-14896/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-15030 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-15030/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-15031 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-15031/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-15098 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-15098/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-15099 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-15099/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-15290 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-15290/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-15504 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-15504/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-15902 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-15902/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-16231 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-16231/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-16232 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-16232/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-16234 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-16234/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-17133 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-17133/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-17666 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-17666/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-18808 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-18808/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-18812 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-18812/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-18813 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-18813/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-19252 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-19252/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-19332 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-19332/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-19338 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-19338/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-3016 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-3016/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-3846 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-3846/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-3882 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-3882/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-3887 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-3887/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-6974 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-6974/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-7221 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-7221/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-7222 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-7222/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-8564 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-8564/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-8912 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-8912/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2019-9500 page",
        "url": "https://www.suse.com/security/cve/CVE-2019-9500/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-10135 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-10135/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-10766 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-10766/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-10767 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-10767/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-10768 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-10768/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-12351 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-12351/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-12352 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-12352/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-14331 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-14331/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-14386 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-14386/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-24586 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-24586/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-24587 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-24587/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-24588 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-24588/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-25639 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-25639/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-25656 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-25656/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-25668 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-25668/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-26141 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-26141/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-2732 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-2732/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-29660 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-29660/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-29661 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-29661/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-8648 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-8648/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2020-8694 page",
        "url": "https://www.suse.com/security/cve/CVE-2020-8694/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-23133 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-23133/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-26708 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-26708/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-28971 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-28971/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-32606 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-32606/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-33909 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-33909/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-3483 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-3483/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-3489 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-3489/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-3490 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-3490/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-3491 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-3491/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-3542 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-3542/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-3640 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-3640/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-3653 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-3653/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-3656 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-3656/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-3744 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-3744/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-3753 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-3753/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-37576 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-37576/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-3759 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-3759/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-38166 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-38166/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2021-43976 page",
        "url": "https://www.suse.com/security/cve/CVE-2021-43976/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-0185 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-0185/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-0330 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-0330/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-0847 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-0847/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-0886 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-0886/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-1462 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-1462/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-1516 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-1516/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-1679 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-1679/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-1729 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-1729/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-1852 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-1852/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-1966 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-1966/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-1972 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-1972/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-1973 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-1973/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-22942 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-22942/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-2308 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-2308/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-24958 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-24958/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-2588 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-2588/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-2590 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-2590/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-26490 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-26490/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-28388 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-28388/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-28389 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-28389/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-28390 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-28390/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-28893 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-28893/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-29900 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-29900/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-29901 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-29901/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-29968 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-29968/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-3424 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-3424/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-34918 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-34918/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-3628 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-3628/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-3640 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-3640/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-40982 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-40982/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-41218 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-41218/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-41674 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-41674/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-42719 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-42719/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-42720 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-42720/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-42721 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-42721/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-42722 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-42722/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-4379 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-4379/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-44032 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-44032/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-44033 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-44033/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-44034 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-44034/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-45884 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-45884/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-45885 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-45885/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-45886 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-45886/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-45887 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-45887/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-45888 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-45888/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-45919 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-45919/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-45934 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-45934/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-0045 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-0045/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-1076 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-1076/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-1078 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-1078/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-1192 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-1192/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-1380 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-1380/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-20569 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-20569/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-20593 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-20593/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-2124 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-2124/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-31084 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-31084/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-3141 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-3141/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-3269 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-3269/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-39192 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-39192/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-39193 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-39193/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-4128 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-4128/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-4134 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-4134/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-4194 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-4194/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-42753 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-42753/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-42754 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-42754/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-42756 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-42756/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-4623 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-4623/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-46813 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-46813/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-4881 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-4881/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-5345 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-5345/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-6606 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-6606/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2023-6610 page",
        "url": "https://www.suse.com/security/cve/CVE-2023-6610/"
      }
    ],
    "title": "kernel-devel-longterm-6.6.17-1.1 on GA media",
    "tracking": {
      "current_release_date": "2024-06-15T00:00:00Z",
      "generator": {
        "date": "2024-06-15T00:00:00Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "openSUSE-SU-2024:13704-1",
      "initial_release_date": "2024-06-15T00:00:00Z",
      "revision_history": [
        {
          "date": "2024-06-15T00:00:00Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-devel-longterm-6.6.17-1.1.aarch64",
                "product": {
                  "name": "kernel-devel-longterm-6.6.17-1.1.aarch64",
                  "product_id": "kernel-devel-longterm-6.6.17-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-source-longterm-6.6.17-1.1.aarch64",
                "product": {
                  "name": "kernel-source-longterm-6.6.17-1.1.aarch64",
                  "product_id": "kernel-source-longterm-6.6.17-1.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-devel-longterm-6.6.17-1.1.ppc64le",
                "product": {
                  "name": "kernel-devel-longterm-6.6.17-1.1.ppc64le",
                  "product_id": "kernel-devel-longterm-6.6.17-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-source-longterm-6.6.17-1.1.ppc64le",
                "product": {
                  "name": "kernel-source-longterm-6.6.17-1.1.ppc64le",
                  "product_id": "kernel-source-longterm-6.6.17-1.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-devel-longterm-6.6.17-1.1.s390x",
                "product": {
                  "name": "kernel-devel-longterm-6.6.17-1.1.s390x",
                  "product_id": "kernel-devel-longterm-6.6.17-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-source-longterm-6.6.17-1.1.s390x",
                "product": {
                  "name": "kernel-source-longterm-6.6.17-1.1.s390x",
                  "product_id": "kernel-source-longterm-6.6.17-1.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "kernel-devel-longterm-6.6.17-1.1.x86_64",
                "product": {
                  "name": "kernel-devel-longterm-6.6.17-1.1.x86_64",
                  "product_id": "kernel-devel-longterm-6.6.17-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "kernel-source-longterm-6.6.17-1.1.x86_64",
                "product": {
                  "name": "kernel-source-longterm-6.6.17-1.1.x86_64",
                  "product_id": "kernel-source-longterm-6.6.17-1.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "openSUSE Tumbleweed",
                "product": {
                  "name": "openSUSE Tumbleweed",
                  "product_id": "openSUSE Tumbleweed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:tumbleweed"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-longterm-6.6.17-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64"
        },
        "product_reference": "kernel-devel-longterm-6.6.17-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-longterm-6.6.17-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le"
        },
        "product_reference": "kernel-devel-longterm-6.6.17-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-longterm-6.6.17-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x"
        },
        "product_reference": "kernel-devel-longterm-6.6.17-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-devel-longterm-6.6.17-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64"
        },
        "product_reference": "kernel-devel-longterm-6.6.17-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-longterm-6.6.17-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64"
        },
        "product_reference": "kernel-source-longterm-6.6.17-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-longterm-6.6.17-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le"
        },
        "product_reference": "kernel-source-longterm-6.6.17-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-longterm-6.6.17-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x"
        },
        "product_reference": "kernel-source-longterm-6.6.17-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "kernel-source-longterm-6.6.17-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        },
        "product_reference": "kernel-source-longterm-6.6.17-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2016-3695",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2016-3695"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The einj_error_inject function in drivers/acpi/apei/einj.c in the Linux kernel allows local users to simulate hardware errors and consequently cause a denial of service by leveraging failure to disable APEI error injection through EINJ when securelevel is set.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2016-3695",
          "url": "https://www.suse.com/security/cve/CVE-2016-3695"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1023051 for CVE-2016-3695",
          "url": "https://bugzilla.suse.com/1023051"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 2.2,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2016-3695"
    },
    {
      "cve": "CVE-2017-1000251",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-1000251"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The native Bluetooth stack in the Linux Kernel (BlueZ), starting at the Linux kernel version 2.6.32 and up to and including 4.13.1, are vulnerable to a stack overflow vulnerability in the processing of L2CAP configuration responses resulting in Remote code execution in kernel space.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-1000251",
          "url": "https://www.suse.com/security/cve/CVE-2017-1000251"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1057389 for CVE-2017-1000251",
          "url": "https://bugzilla.suse.com/1057389"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1057950 for CVE-2017-1000251",
          "url": "https://bugzilla.suse.com/1057950"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1070535 for CVE-2017-1000251",
          "url": "https://bugzilla.suse.com/1070535"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1072117 for CVE-2017-1000251",
          "url": "https://bugzilla.suse.com/1072117"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1072162 for CVE-2017-1000251",
          "url": "https://bugzilla.suse.com/1072162"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1120758 for CVE-2017-1000251",
          "url": "https://bugzilla.suse.com/1120758"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-1000251"
    },
    {
      "cve": "CVE-2017-12153",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-12153"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A security flaw was discovered in the nl80211_set_rekey_data() function in net/wireless/nl80211.c in the Linux kernel through 4.13.3. This function does not check whether the required attributes are present in a Netlink request. This request can be issued by a user with the CAP_NET_ADMIN capability and may result in a NULL pointer dereference and system crash.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-12153",
          "url": "https://www.suse.com/security/cve/CVE-2017-12153"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1058410 for CVE-2017-12153",
          "url": "https://bugzilla.suse.com/1058410"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1058624 for CVE-2017-12153",
          "url": "https://bugzilla.suse.com/1058624"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2017-12153"
    },
    {
      "cve": "CVE-2017-13080",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-13080"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Group Temporal Key (GTK) during the group key handshake, allowing an attacker within radio range to replay frames from access points to clients.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-13080",
          "url": "https://www.suse.com/security/cve/CVE-2017-13080"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1056061 for CVE-2017-13080",
          "url": "https://bugzilla.suse.com/1056061"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1063479 for CVE-2017-13080",
          "url": "https://bugzilla.suse.com/1063479"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1063667 for CVE-2017-13080",
          "url": "https://bugzilla.suse.com/1063667"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1063671 for CVE-2017-13080",
          "url": "https://bugzilla.suse.com/1063671"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1066295 for CVE-2017-13080",
          "url": "https://bugzilla.suse.com/1066295"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1105108 for CVE-2017-13080",
          "url": "https://bugzilla.suse.com/1105108"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178872 for CVE-2017-13080",
          "url": "https://bugzilla.suse.com/1178872"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1179588 for CVE-2017-13080",
          "url": "https://bugzilla.suse.com/1179588"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-13080"
    },
    {
      "cve": "CVE-2017-14051",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-14051"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An integer overflow in the qla2x00_sysfs_write_optrom_ctl function in drivers/scsi/qla2xxx/qla_attr.c in the Linux kernel through 4.12.10 allows local users to cause a denial of service (memory corruption and system crash) by leveraging root access.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-14051",
          "url": "https://www.suse.com/security/cve/CVE-2017-14051"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1056588 for CVE-2017-14051",
          "url": "https://bugzilla.suse.com/1056588"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-14051"
    },
    {
      "cve": "CVE-2017-15129",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-15129"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A use-after-free vulnerability was found in network namespaces code affecting the Linux kernel before 4.14.11. The function get_net_ns_by_id() in net/core/net_namespace.c does not check for the net::count value after it has found a peer network in netns_ids idr, which could lead to double free and memory corruption. This vulnerability could allow an unprivileged local user to induce kernel memory corruption on the system, leading to a crash. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although it is thought to be unlikely.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-15129",
          "url": "https://www.suse.com/security/cve/CVE-2017-15129"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074839 for CVE-2017-15129",
          "url": "https://bugzilla.suse.com/1074839"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-15129"
    },
    {
      "cve": "CVE-2017-15265",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-15265"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Race condition in the ALSA subsystem in the Linux kernel before 4.13.8 allows local users to cause a denial of service (use-after-free) or possibly have unspecified other impact via crafted /dev/snd/seq ioctl calls, related to sound/core/seq/seq_clientmgr.c and sound/core/seq/seq_ports.c.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-15265",
          "url": "https://www.suse.com/security/cve/CVE-2017-15265"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1062520 for CVE-2017-15265",
          "url": "https://bugzilla.suse.com/1062520"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1115893 for CVE-2017-15265",
          "url": "https://bugzilla.suse.com/1115893"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-15265"
    },
    {
      "cve": "CVE-2017-16536",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-16536"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The cx231xx_usb_probe function in drivers/media/usb/cx231xx/cx231xx-cards.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via a crafted USB device.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-16536",
          "url": "https://www.suse.com/security/cve/CVE-2017-16536"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1066606 for CVE-2017-16536",
          "url": "https://bugzilla.suse.com/1066606"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2017-16536",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146519 for CVE-2017-16536",
          "url": "https://bugzilla.suse.com/1146519"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-16536"
    },
    {
      "cve": "CVE-2017-16537",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-16537"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The imon_probe function in drivers/media/rc/imon.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via a crafted USB device.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-16537",
          "url": "https://www.suse.com/security/cve/CVE-2017-16537"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1066573 for CVE-2017-16537",
          "url": "https://bugzilla.suse.com/1066573"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2017-16537",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146519 for CVE-2017-16537",
          "url": "https://bugzilla.suse.com/1146519"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-16537"
    },
    {
      "cve": "CVE-2017-16645",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-16645"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The ims_pcu_get_cdc_union_desc function in drivers/input/misc/ims-pcu.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (ims_pcu_parse_cdc_data out-of-bounds read and system crash) or possibly have unspecified other impact via a crafted USB device.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-16645",
          "url": "https://www.suse.com/security/cve/CVE-2017-16645"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1067132 for CVE-2017-16645",
          "url": "https://bugzilla.suse.com/1067132"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2017-16645",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146519 for CVE-2017-16645",
          "url": "https://bugzilla.suse.com/1146519"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-16645"
    },
    {
      "cve": "CVE-2017-16646",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-16646"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "drivers/media/usb/dvb-usb/dib0700_devices.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (BUG and system crash) or possibly have unspecified other impact via a crafted USB device.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-16646",
          "url": "https://www.suse.com/security/cve/CVE-2017-16646"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1067105 for CVE-2017-16646",
          "url": "https://bugzilla.suse.com/1067105"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146519 for CVE-2017-16646",
          "url": "https://bugzilla.suse.com/1146519"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-16646"
    },
    {
      "cve": "CVE-2017-16647",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-16647"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "drivers/net/usb/asix_devices.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecified other impact via a crafted USB device.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-16647",
          "url": "https://www.suse.com/security/cve/CVE-2017-16647"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1067102 for CVE-2017-16647",
          "url": "https://bugzilla.suse.com/1067102"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146519 for CVE-2017-16647",
          "url": "https://bugzilla.suse.com/1146519"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-16647"
    },
    {
      "cve": "CVE-2017-16648",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-16648"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The dvb_frontend_free function in drivers/media/dvb-core/dvb_frontend.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (use-after-free and system crash) or possibly have unspecified other impact via a crafted USB device. NOTE: the function was later renamed __dvb_frontend_free.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-16648",
          "url": "https://www.suse.com/security/cve/CVE-2017-16648"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1067087 for CVE-2017-16648",
          "url": "https://bugzilla.suse.com/1067087"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2017-16648",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146519 for CVE-2017-16648",
          "url": "https://bugzilla.suse.com/1146519"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-16648"
    },
    {
      "cve": "CVE-2017-16995",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-16995"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The check_alu_op function in kernel/bpf/verifier.c in the Linux kernel through 4.4 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging incorrect sign extension.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-16995",
          "url": "https://www.suse.com/security/cve/CVE-2017-16995"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1073928 for CVE-2017-16995",
          "url": "https://bugzilla.suse.com/1073928"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-16995"
    },
    {
      "cve": "CVE-2017-16996",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-16996"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "kernel/bpf/verifier.c in the Linux kernel through 4.14.8 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging register truncation mishandling.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-16996",
          "url": "https://www.suse.com/security/cve/CVE-2017-16996"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1073928 for CVE-2017-16996",
          "url": "https://bugzilla.suse.com/1073928"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-16996"
    },
    {
      "cve": "CVE-2017-17448",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-17448"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "net/netfilter/nfnetlink_cthelper.c in the Linux kernel through 4.14.4 does not require the CAP_NET_ADMIN capability for new, get, and del operations, which allows local users to bypass intended access restrictions because the nfnl_cthelper_list data structure is shared across all net namespaces.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-17448",
          "url": "https://www.suse.com/security/cve/CVE-2017-17448"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1071693 for CVE-2017-17448",
          "url": "https://bugzilla.suse.com/1071693"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-17448"
    },
    {
      "cve": "CVE-2017-17449",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-17449"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The __netlink_deliver_tap_skb function in net/netlink/af_netlink.c in the Linux kernel through 4.14.4, when CONFIG_NLMON is enabled, does not restrict observations of Netlink messages to a single net namespace, which allows local users to obtain sensitive information by leveraging the CAP_NET_ADMIN capability to sniff an nlmon interface for all Netlink activity on the system.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-17449",
          "url": "https://www.suse.com/security/cve/CVE-2017-17449"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1071694 for CVE-2017-17449",
          "url": "https://bugzilla.suse.com/1071694"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-17449"
    },
    {
      "cve": "CVE-2017-17450",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-17450"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "net/netfilter/xt_osf.c in the Linux kernel through 4.14.4 does not require the CAP_NET_ADMIN capability for add_callback and remove_callback operations, which allows local users to bypass intended access restrictions because the xt_osf_fingers data structure is shared across all net namespaces.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-17450",
          "url": "https://www.suse.com/security/cve/CVE-2017-17450"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1071695 for CVE-2017-17450",
          "url": "https://bugzilla.suse.com/1071695"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074033 for CVE-2017-17450",
          "url": "https://bugzilla.suse.com/1074033"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1115893 for CVE-2017-17450",
          "url": "https://bugzilla.suse.com/1115893"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-17450"
    },
    {
      "cve": "CVE-2017-17852",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-17852"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "kernel/bpf/verifier.c in the Linux kernel through 4.14.8 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging mishandling of 32-bit ALU ops.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-17852",
          "url": "https://www.suse.com/security/cve/CVE-2017-17852"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1073928 for CVE-2017-17852",
          "url": "https://bugzilla.suse.com/1073928"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-17852"
    },
    {
      "cve": "CVE-2017-17853",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-17853"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "kernel/bpf/verifier.c in the Linux kernel through 4.14.8 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging incorrect BPF_RSH signed bounds calculations.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-17853",
          "url": "https://www.suse.com/security/cve/CVE-2017-17853"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1073928 for CVE-2017-17853",
          "url": "https://bugzilla.suse.com/1073928"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-17853"
    },
    {
      "cve": "CVE-2017-17854",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-17854"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "kernel/bpf/verifier.c in the Linux kernel through 4.14.8 allows local users to cause a denial of service (integer overflow and memory corruption) or possibly have unspecified other impact by leveraging unrestricted integer values for pointer arithmetic.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-17854",
          "url": "https://www.suse.com/security/cve/CVE-2017-17854"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1073928 for CVE-2017-17854",
          "url": "https://bugzilla.suse.com/1073928"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-17854"
    },
    {
      "cve": "CVE-2017-17855",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-17855"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "kernel/bpf/verifier.c in the Linux kernel through 4.14.8 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging improper use of pointers in place of scalars.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-17855",
          "url": "https://www.suse.com/security/cve/CVE-2017-17855"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1073928 for CVE-2017-17855",
          "url": "https://bugzilla.suse.com/1073928"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-17855"
    },
    {
      "cve": "CVE-2017-17856",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-17856"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "kernel/bpf/verifier.c in the Linux kernel through 4.14.8 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging the lack of stack-pointer alignment enforcement.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-17856",
          "url": "https://www.suse.com/security/cve/CVE-2017-17856"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1073928 for CVE-2017-17856",
          "url": "https://bugzilla.suse.com/1073928"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-17856"
    },
    {
      "cve": "CVE-2017-17857",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-17857"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The check_stack_boundary function in kernel/bpf/verifier.c in the Linux kernel through 4.14.8 allows local users to cause a denial of service (memory corruption) or possibly have unspecified other impact by leveraging mishandling of invalid variable stack read operations.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-17857",
          "url": "https://www.suse.com/security/cve/CVE-2017-17857"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1073928 for CVE-2017-17857",
          "url": "https://bugzilla.suse.com/1073928"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-17857"
    },
    {
      "cve": "CVE-2017-17862",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-17862"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "kernel/bpf/verifier.c in the Linux kernel through 4.14.8 ignores unreachable code, even though it would still be processed by JIT compilers. This behavior, also considered an improper branch-pruning logic issue, could possibly be used by local users for denial of service.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-17862",
          "url": "https://www.suse.com/security/cve/CVE-2017-17862"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1073928 for CVE-2017-17862",
          "url": "https://bugzilla.suse.com/1073928"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-17862"
    },
    {
      "cve": "CVE-2017-5123",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-5123"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Insufficient data validation in waitid allowed an user to escape sandboxes on Linux.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-5123",
          "url": "https://www.suse.com/security/cve/CVE-2017-5123"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1062473 for CVE-2017-5123",
          "url": "https://bugzilla.suse.com/1062473"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1122971 for CVE-2017-5123",
          "url": "https://bugzilla.suse.com/1122971"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2017-5123"
    },
    {
      "cve": "CVE-2017-5715",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-5715"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-5715",
          "url": "https://www.suse.com/security/cve/CVE-2017-5715"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1068032 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1068032"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074562 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1074562"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074578 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1074578"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074701 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1074701"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074741 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1074741"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074919 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1074919"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075006 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1075006"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075007 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1075007"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075262 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1075262"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075419 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1075419"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1076115 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1076115"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1076372 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1076372"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1076606 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1076606"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1078353 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1078353"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1080039 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1080039"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087887 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1087887"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087939 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1087939"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1088147 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1088147"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1089055 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1089055"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1091815 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1091815"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1095735 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1095735"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1102517 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1102517"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1105108 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1105108"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1126516 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1126516"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1173489 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1173489"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178658 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1178658"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1201457 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1201457"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1201877 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1201877"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1203236 for CVE-2017-5715",
          "url": "https://bugzilla.suse.com/1203236"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2017-5715"
    },
    {
      "cve": "CVE-2017-5753",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-5753"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-5753",
          "url": "https://www.suse.com/security/cve/CVE-2017-5753"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1068032 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1068032"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074562 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1074562"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074578 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1074578"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074701 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1074701"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075006 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1075006"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075419 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1075419"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075748 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1075748"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1080039 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1080039"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087084 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1087084"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087939 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1087939"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1089055 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1089055"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1136865 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1136865"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178658 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1178658"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1201877 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1201877"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1209547 for CVE-2017-5753",
          "url": "https://bugzilla.suse.com/1209547"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2017-5753"
    },
    {
      "cve": "CVE-2017-5754",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-5754"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis of the data cache.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-5754",
          "url": "https://www.suse.com/security/cve/CVE-2017-5754"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1068032 for CVE-2017-5754",
          "url": "https://bugzilla.suse.com/1068032"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074562 for CVE-2017-5754",
          "url": "https://bugzilla.suse.com/1074562"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074578 for CVE-2017-5754",
          "url": "https://bugzilla.suse.com/1074578"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1074701 for CVE-2017-5754",
          "url": "https://bugzilla.suse.com/1074701"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075006 for CVE-2017-5754",
          "url": "https://bugzilla.suse.com/1075006"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075008 for CVE-2017-5754",
          "url": "https://bugzilla.suse.com/1075008"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087939 for CVE-2017-5754",
          "url": "https://bugzilla.suse.com/1087939"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1089055 for CVE-2017-5754",
          "url": "https://bugzilla.suse.com/1089055"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1115045 for CVE-2017-5754",
          "url": "https://bugzilla.suse.com/1115045"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1136865 for CVE-2017-5754",
          "url": "https://bugzilla.suse.com/1136865"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178658 for CVE-2017-5754",
          "url": "https://bugzilla.suse.com/1178658"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1201877 for CVE-2017-5754",
          "url": "https://bugzilla.suse.com/1201877"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2017-5754"
    },
    {
      "cve": "CVE-2017-7541",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-7541"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The brcmf_cfg80211_mgmt_tx function in drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c in the Linux kernel before 4.12.3 allows local users to cause a denial of service (buffer overflow and system crash) or possibly gain privileges via a crafted NL80211_CMD_FRAME Netlink packet.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-7541",
          "url": "https://www.suse.com/security/cve/CVE-2017-7541"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1049645 for CVE-2017-7541",
          "url": "https://bugzilla.suse.com/1049645"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-7541"
    },
    {
      "cve": "CVE-2017-7542",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-7542"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The ip6_find_1stfragopt function in net/ipv6/output_core.c in the Linux kernel through 4.12.3 allows local users to cause a denial of service (integer overflow and infinite loop) by leveraging the ability to open a raw socket.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-7542",
          "url": "https://www.suse.com/security/cve/CVE-2017-7542"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1049882 for CVE-2017-7542",
          "url": "https://bugzilla.suse.com/1049882"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1061936 for CVE-2017-7542",
          "url": "https://bugzilla.suse.com/1061936"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-7542"
    },
    {
      "cve": "CVE-2017-8824",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-8824"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The dccp_disconnect function in net/dccp/proto.c in the Linux kernel through 4.14.3 allows local users to gain privileges or cause a denial of service (use-after-free) via an AF_UNSPEC connect system call during the DCCP_LISTEN state.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-8824",
          "url": "https://www.suse.com/security/cve/CVE-2017-8824"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1070771 for CVE-2017-8824",
          "url": "https://bugzilla.suse.com/1070771"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1076734 for CVE-2017-8824",
          "url": "https://bugzilla.suse.com/1076734"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1092904 for CVE-2017-8824",
          "url": "https://bugzilla.suse.com/1092904"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1115893 for CVE-2017-8824",
          "url": "https://bugzilla.suse.com/1115893"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2017-8824"
    },
    {
      "cve": "CVE-2017-8831",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2017-8831"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The saa7164_bus_get function in drivers/media/pci/saa7164/saa7164-bus.c in the Linux kernel through 4.11.5 allows local users to cause a denial of service (out-of-bounds array access) or possibly have unspecified other impact by changing a certain sequence-number value, aka a \"double fetch\" vulnerability.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2017-8831",
          "url": "https://www.suse.com/security/cve/CVE-2017-8831"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1037994 for CVE-2017-8831",
          "url": "https://bugzilla.suse.com/1037994"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1061936 for CVE-2017-8831",
          "url": "https://bugzilla.suse.com/1061936"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2017-8831",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1115893 for CVE-2017-8831",
          "url": "https://bugzilla.suse.com/1115893"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2017-8831"
    },
    {
      "cve": "CVE-2018-1000004",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-1000004"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel 4.12, 3.10, 2.6 and possibly earlier versions a race condition vulnerability exists in the sound system, this can lead to a deadlock and denial of service condition.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-1000004",
          "url": "https://www.suse.com/security/cve/CVE-2018-1000004"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1076017 for CVE-2018-1000004",
          "url": "https://bugzilla.suse.com/1076017"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1091815 for CVE-2018-1000004",
          "url": "https://bugzilla.suse.com/1091815"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-1000004"
    },
    {
      "cve": "CVE-2018-10322",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-10322"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The xfs_dinode_verify function in fs/xfs/libxfs/xfs_inode_buf.c in the Linux kernel through 4.16.3 allows local users to cause a denial of service (xfs_ilock_attr_map_shared invalid pointer dereference) via a crafted xfs image.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-10322",
          "url": "https://www.suse.com/security/cve/CVE-2018-10322"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2018-10322",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1090749 for CVE-2018-10322",
          "url": "https://bugzilla.suse.com/1090749"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-10322"
    },
    {
      "cve": "CVE-2018-10323",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-10323"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The xfs_bmap_extents_to_btree function in fs/xfs/libxfs/xfs_bmap.c in the Linux kernel through 4.16.3 allows local users to cause a denial of service (xfs_bmapi_write NULL pointer dereference) via a crafted xfs image.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-10323",
          "url": "https://www.suse.com/security/cve/CVE-2018-10323"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2018-10323",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1090717 for CVE-2018-10323",
          "url": "https://bugzilla.suse.com/1090717"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-10323"
    },
    {
      "cve": "CVE-2018-1068",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-1068"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Linux 4.x kernel\u0027s implementation of 32-bit syscall interface for bridging. This allowed a privileged user to arbitrarily write to a limited range of kernel memory.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-1068",
          "url": "https://www.suse.com/security/cve/CVE-2018-1068"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1085107 for CVE-2018-1068",
          "url": "https://bugzilla.suse.com/1085107"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1085114 for CVE-2018-1068",
          "url": "https://bugzilla.suse.com/1085114"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2018-1068",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1123903 for CVE-2018-1068",
          "url": "https://bugzilla.suse.com/1123903"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2018-1068"
    },
    {
      "cve": "CVE-2018-1118",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-1118"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Linux kernel vhost since version 4.8 does not properly initialize memory in messages passed between virtual guests and the host operating system in the vhost/vhost.c:vhost_new_msg() function. This can allow local privileged users to read some kernel memory contents when reading from the /dev/vhost-net device file.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-1118",
          "url": "https://www.suse.com/security/cve/CVE-2018-1118"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2018-1118",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1092472 for CVE-2018-1118",
          "url": "https://bugzilla.suse.com/1092472"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2018-1118"
    },
    {
      "cve": "CVE-2018-12232",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-12232"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In net/socket.c in the Linux kernel through 4.17.1, there is a race condition between fchownat and close in cases where they target the same socket file descriptor, related to the sock_close and sockfs_setattr functions. fchownat does not increment the file descriptor reference count, which allows close to set the socket to NULL during fchownat\u0027s execution, leading to a NULL pointer dereference and system crash.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-12232",
          "url": "https://www.suse.com/security/cve/CVE-2018-12232"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1087082 for CVE-2018-12232",
          "url": "https://bugzilla.suse.com/1087082"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1097593 for CVE-2018-12232",
          "url": "https://bugzilla.suse.com/1097593"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1125907 for CVE-2018-12232",
          "url": "https://bugzilla.suse.com/1125907"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1127757 for CVE-2018-12232",
          "url": "https://bugzilla.suse.com/1127757"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-12232"
    },
    {
      "cve": "CVE-2018-12714",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-12714"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in the Linux kernel through 4.17.2. The filter parsing in kernel/trace/trace_events_filter.c could be called with no filter, which is an N=0 case when it expected at least one line to have been read, thus making the N-1 index invalid. This allows attackers to cause a denial of service (slab out-of-bounds write) or possibly have unspecified other impact via crafted perf_event_open and mmap system calls.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-12714",
          "url": "https://www.suse.com/security/cve/CVE-2018-12714"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1098933 for CVE-2018-12714",
          "url": "https://bugzilla.suse.com/1098933"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2018-12714"
    },
    {
      "cve": "CVE-2018-13053",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-13053"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The alarm_timer_nsleep function in kernel/time/alarmtimer.c in the Linux kernel through 4.17.3 has an integer overflow via a large relative timeout because ktime_add_safe is not used.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-13053",
          "url": "https://www.suse.com/security/cve/CVE-2018-13053"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1099924 for CVE-2018-13053",
          "url": "https://bugzilla.suse.com/1099924"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1115893 for CVE-2018-13053",
          "url": "https://bugzilla.suse.com/1115893"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2018-13053"
    },
    {
      "cve": "CVE-2018-18710",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-18710"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in the Linux kernel through 4.19. An information leak in cdrom_ioctl_select_disc in drivers/cdrom/cdrom.c could be used by local attackers to read kernel memory because a cast from unsigned long to int interferes with bounds checking. This is similar to CVE-2018-10940 and CVE-2018-16658.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-18710",
          "url": "https://www.suse.com/security/cve/CVE-2018-18710"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1113751 for CVE-2018-18710",
          "url": "https://bugzilla.suse.com/1113751"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-18710"
    },
    {
      "cve": "CVE-2018-19824",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-19824"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel through 4.19.6, a local user could exploit a use-after-free in the ALSA driver by supplying a malicious USB Sound device (with zero interfaces) that is mishandled in usb_audio_probe in sound/usb/card.c.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-19824",
          "url": "https://www.suse.com/security/cve/CVE-2018-19824"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1118152 for CVE-2018-19824",
          "url": "https://bugzilla.suse.com/1118152"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-19824"
    },
    {
      "cve": "CVE-2018-5332",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-5332"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel through 3.2, the rds_message_alloc_sgs() function does not validate a value that is used during DMA page allocation, leading to a heap-based out-of-bounds write (related to the rds_rdma_extra_size function in net/rds/rdma.c).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-5332",
          "url": "https://www.suse.com/security/cve/CVE-2018-5332"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075621 for CVE-2018-5332",
          "url": "https://bugzilla.suse.com/1075621"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1091815 for CVE-2018-5332",
          "url": "https://bugzilla.suse.com/1091815"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1115893 for CVE-2018-5332",
          "url": "https://bugzilla.suse.com/1115893"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.6,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2018-5332"
    },
    {
      "cve": "CVE-2018-5333",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-5333"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel through 4.14.13, the rds_cmsg_atomic function in net/rds/rdma.c mishandles cases where page pinning fails or an invalid address is supplied, leading to an rds_atomic_free_op NULL pointer dereference.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-5333",
          "url": "https://www.suse.com/security/cve/CVE-2018-5333"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1075617 for CVE-2018-5333",
          "url": "https://bugzilla.suse.com/1075617"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1091815 for CVE-2018-5333",
          "url": "https://bugzilla.suse.com/1091815"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 2.9,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2018-5333"
    },
    {
      "cve": "CVE-2018-8043",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-8043"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The unimac_mdio_probe function in drivers/net/phy/mdio-bcm-unimac.c in the Linux kernel through 4.15.8 does not validate certain resource availability, which allows local users to cause a denial of service (NULL pointer dereference).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-8043",
          "url": "https://www.suse.com/security/cve/CVE-2018-8043"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1084829 for CVE-2018-8043",
          "url": "https://bugzilla.suse.com/1084829"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 0,
            "baseSeverity": "NONE",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2018-8043"
    },
    {
      "cve": "CVE-2018-8087",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-8087"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Memory leak in the hwsim_new_radio_nl function in drivers/net/wireless/mac80211_hwsim.c in the Linux kernel through 4.15.9 allows local users to cause a denial of service (memory consumption) by triggering an out-of-array error case.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-8087",
          "url": "https://www.suse.com/security/cve/CVE-2018-8087"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1085053 for CVE-2018-8087",
          "url": "https://bugzilla.suse.com/1085053"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-8087"
    },
    {
      "cve": "CVE-2018-8822",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2018-8822"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Incorrect buffer length handling in the ncp_read_kernel function in fs/ncpfs/ncplib_kernel.c in the Linux kernel through 4.15.11, and in drivers/staging/ncpfs/ncplib_kernel.c in the Linux kernel 4.16-rc through 4.16-rc6, could be exploited by malicious NCPFS servers to crash the kernel or execute code.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2018-8822",
          "url": "https://www.suse.com/security/cve/CVE-2018-8822"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1086162 for CVE-2018-8822",
          "url": "https://bugzilla.suse.com/1086162"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1090404 for CVE-2018-8822",
          "url": "https://bugzilla.suse.com/1090404"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1091815 for CVE-2018-8822",
          "url": "https://bugzilla.suse.com/1091815"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2018-8822"
    },
    {
      "cve": "CVE-2019-10207",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-10207"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Linux kernel\u0027s Bluetooth implementation of UART, all versions kernel 3.x.x before 4.18.0 and kernel 5.x.x. An attacker with local access and write permissions to the Bluetooth hardware could use this flaw to issue a specially crafted ioctl function call and cause the system to crash.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-10207",
          "url": "https://www.suse.com/security/cve/CVE-2019-10207"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1123959 for CVE-2019-10207",
          "url": "https://bugzilla.suse.com/1123959"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1142857 for CVE-2019-10207",
          "url": "https://bugzilla.suse.com/1142857"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2019-10207"
    },
    {
      "cve": "CVE-2019-11477",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-11477"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Jonathan Looney discovered that the TCP_SKB_CB(skb)-\u003etcp_gso_segs value was subject to an integer overflow in the Linux kernel when handling TCP Selective Acknowledgments (SACKs). A remote attacker could use this to cause a denial of service. This has been fixed in stable kernel releases 4.4.182, 4.9.182, 4.14.127, 4.19.52, 5.1.11, and is fixed in commit 3b4929f65b0d8249f19a50245cd88ed1a2f78cff.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-11477",
          "url": "https://www.suse.com/security/cve/CVE-2019-11477"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1132686 for CVE-2019-11477",
          "url": "https://bugzilla.suse.com/1132686"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1137586 for CVE-2019-11477",
          "url": "https://bugzilla.suse.com/1137586"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1142129 for CVE-2019-11477",
          "url": "https://bugzilla.suse.com/1142129"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1153242 for CVE-2019-11477",
          "url": "https://bugzilla.suse.com/1153242"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.2,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2019-11477"
    },
    {
      "cve": "CVE-2019-11478",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-11478"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Jonathan Looney discovered that the TCP retransmission queue implementation in tcp_fragment in the Linux kernel could be fragmented when handling certain TCP Selective Acknowledgment (SACK) sequences. A remote attacker could use this to cause a denial of service. This has been fixed in stable kernel releases 4.4.182, 4.9.182, 4.14.127, 4.19.52, 5.1.11, and is fixed in commit f070ef2ac66716357066b683fb0baf55f8191a2e.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-11478",
          "url": "https://www.suse.com/security/cve/CVE-2019-11478"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1132686 for CVE-2019-11478",
          "url": "https://bugzilla.suse.com/1132686"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1137586 for CVE-2019-11478",
          "url": "https://bugzilla.suse.com/1137586"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1142129 for CVE-2019-11478",
          "url": "https://bugzilla.suse.com/1142129"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1143542 for CVE-2019-11478",
          "url": "https://bugzilla.suse.com/1143542"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2019-11478"
    },
    {
      "cve": "CVE-2019-11479",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-11479"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Jonathan Looney discovered that the Linux kernel default MSS is hard-coded to 48 bytes. This allows a remote peer to fragment TCP resend queues significantly more than if a larger MSS were enforced. A remote attacker could use this to cause a denial of service. This has been fixed in stable kernel releases 4.4.182, 4.9.182, 4.14.127, 4.19.52, 5.1.11, and is fixed in commits 967c05aee439e6e5d7d805e195b3a20ef5c433d6 and 5f3e2bf008c2221478101ee72f5cb4654b9fc363.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-11479",
          "url": "https://www.suse.com/security/cve/CVE-2019-11479"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1132686 for CVE-2019-11479",
          "url": "https://bugzilla.suse.com/1132686"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1137586 for CVE-2019-11479",
          "url": "https://bugzilla.suse.com/1137586"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1142129 for CVE-2019-11479",
          "url": "https://bugzilla.suse.com/1142129"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1143542 for CVE-2019-11479",
          "url": "https://bugzilla.suse.com/1143542"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2019-11479"
    },
    {
      "cve": "CVE-2019-14615",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-14615"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Insufficient control flow in certain data structures for some Intel(R) Processors with Intel(R) Processor Graphics may allow an unauthenticated user to potentially enable information disclosure via local access.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-14615",
          "url": "https://www.suse.com/security/cve/CVE-2019-14615"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1160195 for CVE-2019-14615",
          "url": "https://bugzilla.suse.com/1160195"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1165881 for CVE-2019-14615",
          "url": "https://bugzilla.suse.com/1165881"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-14615"
    },
    {
      "cve": "CVE-2019-14814",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-14814"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "There is heap-based buffer overflow in Linux kernel, all versions up to, excluding 5.3, in the marvell wifi chip driver in Linux kernel, that allows local users to cause a denial of service(system crash) or possibly execute arbitrary code.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-14814",
          "url": "https://www.suse.com/security/cve/CVE-2019-14814"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146512 for CVE-2019-14814",
          "url": "https://bugzilla.suse.com/1146512"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1173664 for CVE-2019-14814",
          "url": "https://bugzilla.suse.com/1173664"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1173665 for CVE-2019-14814",
          "url": "https://bugzilla.suse.com/1173665"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-14814"
    },
    {
      "cve": "CVE-2019-14896",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-14896"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A heap-based buffer overflow vulnerability was found in the Linux kernel, version kernel-2.6.32, in Marvell WiFi chip driver. A remote attacker could cause a denial of service (system crash) or, possibly execute arbitrary code, when the lbs_ibss_join_existing function is called after a STA connects to an AP.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-14896",
          "url": "https://www.suse.com/security/cve/CVE-2019-14896"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1157157 for CVE-2019-14896",
          "url": "https://bugzilla.suse.com/1157157"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1160468 for CVE-2019-14896",
          "url": "https://bugzilla.suse.com/1160468"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2019-14896"
    },
    {
      "cve": "CVE-2019-15030",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-15030"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel through 5.2.14 on the powerpc platform, a local user can read vector registers of other users\u0027 processes via a Facility Unavailable exception. To exploit the venerability, a local user starts a transaction (via the hardware transactional memory instruction tbegin) and then accesses vector registers. At some point, the vector registers will be corrupted with the values from a different local Linux process because of a missing arch/powerpc/kernel/process.c check.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-15030",
          "url": "https://www.suse.com/security/cve/CVE-2019-15030"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1149713 for CVE-2019-15030",
          "url": "https://bugzilla.suse.com/1149713"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-15030"
    },
    {
      "cve": "CVE-2019-15031",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-15031"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel through 5.2.14 on the powerpc platform, a local user can read vector registers of other users\u0027 processes via an interrupt. To exploit the venerability, a local user starts a transaction (via the hardware transactional memory instruction tbegin) and then accesses vector registers. At some point, the vector registers will be corrupted with the values from a different local Linux process, because MSR_TM_ACTIVE is misused in arch/powerpc/kernel/process.c.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-15031",
          "url": "https://www.suse.com/security/cve/CVE-2019-15031"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1149713 for CVE-2019-15031",
          "url": "https://bugzilla.suse.com/1149713"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-15031"
    },
    {
      "cve": "CVE-2019-15098",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-15098"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "drivers/net/wireless/ath/ath6kl/usb.c in the Linux kernel through 5.2.9 has a NULL pointer dereference via an incomplete address in an endpoint descriptor.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-15098",
          "url": "https://www.suse.com/security/cve/CVE-2019-15098"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146378 for CVE-2019-15098",
          "url": "https://bugzilla.suse.com/1146378"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146543 for CVE-2019-15098",
          "url": "https://bugzilla.suse.com/1146543"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-15098"
    },
    {
      "cve": "CVE-2019-15099",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-15099"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "drivers/net/wireless/ath/ath10k/usb.c in the Linux kernel through 5.2.8 has a NULL pointer dereference via an incomplete address in an endpoint descriptor.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-15099",
          "url": "https://www.suse.com/security/cve/CVE-2019-15099"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146368 for CVE-2019-15099",
          "url": "https://bugzilla.suse.com/1146368"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-15099"
    },
    {
      "cve": "CVE-2019-15290",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-15290"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2019-15098. Reason: This candidate is a duplicate of CVE-2019-15098. Notes: All CVE users should reference CVE-2019-15098 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-15290",
          "url": "https://www.suse.com/security/cve/CVE-2019-15290"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146378 for CVE-2019-15290",
          "url": "https://bugzilla.suse.com/1146378"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146519 for CVE-2019-15290",
          "url": "https://bugzilla.suse.com/1146519"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1146543 for CVE-2019-15290",
          "url": "https://bugzilla.suse.com/1146543"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1158381 for CVE-2019-15290",
          "url": "https://bugzilla.suse.com/1158381"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1158834 for CVE-2019-15290",
          "url": "https://bugzilla.suse.com/1158834"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-15290"
    },
    {
      "cve": "CVE-2019-15504",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-15504"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "drivers/net/wireless/rsi/rsi_91x_usb.c in the Linux kernel through 5.2.9 has a Double Free via crafted USB device traffic (which may be remote via usbip or usbredir).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-15504",
          "url": "https://www.suse.com/security/cve/CVE-2019-15504"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1147116 for CVE-2019-15504",
          "url": "https://bugzilla.suse.com/1147116"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185852 for CVE-2019-15504",
          "url": "https://bugzilla.suse.com/1185852"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2019-15504"
    },
    {
      "cve": "CVE-2019-15902",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-15902"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A backporting error was discovered in the Linux stable/longterm kernel 4.4.x through 4.4.190, 4.9.x through 4.9.190, 4.14.x through 4.14.141, 4.19.x through 4.19.69, and 5.2.x through 5.2.11. Misuse of the upstream \"x86/ptrace: Fix possible spectre-v1 in ptrace_get_debugreg()\" commit reintroduced the Spectre vulnerability that it aimed to eliminate. This occurred because the backport process depends on cherry picking specific commits, and because two (correctly ordered) code lines were swapped.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-15902",
          "url": "https://www.suse.com/security/cve/CVE-2019-15902"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1149376 for CVE-2019-15902",
          "url": "https://bugzilla.suse.com/1149376"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1155131 for CVE-2019-15902",
          "url": "https://bugzilla.suse.com/1155131"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-15902"
    },
    {
      "cve": "CVE-2019-16231",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-16231"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "drivers/net/fjes/fjes_main.c in the Linux kernel 5.2.14 does not check the alloc_workqueue return value, leading to a NULL pointer dereference.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-16231",
          "url": "https://www.suse.com/security/cve/CVE-2019-16231"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1150466 for CVE-2019-16231",
          "url": "https://bugzilla.suse.com/1150466"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-16231"
    },
    {
      "cve": "CVE-2019-16232",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-16232"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "drivers/net/wireless/marvell/libertas/if_sdio.c in the Linux kernel 5.2.14 does not check the alloc_workqueue return value, leading to a NULL pointer dereference.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-16232",
          "url": "https://www.suse.com/security/cve/CVE-2019-16232"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1150465 for CVE-2019-16232",
          "url": "https://bugzilla.suse.com/1150465"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-16232"
    },
    {
      "cve": "CVE-2019-16234",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-16234"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "drivers/net/wireless/intel/iwlwifi/pcie/trans.c in the Linux kernel 5.2.14 does not check the alloc_workqueue return value, leading to a NULL pointer dereference.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-16234",
          "url": "https://www.suse.com/security/cve/CVE-2019-16234"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1150452 for CVE-2019-16234",
          "url": "https://bugzilla.suse.com/1150452"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2019-16234"
    },
    {
      "cve": "CVE-2019-17133",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-17133"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel through 5.3.2, cfg80211_mgd_wext_giwessid in net/wireless/wext-sme.c does not reject a long SSID IE, leading to a Buffer Overflow.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-17133",
          "url": "https://www.suse.com/security/cve/CVE-2019-17133"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1153158 for CVE-2019-17133",
          "url": "https://bugzilla.suse.com/1153158"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1153161 for CVE-2019-17133",
          "url": "https://bugzilla.suse.com/1153161"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-17133"
    },
    {
      "cve": "CVE-2019-17666",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-17666"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "rtl_p2p_noa_ie in drivers/net/wireless/realtek/rtlwifi/ps.c in the Linux kernel through 5.3.6 lacks a certain upper-bound check, leading to a buffer overflow.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-17666",
          "url": "https://www.suse.com/security/cve/CVE-2019-17666"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1154372 for CVE-2019-17666",
          "url": "https://bugzilla.suse.com/1154372"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-17666"
    },
    {
      "cve": "CVE-2019-18808",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-18808"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A memory leak in the ccp_run_sha_cmd() function in drivers/crypto/ccp/ccp-ops.c in the Linux kernel through 5.3.9 allows attackers to cause a denial of service (memory consumption), aka CID-128c66429247.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-18808",
          "url": "https://www.suse.com/security/cve/CVE-2019-18808"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1156259 for CVE-2019-18808",
          "url": "https://bugzilla.suse.com/1156259"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1189884 for CVE-2019-18808",
          "url": "https://bugzilla.suse.com/1189884"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1190534 for CVE-2019-18808",
          "url": "https://bugzilla.suse.com/1190534"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-18808"
    },
    {
      "cve": "CVE-2019-18812",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-18812"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A memory leak in the sof_dfsentry_write() function in sound/soc/sof/debug.c in the Linux kernel through 5.3.9 allows attackers to cause a denial of service (memory consumption), aka CID-c0a333d842ef.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-18812",
          "url": "https://www.suse.com/security/cve/CVE-2019-18812"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1156277 for CVE-2019-18812",
          "url": "https://bugzilla.suse.com/1156277"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-18812"
    },
    {
      "cve": "CVE-2019-18813",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-18813"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A memory leak in the dwc3_pci_probe() function in drivers/usb/dwc3/dwc3-pci.c in the Linux kernel through 5.3.9 allows attackers to cause a denial of service (memory consumption) by triggering platform_device_add_properties() failures, aka CID-9bbfceea12a8.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-18813",
          "url": "https://www.suse.com/security/cve/CVE-2019-18813"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1156278 for CVE-2019-18813",
          "url": "https://bugzilla.suse.com/1156278"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-18813"
    },
    {
      "cve": "CVE-2019-19252",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-19252"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "vcs_write in drivers/tty/vt/vc_screen.c in the Linux kernel through 5.3.13 does not prevent write access to vcsu devices, aka CID-0c9acb1af77a.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-19252",
          "url": "https://www.suse.com/security/cve/CVE-2019-19252"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1157813 for CVE-2019-19252",
          "url": "https://bugzilla.suse.com/1157813"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-19252"
    },
    {
      "cve": "CVE-2019-19332",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-19332"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An out-of-bounds memory write issue was found in the Linux Kernel, version 3.13 through 5.4, in the way the Linux kernel\u0027s KVM hypervisor handled the \u0027KVM_GET_EMULATED_CPUID\u0027 ioctl(2) request to get CPUID features emulated by the KVM hypervisor. A user or process able to access the \u0027/dev/kvm\u0027 device could use this flaw to crash the system, resulting in a denial of service.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-19332",
          "url": "https://www.suse.com/security/cve/CVE-2019-19332"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1158827 for CVE-2019-19332",
          "url": "https://bugzilla.suse.com/1158827"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-19332"
    },
    {
      "cve": "CVE-2019-19338",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-19338"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the fix for CVE-2019-11135, in the Linux upstream kernel versions before 5.5 where, the way Intel CPUs handle speculative execution of instructions when a TSX Asynchronous Abort (TAA) error occurs. When a guest is running on a host CPU affected by the TAA flaw (TAA_NO=0), but is not affected by the MDS issue (MDS_NO=1), the guest was to clear the affected buffers by using a VERW instruction mechanism. But when the MDS_NO=1 bit was exported to the guests, the guests did not use the VERW mechanism to clear the affected buffers. This issue affects guests running on Cascade Lake CPUs and requires that host has \u0027TSX\u0027 enabled. Confidentiality of data is the highest threat associated with this vulnerability.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-19338",
          "url": "https://www.suse.com/security/cve/CVE-2019-19338"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1158954 for CVE-2019-19338",
          "url": "https://bugzilla.suse.com/1158954"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-19338"
    },
    {
      "cve": "CVE-2019-3016",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-3016"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In a Linux KVM guest that has PV TLB enabled, a process in the guest kernel may be able to read memory locations from another process in the same guest. This problem is limit to the host running linux kernel 4.10 with a guest running linux kernel 4.16 or later. The problem mainly affects AMD processors but Intel CPUs cannot be ruled out.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-3016",
          "url": "https://www.suse.com/security/cve/CVE-2019-3016"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1159281 for CVE-2019-3016",
          "url": "https://bugzilla.suse.com/1159281"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1161154 for CVE-2019-3016",
          "url": "https://bugzilla.suse.com/1161154"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-3016"
    },
    {
      "cve": "CVE-2019-3846",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-3846"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw that allowed an attacker to corrupt memory and possibly escalate privileges was found in the mwifiex kernel module while connecting to a malicious wireless network.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-3846",
          "url": "https://www.suse.com/security/cve/CVE-2019-3846"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1136424 for CVE-2019-3846",
          "url": "https://bugzilla.suse.com/1136424"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1136446 for CVE-2019-3846",
          "url": "https://bugzilla.suse.com/1136446"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1156330 for CVE-2019-3846",
          "url": "https://bugzilla.suse.com/1156330"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-3846"
    },
    {
      "cve": "CVE-2019-3882",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-3882"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Linux kernel\u0027s vfio interface implementation that permits violation of the user\u0027s locked memory limit. If a device is bound to a vfio driver, such as vfio-pci, and the local attacker is administratively granted ownership of the device, it may cause a system memory exhaustion and thus a denial of service (DoS). Versions 3.10, 4.14 and 4.18 are vulnerable.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-3882",
          "url": "https://www.suse.com/security/cve/CVE-2019-3882"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1131416 for CVE-2019-3882",
          "url": "https://bugzilla.suse.com/1131416"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1131427 for CVE-2019-3882",
          "url": "https://bugzilla.suse.com/1131427"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1133319 for CVE-2019-3882",
          "url": "https://bugzilla.suse.com/1133319"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-3882"
    },
    {
      "cve": "CVE-2019-3887",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-3887"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the way KVM hypervisor handled x2APIC Machine Specific Rregister (MSR) access with nested(=1) virtualization enabled. In that, L1 guest could access L0\u0027s APIC register values via L2 guest, when \u0027virtualize x2APIC mode\u0027 is enabled. A guest could use this flaw to potentially crash the host kernel resulting in DoS issue. Kernel versions from 4.16 and newer are vulnerable to this issue.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-3887",
          "url": "https://www.suse.com/security/cve/CVE-2019-3887"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1131800 for CVE-2019-3887",
          "url": "https://bugzilla.suse.com/1131800"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-3887"
    },
    {
      "cve": "CVE-2019-6974",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-6974"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel before 4.20.8, kvm_ioctl_create_device in virt/kvm/kvm_main.c mishandles reference counting because of a race condition, leading to a use-after-free.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-6974",
          "url": "https://www.suse.com/security/cve/CVE-2019-6974"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1124728 for CVE-2019-6974",
          "url": "https://bugzilla.suse.com/1124728"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1124729 for CVE-2019-6974",
          "url": "https://bugzilla.suse.com/1124729"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-6974"
    },
    {
      "cve": "CVE-2019-7221",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-7221"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The KVM implementation in the Linux kernel through 4.20.5 has a Use-after-Free.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-7221",
          "url": "https://www.suse.com/security/cve/CVE-2019-7221"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1124732 for CVE-2019-7221",
          "url": "https://bugzilla.suse.com/1124732"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1124734 for CVE-2019-7221",
          "url": "https://bugzilla.suse.com/1124734"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-7221"
    },
    {
      "cve": "CVE-2019-7222",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-7222"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The KVM implementation in the Linux kernel through 4.20.5 has an Information Leak.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-7222",
          "url": "https://www.suse.com/security/cve/CVE-2019-7222"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1124735 for CVE-2019-7222",
          "url": "https://bugzilla.suse.com/1124735"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 2.8,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:N/A:N",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2019-7222"
    },
    {
      "cve": "CVE-2019-8564",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-8564"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A logic issue was addressed with improved validation. This issue is fixed in macOS Mojave 10.14.4, Security Update 2019-002 High Sierra, Security Update 2019-002 Sierra. An attacker in a privileged network position can modify driver state.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-8564",
          "url": "https://www.suse.com/security/cve/CVE-2019-8564"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1132673 for CVE-2019-8564",
          "url": "https://bugzilla.suse.com/1132673"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1132828 for CVE-2019-8564",
          "url": "https://bugzilla.suse.com/1132828"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-8564"
    },
    {
      "cve": "CVE-2019-8912",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-8912"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel through 4.20.11, af_alg_release() in crypto/af_alg.c neglects to set a NULL value for a certain structure member, which leads to a use-after-free in sockfs_setattr.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-8912",
          "url": "https://www.suse.com/security/cve/CVE-2019-8912"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1125907 for CVE-2019-8912",
          "url": "https://bugzilla.suse.com/1125907"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1126284 for CVE-2019-8912",
          "url": "https://bugzilla.suse.com/1126284"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-8912"
    },
    {
      "cve": "CVE-2019-9500",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2019-9500"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The Broadcom brcmfmac WiFi driver prior to commit 1b5e2423164b3670e8bc9174e4762d297990deff is vulnerable to a heap buffer overflow. If the Wake-up on Wireless LAN functionality is configured, a malicious event frame can be constructed to trigger an heap buffer overflow in the brcmf_wowl_nd_results function. This vulnerability can be exploited with compromised chipsets to compromise the host, or when used in combination with CVE-2019-9503, can be used remotely. In the worst case scenario, by sending specially-crafted WiFi packets, a remote, unauthenticated attacker may be able to execute arbitrary code on a vulnerable system. More typically, this vulnerability will result in denial-of-service conditions.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2019-9500",
          "url": "https://www.suse.com/security/cve/CVE-2019-9500"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1132681 for CVE-2019-9500",
          "url": "https://bugzilla.suse.com/1132681"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.0"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2019-9500"
    },
    {
      "cve": "CVE-2020-10135",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-10135"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Legacy pairing and secure-connections pairing authentication in Bluetooth BR/EDR Core Specification v5.2 and earlier may allow an unauthenticated user to complete authentication without pairing credentials via adjacent access. An unauthenticated, adjacent attacker could impersonate a Bluetooth BR/EDR master or slave to pair with a previously paired remote device to successfully complete the authentication procedure without knowing the link key.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-10135",
          "url": "https://www.suse.com/security/cve/CVE-2020-10135"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1171988 for CVE-2020-10135",
          "url": "https://bugzilla.suse.com/1171988"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-10135"
    },
    {
      "cve": "CVE-2020-10766",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-10766"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A logic bug flaw was found in Linux kernel before 5.8-rc1 in the implementation of SSBD. A bug in the logic handling allows an attacker with a local account to disable SSBD protection during a context switch when additional speculative execution mitigations are in place. This issue was introduced when the per task/process conditional STIPB switching was added on top of the existing SSBD switching. The highest threat from this vulnerability is to confidentiality.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-10766",
          "url": "https://www.suse.com/security/cve/CVE-2020-10766"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1159281 for CVE-2020-10766",
          "url": "https://bugzilla.suse.com/1159281"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1172781 for CVE-2020-10766",
          "url": "https://bugzilla.suse.com/1172781"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-10766"
    },
    {
      "cve": "CVE-2020-10767",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-10767"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Linux kernel before 5.8-rc1 in the implementation of the Enhanced IBPB (Indirect Branch Prediction Barrier). The IBPB mitigation will be disabled when STIBP is not available or when the Enhanced Indirect Branch Restricted Speculation (IBRS) is available. This flaw allows a local attacker to perform a Spectre V2 style attack when this configuration is active. The highest threat from this vulnerability is to confidentiality.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-10767",
          "url": "https://www.suse.com/security/cve/CVE-2020-10767"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1159281 for CVE-2020-10767",
          "url": "https://bugzilla.suse.com/1159281"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1172782 for CVE-2020-10767",
          "url": "https://bugzilla.suse.com/1172782"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-10767"
    },
    {
      "cve": "CVE-2020-10768",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-10768"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Linux Kernel before 5.8-rc1 in the prctl() function, where it can be used to enable indirect branch speculation after it has been disabled. This call incorrectly reports it as being \u0027force disabled\u0027 when it is not and opens the system to Spectre v2 attacks. The highest threat from this vulnerability is to confidentiality.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-10768",
          "url": "https://www.suse.com/security/cve/CVE-2020-10768"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1159281 for CVE-2020-10768",
          "url": "https://bugzilla.suse.com/1159281"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1172783 for CVE-2020-10768",
          "url": "https://bugzilla.suse.com/1172783"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-10768"
    },
    {
      "cve": "CVE-2020-12351",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-12351"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Improper input validation in BlueZ may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-12351",
          "url": "https://www.suse.com/security/cve/CVE-2020-12351"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1177724 for CVE-2020-12351",
          "url": "https://bugzilla.suse.com/1177724"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1177729 for CVE-2020-12351",
          "url": "https://bugzilla.suse.com/1177729"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178397 for CVE-2020-12351",
          "url": "https://bugzilla.suse.com/1178397"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2020-12351"
    },
    {
      "cve": "CVE-2020-12352",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-12352"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Improper access control in BlueZ may allow an unauthenticated user to potentially enable information disclosure via adjacent access.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-12352",
          "url": "https://www.suse.com/security/cve/CVE-2020-12352"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1177725 for CVE-2020-12352",
          "url": "https://bugzilla.suse.com/1177725"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178398 for CVE-2020-12352",
          "url": "https://bugzilla.suse.com/1178398"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.1,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-12352"
    },
    {
      "cve": "CVE-2020-14331",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-14331"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Linux kernel\u0027s implementation of the invert video code on VGA consoles when a local attacker attempts to resize the console, calling an ioctl VT_RESIZE, which causes an out-of-bounds write to occur. This flaw allows a local user with access to the VGA console to crash the system, potentially escalating their privileges on the system. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-14331",
          "url": "https://www.suse.com/security/cve/CVE-2020-14331"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1174205 for CVE-2020-14331",
          "url": "https://bugzilla.suse.com/1174205"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1174247 for CVE-2020-14331",
          "url": "https://bugzilla.suse.com/1174247"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2020-14331"
    },
    {
      "cve": "CVE-2020-14386",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-14386"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Linux kernel before 5.9-rc4. Memory corruption can be exploited to gain root privileges from unprivileged processes. The highest threat from this vulnerability is to data confidentiality and integrity.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-14386",
          "url": "https://www.suse.com/security/cve/CVE-2020-14386"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1176069 for CVE-2020-14386",
          "url": "https://bugzilla.suse.com/1176069"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1176072 for CVE-2020-14386",
          "url": "https://bugzilla.suse.com/1176072"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2020-14386"
    },
    {
      "cve": "CVE-2020-24586",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-24586"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn\u0027t require that received fragments be cleared from memory after (re)connecting to a network. Under the right circumstances, when another device sends fragmented frames encrypted using WEP, CCMP, or GCMP, this can be abused to inject arbitrary network packets and/or exfiltrate user data.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-24586",
          "url": "https://www.suse.com/security/cve/CVE-2020-24586"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185859 for CVE-2020-24586",
          "url": "https://bugzilla.suse.com/1185859"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1192868 for CVE-2020-24586",
          "url": "https://bugzilla.suse.com/1192868"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-24586"
    },
    {
      "cve": "CVE-2020-24587",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-24587"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn\u0027t require that all fragments of a frame are encrypted under the same key. An adversary can abuse this to decrypt selected fragments when another device sends fragmented frames and the WEP, CCMP, or GCMP encryption key is periodically renewed.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-24587",
          "url": "https://www.suse.com/security/cve/CVE-2020-24587"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185859 for CVE-2020-24587",
          "url": "https://bugzilla.suse.com/1185859"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185862 for CVE-2020-24587",
          "url": "https://bugzilla.suse.com/1185862"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1192868 for CVE-2020-24587",
          "url": "https://bugzilla.suse.com/1192868"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-24587"
    },
    {
      "cve": "CVE-2020-24588",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-24588"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn\u0027t require that the A-MSDU flag in the plaintext QoS header field is authenticated. Against devices that support receiving non-SSP A-MSDU frames (which is mandatory as part of 802.11n), an adversary can abuse this to inject arbitrary network packets.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-24588",
          "url": "https://www.suse.com/security/cve/CVE-2020-24588"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185861 for CVE-2020-24588",
          "url": "https://bugzilla.suse.com/1185861"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1192868 for CVE-2020-24588",
          "url": "https://bugzilla.suse.com/1192868"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1199701 for CVE-2020-24588",
          "url": "https://bugzilla.suse.com/1199701"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-24588"
    },
    {
      "cve": "CVE-2020-25639",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-25639"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A NULL pointer dereference flaw was found in the Linux kernel\u0027s GPU Nouveau driver functionality in versions prior to 5.12-rc1 in the way the user calls ioctl DRM_IOCTL_NOUVEAU_CHANNEL_ALLOC. This flaw allows a local user to crash the system.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-25639",
          "url": "https://www.suse.com/security/cve/CVE-2020-25639"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1176846 for CVE-2020-25639",
          "url": "https://bugzilla.suse.com/1176846"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-25639"
    },
    {
      "cve": "CVE-2020-25656",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-25656"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Linux kernel. A use-after-free was found in the way the console subsystem was using ioctls KDGKBSENT and KDSKBSENT. A local user could use this flaw to get read memory access out of bounds. The highest threat from this vulnerability is to data confidentiality.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-25656",
          "url": "https://www.suse.com/security/cve/CVE-2020-25656"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1177766 for CVE-2020-25656",
          "url": "https://bugzilla.suse.com/1177766"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-25656"
    },
    {
      "cve": "CVE-2020-25668",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-25668"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in Linux Kernel because access to the global variable fg_console is not properly synchronized leading to a use after free in con_font_op.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-25668",
          "url": "https://www.suse.com/security/cve/CVE-2020-25668"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178123 for CVE-2020-25668",
          "url": "https://bugzilla.suse.com/1178123"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178622 for CVE-2020-25668",
          "url": "https://bugzilla.suse.com/1178622"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1196914 for CVE-2020-25668",
          "url": "https://bugzilla.suse.com/1196914"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2020-25668"
    },
    {
      "cve": "CVE-2020-26141",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-26141"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in the ALFA Windows 10 driver 6.1316.1209 for AWUS036H. The Wi-Fi implementation does not verify the Message Integrity Check (authenticity) of fragmented TKIP frames. An adversary can abuse this to inject and possibly decrypt packets in WPA or WPA2 networks that support the TKIP data-confidentiality protocol.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-26141",
          "url": "https://www.suse.com/security/cve/CVE-2020-26141"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185987 for CVE-2020-26141",
          "url": "https://bugzilla.suse.com/1185987"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-26141"
    },
    {
      "cve": "CVE-2020-2732",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-2732"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was discovered in the way that the KVM hypervisor handled instruction emulation for an L2 guest when nested virtualisation is enabled. Under some circumstances, an L2 guest may trick the L0 guest into accessing sensitive L1 resources that should be inaccessible to the L2 guest.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-2732",
          "url": "https://www.suse.com/security/cve/CVE-2020-2732"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1163971 for CVE-2020-2732",
          "url": "https://bugzilla.suse.com/1163971"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.2,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-2732"
    },
    {
      "cve": "CVE-2020-29660",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-29660"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A locking inconsistency issue was discovered in the tty subsystem of the Linux kernel through 5.9.13. drivers/tty/tty_io.c and drivers/tty/tty_jobctrl.c may allow a read-after-free attack against TIOCGSID, aka CID-c8bcd9c5be24.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-29660",
          "url": "https://www.suse.com/security/cve/CVE-2020-29660"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1179745 for CVE-2020-29660",
          "url": "https://bugzilla.suse.com/1179745"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1179877 for CVE-2020-29660",
          "url": "https://bugzilla.suse.com/1179877"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2020-29660"
    },
    {
      "cve": "CVE-2020-29661",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-29661"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A locking issue was discovered in the tty subsystem of the Linux kernel through 5.9.13. drivers/tty/tty_jobctrl.c allows a use-after-free attack against TIOCSPGRP, aka CID-54ffccbf053b.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-29661",
          "url": "https://www.suse.com/security/cve/CVE-2020-29661"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1179745 for CVE-2020-29661",
          "url": "https://bugzilla.suse.com/1179745"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1179877 for CVE-2020-29661",
          "url": "https://bugzilla.suse.com/1179877"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1214268 for CVE-2020-29661",
          "url": "https://bugzilla.suse.com/1214268"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1218966 for CVE-2020-29661",
          "url": "https://bugzilla.suse.com/1218966"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2020-29661"
    },
    {
      "cve": "CVE-2020-8648",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-8648"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "There is a use-after-free vulnerability in the Linux kernel through 5.5.2 in the n_tty_receive_buf_common function in drivers/tty/n_tty.c.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-8648",
          "url": "https://www.suse.com/security/cve/CVE-2020-8648"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1162928 for CVE-2020-8648",
          "url": "https://bugzilla.suse.com/1162928"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-8648"
    },
    {
      "cve": "CVE-2020-8694",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2020-8694"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Insufficient access control in the Linux kernel driver for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2020-8694",
          "url": "https://www.suse.com/security/cve/CVE-2020-8694"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1170415 for CVE-2020-8694",
          "url": "https://bugzilla.suse.com/1170415"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1170446 for CVE-2020-8694",
          "url": "https://bugzilla.suse.com/1170446"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178591 for CVE-2020-8694",
          "url": "https://bugzilla.suse.com/1178591"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1178700 for CVE-2020-8694",
          "url": "https://bugzilla.suse.com/1178700"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1179661 for CVE-2020-8694",
          "url": "https://bugzilla.suse.com/1179661"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2020-8694"
    },
    {
      "cve": "CVE-2021-23133",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-23133"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A race condition in Linux kernel SCTP sockets (net/sctp/socket.c) before 5.12-rc8 can lead to kernel privilege escalation from the context of a network service or an unprivileged process. If sctp_destroy_sock is called without sock_net(sk)-\u003esctp.addr_wq_lock then an element is removed from the auto_asconf_splist list without any proper locking. This can be exploited by an attacker with network service privileges to escalate to root or from the context of an unprivileged user directly if a BPF_CGROUP_INET_SOCK_CREATE is attached which denies creation of some SCTP socket.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-23133",
          "url": "https://www.suse.com/security/cve/CVE-2021-23133"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1184675 for CVE-2021-23133",
          "url": "https://bugzilla.suse.com/1184675"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185901 for CVE-2021-23133",
          "url": "https://bugzilla.suse.com/1185901"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-23133"
    },
    {
      "cve": "CVE-2021-26708",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-26708"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A local privilege escalation was discovered in the Linux kernel before 5.10.13. Multiple race conditions in the AF_VSOCK implementation are caused by wrong locking in net/vmw_vsock/af_vsock.c. The race conditions were implicitly introduced in the commits that added VSOCK multi-transport support.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-26708",
          "url": "https://www.suse.com/security/cve/CVE-2021-26708"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1181806 for CVE-2021-26708",
          "url": "https://bugzilla.suse.com/1181806"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1183298 for CVE-2021-26708",
          "url": "https://bugzilla.suse.com/1183298"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-26708"
    },
    {
      "cve": "CVE-2021-28971",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-28971"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In intel_pmu_drain_pebs_nhm in arch/x86/events/intel/ds.c in the Linux kernel through 5.11.8 on some Haswell CPUs, userspace applications (such as perf-fuzzer) can cause a system crash because the PEBS status in a PEBS record is mishandled, aka CID-d88d05a9e0b6.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-28971",
          "url": "https://www.suse.com/security/cve/CVE-2021-28971"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1184196 for CVE-2021-28971",
          "url": "https://bugzilla.suse.com/1184196"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-28971"
    },
    {
      "cve": "CVE-2021-32606",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-32606"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel 5.11 through 5.12.2, isotp_setsockopt in net/can/isotp.c allows privilege escalation to root by leveraging a use-after-free. (This does not affect earlier versions that lack CAN ISOTP SF_BROADCAST support.)",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-32606",
          "url": "https://www.suse.com/security/cve/CVE-2021-32606"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185953 for CVE-2021-32606",
          "url": "https://bugzilla.suse.com/1185953"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-32606"
    },
    {
      "cve": "CVE-2021-33909",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-33909"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "fs/seq_file.c in the Linux kernel 3.16 through 5.13.x before 5.13.4 does not properly restrict seq buffer allocations, leading to an integer overflow, an Out-of-bounds Write, and escalation to root by an unprivileged user, aka CID-8cae8cd89f05.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-33909",
          "url": "https://www.suse.com/security/cve/CVE-2021-33909"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1188062 for CVE-2021-33909",
          "url": "https://bugzilla.suse.com/1188062"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1188063 for CVE-2021-33909",
          "url": "https://bugzilla.suse.com/1188063"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1188257 for CVE-2021-33909",
          "url": "https://bugzilla.suse.com/1188257"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1189302 for CVE-2021-33909",
          "url": "https://bugzilla.suse.com/1189302"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1190859 for CVE-2021-33909",
          "url": "https://bugzilla.suse.com/1190859"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-33909"
    },
    {
      "cve": "CVE-2021-3483",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-3483"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Nosy driver in the Linux kernel. This issue allows a device to be inserted twice into a doubly-linked list, leading to a use-after-free when one of these devices is removed. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability. Versions before kernel 5.12-rc6 are affected",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-3483",
          "url": "https://www.suse.com/security/cve/CVE-2021-3483"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1184393 for CVE-2021-3483",
          "url": "https://bugzilla.suse.com/1184393"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-3483"
    },
    {
      "cve": "CVE-2021-3489",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-3489"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The eBPF RINGBUF bpf_ringbuf_reserve() function in the Linux kernel did not check that the allocated size was smaller than the ringbuf size, allowing an attacker to perform out-of-bounds writes within the kernel and therefore, arbitrary code execution. This issue was fixed via commit 4b81ccebaeee (\"bpf, ringbuf: Deny reserve of buffers larger than ringbuf\") (v5.13-rc4) and backported to the stable kernels in v5.12.4, v5.11.21, and v5.10.37. It was introduced via 457f44363a88 (\"bpf: Implement BPF ring buffer and verifier support for it\") (v5.8-rc1).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-3489",
          "url": "https://www.suse.com/security/cve/CVE-2021-3489"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185640 for CVE-2021-3489",
          "url": "https://bugzilla.suse.com/1185640"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185856 for CVE-2021-3489",
          "url": "https://bugzilla.suse.com/1185856"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-3489"
    },
    {
      "cve": "CVE-2021-3490",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-3490"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The eBPF ALU32 bounds tracking for bitwise ops (AND, OR and XOR) in the Linux kernel did not properly update 32-bit bounds, which could be turned into out of bounds reads and writes in the Linux kernel and therefore, arbitrary code execution. This issue was fixed via commit 049c4e13714e (\"bpf: Fix alu32 const subreg bound tracking on bitwise operations\") (v5.13-rc4) and backported to the stable kernels in v5.12.4, v5.11.21, and v5.10.37. The AND/OR issues were introduced by commit 3f50f132d840 (\"bpf: Verifier, do explicit ALU32 bounds tracking\") (5.7-rc1) and the XOR variant was introduced by 2921c90d4718 (\"bpf:Fix a verifier failure with xor\") ( 5.10-rc1).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-3490",
          "url": "https://www.suse.com/security/cve/CVE-2021-3490"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185641 for CVE-2021-3490",
          "url": "https://bugzilla.suse.com/1185641"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185796 for CVE-2021-3490",
          "url": "https://bugzilla.suse.com/1185796"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-3490"
    },
    {
      "cve": "CVE-2021-3491",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-3491"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The io_uring subsystem in the Linux kernel allowed the MAX_RW_COUNT limit to be bypassed in the PROVIDE_BUFFERS operation, which led to negative values being usedin mem_rw when reading /proc/\u003cPID\u003e/mem. This could be used to create a heap overflow leading to arbitrary code execution in the kernel. It was addressed via commit d1f82808877b (\"io_uring: truncate lengths larger than MAX_RW_COUNT on provide buffers\") (v5.13-rc1) and backported to the stable kernels in v5.12.4, v5.11.21, and v5.10.37. It was introduced in ddf0322db79c (\"io_uring: add IORING_OP_PROVIDE_BUFFERS\") (v5.7-rc1).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-3491",
          "url": "https://www.suse.com/security/cve/CVE-2021-3491"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1185642 for CVE-2021-3491",
          "url": "https://bugzilla.suse.com/1185642"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1187090 for CVE-2021-3491",
          "url": "https://bugzilla.suse.com/1187090"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-3491"
    },
    {
      "cve": "CVE-2021-3542",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-3542"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2021-42739. Reason: This candidate is a reservation duplicate of CVE-2021-42739. Notes: All CVE users should reference CVE-2021-42739 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-3542",
          "url": "https://www.suse.com/security/cve/CVE-2021-3542"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1184673 for CVE-2021-3542",
          "url": "https://bugzilla.suse.com/1184673"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1186063 for CVE-2021-3542",
          "url": "https://bugzilla.suse.com/1186063"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-3542"
    },
    {
      "cve": "CVE-2021-3640",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-3640"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw use-after-free in function sco_sock_sendmsg() of the Linux kernel HCI subsystem was found in the way user calls ioct UFFDIO_REGISTER or other way triggers race condition of the call sco_conn_del() together with the call sco_sock_sendmsg() with the expected controllable faulting memory page. A privileged local user could use this flaw to crash the system or escalate their privileges on the system.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-3640",
          "url": "https://www.suse.com/security/cve/CVE-2021-3640"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1188172 for CVE-2021-3640",
          "url": "https://bugzilla.suse.com/1188172"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1188613 for CVE-2021-3640",
          "url": "https://bugzilla.suse.com/1188613"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1191530 for CVE-2021-3640",
          "url": "https://bugzilla.suse.com/1191530"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1196810 for CVE-2021-3640",
          "url": "https://bugzilla.suse.com/1196810"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1196914 for CVE-2021-3640",
          "url": "https://bugzilla.suse.com/1196914"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-3640"
    },
    {
      "cve": "CVE-2021-3653",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-3653"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the KVM\u0027s AMD code for supporting SVM nested virtualization. The flaw occurs when processing the VMCB (virtual machine control block) provided by the L1 guest to spawn/handle a nested guest (L2). Due to improper validation of the \"int_ctl\" field, this issue could allow a malicious L1 to enable AVIC support (Advanced Virtual Interrupt Controller) for the L2 guest. As a result, the L2 guest would be allowed to read/write physical pages of the host, resulting in a crash of the entire system, leak of sensitive data or potential guest-to-host escape. This flaw affects Linux kernel versions prior to 5.14-rc7.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-3653",
          "url": "https://www.suse.com/security/cve/CVE-2021-3653"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1189399 for CVE-2021-3653",
          "url": "https://bugzilla.suse.com/1189399"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1189420 for CVE-2021-3653",
          "url": "https://bugzilla.suse.com/1189420"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1196914 for CVE-2021-3653",
          "url": "https://bugzilla.suse.com/1196914"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-3653"
    },
    {
      "cve": "CVE-2021-3656",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-3656"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the KVM\u0027s AMD code for supporting SVM nested virtualization. The flaw occurs when processing the VMCB (virtual machine control block) provided by the L1 guest to spawn/handle a nested guest (L2). Due to improper validation of the \"virt_ext\" field, this issue could allow a malicious L1 to disable both VMLOAD/VMSAVE intercepts and VLS (Virtual VMLOAD/VMSAVE) for the L2 guest. As a result, the L2 guest would be allowed to read/write physical pages of the host, resulting in a crash of the entire system, leak of sensitive data or potential guest-to-host escape.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-3656",
          "url": "https://www.suse.com/security/cve/CVE-2021-3656"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1189400 for CVE-2021-3656",
          "url": "https://bugzilla.suse.com/1189400"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1189418 for CVE-2021-3656",
          "url": "https://bugzilla.suse.com/1189418"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-3656"
    },
    {
      "cve": "CVE-2021-3744",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-3744"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A memory leak flaw was found in the Linux kernel in the ccp_run_aes_gcm_cmd() function in drivers/crypto/ccp/ccp-ops.c, which allows attackers to cause a denial of service (memory consumption). This vulnerability is similar with the older CVE-2019-18808.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-3744",
          "url": "https://www.suse.com/security/cve/CVE-2021-3744"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1189884 for CVE-2021-3744",
          "url": "https://bugzilla.suse.com/1189884"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1190534 for CVE-2021-3744",
          "url": "https://bugzilla.suse.com/1190534"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-3744"
    },
    {
      "cve": "CVE-2021-3753",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-3753"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A race problem was seen in the vt_k_ioctl in drivers/tty/vt/vt_ioctl.c in the Linux kernel, which may cause an out of bounds read in vt as the write access to vc_mode is not protected by lock-in vt_ioctl (KDSETMDE). The highest threat from this vulnerability is to data confidentiality.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-3753",
          "url": "https://www.suse.com/security/cve/CVE-2021-3753"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1190025 for CVE-2021-3753",
          "url": "https://bugzilla.suse.com/1190025"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 2.9,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-3753"
    },
    {
      "cve": "CVE-2021-37576",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-37576"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "arch/powerpc/kvm/book3s_rtas.c in the Linux kernel through 5.13.5 on the powerpc platform allows KVM guest OS users to cause host OS memory corruption via rtas_args.nargs, aka CID-f62f3c20647e.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-37576",
          "url": "https://www.suse.com/security/cve/CVE-2021-37576"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1188838 for CVE-2021-37576",
          "url": "https://bugzilla.suse.com/1188838"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1188842 for CVE-2021-37576",
          "url": "https://bugzilla.suse.com/1188842"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1190276 for CVE-2021-37576",
          "url": "https://bugzilla.suse.com/1190276"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2021-37576"
    },
    {
      "cve": "CVE-2021-3759",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-3759"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A memory overflow vulnerability was found in the Linux kernel\u0027s ipc functionality of the memcg subsystem, in the way a user calls the semget function multiple times, creating semaphores. This flaw allows a local user to starve the resources, causing a denial of service. The highest threat from this vulnerability is to system availability.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-3759",
          "url": "https://www.suse.com/security/cve/CVE-2021-3759"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1190115 for CVE-2021-3759",
          "url": "https://bugzilla.suse.com/1190115"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-3759"
    },
    {
      "cve": "CVE-2021-38166",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-38166"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In kernel/bpf/hashtab.c in the Linux kernel through 5.13.8, there is an integer overflow and out-of-bounds write when many elements are placed in a single bucket. NOTE: exploitation might be impractical without the CAP_SYS_ADMIN capability.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-38166",
          "url": "https://www.suse.com/security/cve/CVE-2021-38166"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1189233 for CVE-2021-38166",
          "url": "https://bugzilla.suse.com/1189233"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-38166"
    },
    {
      "cve": "CVE-2021-43976",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2021-43976"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel through 5.15.2, mwifiex_usb_recv in drivers/net/wireless/marvell/mwifiex/usb.c allows an attacker (who can connect a crafted USB device) to cause a denial of service (skb_over_panic).",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2021-43976",
          "url": "https://www.suse.com/security/cve/CVE-2021-43976"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1192847 for CVE-2021-43976",
          "url": "https://bugzilla.suse.com/1192847"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2021-43976"
    },
    {
      "cve": "CVE-2022-0185",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-0185"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A heap-based buffer overflow flaw was found in the way the legacy_parse_param function in the Filesystem Context functionality of the Linux kernel verified the supplied parameters length. An unprivileged (in case of unprivileged user namespaces enabled, otherwise needs namespaced CAP_SYS_ADMIN privilege) local user able to open a filesystem that does not support the Filesystem Context API (and thus fallbacks to legacy handling) could use this flaw to escalate their privileges on the system.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-0185",
          "url": "https://www.suse.com/security/cve/CVE-2022-0185"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194517 for CVE-2022-0185",
          "url": "https://bugzilla.suse.com/1194517"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194737 for CVE-2022-0185",
          "url": "https://bugzilla.suse.com/1194737"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-0185"
    },
    {
      "cve": "CVE-2022-0330",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-0330"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A random memory access flaw was found in the Linux kernel\u0027s GPU i915 kernel driver functionality in the way a user may run malicious code on the GPU. This flaw allows a local user to crash the system or escalate their privileges on the system.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-0330",
          "url": "https://www.suse.com/security/cve/CVE-2022-0330"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1194880 for CVE-2022-0330",
          "url": "https://bugzilla.suse.com/1194880"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1195950 for CVE-2022-0330",
          "url": "https://bugzilla.suse.com/1195950"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-0330"
    },
    {
      "cve": "CVE-2022-0847",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-0847"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the way the \"flags\" member of the new pipe buffer structure was lacking proper initialization in copy_page_to_iter_pipe and push_pipe functions in the Linux kernel and could thus contain stale values. An unprivileged local user could use this flaw to write to pages in the page cache backed by read only files and as such escalate their privileges on the system.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-0847",
          "url": "https://www.suse.com/security/cve/CVE-2022-0847"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1196584 for CVE-2022-0847",
          "url": "https://bugzilla.suse.com/1196584"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1196601 for CVE-2022-0847",
          "url": "https://bugzilla.suse.com/1196601"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-0847"
    },
    {
      "cve": "CVE-2022-0886",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-0886"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2022-27666. Reason: This candidate is a reservation duplicate of CVE-2022-27666. Notes: All CVE users should reference CVE-2022-27666 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-0886",
          "url": "https://www.suse.com/security/cve/CVE-2022-0886"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197131 for CVE-2022-0886",
          "url": "https://bugzilla.suse.com/1197131"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197133 for CVE-2022-0886",
          "url": "https://bugzilla.suse.com/1197133"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1197462 for CVE-2022-0886",
          "url": "https://bugzilla.suse.com/1197462"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-0886"
    },
    {
      "cve": "CVE-2022-1462",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-1462"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An out-of-bounds read flaw was found in the Linux kernel\u0027s TeleTYpe subsystem. The issue occurs in how a user triggers a race condition using ioctls TIOCSPTLCK and TIOCGPTPEER and TIOCSTI and TCXONC with leakage of memory in the flush_to_ldisc function. This flaw allows a local user to crash the system or read unauthorized random data from memory.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-1462",
          "url": "https://www.suse.com/security/cve/CVE-2022-1462"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1198829 for CVE-2022-1462",
          "url": "https://bugzilla.suse.com/1198829"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-1462"
    },
    {
      "cve": "CVE-2022-1516",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-1516"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A NULL pointer dereference flaw was found in the Linux kernel\u0027s X.25 set of standardized network protocols functionality in the way a user terminates their session using a simulated Ethernet card and continued usage of this connection. This flaw allows a local user to crash the system.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-1516",
          "url": "https://www.suse.com/security/cve/CVE-2022-1516"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1199012 for CVE-2022-1516",
          "url": "https://bugzilla.suse.com/1199012"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-1516"
    },
    {
      "cve": "CVE-2022-1679",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-1679"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A use-after-free flaw was found in the Linux kernel\u0027s Atheros wireless adapter driver in the way a user forces the ath9k_htc_wait_for_target function to fail with some input messages. This flaw allows a local user to crash or potentially escalate their privileges on the system.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-1679",
          "url": "https://www.suse.com/security/cve/CVE-2022-1679"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1199487 for CVE-2022-1679",
          "url": "https://bugzilla.suse.com/1199487"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1201080 for CVE-2022-1679",
          "url": "https://bugzilla.suse.com/1201080"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1201832 for CVE-2022-1679",
          "url": "https://bugzilla.suse.com/1201832"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1204132 for CVE-2022-1679",
          "url": "https://bugzilla.suse.com/1204132"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1212316 for CVE-2022-1679",
          "url": "https://bugzilla.suse.com/1212316"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-1679"
    },
    {
      "cve": "CVE-2022-1729",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-1729"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A race condition was found the Linux kernel in perf_event_open() which can be exploited by an unprivileged user to gain root privileges. The bug allows to build several exploit primitives such as kernel address information leak, arbitrary execution, etc.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-1729",
          "url": "https://www.suse.com/security/cve/CVE-2022-1729"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1199507 for CVE-2022-1729",
          "url": "https://bugzilla.suse.com/1199507"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1199697 for CVE-2022-1729",
          "url": "https://bugzilla.suse.com/1199697"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1201832 for CVE-2022-1729",
          "url": "https://bugzilla.suse.com/1201832"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.2,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-1729"
    },
    {
      "cve": "CVE-2022-1852",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-1852"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A NULL pointer dereference flaw was found in the Linux kernel\u0027s KVM module, which can lead to a denial of service in the x86_emulate_insn in arch/x86/kvm/emulate.c. This flaw occurs while executing an illegal instruction in guest in the Intel CPU.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-1852",
          "url": "https://www.suse.com/security/cve/CVE-2022-1852"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1199875 for CVE-2022-1852",
          "url": "https://bugzilla.suse.com/1199875"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-1852"
    },
    {
      "cve": "CVE-2022-1966",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-1966"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2022-32250. Reason: This candidate is a duplicate of CVE-2022-32250. Notes: All CVE users should reference CVE-2022-32250 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-1966",
          "url": "https://www.suse.com/security/cve/CVE-2022-1966"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1200015 for CVE-2022-1966",
          "url": "https://bugzilla.suse.com/1200015"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1200268 for CVE-2022-1966",
          "url": "https://bugzilla.suse.com/1200268"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1200494 for CVE-2022-1966",
          "url": "https://bugzilla.suse.com/1200494"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1200529 for CVE-2022-1966",
          "url": "https://bugzilla.suse.com/1200529"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-1966"
    },
    {
      "cve": "CVE-2022-1972",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-1972"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2022-2078. Reason: This candidate is a reservation duplicate of CVE-2022-2078. Notes: All CVE users should reference CVE-2022-2078 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-1972",
          "url": "https://www.suse.com/security/cve/CVE-2022-1972"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1200019 for CVE-2022-1972",
          "url": "https://bugzilla.suse.com/1200019"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1200266 for CVE-2022-1972",
          "url": "https://bugzilla.suse.com/1200266"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-1972"
    },
    {
      "cve": "CVE-2022-1973",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-1973"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A use-after-free flaw was found in the Linux kernel in log_replay in fs/ntfs3/fslog.c in the NTFS journal. This flaw allows a local attacker to crash the system and leads to a kernel information leak problem.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-1973",
          "url": "https://www.suse.com/security/cve/CVE-2022-1973"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1200023 for CVE-2022-1973",
          "url": "https://bugzilla.suse.com/1200023"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-1973"
    },
    {
      "cve": "CVE-2022-22942",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-22942"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The vmwgfx driver contains a local privilege escalation vulnerability that allows unprivileged users to gain access to files opened by other processes on the system through a dangling \u0027file\u0027 pointer.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-22942",
          "url": "https://www.suse.com/security/cve/CVE-2022-22942"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1195065 for CVE-2022-22942",
          "url": "https://bugzilla.suse.com/1195065"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1195951 for CVE-2022-22942",
          "url": "https://bugzilla.suse.com/1195951"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-22942"
    },
    {
      "cve": "CVE-2022-2308",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-2308"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in vDPA with VDUSE backend. There are currently no checks in VDUSE kernel driver to ensure the size of the device config space is in line with the features advertised by the VDUSE userspace application. In case of a mismatch, Virtio drivers config read helpers do not initialize the memory indirectly passed to vduse_vdpa_get_config() returning uninitialized memory from the stack. This could cause undefined behavior or data leaks in Virtio drivers.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-2308",
          "url": "https://www.suse.com/security/cve/CVE-2022-2308"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1202573 for CVE-2022-2308",
          "url": "https://bugzilla.suse.com/1202573"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-2308"
    },
    {
      "cve": "CVE-2022-24958",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-24958"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "drivers/usb/gadget/legacy/inode.c in the Linux kernel through 5.16.8 mishandles dev-\u003ebuf release.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-24958",
          "url": "https://www.suse.com/security/cve/CVE-2022-24958"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1195905 for CVE-2022-24958",
          "url": "https://bugzilla.suse.com/1195905"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-24958"
    },
    {
      "cve": "CVE-2022-2588",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-2588"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "It was discovered that the cls_route filter implementation in the Linux kernel would not remove an old filter from the hashtable before freeing it if its handle had the value 0.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-2588",
          "url": "https://www.suse.com/security/cve/CVE-2022-2588"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1202096 for CVE-2022-2588",
          "url": "https://bugzilla.suse.com/1202096"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1203613 for CVE-2022-2588",
          "url": "https://bugzilla.suse.com/1203613"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1204183 for CVE-2022-2588",
          "url": "https://bugzilla.suse.com/1204183"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1209225 for CVE-2022-2588",
          "url": "https://bugzilla.suse.com/1209225"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-2588"
    },
    {
      "cve": "CVE-2022-2590",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-2590"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A race condition was found in the way the Linux kernel\u0027s memory subsystem handled the copy-on-write (COW) breakage of private read-only shared memory mappings. This flaw allows an unprivileged, local user to gain write access to read-only memory mappings, increasing their privileges on the system.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-2590",
          "url": "https://www.suse.com/security/cve/CVE-2022-2590"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1202013 for CVE-2022-2590",
          "url": "https://bugzilla.suse.com/1202013"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1202089 for CVE-2022-2590",
          "url": "https://bugzilla.suse.com/1202089"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-2590"
    },
    {
      "cve": "CVE-2022-26490",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-26490"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "st21nfca_connectivity_event_received in drivers/nfc/st21nfca/se.c in the Linux kernel through 5.16.12 has EVT_TRANSACTION buffer overflows because of untrusted length parameters.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-26490",
          "url": "https://www.suse.com/security/cve/CVE-2022-26490"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1196830 for CVE-2022-26490",
          "url": "https://bugzilla.suse.com/1196830"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1201656 for CVE-2022-26490",
          "url": "https://bugzilla.suse.com/1201656"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1201969 for CVE-2022-26490",
          "url": "https://bugzilla.suse.com/1201969"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1211495 for CVE-2022-26490",
          "url": "https://bugzilla.suse.com/1211495"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-26490"
    },
    {
      "cve": "CVE-2022-28388",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-28388"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "usb_8dev_start_xmit in drivers/net/can/usb/usb_8dev.c in the Linux kernel through 5.17.1 has a double free.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-28388",
          "url": "https://www.suse.com/security/cve/CVE-2022-28388"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1198032 for CVE-2022-28388",
          "url": "https://bugzilla.suse.com/1198032"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-28388"
    },
    {
      "cve": "CVE-2022-28389",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-28389"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "mcba_usb_start_xmit in drivers/net/can/usb/mcba_usb.c in the Linux kernel through 5.17.1 has a double free.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-28389",
          "url": "https://www.suse.com/security/cve/CVE-2022-28389"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1198033 for CVE-2022-28389",
          "url": "https://bugzilla.suse.com/1198033"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1201657 for CVE-2022-28389",
          "url": "https://bugzilla.suse.com/1201657"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-28389"
    },
    {
      "cve": "CVE-2022-28390",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-28390"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "ems_usb_start_xmit in drivers/net/can/usb/ems_usb.c in the Linux kernel through 5.17.1 has a double free.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-28390",
          "url": "https://www.suse.com/security/cve/CVE-2022-28390"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1198031 for CVE-2022-28390",
          "url": "https://bugzilla.suse.com/1198031"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1201517 for CVE-2022-28390",
          "url": "https://bugzilla.suse.com/1201517"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1207969 for CVE-2022-28390",
          "url": "https://bugzilla.suse.com/1207969"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-28390"
    },
    {
      "cve": "CVE-2022-28893",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-28893"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The SUNRPC subsystem in the Linux kernel through 5.17.2 can call xs_xprt_free before ensuring that sockets are in the intended state.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-28893",
          "url": "https://www.suse.com/security/cve/CVE-2022-28893"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1198330 for CVE-2022-28893",
          "url": "https://bugzilla.suse.com/1198330"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-28893"
    },
    {
      "cve": "CVE-2022-29900",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-29900"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Mis-trained branch predictions for return instructions may allow arbitrary speculative code execution under certain microarchitecture-dependent conditions.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-29900",
          "url": "https://www.suse.com/security/cve/CVE-2022-29900"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1199657 for CVE-2022-29900",
          "url": "https://bugzilla.suse.com/1199657"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1201469 for CVE-2022-29900",
          "url": "https://bugzilla.suse.com/1201469"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1207894 for CVE-2022-29900",
          "url": "https://bugzilla.suse.com/1207894"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-29900"
    },
    {
      "cve": "CVE-2022-29901",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-29901"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Intel microprocessor generations 6 to 8 are affected by a new Spectre variant that is able to bypass their retpoline mitigation in the kernel to leak arbitrary data. An attacker with unprivileged user access can hijack return instructions to achieve arbitrary speculative code execution under certain microarchitecture-dependent conditions.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-29901",
          "url": "https://www.suse.com/security/cve/CVE-2022-29901"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1199657 for CVE-2022-29901",
          "url": "https://bugzilla.suse.com/1199657"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1201469 for CVE-2022-29901",
          "url": "https://bugzilla.suse.com/1201469"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1207894 for CVE-2022-29901",
          "url": "https://bugzilla.suse.com/1207894"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-29901"
    },
    {
      "cve": "CVE-2022-29968",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-29968"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in the Linux kernel through 5.17.5. io_rw_init_file in fs/io_uring.c lacks initialization of kiocb-\u003eprivate.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-29968",
          "url": "https://www.suse.com/security/cve/CVE-2022-29968"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1199087 for CVE-2022-29968",
          "url": "https://bugzilla.suse.com/1199087"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "low"
        }
      ],
      "title": "CVE-2022-29968"
    },
    {
      "cve": "CVE-2022-3424",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-3424"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A use-after-free flaw was found in the Linux kernel\u0027s SGI GRU driver in the way the first gru_file_unlocked_ioctl function is called by the user, where a fail pass occurs in the gru_check_chiplet_assignment function. This flaw allows a local user to crash or potentially escalate their privileges on the system.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-3424",
          "url": "https://www.suse.com/security/cve/CVE-2022-3424"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1204166 for CVE-2022-3424",
          "url": "https://bugzilla.suse.com/1204166"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1204167 for CVE-2022-3424",
          "url": "https://bugzilla.suse.com/1204167"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1208044 for CVE-2022-3424",
          "url": "https://bugzilla.suse.com/1208044"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1212309 for CVE-2022-3424",
          "url": "https://bugzilla.suse.com/1212309"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-3424"
    },
    {
      "cve": "CVE-2022-34918",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-34918"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in the Linux kernel through 5.18.9. A type confusion bug in nft_set_elem_init (leading to a buffer overflow) could be used by a local attacker to escalate privileges, a different vulnerability than CVE-2022-32250. (The attacker can obtain root access, but must start with an unprivileged user namespace to obtain CAP_NET_ADMIN access.) This can be fixed in nft_setelem_parse_data in net/netfilter/nf_tables_api.c.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-34918",
          "url": "https://www.suse.com/security/cve/CVE-2022-34918"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1201171 for CVE-2022-34918",
          "url": "https://bugzilla.suse.com/1201171"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1201177 for CVE-2022-34918",
          "url": "https://bugzilla.suse.com/1201177"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1201222 for CVE-2022-34918",
          "url": "https://bugzilla.suse.com/1201222"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-34918"
    },
    {
      "cve": "CVE-2022-3628",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-3628"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A buffer overflow flaw was found in the Linux kernel Broadcom Full MAC Wi-Fi driver. This issue occurs when a user connects to a malicious USB device. This can allow a local user to crash the system or escalate their privileges.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-3628",
          "url": "https://www.suse.com/security/cve/CVE-2022-3628"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1204868 for CVE-2022-3628",
          "url": "https://bugzilla.suse.com/1204868"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-3628"
    },
    {
      "cve": "CVE-2022-3640",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-3640"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A vulnerability, which was classified as critical, was found in Linux Kernel. Affected is the function l2cap_conn_del of the file net/bluetooth/l2cap_core.c of the component Bluetooth. The manipulation leads to use after free. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-211944.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-3640",
          "url": "https://www.suse.com/security/cve/CVE-2022-3640"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1204619 for CVE-2022-3640",
          "url": "https://bugzilla.suse.com/1204619"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1204624 for CVE-2022-3640",
          "url": "https://bugzilla.suse.com/1204624"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1209225 for CVE-2022-3640",
          "url": "https://bugzilla.suse.com/1209225"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-3640"
    },
    {
      "cve": "CVE-2022-40982",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-40982"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Information exposure through microarchitectural state after transient execution in certain vector execution units for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-40982",
          "url": "https://www.suse.com/security/cve/CVE-2022-40982"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1206418 for CVE-2022-40982",
          "url": "https://bugzilla.suse.com/1206418"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1215674 for CVE-2022-40982",
          "url": "https://bugzilla.suse.com/1215674"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-40982"
    },
    {
      "cve": "CVE-2022-41218",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-41218"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In drivers/media/dvb-core/dmxdev.c in the Linux kernel through 5.19.10, there is a use-after-free caused by refcount races, affecting dvb_demux_open and dvb_dmxdev_release.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-41218",
          "url": "https://www.suse.com/security/cve/CVE-2022-41218"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1202960 for CVE-2022-41218",
          "url": "https://bugzilla.suse.com/1202960"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1203606 for CVE-2022-41218",
          "url": "https://bugzilla.suse.com/1203606"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1205313 for CVE-2022-41218",
          "url": "https://bugzilla.suse.com/1205313"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1209225 for CVE-2022-41218",
          "url": "https://bugzilla.suse.com/1209225"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-41218"
    },
    {
      "cve": "CVE-2022-41674",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-41674"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in the Linux kernel before 5.19.16. Attackers able to inject WLAN frames could cause a buffer overflow in the ieee80211_bss_info_update function in net/mac80211/scan.c.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-41674",
          "url": "https://www.suse.com/security/cve/CVE-2022-41674"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1203770 for CVE-2022-41674",
          "url": "https://bugzilla.suse.com/1203770"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1203994 for CVE-2022-41674",
          "url": "https://bugzilla.suse.com/1203994"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1209225 for CVE-2022-41674",
          "url": "https://bugzilla.suse.com/1209225"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-41674"
    },
    {
      "cve": "CVE-2022-42719",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-42719"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A use-after-free in the mac80211 stack when parsing a multi-BSSID element in the Linux kernel 5.2 through 5.19.x before 5.19.16 could be used by attackers (able to inject WLAN frames) to crash the kernel and potentially execute code.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-42719",
          "url": "https://www.suse.com/security/cve/CVE-2022-42719"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1204051 for CVE-2022-42719",
          "url": "https://bugzilla.suse.com/1204051"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1204292 for CVE-2022-42719",
          "url": "https://bugzilla.suse.com/1204292"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1209225 for CVE-2022-42719",
          "url": "https://bugzilla.suse.com/1209225"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-42719"
    },
    {
      "cve": "CVE-2022-42720",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-42720"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Various refcounting bugs in the multi-BSS handling in the mac80211 stack in the Linux kernel 5.1 through 5.19.x before 5.19.16 could be used by local attackers (able to inject WLAN frames) to trigger use-after-free conditions to potentially execute code.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-42720",
          "url": "https://www.suse.com/security/cve/CVE-2022-42720"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1204059 for CVE-2022-42720",
          "url": "https://bugzilla.suse.com/1204059"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1204291 for CVE-2022-42720",
          "url": "https://bugzilla.suse.com/1204291"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1209225 for CVE-2022-42720",
          "url": "https://bugzilla.suse.com/1209225"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-42720"
    },
    {
      "cve": "CVE-2022-42721",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-42721"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A list management bug in BSS handling in the mac80211 stack in the Linux kernel 5.1 through 5.19.x before 5.19.16 could be used by local attackers (able to inject WLAN frames) to corrupt a linked list and, in turn, potentially execute code.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-42721",
          "url": "https://www.suse.com/security/cve/CVE-2022-42721"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1204060 for CVE-2022-42721",
          "url": "https://bugzilla.suse.com/1204060"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1204290 for CVE-2022-42721",
          "url": "https://bugzilla.suse.com/1204290"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1209225 for CVE-2022-42721",
          "url": "https://bugzilla.suse.com/1209225"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-42721"
    },
    {
      "cve": "CVE-2022-42722",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-42722"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "In the Linux kernel 5.8 through 5.19.x before 5.19.16, local attackers able to inject WLAN frames into the mac80211 stack could cause a NULL pointer dereference denial-of-service attack against the beacon protection of P2P devices.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-42722",
          "url": "https://www.suse.com/security/cve/CVE-2022-42722"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1204125 for CVE-2022-42722",
          "url": "https://bugzilla.suse.com/1204125"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1204289 for CVE-2022-42722",
          "url": "https://bugzilla.suse.com/1204289"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1209225 for CVE-2022-42722",
          "url": "https://bugzilla.suse.com/1209225"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-42722"
    },
    {
      "cve": "CVE-2022-4379",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-4379"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A use-after-free vulnerability was found in __nfs42_ssc_open() in fs/nfs/nfs4file.c in the Linux kernel. This flaw allows an attacker to conduct a remote denial",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-4379",
          "url": "https://www.suse.com/security/cve/CVE-2022-4379"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1206209 for CVE-2022-4379",
          "url": "https://bugzilla.suse.com/1206209"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1206373 for CVE-2022-4379",
          "url": "https://bugzilla.suse.com/1206373"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-4379"
    },
    {
      "cve": "CVE-2022-44032",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-44032"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in the Linux kernel through 6.0.6. drivers/char/pcmcia/cm4000_cs.c has a race condition and resultant use-after-free if a physically proximate attacker removes a PCMCIA device while calling open(), aka a race condition between cmm_open() and cm4000_detach().",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-44032",
          "url": "https://www.suse.com/security/cve/CVE-2022-44032"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1204894 for CVE-2022-44032",
          "url": "https://bugzilla.suse.com/1204894"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1212290 for CVE-2022-44032",
          "url": "https://bugzilla.suse.com/1212290"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-44032"
    },
    {
      "cve": "CVE-2022-44033",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-44033"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in the Linux kernel through 6.0.6. drivers/char/pcmcia/cm4040_cs.c has a race condition and resultant use-after-free if a physically proximate attacker removes a PCMCIA device while calling open(), aka a race condition between cm4040_open() and reader_detach().",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-44033",
          "url": "https://www.suse.com/security/cve/CVE-2022-44033"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1204922 for CVE-2022-44033",
          "url": "https://bugzilla.suse.com/1204922"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1212306 for CVE-2022-44033",
          "url": "https://bugzilla.suse.com/1212306"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-44033"
    },
    {
      "cve": "CVE-2022-44034",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-44034"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in the Linux kernel through 6.0.6. drivers/char/pcmcia/scr24x_cs.c has a race condition and resultant use-after-free if a physically proximate attacker removes a PCMCIA device while calling open(), aka a race condition between scr24x_open() and scr24x_remove().",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-44034",
          "url": "https://www.suse.com/security/cve/CVE-2022-44034"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1204901 for CVE-2022-44034",
          "url": "https://bugzilla.suse.com/1204901"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-44034"
    },
    {
      "cve": "CVE-2022-45884",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-45884"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in the Linux kernel through 6.0.9. drivers/media/dvb-core/dvbdev.c has a use-after-free, related to dvb_register_device dynamically allocating fops.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-45884",
          "url": "https://www.suse.com/security/cve/CVE-2022-45884"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1205756 for CVE-2022-45884",
          "url": "https://bugzilla.suse.com/1205756"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-45884"
    },
    {
      "cve": "CVE-2022-45885",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-45885"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in the Linux kernel through 6.0.9. drivers/media/dvb-core/dvb_frontend.c has a race condition that can cause a use-after-free when a device is disconnected.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-45885",
          "url": "https://www.suse.com/security/cve/CVE-2022-45885"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1205758 for CVE-2022-45885",
          "url": "https://bugzilla.suse.com/1205758"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-45885"
    },
    {
      "cve": "CVE-2022-45886",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-45886"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in the Linux kernel through 6.0.9. drivers/media/dvb-core/dvb_net.c has a .disconnect versus dvb_device_open race condition that leads to a use-after-free.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-45886",
          "url": "https://www.suse.com/security/cve/CVE-2022-45886"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1205760 for CVE-2022-45886",
          "url": "https://bugzilla.suse.com/1205760"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-45886"
    },
    {
      "cve": "CVE-2022-45887",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-45887"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in the Linux kernel through 6.0.9. drivers/media/usb/ttusb-dec/ttusb_dec.c has a memory leak because of the lack of a dvb_frontend_detach call.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-45887",
          "url": "https://www.suse.com/security/cve/CVE-2022-45887"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1205762 for CVE-2022-45887",
          "url": "https://bugzilla.suse.com/1205762"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1220015 for CVE-2022-45887",
          "url": "https://bugzilla.suse.com/1220015"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-45887"
    },
    {
      "cve": "CVE-2022-45888",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-45888"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in the Linux kernel through 6.0.9. drivers/char/xillybus/xillyusb.c has a race condition and use-after-free during physical removal of a USB device.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-45888",
          "url": "https://www.suse.com/security/cve/CVE-2022-45888"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1205764 for CVE-2022-45888",
          "url": "https://bugzilla.suse.com/1205764"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-45888"
    },
    {
      "cve": "CVE-2022-45919",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-45919"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in the Linux kernel through 6.0.10. In drivers/media/dvb-core/dvb_ca_en50221.c, a use-after-free can occur is there is a disconnect after an open, because of the lack of a wait_event.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-45919",
          "url": "https://www.suse.com/security/cve/CVE-2022-45919"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1205803 for CVE-2022-45919",
          "url": "https://bugzilla.suse.com/1205803"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1208600 for CVE-2022-45919",
          "url": "https://bugzilla.suse.com/1208600"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1208912 for CVE-2022-45919",
          "url": "https://bugzilla.suse.com/1208912"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1214128 for CVE-2022-45919",
          "url": "https://bugzilla.suse.com/1214128"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1215674 for CVE-2022-45919",
          "url": "https://bugzilla.suse.com/1215674"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-45919"
    },
    {
      "cve": "CVE-2022-45934",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-45934"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in the Linux kernel through 6.0.10. l2cap_config_req in net/bluetooth/l2cap_core.c has an integer wraparound via L2CAP_CONF_REQ packets.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-45934",
          "url": "https://www.suse.com/security/cve/CVE-2022-45934"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1205796 for CVE-2022-45934",
          "url": "https://bugzilla.suse.com/1205796"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1212292 for CVE-2022-45934",
          "url": "https://bugzilla.suse.com/1212292"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-45934"
    },
    {
      "cve": "CVE-2023-0045",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-0045"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "The current implementation of the prctl syscall does not issue an IBPB immediately during the syscall. The ib_prctl_set   function updates the Thread Information Flags (TIFs) for the task and updates the SPEC_CTRL MSR on the function __speculation_ctrl_update, but the IBPB is only issued on the next schedule, when the TIF bits are checked. This leaves the victim vulnerable to values already injected on the BTB, prior to the prctl syscall.   The patch that added the support for the conditional mitigation via prctl (ib_prctl_set) dates back to the kernel 4.9.176.\n\nWe recommend upgrading past commit  a664ec9158eeddd75121d39c9a0758016097fa96",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-0045",
          "url": "https://www.suse.com/security/cve/CVE-2023-0045"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1207773 for CVE-2023-0045",
          "url": "https://bugzilla.suse.com/1207773"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-0045"
    },
    {
      "cve": "CVE-2023-1076",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-1076"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Linux Kernel. The tun/tap sockets have their socket UID hardcoded to 0 due to a type confusion in their initialization function. While it will be often correct, as tuntap devices require CAP_NET_ADMIN, it may not always be the case, e.g., a non-root user only having that capability. This would make tun/tap sockets being incorrectly treated in filtering/routing decisions, possibly bypassing network filters.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-1076",
          "url": "https://www.suse.com/security/cve/CVE-2023-1076"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1208599 for CVE-2023-1076",
          "url": "https://bugzilla.suse.com/1208599"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1214019 for CVE-2023-1076",
          "url": "https://bugzilla.suse.com/1214019"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-1076"
    },
    {
      "cve": "CVE-2023-1078",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-1078"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Linux Kernel in RDS (Reliable Datagram Sockets) protocol. The rds_rm_zerocopy_callback() uses list_entry() on the head of a list causing a type confusion. Local user can trigger this with rds_message_put(). Type confusion leads to `struct rds_msg_zcopy_info *info` actually points to something else that is potentially controlled by local user. It is known how to trigger this, which causes an out of bounds access, and a lock corruption.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-1078",
          "url": "https://www.suse.com/security/cve/CVE-2023-1078"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1208601 for CVE-2023-1078",
          "url": "https://bugzilla.suse.com/1208601"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1208603 for CVE-2023-1078",
          "url": "https://bugzilla.suse.com/1208603"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2023-1078"
    },
    {
      "cve": "CVE-2023-1192",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-1192"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A use-after-free flaw was found in smb2_is_status_io_timeout() in CIFS in the Linux Kernel. After CIFS transfers response data to a system call, there are still local variable points to the memory region, and if the system call frees it faster than CIFS uses it, CIFS will access a free memory region, leading to a denial of service.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-1192",
          "url": "https://www.suse.com/security/cve/CVE-2023-1192"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1208995 for CVE-2023-1192",
          "url": "https://bugzilla.suse.com/1208995"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-1192"
    },
    {
      "cve": "CVE-2023-1380",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-1380"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A slab-out-of-bound read problem was found in brcmf_get_assoc_ies in drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.c in the Linux Kernel. This issue could occur when assoc_info-\u003ereq_len data is bigger than the size of the buffer, defined as WL_EXTRA_BUF_MAX, leading to a denial of service.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-1380",
          "url": "https://www.suse.com/security/cve/CVE-2023-1380"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1209287 for CVE-2023-1380",
          "url": "https://bugzilla.suse.com/1209287"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 3.3,
            "baseSeverity": "LOW",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-1380"
    },
    {
      "cve": "CVE-2023-20569",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-20569"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "\n\n\nA side channel vulnerability on some of the AMD CPUs may allow an attacker to influence the return address prediction. This may result in speculative execution at an attacker-controlled\u202faddress, potentially leading to information disclosure.\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-20569",
          "url": "https://www.suse.com/security/cve/CVE-2023-20569"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1213287 for CVE-2023-20569",
          "url": "https://bugzilla.suse.com/1213287"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-20569"
    },
    {
      "cve": "CVE-2023-20593",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-20593"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue in \"Zen 2\" CPUs, under specific microarchitectural circumstances, may allow an attacker to potentially access sensitive information.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-20593",
          "url": "https://www.suse.com/security/cve/CVE-2023-20593"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1213286 for CVE-2023-20593",
          "url": "https://bugzilla.suse.com/1213286"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1213616 for CVE-2023-20593",
          "url": "https://bugzilla.suse.com/1213616"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1215674 for CVE-2023-20593",
          "url": "https://bugzilla.suse.com/1215674"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-20593"
    },
    {
      "cve": "CVE-2023-2124",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-2124"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An out-of-bounds memory access flaw was found in the Linux kernel\u0027s XFS file system in how a user restores an XFS image after failure (with a dirty log journal). This flaw allows a local user to crash or potentially escalate their privileges on the system.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-2124",
          "url": "https://www.suse.com/security/cve/CVE-2023-2124"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1210498 for CVE-2023-2124",
          "url": "https://bugzilla.suse.com/1210498"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-2124"
    },
    {
      "cve": "CVE-2023-31084",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-31084"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in drivers/media/dvb-core/dvb_frontend.c in the Linux kernel 6.2. There is a blocking operation when a task is in !TASK_RUNNING. In dvb_frontend_get_event, wait_event_interruptible is called; the condition is dvb_frontend_test_event(fepriv,events). In dvb_frontend_test_event, down(\u0026fepriv-\u003esem) is called. However, wait_event_interruptible would put the process to sleep, and down(\u0026fepriv-\u003esem) may block the process.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-31084",
          "url": "https://www.suse.com/security/cve/CVE-2023-31084"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1210783 for CVE-2023-31084",
          "url": "https://bugzilla.suse.com/1210783"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-31084"
    },
    {
      "cve": "CVE-2023-3141",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-3141"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A use-after-free flaw was found in r592_remove in drivers/memstick/host/r592.c in media access in the Linux Kernel. This flaw allows a local attacker to crash the system at device disconnect, possibly leading to a kernel information leak.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-3141",
          "url": "https://www.suse.com/security/cve/CVE-2023-3141"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1212129 for CVE-2023-3141",
          "url": "https://bugzilla.suse.com/1212129"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1215674 for CVE-2023-3141",
          "url": "https://bugzilla.suse.com/1215674"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-3141"
    },
    {
      "cve": "CVE-2023-3269",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-3269"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A vulnerability exists in the memory management subsystem of the Linux kernel. The lock handling for accessing and updating virtual memory areas (VMAs) is incorrect, leading to use-after-free problems. This issue can be successfully exploited to execute arbitrary kernel code, escalate containers, and gain root privileges.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-3269",
          "url": "https://www.suse.com/security/cve/CVE-2023-3269"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1212395 for CVE-2023-3269",
          "url": "https://bugzilla.suse.com/1212395"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1213760 for CVE-2023-3269",
          "url": "https://bugzilla.suse.com/1213760"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2023-3269"
    },
    {
      "cve": "CVE-2023-39192",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-39192"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Netfilter subsystem in the Linux kernel. The xt_u32 module did not validate the fields in the xt_u32 structure. This flaw allows a local privileged attacker to trigger an out-of-bounds read by setting the size fields with a value beyond the array boundaries, leading to a crash or information disclosure.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-39192",
          "url": "https://www.suse.com/security/cve/CVE-2023-39192"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1215858 for CVE-2023-39192",
          "url": "https://bugzilla.suse.com/1215858"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1220015 for CVE-2023-39192",
          "url": "https://bugzilla.suse.com/1220015"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-39192"
    },
    {
      "cve": "CVE-2023-39193",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-39193"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Netfilter subsystem in the Linux kernel. The sctp_mt_check did not validate the flag_count field. This flaw allows a local privileged (CAP_NET_ADMIN) attacker to trigger an out-of-bounds read, leading to a crash or information disclosure.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-39193",
          "url": "https://www.suse.com/security/cve/CVE-2023-39193"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1215860 for CVE-2023-39193",
          "url": "https://bugzilla.suse.com/1215860"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1220015 for CVE-2023-39193",
          "url": "https://bugzilla.suse.com/1220015"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-39193"
    },
    {
      "cve": "CVE-2023-4128",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-4128"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "** REJECT ** DO NOT USE THIS CVE RECORD. ConsultIDs: CVE-2023-4206, CVE-2023-4207, CVE-2023-4208.  Reason: This record is a duplicate of CVE-2023-4206, CVE-2023-4207, CVE-2023-4208. Notes: All CVE users should reference CVE-2023-4206, CVE-2023-4207, CVE-2023-4208 instead of this record. All references and descriptions in this record have been removed to prevent accidental usage.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-4128",
          "url": "https://www.suse.com/security/cve/CVE-2023-4128"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1214149 for CVE-2023-4128",
          "url": "https://bugzilla.suse.com/1214149"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2023-4128"
    },
    {
      "cve": "CVE-2023-4134",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-4134"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A use-after-free vulnerability was found in the cyttsp4_core driver in the Linux kernel. This issue occurs in the device cleanup routine due to a possible rearming of the watchdog_timer from the workqueue. This could allow a local user to crash the system, causing a denial of service.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-4134",
          "url": "https://www.suse.com/security/cve/CVE-2023-4134"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1213971 for CVE-2023-4134",
          "url": "https://bugzilla.suse.com/1213971"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-4134"
    },
    {
      "cve": "CVE-2023-4194",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-4194"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Linux kernel\u0027s TUN/TAP functionality. This issue could allow a local user to bypass network filters and gain unauthorized access to some resources. The original patches fixing CVE-2023-1076 are incorrect or incomplete. The problem is that the following upstream commits - a096ccca6e50 (\"tun: tun_chr_open(): correctly initialize socket uid\"), - 66b2c338adce (\"tap: tap_open(): correctly initialize socket uid\"), pass \"inode-\u003ei_uid\" to sock_init_data_uid() as the last parameter and that turns out to not be accurate.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-4194",
          "url": "https://www.suse.com/security/cve/CVE-2023-4194"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1214019 for CVE-2023-4194",
          "url": "https://bugzilla.suse.com/1214019"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 4.7,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-4194"
    },
    {
      "cve": "CVE-2023-42753",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-42753"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An array indexing vulnerability was found in the netfilter subsystem of the Linux kernel. A missing macro could lead to a miscalculation of the `h-\u003enets` array offset, providing attackers with the primitive to arbitrarily increment/decrement a memory buffer out-of-bound. This issue may allow a local user to crash the system or potentially escalate their privileges on the system.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-42753",
          "url": "https://www.suse.com/security/cve/CVE-2023-42753"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1215150 for CVE-2023-42753",
          "url": "https://bugzilla.suse.com/1215150"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1218613 for CVE-2023-42753",
          "url": "https://bugzilla.suse.com/1218613"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2023-42753"
    },
    {
      "cve": "CVE-2023-42754",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-42754"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A NULL pointer dereference flaw was found in the Linux kernel ipv4 stack. The socket buffer (skb) was assumed to be associated with a device before calling __ip_options_compile, which is not always the case if the skb is re-routed by ipvs. This issue may allow a local user with CAP_NET_ADMIN privileges to crash the system.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-42754",
          "url": "https://www.suse.com/security/cve/CVE-2023-42754"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1215467 for CVE-2023-42754",
          "url": "https://bugzilla.suse.com/1215467"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1222212 for CVE-2023-42754",
          "url": "https://bugzilla.suse.com/1222212"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-42754"
    },
    {
      "cve": "CVE-2023-42756",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-42756"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A flaw was found in the Netfilter subsystem of the Linux kernel. A race condition between IPSET_CMD_ADD and IPSET_CMD_SWAP can lead to a kernel panic due to the invocation of `__ip_set_put` on a wrong `set`. This issue may allow a local user to crash the system.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-42756",
          "url": "https://www.suse.com/security/cve/CVE-2023-42756"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1215767 for CVE-2023-42756",
          "url": "https://bugzilla.suse.com/1215767"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-42756"
    },
    {
      "cve": "CVE-2023-4623",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-4623"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A use-after-free vulnerability in the Linux kernel\u0027s net/sched: sch_hfsc (HFSC qdisc traffic control) component can be exploited to achieve local privilege escalation.\n\nIf a class with a link-sharing curve (i.e. with the HFSC_FSC flag set) has a parent without a link-sharing curve, then init_vf() will call vttree_insert() on the parent, but vttree_remove() will be skipped in update_vf(). This leaves a dangling pointer that can cause a use-after-free.\n\nWe recommend upgrading past commit b3d26c5702c7d6c45456326e56d2ccf3f103e60f.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-4623",
          "url": "https://www.suse.com/security/cve/CVE-2023-4623"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1215115 for CVE-2023-4623",
          "url": "https://bugzilla.suse.com/1215115"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1215440 for CVE-2023-4623",
          "url": "https://bugzilla.suse.com/1215440"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1217444 for CVE-2023-4623",
          "url": "https://bugzilla.suse.com/1217444"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1217531 for CVE-2023-4623",
          "url": "https://bugzilla.suse.com/1217531"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1219698 for CVE-2023-4623",
          "url": "https://bugzilla.suse.com/1219698"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1221578 for CVE-2023-4623",
          "url": "https://bugzilla.suse.com/1221578"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1221598 for CVE-2023-4623",
          "url": "https://bugzilla.suse.com/1221598"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2023-4623"
    },
    {
      "cve": "CVE-2023-46813",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-46813"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An issue was discovered in the Linux kernel before 6.5.9, exploitable by local users with userspace access to MMIO registers. Incorrect access checking in the #VC handler and instruction emulation of the SEV-ES emulation of MMIO accesses could lead to arbitrary write access to kernel memory (and thus privilege escalation). This depends on a race condition through which userspace can replace an instruction before the #VC handler reads it.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-46813",
          "url": "https://www.suse.com/security/cve/CVE-2023-46813"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1212649 for CVE-2023-46813",
          "url": "https://bugzilla.suse.com/1212649"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1216896 for CVE-2023-46813",
          "url": "https://bugzilla.suse.com/1216896"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2023-46813"
    },
    {
      "cve": "CVE-2023-4881",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-4881"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "CVE-2023-4881 was wrongly assigned to a bug that was deemed to be a non-security issue by the Linux kernel security team.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-4881",
          "url": "https://www.suse.com/security/cve/CVE-2023-4881"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1215221 for CVE-2023-4881",
          "url": "https://bugzilla.suse.com/1215221"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-4881"
    },
    {
      "cve": "CVE-2023-5345",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-5345"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "A use-after-free vulnerability in the Linux kernel\u0027s fs/smb/client component can be exploited to achieve local privilege escalation.\n\nIn case of an error in smb3_fs_context_parse_param, ctx-\u003epassword was freed but the field was not set to NULL which could lead to double free.\n\nWe recommend upgrading past commit e6e43b8aa7cd3c3af686caf0c2e11819a886d705.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-5345",
          "url": "https://www.suse.com/security/cve/CVE-2023-5345"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1215899 for CVE-2023-5345",
          "url": "https://bugzilla.suse.com/1215899"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1215971 for CVE-2023-5345",
          "url": "https://bugzilla.suse.com/1215971"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2023-5345"
    },
    {
      "cve": "CVE-2023-6606",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-6606"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An out-of-bounds read vulnerability was found in smbCalcSize in fs/smb/client/netmisc.c in the Linux Kernel. This issue could allow a local attacker to crash the system or leak internal kernel information.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-6606",
          "url": "https://www.suse.com/security/cve/CVE-2023-6606"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1217947 for CVE-2023-6606",
          "url": "https://bugzilla.suse.com/1217947"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1220015 for CVE-2023-6606",
          "url": "https://bugzilla.suse.com/1220015"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-6606"
    },
    {
      "cve": "CVE-2023-6610",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2023-6610"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "An out-of-bounds read vulnerability was found in smb2_dump_detail in fs/smb/client/smb2ops.c in the Linux Kernel. This issue could allow a local attacker to crash the system or leak internal kernel information.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
          "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2023-6610",
          "url": "https://www.suse.com/security/cve/CVE-2023-6610"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1217946 for CVE-2023-6610",
          "url": "https://bugzilla.suse.com/1217946"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-devel-longterm-6.6.17-1.1.x86_64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.aarch64",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.ppc64le",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.s390x",
            "openSUSE Tumbleweed:kernel-source-longterm-6.6.17-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2023-6610"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Vendor	Product	Description
Red Hat	Red Hat Enterprise Linux	Red Hat Enterprise Linux for Power, big endian - Extended Update Support 7.6 ppc64
Red Hat	N/A	Red Hat Virtualization Host - Extended Update Support 4.2 for RHEL 7.6 x86_64
Red Hat	Red Hat Enterprise Linux Server	Red Hat Enterprise Linux Server (for IBM Power LE) - Update Services for SAP Solutions 7.6 ppc64le
Red Hat	Red Hat Enterprise Linux Server	Red Hat Enterprise Linux Server - AUS 7.2 x86_64
Red Hat	Red Hat Enterprise Linux Server	Red Hat Enterprise Linux Server - Update Services for SAP Solutions 7.3 x86_64
Red Hat	Red Hat Enterprise Linux Server	Red Hat Enterprise Linux Server - AUS 7.3 x86_64
Red Hat	Red Hat Enterprise Linux	Red Hat Enterprise Linux EUS Compute Node 7.6 x86_64
Red Hat	Red Hat Enterprise Linux Server	Red Hat Enterprise Linux Server - TUS 7.6 x86_64
Red Hat	Red Hat Enterprise Linux	Red Hat Enterprise Linux for Power, little endian - Extended Update Support 7.6 ppc64le
Red Hat	Red Hat Enterprise Linux Server	Red Hat Enterprise Linux Server - Update Services for SAP Solutions 7.6 x86_64
Red Hat	Red Hat Enterprise Linux	Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 7.6 s390x
Red Hat	Red Hat Enterprise Linux Server	Red Hat Enterprise Linux Server - TUS 7.3 x86_64
Red Hat	Red Hat Enterprise Linux Server	Red Hat Enterprise Linux Server - AUS 7.6 x86_64
Red Hat	Red Hat Enterprise Linux Server	Red Hat Enterprise Linux Server (for IBM Power LE) - Update Services for SAP Solutions 7.3 ppc64le
Red Hat	Red Hat Enterprise Linux	Red Hat Enterprise Linux for x86_64 - Extended Update Support 7.6 x86_64

Action not permitted

CVE-2019-19338 (GCVE-0-2019-19338)

Solution

Solution

Tags

Sightings

Nomenclature