{ "count": 281594, "next": "https://smash.suse.de/api/issues/?category=security&ordering=-creation_date&page=11", "previous": "https://smash.suse.de/api/issues/?category=security&ordering=-creation_date&page=9", "results": [ { "id": 415415, "name": "bnc#1228513", "severity": "moderate", "state": "Analyzed", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415415/", "references": [ { "name": "bnc#1228513", "url": "https://bugzilla.suse.com/show_bug.cgi?id=1228513", "source": "SUSE Bugzilla" }, { "name": "CVE-2024-41097", "url": "https://git.kernel.org/pub/scm/linux/security/vulns.git/plain/cve/published/2024/CVE-2024-41097.mbox", "source": "Linux Kernel CNA" }, { "name": "CVE-2024-41097", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41097", "source": "National Vulnerability Database" }, { "name": "https://git.kernel.org/stable/c/1aac4be1aaa5177506219f01dce5e29194e5e95a", "url": "https://git.kernel.org/stable/c/1aac4be1aaa5177506219f01dce5e29194e5e95a", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/23926d316d2836315cb113569f91393266eb5b47", "url": "https://git.kernel.org/stable/c/23926d316d2836315cb113569f91393266eb5b47", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/2eabb655a968b862bc0c31629a09f0fbf3c80d51", "url": "https://git.kernel.org/stable/c/2eabb655a968b862bc0c31629a09f0fbf3c80d51", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/5159a81924311c1ec786ad9fdef784ead8676a6a", "url": "https://git.kernel.org/stable/c/5159a81924311c1ec786ad9fdef784ead8676a6a", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/5584c776a1af7807ca815ee6265f2c1429fc5727", "url": "https://git.kernel.org/stable/c/5584c776a1af7807ca815ee6265f2c1429fc5727", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/75ddbf776dd04a09fb9e5267ead5d0c989f84506", "url": "https://git.kernel.org/stable/c/75ddbf776dd04a09fb9e5267ead5d0c989f84506", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/ac9007520e392541a29daebaae8b9109007bc781", "url": "https://git.kernel.org/stable/c/ac9007520e392541a29daebaae8b9109007bc781", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/f536f09eb45e4de8d1b9accee9d992aa1846f1d4", "url": "https://git.kernel.org/stable/c/f536f09eb45e4de8d1b9accee9d992aa1846f1d4", "source": "Linux Kernel CNA" }, { "name": "rh#2300492", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2300492", "source": "Redhat Bugzilla" }, { "name": "CVE-2024-41097", "url": "https://www.cve.org/CVERecord?id=CVE-2024-41097", "source": "Mitre CVE Database" } ], "user": "crazybyte", "cvss": [ { "id": 431770, "score": 5.5, "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "reference": "CVE-2024-41097", "creation_date": "2024-07-31T14:01:55.378103+02:00", "description": "", "modified_date": "2024-07-31T14:01:55.378121+02:00", "source": "Redhat", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41097", "version": 3.1 }, { "id": 432226, "score": 5.5, "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "reference": "CVE-2024-41097", "creation_date": "2024-08-05T12:11:35.817367+02:00", "description": "", "modified_date": "2024-08-05T12:11:35.817399+02:00", "source": "SUSE", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41097", "version": 3.1 } ], "affected_packages": [ { "package": "kernel-source", "codestream": "SUSE:ALP:Source:Standard:1.0", "product": null, "relation": "Already fixed", "id": 5790135 }, { "package": "kernel-source", "codestream": "SUSE:SLE-11-SP4:Update", "product": null, "relation": "Affected", "id": 5790136 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP3:Update", "product": null, "relation": "Affected", "id": 5790137 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP3:Update:Products:Teradata:Update", "product": null, "relation": "Affected", "id": 5790138 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP4:Update", "product": null, "relation": "Affected", "id": 5790139 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP5:Update", "product": null, "relation": "Affected", "id": 5790140 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP1:Update", "product": null, "relation": "Affected", "id": 5790141 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP2:Update", "product": null, "relation": "Affected", "id": 5790142 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP3:Update", "product": null, "relation": "Affected", "id": 5790143 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP4:Update", "product": null, "relation": "Affected", "id": 5790144 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Already fixed", "id": 5790145 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP6:Update", "product": null, "relation": "Already fixed", "id": 5790146 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15:Update", "product": null, "relation": "Affected", "id": 5790147 }, { "package": "kernel-source", "codestream": "SUSE:SLFO:Main", "product": null, "relation": "Already fixed", "id": 5790148 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Already fixed", "id": 5790118 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Already fixed", "id": 5790113 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sl-micro:6.0", "summary": "SUSE Linux Micro", "version": "6.0", "name": "SL-Micro" }, "relation": "Already fixed", "id": 5790134 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-hpc:12:sp5", "summary": "SUSE Linux Enterprise High Performance Computing", "version": "12-SP5", "name": "SLE-HPC" }, "relation": "Affected", "id": 5790092 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles:12:sp5", "summary": "SUSE Linux Enterprise Server", "version": "12-SP5", "name": "SLES" }, "relation": "Affected", "id": 5790093 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp3", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP3", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5790115 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp1", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP1", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5790097 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp2", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP2", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5790098 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5790096 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:12:sp4", "summary": "SUSE Linux Enterprise Server LTSS", "version": "12-SP4", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5790100 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp4", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP4", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5790119 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_ltss_teradata:12:sp3", "summary": "SUSE Linux Enterprise Server Teradata LTSS", "version": "12-SP3", "name": "SLES_LTSS_TERADATA" }, "relation": "Affected", "id": 5790110 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp4", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP4", "name": "SLES_SAP" }, "relation": "Affected", "id": 5790090 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp5", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP5", "name": "SLES_SAP" }, "relation": "Affected", "id": 5790094 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp3", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP3", "name": "SLES_SAP" }, "relation": "Affected", "id": 5790101 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp2", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP2", "name": "SLES_SAP" }, "relation": "Affected", "id": 5790095 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp4", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP4", "name": "SLES_SAP" }, "relation": "Affected", "id": 5790103 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_teradata:12:sp3", "summary": "SUSE Linux Enterprise Server Teradata", "version": "12-SP3", "name": "SLES_TERADATA" }, "relation": "Affected", "id": 5790091 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-espos:15:sp4", "summary": "SUSE Linux Enterprise High Performance Computing ESPOS", "version": "15-SP4", "name": "SLE_HPC-ESPOS" }, "relation": "Affected", "id": 5790104 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp2", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP2", "name": "SLE_HPC-LTSS" }, "relation": "Affected", "id": 5790099 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp3", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP3", "name": "SLE_HPC-LTSS" }, "relation": "Affected", "id": 5790102 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp4", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP4", "name": "SLE_HPC-LTSS" }, "relation": "Affected", "id": 5790105 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-proxy:4.3", "summary": "SUSE Manager Proxy", "version": "4.3", "name": "SUSE-Manager-Proxy" }, "relation": "Affected", "id": 5790106 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-retail-branch-server:4.3", "summary": "SUSE Manager Retail Branch Server", "version": "4.3", "name": "SUSE-Manager-Retail-Branch-Server" }, "relation": "Affected", "id": 5790107 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-server:4.3", "summary": "SUSE Manager Server", "version": "4.3", "name": "SUSE-Manager-Server" }, "relation": "Affected", "id": 5790108 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse_sles_ltss:11:sp4", "summary": "SUSE Linux Enterprise Server 11 SP4 LTSS", "version": "11-SP4", "name": "SUSE_SLES_LTSS" }, "relation": "Affected", "id": 5790089 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse_sles_ltss-extreme-core:11:sp4", "summary": "SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE", "version": "11-SP4", "name": "SUSE_SLES_LTSS-EXTREME-CORE" }, "relation": "Affected", "id": 5790114 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:ses:7.1", "summary": "SUSE Enterprise Storage", "version": "7.1", "name": "ses" }, "relation": "Affected", "id": 5790109 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-basesystem:15:sp6", "summary": "Basesystem Module", "version": "15-SP6", "name": "sle-module-basesystem" }, "relation": "Already fixed", "id": 5790117 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-basesystem:15:sp5", "summary": "Basesystem Module", "version": "15-SP5", "name": "sle-module-basesystem" }, "relation": "Already fixed", "id": 5790112 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-development-tools:15:sp6", "summary": "Development Tools Module", "version": "15-SP6", "name": "sle-module-development-tools" }, "relation": "Already fixed", "id": 5790116 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-development-tools:15:sp5", "summary": "Development Tools Module", "version": "15-SP5", "name": "sle-module-development-tools" }, "relation": "Already fixed", "id": 5790111 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-12-SP5:Update", "product": null, "relation": "Affected", "id": 5790149 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP4:Update", "product": null, "relation": "Unsupported", "id": 5790150 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Already fixed", "id": 5790151 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP6:Update", "product": null, "relation": "Already fixed", "id": 5790152 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Already fixed", "id": 5790124 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Already fixed", "id": 5790126 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-hpc:12:sp5", "summary": "SUSE Linux Enterprise High Performance Computing", "version": "12-SP5", "name": "SLE-HPC" }, "relation": "Affected", "id": 5790120 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles:12:sp5", "summary": "SUSE Linux Enterprise Server", "version": "12-SP5", "name": "SLES" }, "relation": "Affected", "id": 5790121 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp5", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP5", "name": "SLES_SAP" }, "relation": "Affected", "id": 5790122 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp6", "summary": "Public Cloud Module", "version": "15-SP6", "name": "sle-module-public-cloud" }, "relation": "Already fixed", "id": 5790125 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp5", "summary": "Public Cloud Module", "version": "15-SP5", "name": "sle-module-public-cloud" }, "relation": "Already fixed", "id": 5790123 }, { "package": "kernel-source-rt", "codestream": "SUSE:ALP:Source:Standard:1.0", "product": null, "relation": "Already fixed", "id": 5790157 }, { "package": "kernel-source-rt", "codestream": "SUSE:Carwos:1", "product": null, "relation": "Unsupported", "id": 5790158 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-12-SP5:Update:Products:SLERT:Update", "product": null, "relation": "Affected", "id": 5790159 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP3:Update:Products:SLERT:Update", "product": null, "relation": "Affected", "id": 5790160 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP4:Update:Products:SLERT:Update", "product": null, "relation": "Affected", "id": 5790161 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Already fixed", "id": 5790162 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP6:Update:Products:SLERT:Update", "product": null, "relation": "Already fixed", "id": 5790163 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLFO:Main", "product": null, "relation": "Already fixed", "id": 5790164 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Already fixed", "id": 5790133 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Already fixed", "id": 5790130 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sl-micro:6.0", "summary": "SUSE Linux Micro", "version": "6.0", "name": "SL-Micro" }, "relation": "Already fixed", "id": 5790156 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.5", "summary": "SUSE Linux Enterprise Micro", "version": "5.5", "name": "SLE-Micro" }, "relation": "Already fixed", "id": 5790132 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.3", "summary": "SUSE Linux Enterprise Micro", "version": "5.3", "name": "SLE-Micro" }, "relation": "Affected", "id": 5790129 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.4", "summary": "SUSE Linux Enterprise Micro", "version": "5.4", "name": "SLE-Micro" }, "relation": "Affected", "id": 5790131 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-linux-enterprise-rt:12:sp5", "summary": "SUSE Linux Enterprise Real Time", "version": "12-SP5", "name": "SUSE-Linux-Enterprise-RT" }, "relation": "Affected", "id": 5790153 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-microos:5.2", "summary": "SUSE Linux Enterprise Micro", "version": "5.2", "name": "SUSE-MicroOS" }, "relation": "Affected", "id": 5790128 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-microos:5.1", "summary": "SUSE Linux Enterprise Micro", "version": "5.1", "name": "SUSE-MicroOS" }, "relation": "Affected", "id": 5790127 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-rt:15:sp6", "summary": "SUSE Real Time Module", "version": "15-SP6", "name": "sle-module-rt" }, "relation": "Already fixed", "id": 5790155 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-rt:15:sp5", "summary": "SUSE Real Time Module", "version": "15-SP5", "name": "sle-module-rt" }, "relation": "Already fixed", "id": 5790154 } ], "url": "https://smash.suse.de/api/issue/415415", "creation_date": "2024-07-29T18:01:14.300684+02:00", "modified_date": "2024-08-05T12:11:35.891799+02:00", "ts_ignore": null, "ts_analysis": "2024-07-30T10:50:33.820421+02:00", "ts_analyzed": "2024-07-31T14:01:55.634812+02:00", "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415414, "name": "bnc#1228514", "severity": "moderate", "state": "Resolved", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415414/", "references": [ { "name": "bnc#1228514", "url": "https://bugzilla.suse.com/show_bug.cgi?id=1228514", "source": "SUSE Bugzilla" }, { "name": "CVE-2024-42083", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-42083", "source": "National Vulnerability Database" }, { "name": "CVE-2024-42083", "url": "https://git.kernel.org/pub/scm/linux/security/vulns.git/plain/cve/published/2024/CVE-2024-42083.mbox", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/8ae401525ae84228a8986bb369224a6224e4d22f", "url": "https://git.kernel.org/stable/c/8ae401525ae84228a8986bb369224a6224e4d22f", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/e3f02f32a05009a688a87f5799e049ed6b55bab5", "url": "https://git.kernel.org/stable/c/e3f02f32a05009a688a87f5799e049ed6b55bab5", "source": "Linux Kernel CNA" }, { "name": "rh#2300521", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2300521", "source": "Redhat Bugzilla" }, { "name": "CVE-2024-42083", "url": "https://www.cve.org/CVERecord?id=CVE-2024-42083", "source": "Mitre CVE Database" } ], "user": "crazybyte", "cvss": [ { "id": 431615, "score": 5.5, "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "reference": "CVE-2024-42083", "creation_date": "2024-07-30T22:00:21.774280+02:00", "description": "", "modified_date": "2024-07-30T22:00:21.774304+02:00", "source": "National Vulnerability Database", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-42083", "version": 3.1 }, { "id": 431792, "score": 5.5, "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "reference": "CVE-2024-42083", "creation_date": "2024-07-31T14:02:05.965936+02:00", "description": "", "modified_date": "2024-07-31T14:02:05.965953+02:00", "source": "Redhat", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-42083", "version": 3.1 } ], "affected_packages": [ { "package": "kernel-source", "codestream": "SUSE:ALP:Source:Standard:1.0", "product": null, "relation": "Not affected", "id": 5790059 }, { "package": "kernel-source", "codestream": "SUSE:SLE-11-SP4:Update", "product": null, "relation": "Not affected", "id": 5790060 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP3:Update", "product": null, "relation": "Not affected", "id": 5790061 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP3:Update:Products:Teradata:Update", "product": null, "relation": "Not affected", "id": 5790062 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP4:Update", "product": null, "relation": "Not affected", "id": 5790063 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP5:Update", "product": null, "relation": "Not affected", "id": 5790064 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP1:Update", "product": null, "relation": "Not affected", "id": 5790065 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP2:Update", "product": null, "relation": "Not affected", "id": 5790066 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP3:Update", "product": null, "relation": "Not affected", "id": 5790067 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP4:Update", "product": null, "relation": "Not affected", "id": 5790068 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Not affected", "id": 5790069 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP6:Update", "product": null, "relation": "Not affected", "id": 5790070 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15:Update", "product": null, "relation": "Not affected", "id": 5790071 }, { "package": "kernel-source", "codestream": "SUSE:SLFO:Main", "product": null, "relation": "Not affected", "id": 5790072 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Not affected", "id": 5790013 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Not affected", "id": 5790044 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sl-micro:6.0", "summary": "SUSE Linux Micro", "version": "6.0", "name": "SL-Micro" }, "relation": "Not affected", "id": 5790058 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-hpc:12:sp5", "summary": "SUSE Linux Enterprise High Performance Computing", "version": "12-SP5", "name": "SLE-HPC" }, "relation": "Not affected", "id": 5790018 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles:12:sp5", "summary": "SUSE Linux Enterprise Server", "version": "12-SP5", "name": "SLES" }, "relation": "Not affected", "id": 5790019 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp1", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP1", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5790023 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp2", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP2", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5790024 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5790022 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp4", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP4", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5790049 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp3", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP3", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5790046 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:12:sp4", "summary": "SUSE Linux Enterprise Server LTSS", "version": "12-SP4", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5790026 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_ltss_teradata:12:sp3", "summary": "SUSE Linux Enterprise Server Teradata LTSS", "version": "12-SP3", "name": "SLES_LTSS_TERADATA" }, "relation": "Not affected", "id": 5790041 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp4", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP4", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5790034 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp2", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP2", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5790021 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp3", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP3", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5790032 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp4", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP4", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5790016 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp5", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP5", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5790020 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_teradata:12:sp3", "summary": "SUSE Linux Enterprise Server Teradata", "version": "12-SP3", "name": "SLES_TERADATA" }, "relation": "Not affected", "id": 5790017 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-espos:15:sp4", "summary": "SUSE Linux Enterprise High Performance Computing ESPOS", "version": "15-SP4", "name": "SLE_HPC-ESPOS" }, "relation": "Not affected", "id": 5790035 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp2", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP2", "name": "SLE_HPC-LTSS" }, "relation": "Not affected", "id": 5790025 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp3", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP3", "name": "SLE_HPC-LTSS" }, "relation": "Not affected", "id": 5790033 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp4", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP4", "name": "SLE_HPC-LTSS" }, "relation": "Not affected", "id": 5790036 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-proxy:4.3", "summary": "SUSE Manager Proxy", "version": "4.3", "name": "SUSE-Manager-Proxy" }, "relation": "Not affected", "id": 5790037 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-retail-branch-server:4.3", "summary": "SUSE Manager Retail Branch Server", "version": "4.3", "name": "SUSE-Manager-Retail-Branch-Server" }, "relation": "Not affected", "id": 5790038 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-server:4.3", "summary": "SUSE Manager Server", "version": "4.3", "name": "SUSE-Manager-Server" }, "relation": "Not affected", "id": 5790039 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse_sles_ltss:11:sp4", "summary": "SUSE Linux Enterprise Server 11 SP4 LTSS", "version": "11-SP4", "name": "SUSE_SLES_LTSS" }, "relation": "Not affected", "id": 5790031 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse_sles_ltss-extreme-core:11:sp4", "summary": "SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE", "version": "11-SP4", "name": "SUSE_SLES_LTSS-EXTREME-CORE" }, "relation": "Not affected", "id": 5790045 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:ses:7.1", "summary": "SUSE Enterprise Storage", "version": "7.1", "name": "ses" }, "relation": "Not affected", "id": 5790040 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-basesystem:15:sp5", "summary": "Basesystem Module", "version": "15-SP5", "name": "sle-module-basesystem" }, "relation": "Not affected", "id": 5790043 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-basesystem:15:sp6", "summary": "Basesystem Module", "version": "15-SP6", "name": "sle-module-basesystem" }, "relation": "Not affected", "id": 5790048 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-development-tools:15:sp5", "summary": "Development Tools Module", "version": "15-SP5", "name": "sle-module-development-tools" }, "relation": "Not affected", "id": 5790042 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-development-tools:15:sp6", "summary": "Development Tools Module", "version": "15-SP6", "name": "sle-module-development-tools" }, "relation": "Not affected", "id": 5790047 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-12-SP5:Update", "product": null, "relation": "Not affected", "id": 5790073 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP4:Update", "product": null, "relation": "Unsupported", "id": 5790074 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Not affected", "id": 5790075 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP6:Update", "product": null, "relation": "Not affected", "id": 5790076 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Not affected", "id": 5790051 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Not affected", "id": 5790014 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-hpc:12:sp5", "summary": "SUSE Linux Enterprise High Performance Computing", "version": "12-SP5", "name": "SLE-HPC" }, "relation": "Not affected", "id": 5790027 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles:12:sp5", "summary": "SUSE Linux Enterprise Server", "version": "12-SP5", "name": "SLES" }, "relation": "Not affected", "id": 5790028 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp5", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP5", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5790029 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp5", "summary": "Public Cloud Module", "version": "15-SP5", "name": "sle-module-public-cloud" }, "relation": "Not affected", "id": 5790050 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp6", "summary": "Public Cloud Module", "version": "15-SP6", "name": "sle-module-public-cloud" }, "relation": "Not affected", "id": 5790052 }, { "package": "kernel-source-rt", "codestream": "SUSE:ALP:Source:Standard:1.0", "product": null, "relation": "Not affected", "id": 5790081 }, { "package": "kernel-source-rt", "codestream": "SUSE:Carwos:1", "product": null, "relation": "Not affected", "id": 5790082 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-12-SP5:Update:Products:SLERT:Update", "product": null, "relation": "Not affected", "id": 5790083 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP3:Update:Products:SLERT:Update", "product": null, "relation": "Not affected", "id": 5790084 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP4:Update:Products:SLERT:Update", "product": null, "relation": "Not affected", "id": 5790085 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Not affected", "id": 5790086 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP6:Update:Products:SLERT:Update", "product": null, "relation": "Not affected", "id": 5790087 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLFO:Main", "product": null, "relation": "Not affected", "id": 5790088 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Not affected", "id": 5790015 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Not affected", "id": 5790055 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sl-micro:6.0", "summary": "SUSE Linux Micro", "version": "6.0", "name": "SL-Micro" }, "relation": "Not affected", "id": 5790080 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.5", "summary": "SUSE Linux Enterprise Micro", "version": "5.5", "name": "SLE-Micro" }, "relation": "Not affected", "id": 5790057 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.3", "summary": "SUSE Linux Enterprise Micro", "version": "5.3", "name": "SLE-Micro" }, "relation": "Not affected", "id": 5790054 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.4", "summary": "SUSE Linux Enterprise Micro", "version": "5.4", "name": "SLE-Micro" }, "relation": "Not affected", "id": 5790056 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-linux-enterprise-rt:12:sp5", "summary": "SUSE Linux Enterprise Real Time", "version": "12-SP5", "name": "SUSE-Linux-Enterprise-RT" }, "relation": "Not affected", "id": 5790077 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-microos:5.2", "summary": "SUSE Linux Enterprise Micro", "version": "5.2", "name": "SUSE-MicroOS" }, "relation": "Not affected", "id": 5790030 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-microos:5.1", "summary": "SUSE Linux Enterprise Micro", "version": "5.1", "name": "SUSE-MicroOS" }, "relation": "Not affected", "id": 5790053 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-rt:15:sp6", "summary": "SUSE Real Time Module", "version": "15-SP6", "name": "sle-module-rt" }, "relation": "Not affected", "id": 5790079 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-rt:15:sp5", "summary": "SUSE Real Time Module", "version": "15-SP5", "name": "sle-module-rt" }, "relation": "Not affected", "id": 5790078 } ], "url": "https://smash.suse.de/api/issue/415414", "creation_date": "2024-07-29T18:01:11.635154+02:00", "modified_date": "2024-07-30T22:00:21.858581+02:00", "ts_ignore": null, "ts_analysis": "2024-07-30T10:50:49.645861+02:00", "ts_analyzed": "2024-07-30T10:58:58.426011+02:00", "ts_resolved": "2024-07-30T11:00:27.161066+02:00", "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415413, "name": "bnc#1228672", "severity": "moderate", "state": "Analyzed", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415413/", "references": [ { "name": "bnc#1228672", "url": "https://bugzilla.suse.com/show_bug.cgi?id=1228672", "source": "SUSE Bugzilla" }, { "name": "CVE-2024-42079", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-42079", "source": "National Vulnerability Database" }, { "name": "CVE-2024-42079", "url": "https://git.kernel.org/pub/scm/linux/security/vulns.git/plain/cve/published/2024/CVE-2024-42079.mbox", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/3429ef5f50909cee9e498c50f0c499b9397116ce", "url": "https://git.kernel.org/stable/c/3429ef5f50909cee9e498c50f0c499b9397116ce", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/35264909e9d1973ab9aaa2a1b07cda70f12bb828", "url": "https://git.kernel.org/stable/c/35264909e9d1973ab9aaa2a1b07cda70f12bb828", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/f54f9d5368a4e92ede7dd078a62788dae3a7c6ef", "url": "https://git.kernel.org/stable/c/f54f9d5368a4e92ede7dd078a62788dae3a7c6ef", "source": "Linux Kernel CNA" }, { "name": "rh#2300517", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2300517", "source": "Redhat Bugzilla" }, { "name": "CVE-2024-42079", "url": "https://www.cve.org/CVERecord?id=CVE-2024-42079", "source": "Mitre CVE Database" } ], "user": "amattiazzo", "cvss": [ { "id": 431611, "score": 5.5, "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "reference": "CVE-2024-42079", "creation_date": "2024-07-30T22:00:19.242346+02:00", "description": "", "modified_date": "2024-07-30T22:00:19.242363+02:00", "source": "National Vulnerability Database", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-42079", "version": 3.1 }, { "id": 431788, "score": 5.5, "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "reference": "CVE-2024-42079", "creation_date": "2024-07-31T14:02:04.013129+02:00", "description": "", "modified_date": "2024-07-31T14:02:04.013146+02:00", "source": "Redhat", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-42079", "version": 3.1 }, { "id": 431834, "score": 4.7, "vector": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H", "reference": "CVE-2024-42079", "creation_date": "2024-07-31T16:53:13.602752+02:00", "description": "", "modified_date": "2024-07-31T16:54:04.931288+02:00", "source": "SUSE", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-42079", "version": 3.1 } ], "affected_packages": [ { "package": "kernel-source", "codestream": "SUSE:ALP:Source:Standard:1.0", "product": null, "relation": "Affected", "id": 5789969 }, { "package": "kernel-source", "codestream": "SUSE:SLE-11-SP4:Update", "product": null, "relation": "Not affected", "id": 5789970 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP3:Update", "product": null, "relation": "Not affected", "id": 5789971 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP3:Update:Products:Teradata:Update", "product": null, "relation": "Not affected", "id": 5789972 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP4:Update", "product": null, "relation": "Not affected", "id": 5789973 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP5:Update", "product": null, "relation": "Not affected", "id": 5789974 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP1:Update", "product": null, "relation": "Not affected", "id": 5789975 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP2:Update", "product": null, "relation": "Not affected", "id": 5789976 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP3:Update", "product": null, "relation": "Not affected", "id": 5789977 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP4:Update", "product": null, "relation": "Affected", "id": 5789978 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Affected", "id": 5789979 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP6:Update", "product": null, "relation": "Affected", "id": 5789980 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15:Update", "product": null, "relation": "Not affected", "id": 5789981 }, { "package": "kernel-source", "codestream": "SUSE:SLFO:Main", "product": null, "relation": "Affected", "id": 5789982 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Affected", "id": 5789966 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Affected", "id": 5789961 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sl-micro:6.0", "summary": "SUSE Linux Micro", "version": "6.0", "name": "SL-Micro" }, "relation": "Affected", "id": 5789968 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-hpc:12:sp5", "summary": "SUSE Linux Enterprise High Performance Computing", "version": "12-SP5", "name": "SLE-HPC" }, "relation": "Not affected", "id": 5789940 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles:12:sp5", "summary": "SUSE Linux Enterprise Server", "version": "12-SP5", "name": "SLES" }, "relation": "Not affected", "id": 5789941 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp1", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP1", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789945 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp2", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP2", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789946 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789944 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:12:sp4", "summary": "SUSE Linux Enterprise Server LTSS", "version": "12-SP4", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789948 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp4", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP4", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5789967 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp3", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP3", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789963 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_ltss_teradata:12:sp3", "summary": "SUSE Linux Enterprise Server Teradata LTSS", "version": "12-SP3", "name": "SLES_LTSS_TERADATA" }, "relation": "Not affected", "id": 5789958 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp5", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP5", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5789942 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp4", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP4", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5789938 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp3", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP3", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5789949 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp2", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP2", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5789943 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp4", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP4", "name": "SLES_SAP" }, "relation": "Affected", "id": 5789951 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_teradata:12:sp3", "summary": "SUSE Linux Enterprise Server Teradata", "version": "12-SP3", "name": "SLES_TERADATA" }, "relation": "Not affected", "id": 5789939 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-espos:15:sp4", "summary": "SUSE Linux Enterprise High Performance Computing ESPOS", "version": "15-SP4", "name": "SLE_HPC-ESPOS" }, "relation": "Affected", "id": 5789952 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp3", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP3", "name": "SLE_HPC-LTSS" }, "relation": "Not affected", "id": 5789950 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp2", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP2", "name": "SLE_HPC-LTSS" }, "relation": "Not affected", "id": 5789947 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp4", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP4", "name": "SLE_HPC-LTSS" }, "relation": "Affected", "id": 5789953 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-proxy:4.3", "summary": "SUSE Manager Proxy", "version": "4.3", "name": "SUSE-Manager-Proxy" }, "relation": "Affected", "id": 5789954 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-retail-branch-server:4.3", "summary": "SUSE Manager Retail Branch Server", "version": "4.3", "name": "SUSE-Manager-Retail-Branch-Server" }, "relation": "Affected", "id": 5789955 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-server:4.3", "summary": "SUSE Manager Server", "version": "4.3", "name": "SUSE-Manager-Server" }, "relation": "Affected", "id": 5789956 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse_sles_ltss:11:sp4", "summary": "SUSE Linux Enterprise Server 11 SP4 LTSS", "version": "11-SP4", "name": "SUSE_SLES_LTSS" }, "relation": "Not affected", "id": 5789937 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse_sles_ltss-extreme-core:11:sp4", "summary": "SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE", "version": "11-SP4", "name": "SUSE_SLES_LTSS-EXTREME-CORE" }, "relation": "Not affected", "id": 5789962 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:ses:7.1", "summary": "SUSE Enterprise Storage", "version": "7.1", "name": "ses" }, "relation": "Not affected", "id": 5789957 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-basesystem:15:sp6", "summary": "Basesystem Module", "version": "15-SP6", "name": "sle-module-basesystem" }, "relation": "Affected", "id": 5789965 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-basesystem:15:sp5", "summary": "Basesystem Module", "version": "15-SP5", "name": "sle-module-basesystem" }, "relation": "Affected", "id": 5789960 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-development-tools:15:sp5", "summary": "Development Tools Module", "version": "15-SP5", "name": "sle-module-development-tools" }, "relation": "Affected", "id": 5789959 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-development-tools:15:sp6", "summary": "Development Tools Module", "version": "15-SP6", "name": "sle-module-development-tools" }, "relation": "Affected", "id": 5789964 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-12-SP5:Update", "product": null, "relation": "Not affected", "id": 5789990 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP4:Update", "product": null, "relation": "Unsupported", "id": 5789991 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Affected", "id": 5789992 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP6:Update", "product": null, "relation": "Affected", "id": 5789993 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Affected", "id": 5789989 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Affected", "id": 5789987 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-hpc:12:sp5", "summary": "SUSE Linux Enterprise High Performance Computing", "version": "12-SP5", "name": "SLE-HPC" }, "relation": "Not affected", "id": 5789983 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles:12:sp5", "summary": "SUSE Linux Enterprise Server", "version": "12-SP5", "name": "SLES" }, "relation": "Not affected", "id": 5789984 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp5", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP5", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5789985 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp5", "summary": "Public Cloud Module", "version": "15-SP5", "name": "sle-module-public-cloud" }, "relation": "Affected", "id": 5789986 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp6", "summary": "Public Cloud Module", "version": "15-SP6", "name": "sle-module-public-cloud" }, "relation": "Affected", "id": 5789988 }, { "package": "kernel-source-rt", "codestream": "SUSE:ALP:Source:Standard:1.0", "product": null, "relation": "Affected", "id": 5790005 }, { "package": "kernel-source-rt", "codestream": "SUSE:Carwos:1", "product": null, "relation": "Not affected", "id": 5790006 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-12-SP5:Update:Products:SLERT:Update", "product": null, "relation": "Not affected", "id": 5790007 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP3:Update:Products:SLERT:Update", "product": null, "relation": "Not affected", "id": 5790008 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP4:Update:Products:SLERT:Update", "product": null, "relation": "Affected", "id": 5790009 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Affected", "id": 5790010 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP6:Update:Products:SLERT:Update", "product": null, "relation": "Affected", "id": 5790011 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLFO:Main", "product": null, "relation": "Affected", "id": 5790012 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Affected", "id": 5790003 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Affected", "id": 5789999 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sl-micro:6.0", "summary": "SUSE Linux Micro", "version": "6.0", "name": "SL-Micro" }, "relation": "Affected", "id": 5790004 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.3", "summary": "SUSE Linux Enterprise Micro", "version": "5.3", "name": "SLE-Micro" }, "relation": "Affected", "id": 5789997 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.4", "summary": "SUSE Linux Enterprise Micro", "version": "5.4", "name": "SLE-Micro" }, "relation": "Affected", "id": 5790000 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.5", "summary": "SUSE Linux Enterprise Micro", "version": "5.5", "name": "SLE-Micro" }, "relation": "Affected", "id": 5790002 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-linux-enterprise-rt:12:sp5", "summary": "SUSE Linux Enterprise Real Time", "version": "12-SP5", "name": "SUSE-Linux-Enterprise-RT" }, "relation": "Not affected", "id": 5789994 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-microos:5.2", "summary": "SUSE Linux Enterprise Micro", "version": "5.2", "name": "SUSE-MicroOS" }, "relation": "Not affected", "id": 5789996 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-microos:5.1", "summary": "SUSE Linux Enterprise Micro", "version": "5.1", "name": "SUSE-MicroOS" }, "relation": "Not affected", "id": 5789995 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-rt:15:sp6", "summary": "SUSE Real Time Module", "version": "15-SP6", "name": "sle-module-rt" }, "relation": "Affected", "id": 5790001 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-rt:15:sp5", "summary": "SUSE Real Time Module", "version": "15-SP5", "name": "sle-module-rt" }, "relation": "Affected", "id": 5789998 } ], "url": "https://smash.suse.de/api/issue/415413", "creation_date": "2024-07-29T18:01:09.472526+02:00", "modified_date": "2024-07-31T17:04:30.655148+02:00", "ts_ignore": null, "ts_analysis": "2024-07-31T09:57:29.138944+02:00", "ts_analyzed": "2024-07-31T17:04:30.476885+02:00", "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415412, "name": "bnc#1228474", "severity": "moderate", "state": "Analyzed", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415412/", "references": [ { "name": "bnc#1228474", "url": "https://bugzilla.suse.com/show_bug.cgi?id=1228474", "source": "SUSE Bugzilla" }, { "name": "CVE-2024-41034", "url": "https://git.kernel.org/pub/scm/linux/security/vulns.git/plain/cve/published/2024/CVE-2024-41034.mbox", "source": "Linux Kernel CNA" }, { "name": "CVE-2024-41034", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41034", "source": "National Vulnerability Database" }, { "name": "https://git.kernel.org/stable/c/1a8879c0771a68d70ee2e5e66eea34207e8c6231", "url": "https://git.kernel.org/stable/c/1a8879c0771a68d70ee2e5e66eea34207e8c6231", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/24c1c8566a9b6be51f5347be2ea76e25fc82b11e", "url": "https://git.kernel.org/stable/c/24c1c8566a9b6be51f5347be2ea76e25fc82b11e", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/298cd810d7fb687c90a14d8f9fd1b8719a7cb8a5", "url": "https://git.kernel.org/stable/c/298cd810d7fb687c90a14d8f9fd1b8719a7cb8a5", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/60f61514374e4a0c3b65b08c6024dd7e26150bfd", "url": "https://git.kernel.org/stable/c/60f61514374e4a0c3b65b08c6024dd7e26150bfd", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/7000b438dda9d0f41a956fc9bffed92d2eb6be0d", "url": "https://git.kernel.org/stable/c/7000b438dda9d0f41a956fc9bffed92d2eb6be0d", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/a9a466a69b85059b341239766a10efdd3ee68a4b", "url": "https://git.kernel.org/stable/c/a9a466a69b85059b341239766a10efdd3ee68a4b", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/a9e1ddc09ca55746079cc479aa3eb6411f0d99d4", "url": "https://git.kernel.org/stable/c/a9e1ddc09ca55746079cc479aa3eb6411f0d99d4", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/ff9767ba2cb949701e45e6e4287f8af82986b703", "url": "https://git.kernel.org/stable/c/ff9767ba2cb949701e45e6e4287f8af82986b703", "source": "Linux Kernel CNA" }, { "name": "rh#2300401", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2300401", "source": "Redhat Bugzilla" }, { "name": "CVE-2024-41034", "url": "https://www.cve.org/CVERecord?id=CVE-2024-41034", "source": "Mitre CVE Database" } ], "user": "amattiazzo", "cvss": [ { "id": 431514, "score": 5.5, "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "reference": "CVE-2024-41034", "creation_date": "2024-07-30T10:10:17.813341+02:00", "description": "", "modified_date": "2024-07-30T10:10:17.813358+02:00", "source": "SUSE", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41034", "version": 3.1 }, { "id": 431718, "score": 5.5, "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "reference": "CVE-2024-41034", "creation_date": "2024-07-31T14:01:29.008665+02:00", "description": "", "modified_date": "2024-07-31T14:01:29.008680+02:00", "source": "Redhat", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41034", "version": 3.1 } ], "affected_packages": [ { "package": "kernel-source", "codestream": "SUSE:ALP:Source:Standard:1.0", "product": null, "relation": "Not affected", "id": 5789895 }, { "package": "kernel-source", "codestream": "SUSE:SLE-11-SP4:Update", "product": null, "relation": "Unsupported", "id": 5789896 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP3:Update", "product": null, "relation": "Not affected", "id": 5789897 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP3:Update:Products:Teradata:Update", "product": null, "relation": "Not affected", "id": 5789898 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP4:Update", "product": null, "relation": "Not affected", "id": 5789899 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP5:Update", "product": null, "relation": "Not affected", "id": 5789900 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP1:Update", "product": null, "relation": "Not affected", "id": 5789901 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP2:Update", "product": null, "relation": "Not affected", "id": 5789902 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP3:Update", "product": null, "relation": "Unsupported", "id": 5789903 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP4:Update", "product": null, "relation": "Unsupported", "id": 5789904 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Affected", "id": 5789905 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP6:Update", "product": null, "relation": "Affected", "id": 5789906 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15:Update", "product": null, "relation": "Not affected", "id": 5789907 }, { "package": "kernel-source", "codestream": "SUSE:SLFO:Main", "product": null, "relation": "Unsupported", "id": 5789908 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Affected", "id": 5789861 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Affected", "id": 5789888 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sl-micro:6.0", "summary": "SUSE Linux Micro", "version": "6.0", "name": "SL-Micro" }, "relation": "Not affected", "id": 5789894 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-hpc:12:sp5", "summary": "SUSE Linux Enterprise High Performance Computing", "version": "12-SP5", "name": "SLE-HPC" }, "relation": "Not affected", "id": 5789867 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles:12:sp5", "summary": "SUSE Linux Enterprise Server", "version": "12-SP5", "name": "SLES" }, "relation": "Not affected", "id": 5789868 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789871 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp4", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP4", "name": "SLES-LTSS" }, "relation": "Unsupported", "id": 5789893 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp1", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP1", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789872 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp3", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP3", "name": "SLES-LTSS" }, "relation": "Unsupported", "id": 5789890 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp2", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP2", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789873 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:12:sp4", "summary": "SUSE Linux Enterprise Server LTSS", "version": "12-SP4", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789875 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_ltss_teradata:12:sp3", "summary": "SUSE Linux Enterprise Server Teradata LTSS", "version": "12-SP3", "name": "SLES_LTSS_TERADATA" }, "relation": "Not affected", "id": 5789885 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp4", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP4", "name": "SLES_SAP" }, "relation": "Unsupported", "id": 5789878 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp5", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP5", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5789869 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp3", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP3", "name": "SLES_SAP" }, "relation": "Unsupported", "id": 5789876 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp2", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP2", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5789870 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp4", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP4", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5789865 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_teradata:12:sp3", "summary": "SUSE Linux Enterprise Server Teradata", "version": "12-SP3", "name": "SLES_TERADATA" }, "relation": "Not affected", "id": 5789866 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-espos:15:sp4", "summary": "SUSE Linux Enterprise High Performance Computing ESPOS", "version": "15-SP4", "name": "SLE_HPC-ESPOS" }, "relation": "Unsupported", "id": 5789879 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp2", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP2", "name": "SLE_HPC-LTSS" }, "relation": "Not affected", "id": 5789874 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp3", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP3", "name": "SLE_HPC-LTSS" }, "relation": "Unsupported", "id": 5789877 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp4", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP4", "name": "SLE_HPC-LTSS" }, "relation": "Unsupported", "id": 5789880 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-proxy:4.3", "summary": "SUSE Manager Proxy", "version": "4.3", "name": "SUSE-Manager-Proxy" }, "relation": "Unsupported", "id": 5789881 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-retail-branch-server:4.3", "summary": "SUSE Manager Retail Branch Server", "version": "4.3", "name": "SUSE-Manager-Retail-Branch-Server" }, "relation": "Unsupported", "id": 5789882 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-server:4.3", "summary": "SUSE Manager Server", "version": "4.3", "name": "SUSE-Manager-Server" }, "relation": "Unsupported", "id": 5789883 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse_sles_ltss:11:sp4", "summary": "SUSE Linux Enterprise Server 11 SP4 LTSS", "version": "11-SP4", "name": "SUSE_SLES_LTSS" }, "relation": "Unsupported", "id": 5789864 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse_sles_ltss-extreme-core:11:sp4", "summary": "SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE", "version": "11-SP4", "name": "SUSE_SLES_LTSS-EXTREME-CORE" }, "relation": "Unsupported", "id": 5789889 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:ses:7.1", "summary": "SUSE Enterprise Storage", "version": "7.1", "name": "ses" }, "relation": "Unsupported", "id": 5789884 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-basesystem:15:sp6", "summary": "Basesystem Module", "version": "15-SP6", "name": "sle-module-basesystem" }, "relation": "Affected", "id": 5789892 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-basesystem:15:sp5", "summary": "Basesystem Module", "version": "15-SP5", "name": "sle-module-basesystem" }, "relation": "Affected", "id": 5789887 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-development-tools:15:sp5", "summary": "Development Tools Module", "version": "15-SP5", "name": "sle-module-development-tools" }, "relation": "Affected", "id": 5789886 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-development-tools:15:sp6", "summary": "Development Tools Module", "version": "15-SP6", "name": "sle-module-development-tools" }, "relation": "Affected", "id": 5789891 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-12-SP5:Update", "product": null, "relation": "Not affected", "id": 5789915 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP4:Update", "product": null, "relation": "Unsupported", "id": 5789916 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Affected", "id": 5789917 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP6:Update", "product": null, "relation": "Affected", "id": 5789918 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Affected", "id": 5789862 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Affected", "id": 5789913 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-hpc:12:sp5", "summary": "SUSE Linux Enterprise High Performance Computing", "version": "12-SP5", "name": "SLE-HPC" }, "relation": "Not affected", "id": 5789909 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles:12:sp5", "summary": "SUSE Linux Enterprise Server", "version": "12-SP5", "name": "SLES" }, "relation": "Not affected", "id": 5789910 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp5", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP5", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5789911 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp6", "summary": "Public Cloud Module", "version": "15-SP6", "name": "sle-module-public-cloud" }, "relation": "Affected", "id": 5789914 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp5", "summary": "Public Cloud Module", "version": "15-SP5", "name": "sle-module-public-cloud" }, "relation": "Affected", "id": 5789912 }, { "package": "kernel-source-rt", "codestream": "SUSE:ALP:Source:Standard:1.0", "product": null, "relation": "Not affected", "id": 5789929 }, { "package": "kernel-source-rt", "codestream": "SUSE:Carwos:1", "product": null, "relation": "Not affected", "id": 5789930 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-12-SP5:Update:Products:SLERT:Update", "product": null, "relation": "Not affected", "id": 5789931 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP3:Update:Products:SLERT:Update", "product": null, "relation": "Unsupported", "id": 5789932 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP4:Update:Products:SLERT:Update", "product": null, "relation": "Unsupported", "id": 5789933 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Unsupported", "id": 5789934 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP6:Update:Products:SLERT:Update", "product": null, "relation": "Unsupported", "id": 5789935 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLFO:Main", "product": null, "relation": "Unsupported", "id": 5789936 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Unsupported", "id": 5789924 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Unsupported", "id": 5789863 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sl-micro:6.0", "summary": "SUSE Linux Micro", "version": "6.0", "name": "SL-Micro" }, "relation": "Not affected", "id": 5789928 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.3", "summary": "SUSE Linux Enterprise Micro", "version": "5.3", "name": "SLE-Micro" }, "relation": "Unsupported", "id": 5789922 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.4", "summary": "SUSE Linux Enterprise Micro", "version": "5.4", "name": "SLE-Micro" }, "relation": "Unsupported", "id": 5789925 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.5", "summary": "SUSE Linux Enterprise Micro", "version": "5.5", "name": "SLE-Micro" }, "relation": "Unsupported", "id": 5789927 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-linux-enterprise-rt:12:sp5", "summary": "SUSE Linux Enterprise Real Time", "version": "12-SP5", "name": "SUSE-Linux-Enterprise-RT" }, "relation": "Not affected", "id": 5789919 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-microos:5.2", "summary": "SUSE Linux Enterprise Micro", "version": "5.2", "name": "SUSE-MicroOS" }, "relation": "Unsupported", "id": 5789921 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-microos:5.1", "summary": "SUSE Linux Enterprise Micro", "version": "5.1", "name": "SUSE-MicroOS" }, "relation": "Unsupported", "id": 5789920 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-rt:15:sp5", "summary": "SUSE Real Time Module", "version": "15-SP5", "name": "sle-module-rt" }, "relation": "Unsupported", "id": 5789923 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-rt:15:sp6", "summary": "SUSE Real Time Module", "version": "15-SP6", "name": "sle-module-rt" }, "relation": "Unsupported", "id": 5789926 } ], "url": "https://smash.suse.de/api/issue/415412", "creation_date": "2024-07-29T18:01:05.151797+02:00", "modified_date": "2024-07-30T10:10:34.670782+02:00", "ts_ignore": null, "ts_analysis": "2024-07-30T09:08:26.415771+02:00", "ts_analyzed": "2024-07-30T10:10:34.447336+02:00", "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415411, "name": "bnc#1228499", "severity": "moderate", "state": "Analyzed", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415411/", "references": [ { "name": "bnc#1228499", "url": "https://bugzilla.suse.com/show_bug.cgi?id=1228499", "source": "SUSE Bugzilla" }, { "name": "CVE-2024-41050", "url": "https://git.kernel.org/pub/scm/linux/security/vulns.git/plain/cve/published/2024/CVE-2024-41050.mbox", "source": "Linux Kernel CNA" }, { "name": "CVE-2024-41050", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41050", "source": "National Vulnerability Database" }, { "name": "https://git.kernel.org/stable/c/19f4f399091478c95947f6bd7ad61622300c30d9", "url": "https://git.kernel.org/stable/c/19f4f399091478c95947f6bd7ad61622300c30d9", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/35710c6c4a1c64478ec1b5e0e81d386c0844dec6", "url": "https://git.kernel.org/stable/c/35710c6c4a1c64478ec1b5e0e81d386c0844dec6", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/9d3bf4e9aa23f0d9e99ebe7a94f232ddba54ee17", "url": "https://git.kernel.org/stable/c/9d3bf4e9aa23f0d9e99ebe7a94f232ddba54ee17", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/de045a82e1a4e04be62718d3c2981a55150765a0", "url": "https://git.kernel.org/stable/c/de045a82e1a4e04be62718d3c2981a55150765a0", "source": "Linux Kernel CNA" }, { "name": "rh#2300423", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2300423", "source": "Redhat Bugzilla" }, { "name": "CVE-2024-41050", "url": "https://www.cve.org/CVERecord?id=CVE-2024-41050", "source": "Mitre CVE Database" } ], "user": "rfrohl", "cvss": [ { "id": 431517, "score": 5.5, "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "reference": "CVE-2024-41050", "creation_date": "2024-07-30T10:32:20.901621+02:00", "description": "", "modified_date": "2024-07-30T10:32:20.901648+02:00", "source": "SUSE", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41050", "version": 3.1 }, { "id": 431734, "score": 5.5, "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "reference": "CVE-2024-41050", "creation_date": "2024-07-31T14:01:37.131856+02:00", "description": "", "modified_date": "2024-07-31T14:01:37.131878+02:00", "source": "Redhat", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41050", "version": 3.1 } ], "affected_packages": [ { "package": "kernel-source", "codestream": "SUSE:ALP:Source:Standard:1.0", "product": null, "relation": "Affected", "id": 5789819 }, { "package": "kernel-source", "codestream": "SUSE:SLE-11-SP4:Update", "product": null, "relation": "Not affected", "id": 5789820 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP3:Update", "product": null, "relation": "Not affected", "id": 5789821 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP3:Update:Products:Teradata:Update", "product": null, "relation": "Not affected", "id": 5789822 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP4:Update", "product": null, "relation": "Not affected", "id": 5789823 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP5:Update", "product": null, "relation": "Not affected", "id": 5789824 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP1:Update", "product": null, "relation": "Not affected", "id": 5789825 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP2:Update", "product": null, "relation": "Not affected", "id": 5789826 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP3:Update", "product": null, "relation": "Not affected", "id": 5789827 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP4:Update", "product": null, "relation": "Not affected", "id": 5789828 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Affected", "id": 5789829 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP6:Update", "product": null, "relation": "Affected", "id": 5789830 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15:Update", "product": null, "relation": "Not affected", "id": 5789831 }, { "package": "kernel-source", "codestream": "SUSE:SLFO:Main", "product": null, "relation": "Affected", "id": 5789832 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Affected", "id": 5789785 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Affected", "id": 5789812 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sl-micro:6.0", "summary": "SUSE Linux Micro", "version": "6.0", "name": "SL-Micro" }, "relation": "Affected", "id": 5789818 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-hpc:12:sp5", "summary": "SUSE Linux Enterprise High Performance Computing", "version": "12-SP5", "name": "SLE-HPC" }, "relation": "Not affected", "id": 5789791 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles:12:sp5", "summary": "SUSE Linux Enterprise Server", "version": "12-SP5", "name": "SLES" }, "relation": "Not affected", "id": 5789792 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp4", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP4", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789817 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp3", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP3", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789814 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:12:sp4", "summary": "SUSE Linux Enterprise Server LTSS", "version": "12-SP4", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789799 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp2", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP2", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789797 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp1", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP1", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789796 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789795 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_ltss_teradata:12:sp3", "summary": "SUSE Linux Enterprise Server Teradata LTSS", "version": "12-SP3", "name": "SLES_LTSS_TERADATA" }, "relation": "Not affected", "id": 5789809 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp4", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP4", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5789802 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp3", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP3", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5789800 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp2", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP2", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5789794 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp5", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP5", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5789793 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp4", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP4", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5789789 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_teradata:12:sp3", "summary": "SUSE Linux Enterprise Server Teradata", "version": "12-SP3", "name": "SLES_TERADATA" }, "relation": "Not affected", "id": 5789790 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-espos:15:sp4", "summary": "SUSE Linux Enterprise High Performance Computing ESPOS", "version": "15-SP4", "name": "SLE_HPC-ESPOS" }, "relation": "Not affected", "id": 5789803 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp2", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP2", "name": "SLE_HPC-LTSS" }, "relation": "Not affected", "id": 5789798 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp3", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP3", "name": "SLE_HPC-LTSS" }, "relation": "Not affected", "id": 5789801 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp4", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP4", "name": "SLE_HPC-LTSS" }, "relation": "Not affected", "id": 5789804 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-proxy:4.3", "summary": "SUSE Manager Proxy", "version": "4.3", "name": "SUSE-Manager-Proxy" }, "relation": "Not affected", "id": 5789805 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-retail-branch-server:4.3", "summary": "SUSE Manager Retail Branch Server", "version": "4.3", "name": "SUSE-Manager-Retail-Branch-Server" }, "relation": "Not affected", "id": 5789806 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-server:4.3", "summary": "SUSE Manager Server", "version": "4.3", "name": "SUSE-Manager-Server" }, "relation": "Not affected", "id": 5789807 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse_sles_ltss:11:sp4", "summary": "SUSE Linux Enterprise Server 11 SP4 LTSS", "version": "11-SP4", "name": "SUSE_SLES_LTSS" }, "relation": "Not affected", "id": 5789788 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse_sles_ltss-extreme-core:11:sp4", "summary": "SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE", "version": "11-SP4", "name": "SUSE_SLES_LTSS-EXTREME-CORE" }, "relation": "Not affected", "id": 5789813 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:ses:7.1", "summary": "SUSE Enterprise Storage", "version": "7.1", "name": "ses" }, "relation": "Not affected", "id": 5789808 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-basesystem:15:sp5", "summary": "Basesystem Module", "version": "15-SP5", "name": "sle-module-basesystem" }, "relation": "Affected", "id": 5789811 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-basesystem:15:sp6", "summary": "Basesystem Module", "version": "15-SP6", "name": "sle-module-basesystem" }, "relation": "Affected", "id": 5789816 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-development-tools:15:sp5", "summary": "Development Tools Module", "version": "15-SP5", "name": "sle-module-development-tools" }, "relation": "Affected", "id": 5789810 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-development-tools:15:sp6", "summary": "Development Tools Module", "version": "15-SP6", "name": "sle-module-development-tools" }, "relation": "Affected", "id": 5789815 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-12-SP5:Update", "product": null, "relation": "Not affected", "id": 5789839 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP4:Update", "product": null, "relation": "Not affected", "id": 5789840 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Affected", "id": 5789841 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP6:Update", "product": null, "relation": "Affected", "id": 5789842 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Affected", "id": 5789837 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Affected", "id": 5789786 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-hpc:12:sp5", "summary": "SUSE Linux Enterprise High Performance Computing", "version": "12-SP5", "name": "SLE-HPC" }, "relation": "Not affected", "id": 5789833 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles:12:sp5", "summary": "SUSE Linux Enterprise Server", "version": "12-SP5", "name": "SLES" }, "relation": "Not affected", "id": 5789834 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp5", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP5", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5789835 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp5", "summary": "Public Cloud Module", "version": "15-SP5", "name": "sle-module-public-cloud" }, "relation": "Affected", "id": 5789836 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp6", "summary": "Public Cloud Module", "version": "15-SP6", "name": "sle-module-public-cloud" }, "relation": "Affected", "id": 5789838 }, { "package": "kernel-source-rt", "codestream": "SUSE:ALP:Source:Standard:1.0", "product": null, "relation": "Affected", "id": 5789853 }, { "package": "kernel-source-rt", "codestream": "SUSE:Carwos:1", "product": null, "relation": "Not affected", "id": 5789854 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-12-SP5:Update:Products:SLERT:Update", "product": null, "relation": "Not affected", "id": 5789855 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP3:Update:Products:SLERT:Update", "product": null, "relation": "Not affected", "id": 5789856 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP4:Update:Products:SLERT:Update", "product": null, "relation": "Not affected", "id": 5789857 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Affected", "id": 5789858 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP6:Update:Products:SLERT:Update", "product": null, "relation": "Affected", "id": 5789859 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLFO:Main", "product": null, "relation": "Affected", "id": 5789860 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Affected", "id": 5789787 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Affected", "id": 5789848 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sl-micro:6.0", "summary": "SUSE Linux Micro", "version": "6.0", "name": "SL-Micro" }, "relation": "Affected", "id": 5789852 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.3", "summary": "SUSE Linux Enterprise Micro", "version": "5.3", "name": "SLE-Micro" }, "relation": "Not affected", "id": 5789846 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.4", "summary": "SUSE Linux Enterprise Micro", "version": "5.4", "name": "SLE-Micro" }, "relation": "Not affected", "id": 5789849 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.5", "summary": "SUSE Linux Enterprise Micro", "version": "5.5", "name": "SLE-Micro" }, "relation": "Affected", "id": 5789851 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-linux-enterprise-rt:12:sp5", "summary": "SUSE Linux Enterprise Real Time", "version": "12-SP5", "name": "SUSE-Linux-Enterprise-RT" }, "relation": "Not affected", "id": 5789843 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-microos:5.2", "summary": "SUSE Linux Enterprise Micro", "version": "5.2", "name": "SUSE-MicroOS" }, "relation": "Not affected", "id": 5789845 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-microos:5.1", "summary": "SUSE Linux Enterprise Micro", "version": "5.1", "name": "SUSE-MicroOS" }, "relation": "Not affected", "id": 5789844 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-rt:15:sp6", "summary": "SUSE Real Time Module", "version": "15-SP6", "name": "sle-module-rt" }, "relation": "Affected", "id": 5789850 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-rt:15:sp5", "summary": "SUSE Real Time Module", "version": "15-SP5", "name": "sle-module-rt" }, "relation": "Affected", "id": 5789847 } ], "url": "https://smash.suse.de/api/issue/415411", "creation_date": "2024-07-29T18:01:01.881206+02:00", "modified_date": "2024-07-30T10:44:36.219261+02:00", "ts_ignore": null, "ts_analysis": "2024-07-30T09:22:20.258682+02:00", "ts_analyzed": "2024-07-30T10:44:24.038860+02:00", "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415410, "name": "bnc#1228616", "severity": "moderate", "state": "Analyzed", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415410/", "references": [ { "name": "bnc#1228616", "url": "https://bugzilla.suse.com/show_bug.cgi?id=1228616", "source": "SUSE Bugzilla" }, { "name": "CVE-2024-41080", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41080", "source": "National Vulnerability Database" }, { "name": "CVE-2024-41080", "url": "https://git.kernel.org/pub/scm/linux/security/vulns.git/plain/cve/published/2024/CVE-2024-41080.mbox", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/73254a297c2dd094abec7c9efee32455ae875bdf", "url": "https://git.kernel.org/stable/c/73254a297c2dd094abec7c9efee32455ae875bdf", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/b571a367502c7ef94c688ef9c7f7d69a2ce3bcca", "url": "https://git.kernel.org/stable/c/b571a367502c7ef94c688ef9c7f7d69a2ce3bcca", "source": "Linux Kernel CNA" }, { "name": "CVE-2024-41080", "url": "https://www.cve.org/CVERecord?id=CVE-2024-41080", "source": "Mitre CVE Database" } ], "user": "abergmann", "cvss": [ { "id": 431642, "score": 5.5, "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "reference": "CVE-2024-41080", "creation_date": "2024-07-31T08:41:02.877337+02:00", "description": "", "modified_date": "2024-07-31T08:41:02.877356+02:00", "source": "SUSE", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41080", "version": 3.1 } ], "affected_packages": [ { "package": "kernel-source", "codestream": "SUSE:ALP:Source:Standard:1.0", "product": null, "relation": "Affected", "id": 5789741 }, { "package": "kernel-source", "codestream": "SUSE:SLE-11-SP4:Update", "product": null, "relation": "Not affected", "id": 5789742 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP3:Update", "product": null, "relation": "Not affected", "id": 5789743 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP3:Update:Products:Teradata:Update", "product": null, "relation": "Not affected", "id": 5789744 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP4:Update", "product": null, "relation": "Not affected", "id": 5789745 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP5:Update", "product": null, "relation": "Not affected", "id": 5789746 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP1:Update", "product": null, "relation": "Not affected", "id": 5789747 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP2:Update", "product": null, "relation": "Not affected", "id": 5789748 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP3:Update", "product": null, "relation": "Not affected", "id": 5789749 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP4:Update", "product": null, "relation": "Affected", "id": 5789750 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Affected", "id": 5789751 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP6:Update", "product": null, "relation": "Affected", "id": 5789752 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15:Update", "product": null, "relation": "Not affected", "id": 5789753 }, { "package": "kernel-source", "codestream": "SUSE:SLFO:Main", "product": null, "relation": "Affected", "id": 5789754 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Affected", "id": 5789738 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Affected", "id": 5789733 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sl-micro:6.0", "summary": "SUSE Linux Micro", "version": "6.0", "name": "SL-Micro" }, "relation": "Affected", "id": 5789740 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-hpc:12:sp5", "summary": "SUSE Linux Enterprise High Performance Computing", "version": "12-SP5", "name": "SLE-HPC" }, "relation": "Not affected", "id": 5789712 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles:12:sp5", "summary": "SUSE Linux Enterprise Server", "version": "12-SP5", "name": "SLES" }, "relation": "Not affected", "id": 5789713 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp4", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP4", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5789739 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp3", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP3", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789735 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789716 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:12:sp4", "summary": "SUSE Linux Enterprise Server LTSS", "version": "12-SP4", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789720 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp2", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP2", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789718 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp1", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP1", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789717 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_ltss_teradata:12:sp3", "summary": "SUSE Linux Enterprise Server Teradata LTSS", "version": "12-SP3", "name": "SLES_LTSS_TERADATA" }, "relation": "Not affected", "id": 5789730 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp4", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP4", "name": "SLES_SAP" }, "relation": "Affected", "id": 5789723 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp4", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP4", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5789710 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp5", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP5", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5789714 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp2", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP2", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5789715 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp3", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP3", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5789721 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_teradata:12:sp3", "summary": "SUSE Linux Enterprise Server Teradata", "version": "12-SP3", "name": "SLES_TERADATA" }, "relation": "Not affected", "id": 5789711 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-espos:15:sp4", "summary": "SUSE Linux Enterprise High Performance Computing ESPOS", "version": "15-SP4", "name": "SLE_HPC-ESPOS" }, "relation": "Affected", "id": 5789724 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp3", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP3", "name": "SLE_HPC-LTSS" }, "relation": "Not affected", "id": 5789722 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp2", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP2", "name": "SLE_HPC-LTSS" }, "relation": "Not affected", "id": 5789719 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp4", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP4", "name": "SLE_HPC-LTSS" }, "relation": "Affected", "id": 5789725 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-proxy:4.3", "summary": "SUSE Manager Proxy", "version": "4.3", "name": "SUSE-Manager-Proxy" }, "relation": "Affected", "id": 5789726 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-retail-branch-server:4.3", "summary": "SUSE Manager Retail Branch Server", "version": "4.3", "name": "SUSE-Manager-Retail-Branch-Server" }, "relation": "Affected", "id": 5789727 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-server:4.3", "summary": "SUSE Manager Server", "version": "4.3", "name": "SUSE-Manager-Server" }, "relation": "Affected", "id": 5789728 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse_sles_ltss:11:sp4", "summary": "SUSE Linux Enterprise Server 11 SP4 LTSS", "version": "11-SP4", "name": "SUSE_SLES_LTSS" }, "relation": "Not affected", "id": 5789709 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse_sles_ltss-extreme-core:11:sp4", "summary": "SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE", "version": "11-SP4", "name": "SUSE_SLES_LTSS-EXTREME-CORE" }, "relation": "Not affected", "id": 5789734 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:ses:7.1", "summary": "SUSE Enterprise Storage", "version": "7.1", "name": "ses" }, "relation": "Not affected", "id": 5789729 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-basesystem:15:sp5", "summary": "Basesystem Module", "version": "15-SP5", "name": "sle-module-basesystem" }, "relation": "Affected", "id": 5789732 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-basesystem:15:sp6", "summary": "Basesystem Module", "version": "15-SP6", "name": "sle-module-basesystem" }, "relation": "Affected", "id": 5789737 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-development-tools:15:sp5", "summary": "Development Tools Module", "version": "15-SP5", "name": "sle-module-development-tools" }, "relation": "Affected", "id": 5789731 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-development-tools:15:sp6", "summary": "Development Tools Module", "version": "15-SP6", "name": "sle-module-development-tools" }, "relation": "Affected", "id": 5789736 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-12-SP5:Update", "product": null, "relation": "Not affected", "id": 5789762 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP4:Update", "product": null, "relation": "Affected", "id": 5789763 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Affected", "id": 5789764 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP6:Update", "product": null, "relation": "Affected", "id": 5789765 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Affected", "id": 5789759 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Affected", "id": 5789761 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-hpc:12:sp5", "summary": "SUSE Linux Enterprise High Performance Computing", "version": "12-SP5", "name": "SLE-HPC" }, "relation": "Not affected", "id": 5789755 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles:12:sp5", "summary": "SUSE Linux Enterprise Server", "version": "12-SP5", "name": "SLES" }, "relation": "Not affected", "id": 5789756 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp5", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP5", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5789757 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp5", "summary": "Public Cloud Module", "version": "15-SP5", "name": "sle-module-public-cloud" }, "relation": "Affected", "id": 5789758 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp6", "summary": "Public Cloud Module", "version": "15-SP6", "name": "sle-module-public-cloud" }, "relation": "Affected", "id": 5789760 }, { "package": "kernel-source-rt", "codestream": "SUSE:ALP:Source:Standard:1.0", "product": null, "relation": "Affected", "id": 5789777 }, { "package": "kernel-source-rt", "codestream": "SUSE:Carwos:1", "product": null, "relation": "Not affected", "id": 5789778 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-12-SP5:Update:Products:SLERT:Update", "product": null, "relation": "Not affected", "id": 5789779 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP3:Update:Products:SLERT:Update", "product": null, "relation": "Not affected", "id": 5789780 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP4:Update:Products:SLERT:Update", "product": null, "relation": "Affected", "id": 5789781 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Affected", "id": 5789782 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP6:Update:Products:SLERT:Update", "product": null, "relation": "Affected", "id": 5789783 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLFO:Main", "product": null, "relation": "Affected", "id": 5789784 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Affected", "id": 5789775 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Affected", "id": 5789771 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sl-micro:6.0", "summary": "SUSE Linux Micro", "version": "6.0", "name": "SL-Micro" }, "relation": "Affected", "id": 5789776 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.5", "summary": "SUSE Linux Enterprise Micro", "version": "5.5", "name": "SLE-Micro" }, "relation": "Affected", "id": 5789774 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.3", "summary": "SUSE Linux Enterprise Micro", "version": "5.3", "name": "SLE-Micro" }, "relation": "Affected", "id": 5789769 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.4", "summary": "SUSE Linux Enterprise Micro", "version": "5.4", "name": "SLE-Micro" }, "relation": "Affected", "id": 5789772 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-linux-enterprise-rt:12:sp5", "summary": "SUSE Linux Enterprise Real Time", "version": "12-SP5", "name": "SUSE-Linux-Enterprise-RT" }, "relation": "Not affected", "id": 5789766 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-microos:5.2", "summary": "SUSE Linux Enterprise Micro", "version": "5.2", "name": "SUSE-MicroOS" }, "relation": "Not affected", "id": 5789768 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-microos:5.1", "summary": "SUSE Linux Enterprise Micro", "version": "5.1", "name": "SUSE-MicroOS" }, "relation": "Not affected", "id": 5789767 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-rt:15:sp6", "summary": "SUSE Real Time Module", "version": "15-SP6", "name": "sle-module-rt" }, "relation": "Affected", "id": 5789773 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-rt:15:sp5", "summary": "SUSE Real Time Module", "version": "15-SP5", "name": "sle-module-rt" }, "relation": "Affected", "id": 5789770 } ], "url": "https://smash.suse.de/api/issue/415410", "creation_date": "2024-07-29T18:00:59.883284+02:00", "modified_date": "2024-07-31T08:41:13.632283+02:00", "ts_ignore": null, "ts_analysis": "2024-07-31T08:37:28.041729+02:00", "ts_analyzed": "2024-07-31T08:41:13.630311+02:00", "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415409, "name": "bnc#1228519", "severity": "moderate", "state": "Resolved", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415409/", "references": [ { "name": "bnc#1228519", "url": "https://bugzilla.suse.com/show_bug.cgi?id=1228519", "source": "SUSE Bugzilla" }, { "name": "CVE-2024-41053", "url": "https://git.kernel.org/pub/scm/linux/security/vulns.git/plain/cve/published/2024/CVE-2024-41053.mbox", "source": "Linux Kernel CNA" }, { "name": "CVE-2024-41053", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41053", "source": "National Vulnerability Database" }, { "name": "https://git.kernel.org/stable/c/74736103fb4123c71bf11fb7a6abe7c884c5269e", "url": "https://git.kernel.org/stable/c/74736103fb4123c71bf11fb7a6abe7c884c5269e", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/b5a6ac887256762758bfe7f2918cb0233aa544f4", "url": "https://git.kernel.org/stable/c/b5a6ac887256762758bfe7f2918cb0233aa544f4", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/c3111b3cf3889bfa7b73ebff83d7397db9b7e5e0", "url": "https://git.kernel.org/stable/c/c3111b3cf3889bfa7b73ebff83d7397db9b7e5e0", "source": "Linux Kernel CNA" }, { "name": "rh#2300426", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2300426", "source": "Redhat Bugzilla" }, { "name": "CVE-2024-41053", "url": "https://www.cve.org/CVERecord?id=CVE-2024-41053", "source": "Mitre CVE Database" } ], "user": "rfrohl", "cvss": [ { "id": 431523, "score": 5.5, "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "reference": "CVE-2024-41053", "creation_date": "2024-07-30T11:10:43.558730+02:00", "description": "", "modified_date": "2024-07-30T11:10:43.558747+02:00", "source": "SUSE", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41053", "version": 3.1 }, { "id": 431736, "score": 5.5, "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "reference": "CVE-2024-41053", "creation_date": "2024-07-31T14:01:38.099601+02:00", "description": "", "modified_date": "2024-07-31T14:01:38.099618+02:00", "source": "Redhat", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41053", "version": 3.1 } ], "affected_packages": [ { "package": "kernel-source", "codestream": "SUSE:ALP:Source:Standard:1.0", "product": null, "relation": "Not affected", "id": 5789679 }, { "package": "kernel-source", "codestream": "SUSE:SLE-11-SP4:Update", "product": null, "relation": "Not affected", "id": 5789680 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP3:Update", "product": null, "relation": "Not affected", "id": 5789681 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP3:Update:Products:Teradata:Update", "product": null, "relation": "Not affected", "id": 5789682 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP4:Update", "product": null, "relation": "Not affected", "id": 5789683 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP5:Update", "product": null, "relation": "Not affected", "id": 5789684 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP1:Update", "product": null, "relation": "Not affected", "id": 5789685 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP2:Update", "product": null, "relation": "Not affected", "id": 5789686 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP3:Update", "product": null, "relation": "Not affected", "id": 5789687 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP4:Update", "product": null, "relation": "Not affected", "id": 5789688 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Not affected", "id": 5789689 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP6:Update", "product": null, "relation": "Not affected", "id": 5789690 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15:Update", "product": null, "relation": "Not affected", "id": 5789691 }, { "package": "kernel-source", "codestream": "SUSE:SLFO:Main", "product": null, "relation": "Not affected", "id": 5789692 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Not affected", "id": 5789643 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Not affected", "id": 5789646 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sl-micro:6.0", "summary": "SUSE Linux Micro", "version": "6.0", "name": "SL-Micro" }, "relation": "Not affected", "id": 5789678 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-hpc:12:sp5", "summary": "SUSE Linux Enterprise High Performance Computing", "version": "12-SP5", "name": "SLE-HPC" }, "relation": "Not affected", "id": 5789634 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles:12:sp5", "summary": "SUSE Linux Enterprise Server", "version": "12-SP5", "name": "SLES" }, "relation": "Not affected", "id": 5789635 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp3", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP3", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789674 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp1", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP1", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789638 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp2", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP2", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789639 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789661 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:12:sp4", "summary": "SUSE Linux Enterprise Server LTSS", "version": "12-SP4", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789662 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp4", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP4", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789675 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_ltss_teradata:12:sp3", "summary": "SUSE Linux Enterprise Server Teradata LTSS", "version": "12-SP3", "name": "SLES_LTSS_TERADATA" }, "relation": "Not affected", "id": 5789672 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp4", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP4", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5789665 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp3", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP3", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5789663 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp2", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP2", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5789637 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp5", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP5", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5789636 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp4", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP4", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5789633 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_teradata:12:sp3", "summary": "SUSE Linux Enterprise Server Teradata", "version": "12-SP3", "name": "SLES_TERADATA" }, "relation": "Not affected", "id": 5789660 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-espos:15:sp4", "summary": "SUSE Linux Enterprise High Performance Computing ESPOS", "version": "15-SP4", "name": "SLE_HPC-ESPOS" }, "relation": "Not affected", "id": 5789666 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp3", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP3", "name": "SLE_HPC-LTSS" }, "relation": "Not affected", "id": 5789664 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp2", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP2", "name": "SLE_HPC-LTSS" }, "relation": "Not affected", "id": 5789640 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp4", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP4", "name": "SLE_HPC-LTSS" }, "relation": "Not affected", "id": 5789667 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-proxy:4.3", "summary": "SUSE Manager Proxy", "version": "4.3", "name": "SUSE-Manager-Proxy" }, "relation": "Not affected", "id": 5789668 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-retail-branch-server:4.3", "summary": "SUSE Manager Retail Branch Server", "version": "4.3", "name": "SUSE-Manager-Retail-Branch-Server" }, "relation": "Not affected", "id": 5789669 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-server:4.3", "summary": "SUSE Manager Server", "version": "4.3", "name": "SUSE-Manager-Server" }, "relation": "Not affected", "id": 5789670 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse_sles_ltss:11:sp4", "summary": "SUSE Linux Enterprise Server 11 SP4 LTSS", "version": "11-SP4", "name": "SUSE_SLES_LTSS" }, "relation": "Not affected", "id": 5789659 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse_sles_ltss-extreme-core:11:sp4", "summary": "SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE", "version": "11-SP4", "name": "SUSE_SLES_LTSS-EXTREME-CORE" }, "relation": "Not affected", "id": 5789673 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:ses:7.1", "summary": "SUSE Enterprise Storage", "version": "7.1", "name": "ses" }, "relation": "Not affected", "id": 5789671 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-basesystem:15:sp6", "summary": "Basesystem Module", "version": "15-SP6", "name": "sle-module-basesystem" }, "relation": "Not affected", "id": 5789645 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-basesystem:15:sp5", "summary": "Basesystem Module", "version": "15-SP5", "name": "sle-module-basesystem" }, "relation": "Not affected", "id": 5789642 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-development-tools:15:sp6", "summary": "Development Tools Module", "version": "15-SP6", "name": "sle-module-development-tools" }, "relation": "Not affected", "id": 5789644 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-development-tools:15:sp5", "summary": "Development Tools Module", "version": "15-SP5", "name": "sle-module-development-tools" }, "relation": "Not affected", "id": 5789641 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-12-SP5:Update", "product": null, "relation": "Not affected", "id": 5789693 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP4:Update", "product": null, "relation": "Not affected", "id": 5789694 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Not affected", "id": 5789695 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP6:Update", "product": null, "relation": "Not affected", "id": 5789696 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Not affected", "id": 5789651 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Not affected", "id": 5789650 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-hpc:12:sp5", "summary": "SUSE Linux Enterprise High Performance Computing", "version": "12-SP5", "name": "SLE-HPC" }, "relation": "Not affected", "id": 5789647 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles:12:sp5", "summary": "SUSE Linux Enterprise Server", "version": "12-SP5", "name": "SLES" }, "relation": "Not affected", "id": 5789648 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp5", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP5", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5789649 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp5", "summary": "Public Cloud Module", "version": "15-SP5", "name": "sle-module-public-cloud" }, "relation": "Not affected", "id": 5789676 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp6", "summary": "Public Cloud Module", "version": "15-SP6", "name": "sle-module-public-cloud" }, "relation": "Not affected", "id": 5789677 }, { "package": "kernel-source-rt", "codestream": "SUSE:ALP:Source:Standard:1.0", "product": null, "relation": "Not affected", "id": 5789701 }, { "package": "kernel-source-rt", "codestream": "SUSE:Carwos:1", "product": null, "relation": "Not affected", "id": 5789702 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-12-SP5:Update:Products:SLERT:Update", "product": null, "relation": "Not affected", "id": 5789703 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP3:Update:Products:SLERT:Update", "product": null, "relation": "Not affected", "id": 5789704 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP4:Update:Products:SLERT:Update", "product": null, "relation": "Not affected", "id": 5789705 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Not affected", "id": 5789706 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP6:Update:Products:SLERT:Update", "product": null, "relation": "Not affected", "id": 5789707 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLFO:Main", "product": null, "relation": "Not affected", "id": 5789708 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Not affected", "id": 5789658 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Not affected", "id": 5789655 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sl-micro:6.0", "summary": "SUSE Linux Micro", "version": "6.0", "name": "SL-Micro" }, "relation": "Not affected", "id": 5789700 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.5", "summary": "SUSE Linux Enterprise Micro", "version": "5.5", "name": "SLE-Micro" }, "relation": "Not affected", "id": 5789657 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.4", "summary": "SUSE Linux Enterprise Micro", "version": "5.4", "name": "SLE-Micro" }, "relation": "Not affected", "id": 5789656 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.3", "summary": "SUSE Linux Enterprise Micro", "version": "5.3", "name": "SLE-Micro" }, "relation": "Not affected", "id": 5789654 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-linux-enterprise-rt:12:sp5", "summary": "SUSE Linux Enterprise Real Time", "version": "12-SP5", "name": "SUSE-Linux-Enterprise-RT" }, "relation": "Not affected", "id": 5789697 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-microos:5.1", "summary": "SUSE Linux Enterprise Micro", "version": "5.1", "name": "SUSE-MicroOS" }, "relation": "Not affected", "id": 5789652 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-microos:5.2", "summary": "SUSE Linux Enterprise Micro", "version": "5.2", "name": "SUSE-MicroOS" }, "relation": "Not affected", "id": 5789653 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-rt:15:sp5", "summary": "SUSE Real Time Module", "version": "15-SP5", "name": "sle-module-rt" }, "relation": "Not affected", "id": 5789698 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-rt:15:sp6", "summary": "SUSE Real Time Module", "version": "15-SP6", "name": "sle-module-rt" }, "relation": "Not affected", "id": 5789699 } ], "url": "https://smash.suse.de/api/issue/415409", "creation_date": "2024-07-29T18:00:56.683776+02:00", "modified_date": "2024-07-30T12:11:18.051209+02:00", "ts_ignore": null, "ts_analysis": "2024-07-30T09:23:02.178394+02:00", "ts_analyzed": null, "ts_resolved": "2024-07-30T12:11:17.903791+02:00", "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415408, "name": "bnc#1228516", "severity": "moderate", "state": "Analyzed", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415408/", "references": [ { "name": "bnc#1228516", "url": "https://bugzilla.suse.com/show_bug.cgi?id=1228516", "source": "SUSE Bugzilla" }, { "name": "CVE-2024-42077", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-42077", "source": "National Vulnerability Database" }, { "name": "CVE-2024-42077", "url": "https://git.kernel.org/pub/scm/linux/security/vulns.git/plain/cve/published/2024/CVE-2024-42077.mbox", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/320273b5649bbcee87f9e65343077189699d2a7a", "url": "https://git.kernel.org/stable/c/320273b5649bbcee87f9e65343077189699d2a7a", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/331d1079d58206ff7dc5518185f800b412f89bc6", "url": "https://git.kernel.org/stable/c/331d1079d58206ff7dc5518185f800b412f89bc6", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/9ea2d1c6789722d58ec191f14f9a02518d55b6b4", "url": "https://git.kernel.org/stable/c/9ea2d1c6789722d58ec191f14f9a02518d55b6b4", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/a68b896aa56e435506453ec8835bc991ec3ae687", "url": "https://git.kernel.org/stable/c/a68b896aa56e435506453ec8835bc991ec3ae687", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/be346c1a6eeb49d8fda827d2a9522124c2f72f36", "url": "https://git.kernel.org/stable/c/be346c1a6eeb49d8fda827d2a9522124c2f72f36", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/c05ffb693bfb42a48ef3ee88a55b57392984e111", "url": "https://git.kernel.org/stable/c/c05ffb693bfb42a48ef3ee88a55b57392984e111", "source": "Linux Kernel CNA" }, { "name": "rh#2300515", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2300515", "source": "Redhat Bugzilla" }, { "name": "CVE-2024-42077", "url": "https://www.cve.org/CVERecord?id=CVE-2024-42077", "source": "Mitre CVE Database" } ], "user": "crazybyte", "cvss": [ { "id": 431609, "score": 5.5, "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "reference": "CVE-2024-42077", "creation_date": "2024-07-30T22:00:18.224835+02:00", "description": "", "modified_date": "2024-07-30T22:00:18.224854+02:00", "source": "National Vulnerability Database", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-42077", "version": 3.1 }, { "id": 431786, "score": 5.5, "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "reference": "CVE-2024-42077", "creation_date": "2024-07-31T14:02:03.059300+02:00", "description": "", "modified_date": "2024-07-31T14:02:03.059317+02:00", "source": "Redhat", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-42077", "version": 3.1 }, { "id": 432225, "score": 5.5, "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "reference": "CVE-2024-42077", "creation_date": "2024-08-05T12:11:19.989604+02:00", "description": "", "modified_date": "2024-08-05T12:11:19.989621+02:00", "source": "SUSE", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-42077", "version": 3.1 } ], "affected_packages": [ { "package": "kernel-source", "codestream": "SUSE:ALP:Source:Standard:1.0", "product": null, "relation": "Already fixed", "id": 5789603 }, { "package": "kernel-source", "codestream": "SUSE:SLE-11-SP4:Update", "product": null, "relation": "Not affected", "id": 5789604 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP3:Update", "product": null, "relation": "Not affected", "id": 5789605 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP3:Update:Products:Teradata:Update", "product": null, "relation": "Not affected", "id": 5789606 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP4:Update", "product": null, "relation": "Affected", "id": 5789607 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP5:Update", "product": null, "relation": "Affected", "id": 5789608 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP1:Update", "product": null, "relation": "Affected", "id": 5789609 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP2:Update", "product": null, "relation": "Affected", "id": 5789610 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP3:Update", "product": null, "relation": "Affected", "id": 5789611 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP4:Update", "product": null, "relation": "Affected", "id": 5789612 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Affected", "id": 5789613 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP6:Update", "product": null, "relation": "Already fixed", "id": 5789614 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15:Update", "product": null, "relation": "Affected", "id": 5789615 }, { "package": "kernel-source", "codestream": "SUSE:SLFO:Main", "product": null, "relation": "Already fixed", "id": 5789616 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Affected", "id": 5789581 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Already fixed", "id": 5789586 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sl-micro:6.0", "summary": "SUSE Linux Micro", "version": "6.0", "name": "SL-Micro" }, "relation": "Already fixed", "id": 5789602 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-hpc:12:sp5", "summary": "SUSE Linux Enterprise High Performance Computing", "version": "12-SP5", "name": "SLE-HPC" }, "relation": "Affected", "id": 5789560 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles:12:sp5", "summary": "SUSE Linux Enterprise Server", "version": "12-SP5", "name": "SLES" }, "relation": "Affected", "id": 5789561 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp4", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP4", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5789587 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp3", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP3", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5789583 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp2", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP2", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5789566 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp1", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP1", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5789565 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:12:sp4", "summary": "SUSE Linux Enterprise Server LTSS", "version": "12-SP4", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5789568 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5789564 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_ltss_teradata:12:sp3", "summary": "SUSE Linux Enterprise Server Teradata LTSS", "version": "12-SP3", "name": "SLES_LTSS_TERADATA" }, "relation": "Not affected", "id": 5789578 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp4", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP4", "name": "SLES_SAP" }, "relation": "Affected", "id": 5789558 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp5", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP5", "name": "SLES_SAP" }, "relation": "Affected", "id": 5789562 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp2", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP2", "name": "SLES_SAP" }, "relation": "Affected", "id": 5789563 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp3", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP3", "name": "SLES_SAP" }, "relation": "Affected", "id": 5789569 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp4", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP4", "name": "SLES_SAP" }, "relation": "Affected", "id": 5789571 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_teradata:12:sp3", "summary": "SUSE Linux Enterprise Server Teradata", "version": "12-SP3", "name": "SLES_TERADATA" }, "relation": "Not affected", "id": 5789559 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-espos:15:sp4", "summary": "SUSE Linux Enterprise High Performance Computing ESPOS", "version": "15-SP4", "name": "SLE_HPC-ESPOS" }, "relation": "Affected", "id": 5789572 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp3", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP3", "name": "SLE_HPC-LTSS" }, "relation": "Affected", "id": 5789570 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp2", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP2", "name": "SLE_HPC-LTSS" }, "relation": "Affected", "id": 5789567 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp4", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP4", "name": "SLE_HPC-LTSS" }, "relation": "Affected", "id": 5789573 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-proxy:4.3", "summary": "SUSE Manager Proxy", "version": "4.3", "name": "SUSE-Manager-Proxy" }, "relation": "Affected", "id": 5789574 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-retail-branch-server:4.3", "summary": "SUSE Manager Retail Branch Server", "version": "4.3", "name": "SUSE-Manager-Retail-Branch-Server" }, "relation": "Affected", "id": 5789575 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-server:4.3", "summary": "SUSE Manager Server", "version": "4.3", "name": "SUSE-Manager-Server" }, "relation": "Affected", "id": 5789576 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse_sles_ltss:11:sp4", "summary": "SUSE Linux Enterprise Server 11 SP4 LTSS", "version": "11-SP4", "name": "SUSE_SLES_LTSS" }, "relation": "Not affected", "id": 5789557 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse_sles_ltss-extreme-core:11:sp4", "summary": "SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE", "version": "11-SP4", "name": "SUSE_SLES_LTSS-EXTREME-CORE" }, "relation": "Not affected", "id": 5789582 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:ses:7.1", "summary": "SUSE Enterprise Storage", "version": "7.1", "name": "ses" }, "relation": "Affected", "id": 5789577 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-basesystem:15:sp5", "summary": "Basesystem Module", "version": "15-SP5", "name": "sle-module-basesystem" }, "relation": "Affected", "id": 5789580 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-basesystem:15:sp6", "summary": "Basesystem Module", "version": "15-SP6", "name": "sle-module-basesystem" }, "relation": "Already fixed", "id": 5789585 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-development-tools:15:sp6", "summary": "Development Tools Module", "version": "15-SP6", "name": "sle-module-development-tools" }, "relation": "Already fixed", "id": 5789584 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-development-tools:15:sp5", "summary": "Development Tools Module", "version": "15-SP5", "name": "sle-module-development-tools" }, "relation": "Affected", "id": 5789579 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-12-SP5:Update", "product": null, "relation": "Affected", "id": 5789617 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP4:Update", "product": null, "relation": "Unsupported", "id": 5789618 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Affected", "id": 5789619 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP6:Update", "product": null, "relation": "Already fixed", "id": 5789620 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Already fixed", "id": 5789594 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Affected", "id": 5789592 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-hpc:12:sp5", "summary": "SUSE Linux Enterprise High Performance Computing", "version": "12-SP5", "name": "SLE-HPC" }, "relation": "Affected", "id": 5789588 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles:12:sp5", "summary": "SUSE Linux Enterprise Server", "version": "12-SP5", "name": "SLES" }, "relation": "Affected", "id": 5789589 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp5", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP5", "name": "SLES_SAP" }, "relation": "Affected", "id": 5789590 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp6", "summary": "Public Cloud Module", "version": "15-SP6", "name": "sle-module-public-cloud" }, "relation": "Already fixed", "id": 5789593 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp5", "summary": "Public Cloud Module", "version": "15-SP5", "name": "sle-module-public-cloud" }, "relation": "Affected", "id": 5789591 }, { "package": "kernel-source-rt", "codestream": "SUSE:ALP:Source:Standard:1.0", "product": null, "relation": "Already fixed", "id": 5789625 }, { "package": "kernel-source-rt", "codestream": "SUSE:Carwos:1", "product": null, "relation": "Unsupported", "id": 5789626 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-12-SP5:Update:Products:SLERT:Update", "product": null, "relation": "Affected", "id": 5789627 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP3:Update:Products:SLERT:Update", "product": null, "relation": "Affected", "id": 5789628 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP4:Update:Products:SLERT:Update", "product": null, "relation": "Affected", "id": 5789629 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Affected", "id": 5789630 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP6:Update:Products:SLERT:Update", "product": null, "relation": "Already fixed", "id": 5789631 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLFO:Main", "product": null, "relation": "Already fixed", "id": 5789632 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Affected", "id": 5789598 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Already fixed", "id": 5789601 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sl-micro:6.0", "summary": "SUSE Linux Micro", "version": "6.0", "name": "SL-Micro" }, "relation": "Already fixed", "id": 5789624 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.5", "summary": "SUSE Linux Enterprise Micro", "version": "5.5", "name": "SLE-Micro" }, "relation": "Affected", "id": 5789600 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.4", "summary": "SUSE Linux Enterprise Micro", "version": "5.4", "name": "SLE-Micro" }, "relation": "Affected", "id": 5789599 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.3", "summary": "SUSE Linux Enterprise Micro", "version": "5.3", "name": "SLE-Micro" }, "relation": "Affected", "id": 5789597 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-linux-enterprise-rt:12:sp5", "summary": "SUSE Linux Enterprise Real Time", "version": "12-SP5", "name": "SUSE-Linux-Enterprise-RT" }, "relation": "Affected", "id": 5789621 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-microos:5.1", "summary": "SUSE Linux Enterprise Micro", "version": "5.1", "name": "SUSE-MicroOS" }, "relation": "Affected", "id": 5789595 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-microos:5.2", "summary": "SUSE Linux Enterprise Micro", "version": "5.2", "name": "SUSE-MicroOS" }, "relation": "Affected", "id": 5789596 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-rt:15:sp6", "summary": "SUSE Real Time Module", "version": "15-SP6", "name": "sle-module-rt" }, "relation": "Already fixed", "id": 5789623 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-rt:15:sp5", "summary": "SUSE Real Time Module", "version": "15-SP5", "name": "sle-module-rt" }, "relation": "Affected", "id": 5789622 } ], "url": "https://smash.suse.de/api/issue/415408", "creation_date": "2024-07-29T18:00:52.691240+02:00", "modified_date": "2024-08-05T12:11:20.076363+02:00", "ts_ignore": null, "ts_analysis": "2024-07-30T10:51:22.852594+02:00", "ts_analyzed": "2024-07-30T22:00:18.501449+02:00", "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415407, "name": "bnc#1228429", "severity": "moderate", "state": "Resolved", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415407/", "references": [ { "name": "bnc#1228429", "url": "https://bugzilla.suse.com/show_bug.cgi?id=1228429", "source": "SUSE Bugzilla" }, { "name": "CVE-2024-41022", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41022", "source": "National Vulnerability Database" }, { "name": "CVE-2024-41022", "url": "https://git.kernel.org/pub/scm/linux/security/vulns.git/plain/cve/published/2024/CVE-2024-41022.mbox", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/298e2ce222e712ffafa47288c5b2fcf33d72fda3", "url": "https://git.kernel.org/stable/c/298e2ce222e712ffafa47288c5b2fcf33d72fda3", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/3dd9734878a9042f0358301d19a2b006a0fc4d06", "url": "https://git.kernel.org/stable/c/3dd9734878a9042f0358301d19a2b006a0fc4d06", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/4edb0a84e6b32e75dc9bd6dd085b2c2ff19ec287", "url": "https://git.kernel.org/stable/c/4edb0a84e6b32e75dc9bd6dd085b2c2ff19ec287", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/544fa213f15d27f0370795845d55eeb3e00080d2", "url": "https://git.kernel.org/stable/c/544fa213f15d27f0370795845d55eeb3e00080d2", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/6769a23697f17f9bf9365ca8ed62fe37e361a05a", "url": "https://git.kernel.org/stable/c/6769a23697f17f9bf9365ca8ed62fe37e361a05a", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/a5224e2123ce21102f346f518db80f004d5053a7", "url": "https://git.kernel.org/stable/c/a5224e2123ce21102f346f518db80f004d5053a7", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/d347c9a398bf7eab9408d207c0a50fb720f9de7d", "url": "https://git.kernel.org/stable/c/d347c9a398bf7eab9408d207c0a50fb720f9de7d", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/e8dfbf83a82bbfb9680921719fbe65e535af59ea", "url": "https://git.kernel.org/stable/c/e8dfbf83a82bbfb9680921719fbe65e535af59ea", "source": "Linux Kernel CNA" }, { "name": "rh#2300365", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2300365", "source": "Redhat Bugzilla" }, { "name": "CVE-2024-41022", "url": "https://www.cve.org/CVERecord?id=CVE-2024-41022", "source": "Mitre CVE Database" } ], "user": "cmatos", "cvss": [ { "id": 431399, "score": 6, "vector": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:H", "reference": "CVE-2024-41022", "creation_date": "2024-07-29T19:54:44.866023+02:00", "description": "", "modified_date": "2024-07-29T19:54:44.866039+02:00", "source": "SUSE", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41022", "version": 3.1 }, { "id": 431407, "score": 6.8, "vector": "CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N", "reference": "CVE-2024-41022", "creation_date": "2024-07-29T20:02:08.954929+02:00", "description": "", "modified_date": "2024-07-29T20:02:08.954943+02:00", "source": "SUSE", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41022", "version": 4 }, { "id": 431706, "score": 5.5, "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "reference": "CVE-2024-41022", "creation_date": "2024-07-31T14:01:23.495633+02:00", "description": "", "modified_date": "2024-07-31T14:01:23.495649+02:00", "source": "Redhat", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41022", "version": 3.1 } ], "affected_packages": [ { "package": "kernel-source", "codestream": "SUSE:ALP:Source:Standard:1.0", "product": null, "relation": "Already fixed", "id": 5789527 }, { "package": "kernel-source", "codestream": "SUSE:SLE-11-SP4:Update", "product": null, "relation": "Not affected", "id": 5789528 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP3:Update", "product": null, "relation": "Not affected", "id": 5789529 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP3:Update:Products:Teradata:Update", "product": null, "relation": "Not affected", "id": 5789530 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP4:Update", "product": null, "relation": "Not affected", "id": 5789531 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP5:Update", "product": null, "relation": "Not affected", "id": 5789532 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP1:Update", "product": null, "relation": "Not affected", "id": 5789533 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP2:Update", "product": null, "relation": "Not affected", "id": 5789534 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP3:Update", "product": null, "relation": "Not affected", "id": 5789535 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP4:Update", "product": null, "relation": "Not affected", "id": 5789536 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Not affected", "id": 5789537 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP6:Update", "product": null, "relation": "Already fixed", "id": 5789538 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15:Update", "product": null, "relation": "Not affected", "id": 5789539 }, { "package": "kernel-source", "codestream": "SUSE:SLFO:Main", "product": null, "relation": "Already fixed", "id": 5789540 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Already fixed", "id": 5789481 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Not affected", "id": 5789508 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sl-micro:6.0", "summary": "SUSE Linux Micro", "version": "6.0", "name": "SL-Micro" }, "relation": "Already fixed", "id": 5789526 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-hpc:12:sp5", "summary": "SUSE Linux Enterprise High Performance Computing", "version": "12-SP5", "name": "SLE-HPC" }, "relation": "Not affected", "id": 5789487 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles:12:sp5", "summary": "SUSE Linux Enterprise Server", "version": "12-SP5", "name": "SLES" }, "relation": "Not affected", "id": 5789488 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp4", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP4", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789513 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:12:sp4", "summary": "SUSE Linux Enterprise Server LTSS", "version": "12-SP4", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789495 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp2", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP2", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789493 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp1", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP1", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789492 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789491 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp3", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP3", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789510 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_ltss_teradata:12:sp3", "summary": "SUSE Linux Enterprise Server Teradata LTSS", "version": "12-SP3", "name": "SLES_LTSS_TERADATA" }, "relation": "Not affected", "id": 5789505 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp4", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP4", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5789498 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp3", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP3", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5789496 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp2", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP2", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5789490 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp5", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP5", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5789489 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp4", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP4", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5789485 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_teradata:12:sp3", "summary": "SUSE Linux Enterprise Server Teradata", "version": "12-SP3", "name": "SLES_TERADATA" }, "relation": "Not affected", "id": 5789486 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-espos:15:sp4", "summary": "SUSE Linux Enterprise High Performance Computing ESPOS", "version": "15-SP4", "name": "SLE_HPC-ESPOS" }, "relation": "Not affected", "id": 5789499 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp2", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP2", "name": "SLE_HPC-LTSS" }, "relation": "Not affected", "id": 5789494 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp4", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP4", "name": "SLE_HPC-LTSS" }, "relation": "Not affected", "id": 5789500 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp3", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP3", "name": "SLE_HPC-LTSS" }, "relation": "Not affected", "id": 5789497 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-proxy:4.3", "summary": "SUSE Manager Proxy", "version": "4.3", "name": "SUSE-Manager-Proxy" }, "relation": "Not affected", "id": 5789501 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-retail-branch-server:4.3", "summary": "SUSE Manager Retail Branch Server", "version": "4.3", "name": "SUSE-Manager-Retail-Branch-Server" }, "relation": "Not affected", "id": 5789502 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-server:4.3", "summary": "SUSE Manager Server", "version": "4.3", "name": "SUSE-Manager-Server" }, "relation": "Not affected", "id": 5789503 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse_sles_ltss:11:sp4", "summary": "SUSE Linux Enterprise Server 11 SP4 LTSS", "version": "11-SP4", "name": "SUSE_SLES_LTSS" }, "relation": "Not affected", "id": 5789484 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse_sles_ltss-extreme-core:11:sp4", "summary": "SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE", "version": "11-SP4", "name": "SUSE_SLES_LTSS-EXTREME-CORE" }, "relation": "Not affected", "id": 5789509 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:ses:7.1", "summary": "SUSE Enterprise Storage", "version": "7.1", "name": "ses" }, "relation": "Not affected", "id": 5789504 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-basesystem:15:sp5", "summary": "Basesystem Module", "version": "15-SP5", "name": "sle-module-basesystem" }, "relation": "Not affected", "id": 5789507 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-basesystem:15:sp6", "summary": "Basesystem Module", "version": "15-SP6", "name": "sle-module-basesystem" }, "relation": "Already fixed", "id": 5789512 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-development-tools:15:sp6", "summary": "Development Tools Module", "version": "15-SP6", "name": "sle-module-development-tools" }, "relation": "Already fixed", "id": 5789511 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-development-tools:15:sp5", "summary": "Development Tools Module", "version": "15-SP5", "name": "sle-module-development-tools" }, "relation": "Not affected", "id": 5789506 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-12-SP5:Update", "product": null, "relation": "Not affected", "id": 5789541 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP4:Update", "product": null, "relation": "Not affected", "id": 5789542 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Already fixed", "id": 5789543 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP6:Update", "product": null, "relation": "Already fixed", "id": 5789544 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Already fixed", "id": 5789482 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Already fixed", "id": 5789518 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-hpc:12:sp5", "summary": "SUSE Linux Enterprise High Performance Computing", "version": "12-SP5", "name": "SLE-HPC" }, "relation": "Not affected", "id": 5789514 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles:12:sp5", "summary": "SUSE Linux Enterprise Server", "version": "12-SP5", "name": "SLES" }, "relation": "Not affected", "id": 5789515 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp5", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP5", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5789516 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp5", "summary": "Public Cloud Module", "version": "15-SP5", "name": "sle-module-public-cloud" }, "relation": "Already fixed", "id": 5789517 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp6", "summary": "Public Cloud Module", "version": "15-SP6", "name": "sle-module-public-cloud" }, "relation": "Already fixed", "id": 5789519 }, { "package": "kernel-source-rt", "codestream": "SUSE:ALP:Source:Standard:1.0", "product": null, "relation": "Already fixed", "id": 5789549 }, { "package": "kernel-source-rt", "codestream": "SUSE:Carwos:1", "product": null, "relation": "Not affected", "id": 5789550 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-12-SP5:Update:Products:SLERT:Update", "product": null, "relation": "Not affected", "id": 5789551 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP3:Update:Products:SLERT:Update", "product": null, "relation": "Not affected", "id": 5789552 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP4:Update:Products:SLERT:Update", "product": null, "relation": "Not affected", "id": 5789553 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Already fixed", "id": 5789554 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP6:Update:Products:SLERT:Update", "product": null, "relation": "Not affected", "id": 5789555 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLFO:Main", "product": null, "relation": "Already fixed", "id": 5789556 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Already fixed", "id": 5789523 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Not affected", "id": 5789483 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sl-micro:6.0", "summary": "SUSE Linux Micro", "version": "6.0", "name": "SL-Micro" }, "relation": "Already fixed", "id": 5789548 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.4", "summary": "SUSE Linux Enterprise Micro", "version": "5.4", "name": "SLE-Micro" }, "relation": "Not affected", "id": 5789524 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.3", "summary": "SUSE Linux Enterprise Micro", "version": "5.3", "name": "SLE-Micro" }, "relation": "Not affected", "id": 5789522 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.5", "summary": "SUSE Linux Enterprise Micro", "version": "5.5", "name": "SLE-Micro" }, "relation": "Already fixed", "id": 5789525 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-linux-enterprise-rt:12:sp5", "summary": "SUSE Linux Enterprise Real Time", "version": "12-SP5", "name": "SUSE-Linux-Enterprise-RT" }, "relation": "Not affected", "id": 5789545 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-microos:5.2", "summary": "SUSE Linux Enterprise Micro", "version": "5.2", "name": "SUSE-MicroOS" }, "relation": "Not affected", "id": 5789521 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-microos:5.1", "summary": "SUSE Linux Enterprise Micro", "version": "5.1", "name": "SUSE-MicroOS" }, "relation": "Not affected", "id": 5789520 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-rt:15:sp5", "summary": "SUSE Real Time Module", "version": "15-SP5", "name": "sle-module-rt" }, "relation": "Already fixed", "id": 5789546 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-rt:15:sp6", "summary": "SUSE Real Time Module", "version": "15-SP6", "name": "sle-module-rt" }, "relation": "Not affected", "id": 5789547 } ], "url": "https://smash.suse.de/api/issue/415407", "creation_date": "2024-07-29T18:00:48.237124+02:00", "modified_date": "2024-07-29T20:04:26.989708+02:00", "ts_ignore": null, "ts_analysis": "2024-07-29T18:18:24.485420+02:00", "ts_analyzed": null, "ts_resolved": "2024-07-29T20:01:34.919610+02:00", "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415406, "name": "bnc#1228475", "severity": "moderate", "state": "Resolved", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415406/", "references": [ { "name": "bnc#1228475", "url": "https://bugzilla.suse.com/show_bug.cgi?id=1228475", "source": "SUSE Bugzilla" }, { "name": "CVE-2024-42072", "url": "https://git.kernel.org/pub/scm/linux/security/vulns.git/plain/cve/published/2024/CVE-2024-42072.mbox", "source": "Linux Kernel CNA" }, { "name": "CVE-2024-42072", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-42072", "source": "National Vulnerability Database" }, { "name": "https://git.kernel.org/stable/c/175827e04f4be53f3dfb57edf12d0d49b18fd939", "url": "https://git.kernel.org/stable/c/175827e04f4be53f3dfb57edf12d0d49b18fd939", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/2b2efe1937ca9f8815884bd4dcd5b32733025103", "url": "https://git.kernel.org/stable/c/2b2efe1937ca9f8815884bd4dcd5b32733025103", "source": "Linux Kernel CNA" }, { "name": "rh#2300510", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2300510", "source": "Redhat Bugzilla" }, { "name": "CVE-2024-42072", "url": "https://www.cve.org/CVERecord?id=CVE-2024-42072", "source": "Mitre CVE Database" } ], "user": "rfrohl", "cvss": [ { "id": 431513, "score": 5.5, "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "reference": "CVE-2024-42072", "creation_date": "2024-07-30T10:04:09.128159+02:00", "description": "", "modified_date": "2024-07-30T10:04:09.128181+02:00", "source": "SUSE", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-42072", "version": 3.1 }, { "id": 431604, "score": 7.8, "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "reference": "CVE-2024-42072", "creation_date": "2024-07-30T22:00:15.667192+02:00", "description": "", "modified_date": "2024-07-30T22:00:15.667208+02:00", "source": "National Vulnerability Database", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-42072", "version": 3.1 }, { "id": 431781, "score": 5.5, "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "reference": "CVE-2024-42072", "creation_date": "2024-07-31T14:02:00.743409+02:00", "description": "", "modified_date": "2024-07-31T14:02:00.743427+02:00", "source": "Redhat", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-42072", "version": 3.1 } ], "affected_packages": [ { "package": "kernel-source", "codestream": "SUSE:ALP:Source:Standard:1.0", "product": null, "relation": "Not affected", "id": 5789437 }, { "package": "kernel-source", "codestream": "SUSE:SLE-11-SP4:Update", "product": null, "relation": "Not affected", "id": 5789438 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP3:Update", "product": null, "relation": "Not affected", "id": 5789439 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP3:Update:Products:Teradata:Update", "product": null, "relation": "Not affected", "id": 5789440 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP4:Update", "product": null, "relation": "Not affected", "id": 5789441 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP5:Update", "product": null, "relation": "Not affected", "id": 5789442 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP1:Update", "product": null, "relation": "Not affected", "id": 5789443 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP2:Update", "product": null, "relation": "Not affected", "id": 5789444 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP3:Update", "product": null, "relation": "Not affected", "id": 5789445 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP4:Update", "product": null, "relation": "Not affected", "id": 5789446 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Not affected", "id": 5789447 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP6:Update", "product": null, "relation": "Not affected", "id": 5789448 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15:Update", "product": null, "relation": "Not affected", "id": 5789449 }, { "package": "kernel-source", "codestream": "SUSE:SLFO:Main", "product": null, "relation": "Not affected", "id": 5789450 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Not affected", "id": 5789434 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Not affected", "id": 5789429 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sl-micro:6.0", "summary": "SUSE Linux Micro", "version": "6.0", "name": "SL-Micro" }, "relation": "Not affected", "id": 5789436 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-hpc:12:sp5", "summary": "SUSE Linux Enterprise High Performance Computing", "version": "12-SP5", "name": "SLE-HPC" }, "relation": "Not affected", "id": 5789408 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles:12:sp5", "summary": "SUSE Linux Enterprise Server", "version": "12-SP5", "name": "SLES" }, "relation": "Not affected", "id": 5789409 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789412 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp4", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP4", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789435 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp3", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP3", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789431 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:12:sp4", "summary": "SUSE Linux Enterprise Server LTSS", "version": "12-SP4", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789416 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp2", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP2", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789414 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp1", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP1", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789413 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_ltss_teradata:12:sp3", "summary": "SUSE Linux Enterprise Server Teradata LTSS", "version": "12-SP3", "name": "SLES_LTSS_TERADATA" }, "relation": "Not affected", "id": 5789426 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp4", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP4", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5789406 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp4", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP4", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5789419 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp3", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP3", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5789417 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp2", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP2", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5789411 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp5", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP5", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5789410 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_teradata:12:sp3", "summary": "SUSE Linux Enterprise Server Teradata", "version": "12-SP3", "name": "SLES_TERADATA" }, "relation": "Not affected", "id": 5789407 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-espos:15:sp4", "summary": "SUSE Linux Enterprise High Performance Computing ESPOS", "version": "15-SP4", "name": "SLE_HPC-ESPOS" }, "relation": "Not affected", "id": 5789420 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp2", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP2", "name": "SLE_HPC-LTSS" }, "relation": "Not affected", "id": 5789415 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp3", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP3", "name": "SLE_HPC-LTSS" }, "relation": "Not affected", "id": 5789418 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp4", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP4", "name": "SLE_HPC-LTSS" }, "relation": "Not affected", "id": 5789421 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-proxy:4.3", "summary": "SUSE Manager Proxy", "version": "4.3", "name": "SUSE-Manager-Proxy" }, "relation": "Not affected", "id": 5789422 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-retail-branch-server:4.3", "summary": "SUSE Manager Retail Branch Server", "version": "4.3", "name": "SUSE-Manager-Retail-Branch-Server" }, "relation": "Not affected", "id": 5789423 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-server:4.3", "summary": "SUSE Manager Server", "version": "4.3", "name": "SUSE-Manager-Server" }, "relation": "Not affected", "id": 5789424 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse_sles_ltss:11:sp4", "summary": "SUSE Linux Enterprise Server 11 SP4 LTSS", "version": "11-SP4", "name": "SUSE_SLES_LTSS" }, "relation": "Not affected", "id": 5789405 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse_sles_ltss-extreme-core:11:sp4", "summary": "SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE", "version": "11-SP4", "name": "SUSE_SLES_LTSS-EXTREME-CORE" }, "relation": "Not affected", "id": 5789430 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:ses:7.1", "summary": "SUSE Enterprise Storage", "version": "7.1", "name": "ses" }, "relation": "Not affected", "id": 5789425 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-basesystem:15:sp6", "summary": "Basesystem Module", "version": "15-SP6", "name": "sle-module-basesystem" }, "relation": "Not affected", "id": 5789433 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-basesystem:15:sp5", "summary": "Basesystem Module", "version": "15-SP5", "name": "sle-module-basesystem" }, "relation": "Not affected", "id": 5789428 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-development-tools:15:sp5", "summary": "Development Tools Module", "version": "15-SP5", "name": "sle-module-development-tools" }, "relation": "Not affected", "id": 5789427 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-development-tools:15:sp6", "summary": "Development Tools Module", "version": "15-SP6", "name": "sle-module-development-tools" }, "relation": "Not affected", "id": 5789432 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-12-SP5:Update", "product": null, "relation": "Not affected", "id": 5789458 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP4:Update", "product": null, "relation": "Not affected", "id": 5789459 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Not affected", "id": 5789460 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP6:Update", "product": null, "relation": "Not affected", "id": 5789461 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Not affected", "id": 5789455 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Not affected", "id": 5789457 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-hpc:12:sp5", "summary": "SUSE Linux Enterprise High Performance Computing", "version": "12-SP5", "name": "SLE-HPC" }, "relation": "Not affected", "id": 5789451 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles:12:sp5", "summary": "SUSE Linux Enterprise Server", "version": "12-SP5", "name": "SLES" }, "relation": "Not affected", "id": 5789452 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp5", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP5", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5789453 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp5", "summary": "Public Cloud Module", "version": "15-SP5", "name": "sle-module-public-cloud" }, "relation": "Not affected", "id": 5789454 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp6", "summary": "Public Cloud Module", "version": "15-SP6", "name": "sle-module-public-cloud" }, "relation": "Not affected", "id": 5789456 }, { "package": "kernel-source-rt", "codestream": "SUSE:ALP:Source:Standard:1.0", "product": null, "relation": "Not affected", "id": 5789473 }, { "package": "kernel-source-rt", "codestream": "SUSE:Carwos:1", "product": null, "relation": "Not affected", "id": 5789474 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-12-SP5:Update:Products:SLERT:Update", "product": null, "relation": "Not affected", "id": 5789475 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP3:Update:Products:SLERT:Update", "product": null, "relation": "Not affected", "id": 5789476 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP4:Update:Products:SLERT:Update", "product": null, "relation": "Not affected", "id": 5789477 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Not affected", "id": 5789478 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP6:Update:Products:SLERT:Update", "product": null, "relation": "Not affected", "id": 5789479 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLFO:Main", "product": null, "relation": "Not affected", "id": 5789480 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Not affected", "id": 5789471 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Not affected", "id": 5789467 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sl-micro:6.0", "summary": "SUSE Linux Micro", "version": "6.0", "name": "SL-Micro" }, "relation": "Not affected", "id": 5789472 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.5", "summary": "SUSE Linux Enterprise Micro", "version": "5.5", "name": "SLE-Micro" }, "relation": "Not affected", "id": 5789470 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.4", "summary": "SUSE Linux Enterprise Micro", "version": "5.4", "name": "SLE-Micro" }, "relation": "Not affected", "id": 5789468 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.3", "summary": "SUSE Linux Enterprise Micro", "version": "5.3", "name": "SLE-Micro" }, "relation": "Not affected", "id": 5789465 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-linux-enterprise-rt:12:sp5", "summary": "SUSE Linux Enterprise Real Time", "version": "12-SP5", "name": "SUSE-Linux-Enterprise-RT" }, "relation": "Not affected", "id": 5789462 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-microos:5.1", "summary": "SUSE Linux Enterprise Micro", "version": "5.1", "name": "SUSE-MicroOS" }, "relation": "Not affected", "id": 5789463 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-microos:5.2", "summary": "SUSE Linux Enterprise Micro", "version": "5.2", "name": "SUSE-MicroOS" }, "relation": "Not affected", "id": 5789464 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-rt:15:sp5", "summary": "SUSE Real Time Module", "version": "15-SP5", "name": "sle-module-rt" }, "relation": "Not affected", "id": 5789466 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-rt:15:sp6", "summary": "SUSE Real Time Module", "version": "15-SP6", "name": "sle-module-rt" }, "relation": "Not affected", "id": 5789469 } ], "url": "https://smash.suse.de/api/issue/415406", "creation_date": "2024-07-29T18:00:44.538219+02:00", "modified_date": "2024-07-30T10:18:02.829259+02:00", "ts_ignore": null, "ts_analysis": "2024-07-30T09:20:50.190917+02:00", "ts_analyzed": null, "ts_resolved": "2024-07-30T10:18:02.677885+02:00", "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415405, "name": "bnc#1228660", "severity": "moderate", "state": "Resolved", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415405/", "references": [ { "name": "bnc#1228660", "url": "https://bugzilla.suse.com/show_bug.cgi?id=1228660", "source": "SUSE Bugzilla" }, { "name": "CVE-2024-41093", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41093", "source": "National Vulnerability Database" }, { "name": "CVE-2024-41093", "url": "https://git.kernel.org/pub/scm/linux/security/vulns.git/plain/cve/published/2024/CVE-2024-41093.mbox", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/330c8c1453848c04d335bad81371a66710210800", "url": "https://git.kernel.org/stable/c/330c8c1453848c04d335bad81371a66710210800", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/6ce0544cabaa608018d5922ab404dc656a9d8447", "url": "https://git.kernel.org/stable/c/6ce0544cabaa608018d5922ab404dc656a9d8447", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/7f35e01cb0ea4d295f5c067bb5c67dfcddaf05bc", "url": "https://git.kernel.org/stable/c/7f35e01cb0ea4d295f5c067bb5c67dfcddaf05bc", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/bcfa48ff785bd121316592b131ff6531e3e696bb", "url": "https://git.kernel.org/stable/c/bcfa48ff785bd121316592b131ff6531e3e696bb", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/dd9ec0ea4cdde0fc48116e63969fc83e81d7ef46", "url": "https://git.kernel.org/stable/c/dd9ec0ea4cdde0fc48116e63969fc83e81d7ef46", "source": "Linux Kernel CNA" }, { "name": "rh#2300488", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2300488", "source": "Redhat Bugzilla" }, { "name": "CVE-2024-41093", "url": "https://www.cve.org/CVERecord?id=CVE-2024-41093", "source": "Mitre CVE Database" } ], "user": "amattiazzo", "cvss": [ { "id": 431766, "score": 5.5, "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "reference": "CVE-2024-41093", "creation_date": "2024-07-31T14:01:53.386753+02:00", "description": "", "modified_date": "2024-07-31T14:01:53.386771+02:00", "source": "Redhat", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41093", "version": 3.1 }, { "id": 431820, "score": 5.5, "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "reference": "CVE-2024-41093", "creation_date": "2024-07-31T15:31:38.142085+02:00", "description": "", "modified_date": "2024-07-31T15:31:38.142100+02:00", "source": "SUSE", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41093", "version": 3.1 } ], "affected_packages": [ { "package": "kernel-source", "codestream": "SUSE:ALP:Source:Standard:1.0", "product": null, "relation": "Already fixed", "id": 5789363 }, { "package": "kernel-source", "codestream": "SUSE:SLE-11-SP4:Update", "product": null, "relation": "Not affected", "id": 5789364 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP3:Update", "product": null, "relation": "Not affected", "id": 5789365 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP3:Update:Products:Teradata:Update", "product": null, "relation": "Not affected", "id": 5789366 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP4:Update", "product": null, "relation": "Not affected", "id": 5789367 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP5:Update", "product": null, "relation": "Not affected", "id": 5789368 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP1:Update", "product": null, "relation": "Not affected", "id": 5789369 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP2:Update", "product": null, "relation": "Not affected", "id": 5789370 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP3:Update", "product": null, "relation": "Not affected", "id": 5789371 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP4:Update", "product": null, "relation": "Not affected", "id": 5789372 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Already fixed", "id": 5789373 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP6:Update", "product": null, "relation": "Already fixed", "id": 5789374 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15:Update", "product": null, "relation": "Not affected", "id": 5789375 }, { "package": "kernel-source", "codestream": "SUSE:SLFO:Main", "product": null, "relation": "Already fixed", "id": 5789376 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Already fixed", "id": 5789356 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Already fixed", "id": 5789329 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sl-micro:6.0", "summary": "SUSE Linux Micro", "version": "6.0", "name": "SL-Micro" }, "relation": "Already fixed", "id": 5789362 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-hpc:12:sp5", "summary": "SUSE Linux Enterprise High Performance Computing", "version": "12-SP5", "name": "SLE-HPC" }, "relation": "Not affected", "id": 5789335 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles:12:sp5", "summary": "SUSE Linux Enterprise Server", "version": "12-SP5", "name": "SLES" }, "relation": "Not affected", "id": 5789336 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp3", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP3", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789358 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp2", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP2", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789341 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp4", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP4", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789361 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp1", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP1", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789340 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:12:sp4", "summary": "SUSE Linux Enterprise Server LTSS", "version": "12-SP4", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789343 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789339 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_ltss_teradata:12:sp3", "summary": "SUSE Linux Enterprise Server Teradata LTSS", "version": "12-SP3", "name": "SLES_LTSS_TERADATA" }, "relation": "Not affected", "id": 5789353 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp2", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP2", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5789338 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp3", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP3", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5789344 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp5", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP5", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5789337 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp4", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP4", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5789333 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp4", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP4", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5789346 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_teradata:12:sp3", "summary": "SUSE Linux Enterprise Server Teradata", "version": "12-SP3", "name": "SLES_TERADATA" }, "relation": "Not affected", "id": 5789334 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-espos:15:sp4", "summary": "SUSE Linux Enterprise High Performance Computing ESPOS", "version": "15-SP4", "name": "SLE_HPC-ESPOS" }, "relation": "Not affected", "id": 5789347 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp3", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP3", "name": "SLE_HPC-LTSS" }, "relation": "Not affected", "id": 5789345 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp2", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP2", "name": "SLE_HPC-LTSS" }, "relation": "Not affected", "id": 5789342 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp4", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP4", "name": "SLE_HPC-LTSS" }, "relation": "Not affected", "id": 5789348 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-proxy:4.3", "summary": "SUSE Manager Proxy", "version": "4.3", "name": "SUSE-Manager-Proxy" }, "relation": "Not affected", "id": 5789349 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-retail-branch-server:4.3", "summary": "SUSE Manager Retail Branch Server", "version": "4.3", "name": "SUSE-Manager-Retail-Branch-Server" }, "relation": "Not affected", "id": 5789350 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-server:4.3", "summary": "SUSE Manager Server", "version": "4.3", "name": "SUSE-Manager-Server" }, "relation": "Not affected", "id": 5789351 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse_sles_ltss:11:sp4", "summary": "SUSE Linux Enterprise Server 11 SP4 LTSS", "version": "11-SP4", "name": "SUSE_SLES_LTSS" }, "relation": "Not affected", "id": 5789332 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse_sles_ltss-extreme-core:11:sp4", "summary": "SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE", "version": "11-SP4", "name": "SUSE_SLES_LTSS-EXTREME-CORE" }, "relation": "Not affected", "id": 5789357 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:ses:7.1", "summary": "SUSE Enterprise Storage", "version": "7.1", "name": "ses" }, "relation": "Not affected", "id": 5789352 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-basesystem:15:sp5", "summary": "Basesystem Module", "version": "15-SP5", "name": "sle-module-basesystem" }, "relation": "Already fixed", "id": 5789355 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-basesystem:15:sp6", "summary": "Basesystem Module", "version": "15-SP6", "name": "sle-module-basesystem" }, "relation": "Already fixed", "id": 5789360 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-development-tools:15:sp5", "summary": "Development Tools Module", "version": "15-SP5", "name": "sle-module-development-tools" }, "relation": "Already fixed", "id": 5789354 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-development-tools:15:sp6", "summary": "Development Tools Module", "version": "15-SP6", "name": "sle-module-development-tools" }, "relation": "Already fixed", "id": 5789359 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-12-SP5:Update", "product": null, "relation": "Not affected", "id": 5789383 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP4:Update", "product": null, "relation": "Unsupported", "id": 5789384 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Already fixed", "id": 5789385 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP6:Update", "product": null, "relation": "Already fixed", "id": 5789386 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Already fixed", "id": 5789330 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Already fixed", "id": 5789381 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-hpc:12:sp5", "summary": "SUSE Linux Enterprise High Performance Computing", "version": "12-SP5", "name": "SLE-HPC" }, "relation": "Not affected", "id": 5789377 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles:12:sp5", "summary": "SUSE Linux Enterprise Server", "version": "12-SP5", "name": "SLES" }, "relation": "Not affected", "id": 5789378 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp5", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP5", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5789379 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp6", "summary": "Public Cloud Module", "version": "15-SP6", "name": "sle-module-public-cloud" }, "relation": "Already fixed", "id": 5789382 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp5", "summary": "Public Cloud Module", "version": "15-SP5", "name": "sle-module-public-cloud" }, "relation": "Already fixed", "id": 5789380 }, { "package": "kernel-source-rt", "codestream": "SUSE:ALP:Source:Standard:1.0", "product": null, "relation": "Already fixed", "id": 5789397 }, { "package": "kernel-source-rt", "codestream": "SUSE:Carwos:1", "product": null, "relation": "Not affected", "id": 5789398 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-12-SP5:Update:Products:SLERT:Update", "product": null, "relation": "Not affected", "id": 5789399 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP3:Update:Products:SLERT:Update", "product": null, "relation": "Not affected", "id": 5789400 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP4:Update:Products:SLERT:Update", "product": null, "relation": "Not affected", "id": 5789401 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Already fixed", "id": 5789402 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP6:Update:Products:SLERT:Update", "product": null, "relation": "Already fixed", "id": 5789403 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLFO:Main", "product": null, "relation": "Already fixed", "id": 5789404 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Already fixed", "id": 5789331 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Already fixed", "id": 5789392 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sl-micro:6.0", "summary": "SUSE Linux Micro", "version": "6.0", "name": "SL-Micro" }, "relation": "Already fixed", "id": 5789396 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.5", "summary": "SUSE Linux Enterprise Micro", "version": "5.5", "name": "SLE-Micro" }, "relation": "Already fixed", "id": 5789395 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.3", "summary": "SUSE Linux Enterprise Micro", "version": "5.3", "name": "SLE-Micro" }, "relation": "Not affected", "id": 5789390 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.4", "summary": "SUSE Linux Enterprise Micro", "version": "5.4", "name": "SLE-Micro" }, "relation": "Not affected", "id": 5789393 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-linux-enterprise-rt:12:sp5", "summary": "SUSE Linux Enterprise Real Time", "version": "12-SP5", "name": "SUSE-Linux-Enterprise-RT" }, "relation": "Not affected", "id": 5789387 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-microos:5.1", "summary": "SUSE Linux Enterprise Micro", "version": "5.1", "name": "SUSE-MicroOS" }, "relation": "Not affected", "id": 5789388 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-microos:5.2", "summary": "SUSE Linux Enterprise Micro", "version": "5.2", "name": "SUSE-MicroOS" }, "relation": "Not affected", "id": 5789389 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-rt:15:sp5", "summary": "SUSE Real Time Module", "version": "15-SP5", "name": "sle-module-rt" }, "relation": "Already fixed", "id": 5789391 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-rt:15:sp6", "summary": "SUSE Real Time Module", "version": "15-SP6", "name": "sle-module-rt" }, "relation": "Already fixed", "id": 5789394 } ], "url": "https://smash.suse.de/api/issue/415405", "creation_date": "2024-07-29T18:00:41.091629+02:00", "modified_date": "2024-07-31T15:36:08.585144+02:00", "ts_ignore": null, "ts_analysis": "2024-07-31T09:57:25.270086+02:00", "ts_analyzed": "2024-07-31T15:35:48.838008+02:00", "ts_resolved": "2024-07-31T15:36:05.719377+02:00", "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415404, "name": "bnc#1228655", "severity": "low", "state": "Analyzed", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415404/", "references": [ { "name": "bnc#1228655", "url": "https://bugzilla.suse.com/show_bug.cgi?id=1228655", "source": "SUSE Bugzilla" }, { "name": "jsc#CAR-4023", "url": "https://jira.suse.com/browse/CAR-4023", "source": "SUSE Jira" }, { "name": "CVE-2024-41078", "url": "https://git.kernel.org/pub/scm/linux/security/vulns.git/plain/cve/published/2024/CVE-2024-41078.mbox", "source": "Linux Kernel CNA" }, { "name": "CVE-2024-41078", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41078", "source": "National Vulnerability Database" }, { "name": "https://git.kernel.org/stable/c/5ef3961682e5310f2221bae99bcf9f5d0f4b0d51", "url": "https://git.kernel.org/stable/c/5ef3961682e5310f2221bae99bcf9f5d0f4b0d51", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/7dd6a5b96157a21245566b21fd58276a214357ff", "url": "https://git.kernel.org/stable/c/7dd6a5b96157a21245566b21fd58276a214357ff", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/8a69529f22590b67bb018de9acbcf94abc8603cf", "url": "https://git.kernel.org/stable/c/8a69529f22590b67bb018de9acbcf94abc8603cf", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/94818bdb00ef34a996a06aa63d11f591074cb757", "url": "https://git.kernel.org/stable/c/94818bdb00ef34a996a06aa63d11f591074cb757", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/a7e4c6a3031c74078dba7fa36239d0f4fe476c53", "url": "https://git.kernel.org/stable/c/a7e4c6a3031c74078dba7fa36239d0f4fe476c53", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/f88aeff5a173e8ba3133314eb4b964236ef3589d", "url": "https://git.kernel.org/stable/c/f88aeff5a173e8ba3133314eb4b964236ef3589d", "source": "Linux Kernel CNA" }, { "name": "CVE-2024-41078", "url": "https://www.cve.org/CVERecord?id=CVE-2024-41078", "source": "Mitre CVE Database" } ], "user": "amattiazzo", "cvss": [ { "id": 431818, "score": 3.3, "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L", "reference": "CVE-2024-41078", "creation_date": "2024-07-31T14:53:35.315653+02:00", "description": "", "modified_date": "2024-07-31T14:53:35.315671+02:00", "source": "SUSE", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41078", "version": 3.1 } ], "affected_packages": [ { "package": "kernel-source", "codestream": "SUSE:ALP:Source:Standard:1.0", "product": null, "relation": "Affected", "id": 5789287 }, { "package": "kernel-source", "codestream": "SUSE:SLE-11-SP4:Update", "product": null, "relation": "Affected", "id": 5789288 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP3:Update", "product": null, "relation": "Affected", "id": 5789289 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP3:Update:Products:Teradata:Update", "product": null, "relation": "Affected", "id": 5789290 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP4:Update", "product": null, "relation": "Affected", "id": 5789291 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP5:Update", "product": null, "relation": "Affected", "id": 5789292 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP1:Update", "product": null, "relation": "Affected", "id": 5789293 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP2:Update", "product": null, "relation": "Affected", "id": 5789294 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP3:Update", "product": null, "relation": "Affected", "id": 5789295 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP4:Update", "product": null, "relation": "Affected", "id": 5789296 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Affected", "id": 5789297 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP6:Update", "product": null, "relation": "Affected", "id": 5789298 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15:Update", "product": null, "relation": "Affected", "id": 5789299 }, { "package": "kernel-source", "codestream": "SUSE:SLFO:Main", "product": null, "relation": "Affected", "id": 5789300 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Affected", "id": 5789253 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Affected", "id": 5789280 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sl-micro:6.0", "summary": "SUSE Linux Micro", "version": "6.0", "name": "SL-Micro" }, "relation": "Affected", "id": 5789286 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-hpc:12:sp5", "summary": "SUSE Linux Enterprise High Performance Computing", "version": "12-SP5", "name": "SLE-HPC" }, "relation": "Affected", "id": 5789259 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles:12:sp5", "summary": "SUSE Linux Enterprise Server", "version": "12-SP5", "name": "SLES" }, "relation": "Affected", "id": 5789260 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp3", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP3", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5789282 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:12:sp4", "summary": "SUSE Linux Enterprise Server LTSS", "version": "12-SP4", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5789267 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp4", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP4", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5789285 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5789263 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp2", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP2", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5789265 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp1", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP1", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5789264 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_ltss_teradata:12:sp3", "summary": "SUSE Linux Enterprise Server Teradata LTSS", "version": "12-SP3", "name": "SLES_LTSS_TERADATA" }, "relation": "Affected", "id": 5789277 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp2", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP2", "name": "SLES_SAP" }, "relation": "Affected", "id": 5789262 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp3", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP3", "name": "SLES_SAP" }, "relation": "Affected", "id": 5789268 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp4", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP4", "name": "SLES_SAP" }, "relation": "Affected", "id": 5789270 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp5", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP5", "name": "SLES_SAP" }, "relation": "Affected", "id": 5789261 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp4", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP4", "name": "SLES_SAP" }, "relation": "Affected", "id": 5789257 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_teradata:12:sp3", "summary": "SUSE Linux Enterprise Server Teradata", "version": "12-SP3", "name": "SLES_TERADATA" }, "relation": "Affected", "id": 5789258 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-espos:15:sp4", "summary": "SUSE Linux Enterprise High Performance Computing ESPOS", "version": "15-SP4", "name": "SLE_HPC-ESPOS" }, "relation": "Affected", "id": 5789271 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp2", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP2", "name": "SLE_HPC-LTSS" }, "relation": "Affected", "id": 5789266 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp3", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP3", "name": "SLE_HPC-LTSS" }, "relation": "Affected", "id": 5789269 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp4", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP4", "name": "SLE_HPC-LTSS" }, "relation": "Affected", "id": 5789272 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-proxy:4.3", "summary": "SUSE Manager Proxy", "version": "4.3", "name": "SUSE-Manager-Proxy" }, "relation": "Affected", "id": 5789273 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-retail-branch-server:4.3", "summary": "SUSE Manager Retail Branch Server", "version": "4.3", "name": "SUSE-Manager-Retail-Branch-Server" }, "relation": "Affected", "id": 5789274 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-server:4.3", "summary": "SUSE Manager Server", "version": "4.3", "name": "SUSE-Manager-Server" }, "relation": "Affected", "id": 5789275 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse_sles_ltss:11:sp4", "summary": "SUSE Linux Enterprise Server 11 SP4 LTSS", "version": "11-SP4", "name": "SUSE_SLES_LTSS" }, "relation": "Affected", "id": 5789256 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse_sles_ltss-extreme-core:11:sp4", "summary": "SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE", "version": "11-SP4", "name": "SUSE_SLES_LTSS-EXTREME-CORE" }, "relation": "Affected", "id": 5789281 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:ses:7.1", "summary": "SUSE Enterprise Storage", "version": "7.1", "name": "ses" }, "relation": "Affected", "id": 5789276 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-basesystem:15:sp6", "summary": "Basesystem Module", "version": "15-SP6", "name": "sle-module-basesystem" }, "relation": "Affected", "id": 5789284 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-basesystem:15:sp5", "summary": "Basesystem Module", "version": "15-SP5", "name": "sle-module-basesystem" }, "relation": "Affected", "id": 5789279 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-development-tools:15:sp6", "summary": "Development Tools Module", "version": "15-SP6", "name": "sle-module-development-tools" }, "relation": "Affected", "id": 5789283 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-development-tools:15:sp5", "summary": "Development Tools Module", "version": "15-SP5", "name": "sle-module-development-tools" }, "relation": "Affected", "id": 5789278 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-12-SP5:Update", "product": null, "relation": "Affected", "id": 5789307 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP4:Update", "product": null, "relation": "Unsupported", "id": 5789308 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Affected", "id": 5789309 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP6:Update", "product": null, "relation": "Affected", "id": 5789310 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Affected", "id": 5789254 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Affected", "id": 5789305 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-hpc:12:sp5", "summary": "SUSE Linux Enterprise High Performance Computing", "version": "12-SP5", "name": "SLE-HPC" }, "relation": "Affected", "id": 5789301 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles:12:sp5", "summary": "SUSE Linux Enterprise Server", "version": "12-SP5", "name": "SLES" }, "relation": "Affected", "id": 5789302 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp5", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP5", "name": "SLES_SAP" }, "relation": "Affected", "id": 5789303 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp5", "summary": "Public Cloud Module", "version": "15-SP5", "name": "sle-module-public-cloud" }, "relation": "Affected", "id": 5789304 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp6", "summary": "Public Cloud Module", "version": "15-SP6", "name": "sle-module-public-cloud" }, "relation": "Affected", "id": 5789306 }, { "package": "kernel-source-rt", "codestream": "SUSE:ALP:Source:Standard:1.0", "product": null, "relation": "Affected", "id": 5789321 }, { "package": "kernel-source-rt", "codestream": "SUSE:Carwos:1", "product": null, "relation": "Affected", "id": 5789322 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-12-SP5:Update:Products:SLERT:Update", "product": null, "relation": "Affected", "id": 5789323 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP3:Update:Products:SLERT:Update", "product": null, "relation": "Affected", "id": 5789324 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP4:Update:Products:SLERT:Update", "product": null, "relation": "Affected", "id": 5789325 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Affected", "id": 5789326 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP6:Update:Products:SLERT:Update", "product": null, "relation": "Affected", "id": 5789327 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLFO:Main", "product": null, "relation": "Affected", "id": 5789328 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Affected", "id": 5789255 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Affected", "id": 5789316 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sl-micro:6.0", "summary": "SUSE Linux Micro", "version": "6.0", "name": "SL-Micro" }, "relation": "Affected", "id": 5789320 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.3", "summary": "SUSE Linux Enterprise Micro", "version": "5.3", "name": "SLE-Micro" }, "relation": "Affected", "id": 5789314 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.4", "summary": "SUSE Linux Enterprise Micro", "version": "5.4", "name": "SLE-Micro" }, "relation": "Affected", "id": 5789317 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.5", "summary": "SUSE Linux Enterprise Micro", "version": "5.5", "name": "SLE-Micro" }, "relation": "Affected", "id": 5789319 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-linux-enterprise-rt:12:sp5", "summary": "SUSE Linux Enterprise Real Time", "version": "12-SP5", "name": "SUSE-Linux-Enterprise-RT" }, "relation": "Affected", "id": 5789311 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-microos:5.2", "summary": "SUSE Linux Enterprise Micro", "version": "5.2", "name": "SUSE-MicroOS" }, "relation": "Affected", "id": 5789313 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-microos:5.1", "summary": "SUSE Linux Enterprise Micro", "version": "5.1", "name": "SUSE-MicroOS" }, "relation": "Affected", "id": 5789312 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-rt:15:sp5", "summary": "SUSE Real Time Module", "version": "15-SP5", "name": "sle-module-rt" }, "relation": "Affected", "id": 5789315 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-rt:15:sp6", "summary": "SUSE Real Time Module", "version": "15-SP6", "name": "sle-module-rt" }, "relation": "Affected", "id": 5789318 } ], "url": "https://smash.suse.de/api/issue/415404", "creation_date": "2024-07-29T18:00:36.840768+02:00", "modified_date": "2024-07-31T14:56:03.760402+02:00", "ts_ignore": null, "ts_analysis": "2024-07-30T15:24:33.363534+02:00", "ts_analyzed": "2024-07-31T14:56:03.758634+02:00", "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415403, "name": "bnc#1228517", "severity": "moderate", "state": "Resolved", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415403/", "references": [ { "name": "bnc#1228517", "url": "https://bugzilla.suse.com/show_bug.cgi?id=1228517", "source": "SUSE Bugzilla" }, { "name": "CVE-2024-42071", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-42071", "source": "National Vulnerability Database" }, { "name": "CVE-2024-42071", "url": "https://git.kernel.org/pub/scm/linux/security/vulns.git/plain/cve/published/2024/CVE-2024-42071.mbox", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/84b767f9e34fdb143c09e66a2a20722fc2921821", "url": "https://git.kernel.org/stable/c/84b767f9e34fdb143c09e66a2a20722fc2921821", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/ef7646ed49fff962e97b276f4ab91327a67eeb5a", "url": "https://git.kernel.org/stable/c/ef7646ed49fff962e97b276f4ab91327a67eeb5a", "source": "Linux Kernel CNA" }, { "name": "rh#2300509", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2300509", "source": "Redhat Bugzilla" }, { "name": "CVE-2024-42071", "url": "https://www.cve.org/CVERecord?id=CVE-2024-42071", "source": "Mitre CVE Database" } ], "user": "crazybyte", "cvss": [ { "id": 431603, "score": 5.5, "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "reference": "CVE-2024-42071", "creation_date": "2024-07-30T22:00:15.182511+02:00", "description": "", "modified_date": "2024-07-30T22:00:15.182594+02:00", "source": "National Vulnerability Database", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-42071", "version": 3.1 }, { "id": 431780, "score": 5.5, "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "reference": "CVE-2024-42071", "creation_date": "2024-07-31T14:02:00.270587+02:00", "description": "", "modified_date": "2024-07-31T14:02:00.270604+02:00", "source": "Redhat", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-42071", "version": 3.1 } ], "affected_packages": [ { "package": "kernel-source", "codestream": "SUSE:ALP:Source:Standard:1.0", "product": null, "relation": "Not affected", "id": 5789223 }, { "package": "kernel-source", "codestream": "SUSE:SLE-11-SP4:Update", "product": null, "relation": "Not affected", "id": 5789224 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP3:Update", "product": null, "relation": "Not affected", "id": 5789225 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP3:Update:Products:Teradata:Update", "product": null, "relation": "Not affected", "id": 5789226 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP4:Update", "product": null, "relation": "Not affected", "id": 5789227 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP5:Update", "product": null, "relation": "Not affected", "id": 5789228 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP1:Update", "product": null, "relation": "Not affected", "id": 5789229 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP2:Update", "product": null, "relation": "Not affected", "id": 5789230 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP3:Update", "product": null, "relation": "Not affected", "id": 5789231 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP4:Update", "product": null, "relation": "Not affected", "id": 5789232 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Not affected", "id": 5789233 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP6:Update", "product": null, "relation": "Not affected", "id": 5789234 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15:Update", "product": null, "relation": "Not affected", "id": 5789235 }, { "package": "kernel-source", "codestream": "SUSE:SLFO:Main", "product": null, "relation": "Not affected", "id": 5789236 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Not affected", "id": 5789177 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Not affected", "id": 5789204 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sl-micro:6.0", "summary": "SUSE Linux Micro", "version": "6.0", "name": "SL-Micro" }, "relation": "Not affected", "id": 5789222 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-hpc:12:sp5", "summary": "SUSE Linux Enterprise High Performance Computing", "version": "12-SP5", "name": "SLE-HPC" }, "relation": "Not affected", "id": 5789183 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles:12:sp5", "summary": "SUSE Linux Enterprise Server", "version": "12-SP5", "name": "SLES" }, "relation": "Not affected", "id": 5789184 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp1", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP1", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789188 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789187 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp2", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP2", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789189 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp4", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP4", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789209 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp3", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP3", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789206 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:12:sp4", "summary": "SUSE Linux Enterprise Server LTSS", "version": "12-SP4", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789191 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_ltss_teradata:12:sp3", "summary": "SUSE Linux Enterprise Server Teradata LTSS", "version": "12-SP3", "name": "SLES_LTSS_TERADATA" }, "relation": "Not affected", "id": 5789201 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp4", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP4", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5789181 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp2", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP2", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5789186 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp5", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP5", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5789185 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp3", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP3", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5789192 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp4", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP4", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5789194 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_teradata:12:sp3", "summary": "SUSE Linux Enterprise Server Teradata", "version": "12-SP3", "name": "SLES_TERADATA" }, "relation": "Not affected", "id": 5789182 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-espos:15:sp4", "summary": "SUSE Linux Enterprise High Performance Computing ESPOS", "version": "15-SP4", "name": "SLE_HPC-ESPOS" }, "relation": "Not affected", "id": 5789195 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp2", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP2", "name": "SLE_HPC-LTSS" }, "relation": "Not affected", "id": 5789190 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp3", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP3", "name": "SLE_HPC-LTSS" }, "relation": "Not affected", "id": 5789193 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp4", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP4", "name": "SLE_HPC-LTSS" }, "relation": "Not affected", "id": 5789196 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-proxy:4.3", "summary": "SUSE Manager Proxy", "version": "4.3", "name": "SUSE-Manager-Proxy" }, "relation": "Not affected", "id": 5789197 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-retail-branch-server:4.3", "summary": "SUSE Manager Retail Branch Server", "version": "4.3", "name": "SUSE-Manager-Retail-Branch-Server" }, "relation": "Not affected", "id": 5789198 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-server:4.3", "summary": "SUSE Manager Server", "version": "4.3", "name": "SUSE-Manager-Server" }, "relation": "Not affected", "id": 5789199 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse_sles_ltss:11:sp4", "summary": "SUSE Linux Enterprise Server 11 SP4 LTSS", "version": "11-SP4", "name": "SUSE_SLES_LTSS" }, "relation": "Not affected", "id": 5789180 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse_sles_ltss-extreme-core:11:sp4", "summary": "SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE", "version": "11-SP4", "name": "SUSE_SLES_LTSS-EXTREME-CORE" }, "relation": "Not affected", "id": 5789205 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:ses:7.1", "summary": "SUSE Enterprise Storage", "version": "7.1", "name": "ses" }, "relation": "Not affected", "id": 5789200 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-basesystem:15:sp5", "summary": "Basesystem Module", "version": "15-SP5", "name": "sle-module-basesystem" }, "relation": "Not affected", "id": 5789203 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-basesystem:15:sp6", "summary": "Basesystem Module", "version": "15-SP6", "name": "sle-module-basesystem" }, "relation": "Not affected", "id": 5789208 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-development-tools:15:sp6", "summary": "Development Tools Module", "version": "15-SP6", "name": "sle-module-development-tools" }, "relation": "Not affected", "id": 5789207 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-development-tools:15:sp5", "summary": "Development Tools Module", "version": "15-SP5", "name": "sle-module-development-tools" }, "relation": "Not affected", "id": 5789202 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-12-SP5:Update", "product": null, "relation": "Not affected", "id": 5789237 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP4:Update", "product": null, "relation": "Unsupported", "id": 5789238 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Not affected", "id": 5789239 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP6:Update", "product": null, "relation": "Not affected", "id": 5789240 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Not affected", "id": 5789214 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Not affected", "id": 5789178 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-hpc:12:sp5", "summary": "SUSE Linux Enterprise High Performance Computing", "version": "12-SP5", "name": "SLE-HPC" }, "relation": "Not affected", "id": 5789210 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles:12:sp5", "summary": "SUSE Linux Enterprise Server", "version": "12-SP5", "name": "SLES" }, "relation": "Not affected", "id": 5789211 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp5", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP5", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5789212 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp6", "summary": "Public Cloud Module", "version": "15-SP6", "name": "sle-module-public-cloud" }, "relation": "Not affected", "id": 5789215 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp5", "summary": "Public Cloud Module", "version": "15-SP5", "name": "sle-module-public-cloud" }, "relation": "Not affected", "id": 5789213 }, { "package": "kernel-source-rt", "codestream": "SUSE:ALP:Source:Standard:1.0", "product": null, "relation": "Not affected", "id": 5789245 }, { "package": "kernel-source-rt", "codestream": "SUSE:Carwos:1", "product": null, "relation": "Not affected", "id": 5789246 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-12-SP5:Update:Products:SLERT:Update", "product": null, "relation": "Not affected", "id": 5789247 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP3:Update:Products:SLERT:Update", "product": null, "relation": "Not affected", "id": 5789248 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP4:Update:Products:SLERT:Update", "product": null, "relation": "Not affected", "id": 5789249 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Not affected", "id": 5789250 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP6:Update:Products:SLERT:Update", "product": null, "relation": "Not affected", "id": 5789251 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLFO:Main", "product": null, "relation": "Not affected", "id": 5789252 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Not affected", "id": 5789219 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Not affected", "id": 5789179 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sl-micro:6.0", "summary": "SUSE Linux Micro", "version": "6.0", "name": "SL-Micro" }, "relation": "Not affected", "id": 5789244 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.5", "summary": "SUSE Linux Enterprise Micro", "version": "5.5", "name": "SLE-Micro" }, "relation": "Not affected", "id": 5789221 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.3", "summary": "SUSE Linux Enterprise Micro", "version": "5.3", "name": "SLE-Micro" }, "relation": "Not affected", "id": 5789218 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.4", "summary": "SUSE Linux Enterprise Micro", "version": "5.4", "name": "SLE-Micro" }, "relation": "Not affected", "id": 5789220 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-linux-enterprise-rt:12:sp5", "summary": "SUSE Linux Enterprise Real Time", "version": "12-SP5", "name": "SUSE-Linux-Enterprise-RT" }, "relation": "Not affected", "id": 5789241 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-microos:5.2", "summary": "SUSE Linux Enterprise Micro", "version": "5.2", "name": "SUSE-MicroOS" }, "relation": "Not affected", "id": 5789217 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-microos:5.1", "summary": "SUSE Linux Enterprise Micro", "version": "5.1", "name": "SUSE-MicroOS" }, "relation": "Not affected", "id": 5789216 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-rt:15:sp5", "summary": "SUSE Real Time Module", "version": "15-SP5", "name": "sle-module-rt" }, "relation": "Not affected", "id": 5789242 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-rt:15:sp6", "summary": "SUSE Real Time Module", "version": "15-SP6", "name": "sle-module-rt" }, "relation": "Not affected", "id": 5789243 } ], "url": "https://smash.suse.de/api/issue/415403", "creation_date": "2024-07-29T18:00:32.728156+02:00", "modified_date": "2024-07-30T22:00:15.250687+02:00", "ts_ignore": null, "ts_analysis": "2024-07-30T10:51:42.037650+02:00", "ts_analyzed": "2024-07-30T10:51:43.724980+02:00", "ts_resolved": "2024-07-30T10:51:43.882850+02:00", "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415402, "name": "bnc#1228626", "severity": "moderate", "state": "Analyzed", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415402/", "references": [ { "name": "bnc#1228626", "url": "https://bugzilla.suse.com/show_bug.cgi?id=1228626", "source": "SUSE Bugzilla" }, { "name": "jsc#CAR-4016", "url": "https://jira.suse.com/browse/CAR-4016", "source": "SUSE Jira" }, { "name": "CVE-2024-41072", "url": "https://git.kernel.org/pub/scm/linux/security/vulns.git/plain/cve/published/2024/CVE-2024-41072.mbox", "source": "Linux Kernel CNA" }, { "name": "CVE-2024-41072", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41072", "source": "National Vulnerability Database" }, { "name": "https://git.kernel.org/stable/c/001120ff0c9e3557dee9b5ee0d358e0fc189996f", "url": "https://git.kernel.org/stable/c/001120ff0c9e3557dee9b5ee0d358e0fc189996f", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/35cee10ccaee5bd451a480521bbc25dc9f07fa5b", "url": "https://git.kernel.org/stable/c/35cee10ccaee5bd451a480521bbc25dc9f07fa5b", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/6295bad58f988eaafcf0e6f8b198a580398acb3b", "url": "https://git.kernel.org/stable/c/6295bad58f988eaafcf0e6f8b198a580398acb3b", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/6ef09cdc5ba0f93826c09d810c141a8d103a80fc", "url": "https://git.kernel.org/stable/c/6ef09cdc5ba0f93826c09d810c141a8d103a80fc", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/a43cc0558530b6c065976b6b9246f512f8d3593b", "url": "https://git.kernel.org/stable/c/a43cc0558530b6c065976b6b9246f512f8d3593b", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/b02ba9a0b55b762bd04743a22f3d9f9645005e79", "url": "https://git.kernel.org/stable/c/b02ba9a0b55b762bd04743a22f3d9f9645005e79", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/de5fcf757e33596eed32de170ce5a93fa44dd2ac", "url": "https://git.kernel.org/stable/c/de5fcf757e33596eed32de170ce5a93fa44dd2ac", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/fe9644efd86704afe50e56b64b609de340ab7c95", "url": "https://git.kernel.org/stable/c/fe9644efd86704afe50e56b64b609de340ab7c95", "source": "Linux Kernel CNA" }, { "name": "rh#2300449", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2300449", "source": "Redhat Bugzilla" }, { "name": "CVE-2024-41072", "url": "https://www.cve.org/CVERecord?id=CVE-2024-41072", "source": "Mitre CVE Database" } ], "user": "amattiazzo", "cvss": [ { "id": 431652, "score": 4.4, "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N", "reference": "CVE-2024-41072", "creation_date": "2024-07-31T11:55:24.663317+02:00", "description": "", "modified_date": "2024-07-31T11:55:24.663334+02:00", "source": "SUSE", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41072", "version": 3.1 }, { "id": 431754, "score": 5.5, "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "reference": "CVE-2024-41072", "creation_date": "2024-07-31T14:01:47.140549+02:00", "description": "", "modified_date": "2024-07-31T14:01:47.140566+02:00", "source": "Redhat", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41072", "version": 3.1 } ], "affected_packages": [ { "package": "kernel-source", "codestream": "SUSE:ALP:Source:Standard:1.0", "product": null, "relation": "Already fixed", "id": 5789133 }, { "package": "kernel-source", "codestream": "SUSE:SLE-11-SP4:Update", "product": null, "relation": "Affected", "id": 5789134 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP3:Update", "product": null, "relation": "Affected", "id": 5789135 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP3:Update:Products:Teradata:Update", "product": null, "relation": "Affected", "id": 5789136 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP4:Update", "product": null, "relation": "Affected", "id": 5789137 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP5:Update", "product": null, "relation": "Affected", "id": 5789138 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP1:Update", "product": null, "relation": "Affected", "id": 5789139 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP2:Update", "product": null, "relation": "Affected", "id": 5789140 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP3:Update", "product": null, "relation": "Affected", "id": 5789141 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP4:Update", "product": null, "relation": "Affected", "id": 5789142 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Affected", "id": 5789143 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP6:Update", "product": null, "relation": "Already fixed", "id": 5789144 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15:Update", "product": null, "relation": "Affected", "id": 5789145 }, { "package": "kernel-source", "codestream": "SUSE:SLFO:Main", "product": null, "relation": "Already fixed", "id": 5789146 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Affected", "id": 5789125 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Already fixed", "id": 5789130 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sl-micro:6.0", "summary": "SUSE Linux Micro", "version": "6.0", "name": "SL-Micro" }, "relation": "Already fixed", "id": 5789132 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-hpc:12:sp5", "summary": "SUSE Linux Enterprise High Performance Computing", "version": "12-SP5", "name": "SLE-HPC" }, "relation": "Affected", "id": 5789104 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles:12:sp5", "summary": "SUSE Linux Enterprise Server", "version": "12-SP5", "name": "SLES" }, "relation": "Affected", "id": 5789105 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5789108 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp4", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP4", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5789131 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:12:sp4", "summary": "SUSE Linux Enterprise Server LTSS", "version": "12-SP4", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5789112 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp2", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP2", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5789110 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp1", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP1", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5789109 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp3", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP3", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5789127 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_ltss_teradata:12:sp3", "summary": "SUSE Linux Enterprise Server Teradata LTSS", "version": "12-SP3", "name": "SLES_LTSS_TERADATA" }, "relation": "Affected", "id": 5789122 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp4", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP4", "name": "SLES_SAP" }, "relation": "Affected", "id": 5789102 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp2", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP2", "name": "SLES_SAP" }, "relation": "Affected", "id": 5789107 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp3", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP3", "name": "SLES_SAP" }, "relation": "Affected", "id": 5789113 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp4", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP4", "name": "SLES_SAP" }, "relation": "Affected", "id": 5789115 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp5", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP5", "name": "SLES_SAP" }, "relation": "Affected", "id": 5789106 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_teradata:12:sp3", "summary": "SUSE Linux Enterprise Server Teradata", "version": "12-SP3", "name": "SLES_TERADATA" }, "relation": "Affected", "id": 5789103 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-espos:15:sp4", "summary": "SUSE Linux Enterprise High Performance Computing ESPOS", "version": "15-SP4", "name": "SLE_HPC-ESPOS" }, "relation": "Affected", "id": 5789116 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp4", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP4", "name": "SLE_HPC-LTSS" }, "relation": "Affected", "id": 5789117 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp3", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP3", "name": "SLE_HPC-LTSS" }, "relation": "Affected", "id": 5789114 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp2", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP2", "name": "SLE_HPC-LTSS" }, "relation": "Affected", "id": 5789111 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-proxy:4.3", "summary": "SUSE Manager Proxy", "version": "4.3", "name": "SUSE-Manager-Proxy" }, "relation": "Affected", "id": 5789118 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-retail-branch-server:4.3", "summary": "SUSE Manager Retail Branch Server", "version": "4.3", "name": "SUSE-Manager-Retail-Branch-Server" }, "relation": "Affected", "id": 5789119 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-server:4.3", "summary": "SUSE Manager Server", "version": "4.3", "name": "SUSE-Manager-Server" }, "relation": "Affected", "id": 5789120 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse_sles_ltss:11:sp4", "summary": "SUSE Linux Enterprise Server 11 SP4 LTSS", "version": "11-SP4", "name": "SUSE_SLES_LTSS" }, "relation": "Affected", "id": 5789101 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse_sles_ltss-extreme-core:11:sp4", "summary": "SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE", "version": "11-SP4", "name": "SUSE_SLES_LTSS-EXTREME-CORE" }, "relation": "Affected", "id": 5789126 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:ses:7.1", "summary": "SUSE Enterprise Storage", "version": "7.1", "name": "ses" }, "relation": "Affected", "id": 5789121 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-basesystem:15:sp6", "summary": "Basesystem Module", "version": "15-SP6", "name": "sle-module-basesystem" }, "relation": "Already fixed", "id": 5789129 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-basesystem:15:sp5", "summary": "Basesystem Module", "version": "15-SP5", "name": "sle-module-basesystem" }, "relation": "Affected", "id": 5789124 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-development-tools:15:sp6", "summary": "Development Tools Module", "version": "15-SP6", "name": "sle-module-development-tools" }, "relation": "Already fixed", "id": 5789128 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-development-tools:15:sp5", "summary": "Development Tools Module", "version": "15-SP5", "name": "sle-module-development-tools" }, "relation": "Affected", "id": 5789123 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-12-SP5:Update", "product": null, "relation": "Affected", "id": 5789154 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP4:Update", "product": null, "relation": "Unsupported", "id": 5789155 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Affected", "id": 5789156 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP6:Update", "product": null, "relation": "Already fixed", "id": 5789157 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Affected", "id": 5789151 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Already fixed", "id": 5789153 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-hpc:12:sp5", "summary": "SUSE Linux Enterprise High Performance Computing", "version": "12-SP5", "name": "SLE-HPC" }, "relation": "Affected", "id": 5789147 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles:12:sp5", "summary": "SUSE Linux Enterprise Server", "version": "12-SP5", "name": "SLES" }, "relation": "Affected", "id": 5789148 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp5", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP5", "name": "SLES_SAP" }, "relation": "Affected", "id": 5789149 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp5", "summary": "Public Cloud Module", "version": "15-SP5", "name": "sle-module-public-cloud" }, "relation": "Affected", "id": 5789150 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp6", "summary": "Public Cloud Module", "version": "15-SP6", "name": "sle-module-public-cloud" }, "relation": "Already fixed", "id": 5789152 }, { "package": "kernel-source-rt", "codestream": "SUSE:ALP:Source:Standard:1.0", "product": null, "relation": "Already fixed", "id": 5789169 }, { "package": "kernel-source-rt", "codestream": "SUSE:Carwos:1", "product": null, "relation": "Affected", "id": 5789170 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-12-SP5:Update:Products:SLERT:Update", "product": null, "relation": "Affected", "id": 5789171 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP3:Update:Products:SLERT:Update", "product": null, "relation": "Affected", "id": 5789172 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP4:Update:Products:SLERT:Update", "product": null, "relation": "Affected", "id": 5789173 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Affected", "id": 5789174 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP6:Update:Products:SLERT:Update", "product": null, "relation": "Already fixed", "id": 5789175 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLFO:Main", "product": null, "relation": "Already fixed", "id": 5789176 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Already fixed", "id": 5789167 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Affected", "id": 5789163 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sl-micro:6.0", "summary": "SUSE Linux Micro", "version": "6.0", "name": "SL-Micro" }, "relation": "Already fixed", "id": 5789168 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.5", "summary": "SUSE Linux Enterprise Micro", "version": "5.5", "name": "SLE-Micro" }, "relation": "Affected", "id": 5789166 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.3", "summary": "SUSE Linux Enterprise Micro", "version": "5.3", "name": "SLE-Micro" }, "relation": "Affected", "id": 5789161 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.4", "summary": "SUSE Linux Enterprise Micro", "version": "5.4", "name": "SLE-Micro" }, "relation": "Affected", "id": 5789164 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-linux-enterprise-rt:12:sp5", "summary": "SUSE Linux Enterprise Real Time", "version": "12-SP5", "name": "SUSE-Linux-Enterprise-RT" }, "relation": "Affected", "id": 5789158 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-microos:5.2", "summary": "SUSE Linux Enterprise Micro", "version": "5.2", "name": "SUSE-MicroOS" }, "relation": "Affected", "id": 5789160 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-microos:5.1", "summary": "SUSE Linux Enterprise Micro", "version": "5.1", "name": "SUSE-MicroOS" }, "relation": "Affected", "id": 5789159 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-rt:15:sp6", "summary": "SUSE Real Time Module", "version": "15-SP6", "name": "sle-module-rt" }, "relation": "Already fixed", "id": 5789165 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-rt:15:sp5", "summary": "SUSE Real Time Module", "version": "15-SP5", "name": "sle-module-rt" }, "relation": "Affected", "id": 5789162 } ], "url": "https://smash.suse.de/api/issue/415402", "creation_date": "2024-07-29T18:00:27.883171+02:00", "modified_date": "2024-07-31T13:04:35.556966+02:00", "ts_ignore": null, "ts_analysis": "2024-07-30T15:24:27.816950+02:00", "ts_analyzed": "2024-07-31T13:04:35.360079+02:00", "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415401, "name": "bnc#1228565", "severity": "moderate", "state": "Analyzed", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415401/", "references": [ { "name": "bnc#1228565", "url": "https://bugzilla.suse.com/show_bug.cgi?id=1228565", "source": "SUSE Bugzilla" }, { "name": "jsc#CAR-4007", "url": "https://jira.suse.com/browse/CAR-4007", "source": "SUSE Jira" }, { "name": "CVE-2024-41048", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41048", "source": "National Vulnerability Database" }, { "name": "CVE-2024-41048", "url": "https://git.kernel.org/pub/scm/linux/security/vulns.git/plain/cve/published/2024/CVE-2024-41048.mbox", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/195b7bcdfc5adc5b2468f279dd9eb7eebd2e7632", "url": "https://git.kernel.org/stable/c/195b7bcdfc5adc5b2468f279dd9eb7eebd2e7632", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/b180739b45a38b4caa88fe16bb5273072e6613dc", "url": "https://git.kernel.org/stable/c/b180739b45a38b4caa88fe16bb5273072e6613dc", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/f0c18025693707ec344a70b6887f7450bf4c826b", "url": "https://git.kernel.org/stable/c/f0c18025693707ec344a70b6887f7450bf4c826b", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/f8bd689f37f4198a4c61c4684f591ba639595b97", "url": "https://git.kernel.org/stable/c/f8bd689f37f4198a4c61c4684f591ba639595b97", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/fb61d7b9fb6ef0032de469499a54dab4c7260d0d", "url": "https://git.kernel.org/stable/c/fb61d7b9fb6ef0032de469499a54dab4c7260d0d", "source": "Linux Kernel CNA" }, { "name": "rh#2300419", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2300419", "source": "Redhat Bugzilla" }, { "name": "CVE-2024-41048", "url": "https://www.cve.org/CVERecord?id=CVE-2024-41048", "source": "Mitre CVE Database" } ], "user": "amattiazzo", "cvss": [ { "id": 431554, "score": 6.5, "vector": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "reference": "CVE-2024-41048", "creation_date": "2024-07-30T15:39:02.029663+02:00", "description": "", "modified_date": "2024-07-30T15:39:51.800780+02:00", "source": "SUSE", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41048", "version": 3.1 }, { "id": 431732, "score": 5.5, "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "reference": "CVE-2024-41048", "creation_date": "2024-07-31T14:01:36.175957+02:00", "description": "", "modified_date": "2024-07-31T14:01:36.175973+02:00", "source": "Redhat", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41048", "version": 3.1 } ], "affected_packages": [ { "package": "kernel-source", "codestream": "SUSE:ALP:Source:Standard:1.0", "product": null, "relation": "Affected", "id": 5789071 }, { "package": "kernel-source", "codestream": "SUSE:SLE-11-SP4:Update", "product": null, "relation": "Not affected", "id": 5789072 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP3:Update", "product": null, "relation": "Not affected", "id": 5789073 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP3:Update:Products:Teradata:Update", "product": null, "relation": "Not affected", "id": 5789074 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP4:Update", "product": null, "relation": "Not affected", "id": 5789075 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP5:Update", "product": null, "relation": "Affected", "id": 5789076 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP1:Update", "product": null, "relation": "Affected", "id": 5789077 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP2:Update", "product": null, "relation": "Affected", "id": 5789078 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP3:Update", "product": null, "relation": "Affected", "id": 5789079 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP4:Update", "product": null, "relation": "Affected", "id": 5789080 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Affected", "id": 5789081 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP6:Update", "product": null, "relation": "Affected", "id": 5789082 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15:Update", "product": null, "relation": "Not affected", "id": 5789083 }, { "package": "kernel-source", "codestream": "SUSE:SLFO:Main", "product": null, "relation": "Affected", "id": 5789084 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Affected", "id": 5789049 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Affected", "id": 5789054 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sl-micro:6.0", "summary": "SUSE Linux Micro", "version": "6.0", "name": "SL-Micro" }, "relation": "Affected", "id": 5789070 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-hpc:12:sp5", "summary": "SUSE Linux Enterprise High Performance Computing", "version": "12-SP5", "name": "SLE-HPC" }, "relation": "Affected", "id": 5789028 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles:12:sp5", "summary": "SUSE Linux Enterprise Server", "version": "12-SP5", "name": "SLES" }, "relation": "Affected", "id": 5789029 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp4", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP4", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5789055 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789032 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp2", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP2", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5789034 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp1", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP1", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5789033 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:12:sp4", "summary": "SUSE Linux Enterprise Server LTSS", "version": "12-SP4", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5789036 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp3", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP3", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5789051 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_ltss_teradata:12:sp3", "summary": "SUSE Linux Enterprise Server Teradata LTSS", "version": "12-SP3", "name": "SLES_LTSS_TERADATA" }, "relation": "Not affected", "id": 5789046 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp5", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP5", "name": "SLES_SAP" }, "relation": "Affected", "id": 5789030 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp4", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP4", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5789026 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp2", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP2", "name": "SLES_SAP" }, "relation": "Affected", "id": 5789031 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp3", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP3", "name": "SLES_SAP" }, "relation": "Affected", "id": 5789037 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp4", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP4", "name": "SLES_SAP" }, "relation": "Affected", "id": 5789039 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_teradata:12:sp3", "summary": "SUSE Linux Enterprise Server Teradata", "version": "12-SP3", "name": "SLES_TERADATA" }, "relation": "Not affected", "id": 5789027 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-espos:15:sp4", "summary": "SUSE Linux Enterprise High Performance Computing ESPOS", "version": "15-SP4", "name": "SLE_HPC-ESPOS" }, "relation": "Affected", "id": 5789040 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp3", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP3", "name": "SLE_HPC-LTSS" }, "relation": "Affected", "id": 5789038 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp4", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP4", "name": "SLE_HPC-LTSS" }, "relation": "Affected", "id": 5789041 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp2", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP2", "name": "SLE_HPC-LTSS" }, "relation": "Affected", "id": 5789035 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-proxy:4.3", "summary": "SUSE Manager Proxy", "version": "4.3", "name": "SUSE-Manager-Proxy" }, "relation": "Affected", "id": 5789042 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-retail-branch-server:4.3", "summary": "SUSE Manager Retail Branch Server", "version": "4.3", "name": "SUSE-Manager-Retail-Branch-Server" }, "relation": "Affected", "id": 5789043 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-server:4.3", "summary": "SUSE Manager Server", "version": "4.3", "name": "SUSE-Manager-Server" }, "relation": "Affected", "id": 5789044 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse_sles_ltss:11:sp4", "summary": "SUSE Linux Enterprise Server 11 SP4 LTSS", "version": "11-SP4", "name": "SUSE_SLES_LTSS" }, "relation": "Not affected", "id": 5789025 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse_sles_ltss-extreme-core:11:sp4", "summary": "SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE", "version": "11-SP4", "name": "SUSE_SLES_LTSS-EXTREME-CORE" }, "relation": "Not affected", "id": 5789050 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:ses:7.1", "summary": "SUSE Enterprise Storage", "version": "7.1", "name": "ses" }, "relation": "Affected", "id": 5789045 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-basesystem:15:sp6", "summary": "Basesystem Module", "version": "15-SP6", "name": "sle-module-basesystem" }, "relation": "Affected", "id": 5789053 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-basesystem:15:sp5", "summary": "Basesystem Module", "version": "15-SP5", "name": "sle-module-basesystem" }, "relation": "Affected", "id": 5789048 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-development-tools:15:sp6", "summary": "Development Tools Module", "version": "15-SP6", "name": "sle-module-development-tools" }, "relation": "Affected", "id": 5789052 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-development-tools:15:sp5", "summary": "Development Tools Module", "version": "15-SP5", "name": "sle-module-development-tools" }, "relation": "Affected", "id": 5789047 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-12-SP5:Update", "product": null, "relation": "Affected", "id": 5789085 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP4:Update", "product": null, "relation": "Unsupported", "id": 5789086 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Affected", "id": 5789087 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP6:Update", "product": null, "relation": "Affected", "id": 5789088 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Affected", "id": 5789062 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Affected", "id": 5789060 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-hpc:12:sp5", "summary": "SUSE Linux Enterprise High Performance Computing", "version": "12-SP5", "name": "SLE-HPC" }, "relation": "Affected", "id": 5789056 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles:12:sp5", "summary": "SUSE Linux Enterprise Server", "version": "12-SP5", "name": "SLES" }, "relation": "Affected", "id": 5789057 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp5", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP5", "name": "SLES_SAP" }, "relation": "Affected", "id": 5789058 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp6", "summary": "Public Cloud Module", "version": "15-SP6", "name": "sle-module-public-cloud" }, "relation": "Affected", "id": 5789061 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp5", "summary": "Public Cloud Module", "version": "15-SP5", "name": "sle-module-public-cloud" }, "relation": "Affected", "id": 5789059 }, { "package": "kernel-source-rt", "codestream": "SUSE:ALP:Source:Standard:1.0", "product": null, "relation": "Affected", "id": 5789093 }, { "package": "kernel-source-rt", "codestream": "SUSE:Carwos:1", "product": null, "relation": "Affected", "id": 5789094 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-12-SP5:Update:Products:SLERT:Update", "product": null, "relation": "Affected", "id": 5789095 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP3:Update:Products:SLERT:Update", "product": null, "relation": "Affected", "id": 5789096 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP4:Update:Products:SLERT:Update", "product": null, "relation": "Affected", "id": 5789097 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Affected", "id": 5789098 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP6:Update:Products:SLERT:Update", "product": null, "relation": "Affected", "id": 5789099 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLFO:Main", "product": null, "relation": "Affected", "id": 5789100 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Affected", "id": 5789066 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Affected", "id": 5789069 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sl-micro:6.0", "summary": "SUSE Linux Micro", "version": "6.0", "name": "SL-Micro" }, "relation": "Affected", "id": 5789092 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.5", "summary": "SUSE Linux Enterprise Micro", "version": "5.5", "name": "SLE-Micro" }, "relation": "Affected", "id": 5789068 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.3", "summary": "SUSE Linux Enterprise Micro", "version": "5.3", "name": "SLE-Micro" }, "relation": "Affected", "id": 5789065 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.4", "summary": "SUSE Linux Enterprise Micro", "version": "5.4", "name": "SLE-Micro" }, "relation": "Affected", "id": 5789067 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-linux-enterprise-rt:12:sp5", "summary": "SUSE Linux Enterprise Real Time", "version": "12-SP5", "name": "SUSE-Linux-Enterprise-RT" }, "relation": "Affected", "id": 5789089 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-microos:5.1", "summary": "SUSE Linux Enterprise Micro", "version": "5.1", "name": "SUSE-MicroOS" }, "relation": "Affected", "id": 5789063 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-microos:5.2", "summary": "SUSE Linux Enterprise Micro", "version": "5.2", "name": "SUSE-MicroOS" }, "relation": "Affected", "id": 5789064 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-rt:15:sp6", "summary": "SUSE Real Time Module", "version": "15-SP6", "name": "sle-module-rt" }, "relation": "Affected", "id": 5789091 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-rt:15:sp5", "summary": "SUSE Real Time Module", "version": "15-SP5", "name": "sle-module-rt" }, "relation": "Affected", "id": 5789090 } ], "url": "https://smash.suse.de/api/issue/415401", "creation_date": "2024-07-29T18:00:23.042707+02:00", "modified_date": "2024-07-30T15:40:35.238542+02:00", "ts_ignore": null, "ts_analysis": "2024-07-30T09:08:45.491030+02:00", "ts_analyzed": "2024-07-30T15:40:35.236258+02:00", "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415400, "name": "CVE-2024-7200", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415400/", "references": [ { "name": "CVE-2024-7200", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-7200", "source": "National Vulnerability Database" }, { "name": "CVE-2024-7200", "url": "https://www.cve.org/CVERecord?id=CVE-2024-7200", "source": "Mitre CVE Database" }, { "name": "https://gist.github.com/topsky979/e8b6651dd46922157920c8ed2305efd5", "url": "https://gist.github.com/topsky979/e8b6651dd46922157920c8ed2305efd5", "source": "URL" }, { "name": "https://vuldb.com/?ctiid.272621", "url": "https://vuldb.com/?ctiid.272621", "source": "URL" }, { "name": "https://vuldb.com/?id.272621", "url": "https://vuldb.com/?id.272621", "source": "URL" }, { "name": "https://vuldb.com/?submit.380422", "url": "https://vuldb.com/?submit.380422", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415400", "creation_date": "2024-07-29T16:00:06.488891+02:00", "modified_date": "2024-07-29T16:02:56.323635+02:00", "ts_ignore": "2024-07-29T16:02:56.177830+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415399, "name": "CVE-2024-7199", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415399/", "references": [ { "name": "CVE-2024-7199", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-7199", "source": "National Vulnerability Database" }, { "name": "CVE-2024-7199", "url": "https://www.cve.org/CVERecord?id=CVE-2024-7199", "source": "Mitre CVE Database" }, { "name": "https://gist.github.com/topsky979/75ba3db98584b13d65d874e4fcac154b", "url": "https://gist.github.com/topsky979/75ba3db98584b13d65d874e4fcac154b", "source": "URL" }, { "name": "https://vuldb.com/?ctiid.272620", "url": "https://vuldb.com/?ctiid.272620", "source": "URL" }, { "name": "https://vuldb.com/?id.272620", "url": "https://vuldb.com/?id.272620", "source": "URL" }, { "name": "https://vuldb.com/?submit.380421", "url": "https://vuldb.com/?submit.380421", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415399", "creation_date": "2024-07-29T16:00:05.887876+02:00", "modified_date": "2024-07-29T16:02:56.870113+02:00", "ts_ignore": "2024-07-29T16:02:56.719493+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415398, "name": "CVE-2024-6881", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415398/", "references": [ { "name": "CVE-2024-6881", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-6881", "source": "National Vulnerability Database" }, { "name": "CVE-2024-6881", "url": "https://www.cve.org/CVERecord?id=CVE-2024-6881", "source": "Mitre CVE Database" }, { "name": "https://www.m-files.com/about/trust-center/security-advisories/cve-2024-6881/", "url": "https://www.m-files.com/about/trust-center/security-advisories/cve-2024-6881/", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415398", "creation_date": "2024-07-29T16:00:05.420281+02:00", "modified_date": "2024-07-29T16:02:49.615299+02:00", "ts_ignore": "2024-07-29T16:02:49.463888+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415397, "name": "CVE-2024-6124", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415397/", "references": [ { "name": "CVE-2024-6124", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-6124", "source": "National Vulnerability Database" }, { "name": "CVE-2024-6124", "url": "https://www.cve.org/CVERecord?id=CVE-2024-6124", "source": "Mitre CVE Database" }, { "name": "https://www.m-files.com/about/trust-center/security-advisories/cve-2024-6124/", "url": "https://www.m-files.com/about/trust-center/security-advisories/cve-2024-6124/", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415397", "creation_date": "2024-07-29T16:00:04.983579+02:00", "modified_date": "2024-07-29T16:02:48.644168+02:00", "ts_ignore": "2024-07-29T16:02:48.507272+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415396, "name": "CVE-2024-7198", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415396/", "references": [ { "name": "CVE-2024-7198", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-7198", "source": "National Vulnerability Database" }, { "name": "CVE-2024-7198", "url": "https://www.cve.org/CVERecord?id=CVE-2024-7198", "source": "Mitre CVE Database" }, { "name": "https://gist.github.com/topsky979/424d2ac58623b0fb4d5232a4ecbe5110", "url": "https://gist.github.com/topsky979/424d2ac58623b0fb4d5232a4ecbe5110", "source": "URL" }, { "name": "https://vuldb.com/?ctiid.272619", "url": "https://vuldb.com/?ctiid.272619", "source": "URL" }, { "name": "https://vuldb.com/?id.272619", "url": "https://vuldb.com/?id.272619", "source": "URL" }, { "name": "https://vuldb.com/?submit.380420", "url": "https://vuldb.com/?submit.380420", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415396", "creation_date": "2024-07-29T16:00:04.327062+02:00", "modified_date": "2024-07-29T16:02:57.319951+02:00", "ts_ignore": "2024-07-29T16:02:57.156388+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415395, "name": "CVE-2024-7197", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415395/", "references": [ { "name": "CVE-2024-7197", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-7197", "source": "National Vulnerability Database" }, { "name": "CVE-2024-7197", "url": "https://www.cve.org/CVERecord?id=CVE-2024-7197", "source": "Mitre CVE Database" }, { "name": "https://gist.github.com/topsky979/756e52cd9cd53ddc78801d322c69b5f2", "url": "https://gist.github.com/topsky979/756e52cd9cd53ddc78801d322c69b5f2", "source": "URL" }, { "name": "https://vuldb.com/?ctiid.272618", "url": "https://vuldb.com/?ctiid.272618", "source": "URL" }, { "name": "https://vuldb.com/?id.272618", "url": "https://vuldb.com/?id.272618", "source": "URL" }, { "name": "https://vuldb.com/?submit.380409", "url": "https://vuldb.com/?submit.380409", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415395", "creation_date": "2024-07-29T16:00:03.729626+02:00", "modified_date": "2024-07-29T16:02:57.841722+02:00", "ts_ignore": "2024-07-29T16:02:57.694352+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415393, "name": "CVE-2024-7196", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415393/", "references": [ { "name": "CVE-2024-7196", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-7196", "source": "National Vulnerability Database" }, { "name": "CVE-2024-7196", "url": "https://www.cve.org/CVERecord?id=CVE-2024-7196", "source": "Mitre CVE Database" }, { "name": "https://gist.github.com/topsky979/7c314add775caa87b4db700e0bef7f35", "url": "https://gist.github.com/topsky979/7c314add775caa87b4db700e0bef7f35", "source": "URL" }, { "name": "https://vuldb.com/?ctiid.272617", "url": "https://vuldb.com/?ctiid.272617", "source": "URL" }, { "name": "https://vuldb.com/?id.272617", "url": "https://vuldb.com/?id.272617", "source": "URL" }, { "name": "https://vuldb.com/?submit.380408", "url": "https://vuldb.com/?submit.380408", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415393", "creation_date": "2024-07-29T14:00:04.822146+02:00", "modified_date": "2024-07-29T14:02:05.302536+02:00", "ts_ignore": "2024-07-29T14:02:05.150926+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415392, "name": "CVE-2024-7195", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415392/", "references": [ { "name": "CVE-2024-7195", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-7195", "source": "National Vulnerability Database" }, { "name": "CVE-2024-7195", "url": "https://www.cve.org/CVERecord?id=CVE-2024-7195", "source": "Mitre CVE Database" }, { "name": "https://github.com/DeepMountains/Mirage/blob/main/CVE7-2.md", "url": "https://github.com/DeepMountains/Mirage/blob/main/CVE7-2.md", "source": "OpenSSL Git" }, { "name": "https://vuldb.com/?ctiid.272616", "url": "https://vuldb.com/?ctiid.272616", "source": "URL" }, { "name": "https://vuldb.com/?id.272616", "url": "https://vuldb.com/?id.272616", "source": "URL" }, { "name": "https://vuldb.com/?submit.380384", "url": "https://vuldb.com/?submit.380384", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415392", "creation_date": "2024-07-29T14:00:04.346318+02:00", "modified_date": "2024-07-29T14:02:03.980239+02:00", "ts_ignore": "2024-07-29T14:02:03.818443+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415391, "name": "CVE-2024-6761", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415391/", "references": [ { "name": "CVE-2024-6761", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-6761", "source": "National Vulnerability Database" }, { "name": "CVE-2024-6761", "url": "https://www.cve.org/CVERecord?id=CVE-2024-6761", "source": "Mitre CVE Database" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415391", "creation_date": "2024-07-29T14:00:03.880087+02:00", "modified_date": "2024-07-29T14:01:51.932665+02:00", "ts_ignore": "2024-07-29T14:01:51.814507+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415390, "name": "CVE-2024-4848", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415390/", "references": [ { "name": "CVE-2024-4848", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-4848", "source": "National Vulnerability Database" }, { "name": "CVE-2024-4848", "url": "https://www.cve.org/CVERecord?id=CVE-2024-4848", "source": "Mitre CVE Database" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415390", "creation_date": "2024-07-29T14:00:03.414979+02:00", "modified_date": "2024-07-29T14:01:48.465423+02:00", "ts_ignore": "2024-07-29T14:01:48.287653+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415389, "name": "CVE-2024-7194", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415389/", "references": [ { "name": "CVE-2024-7194", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-7194", "source": "National Vulnerability Database" }, { "name": "CVE-2024-7194", "url": "https://www.cve.org/CVERecord?id=CVE-2024-7194", "source": "Mitre CVE Database" }, { "name": "https://github.com/DeepMountains/Mirage/blob/main/CVE7-1.md", "url": "https://github.com/DeepMountains/Mirage/blob/main/CVE7-1.md", "source": "OpenSSL Git" }, { "name": "https://vuldb.com/?ctiid.272615", "url": "https://vuldb.com/?ctiid.272615", "source": "URL" }, { "name": "https://vuldb.com/?id.272615", "url": "https://vuldb.com/?id.272615", "source": "URL" }, { "name": "https://vuldb.com/?submit.380383", "url": "https://vuldb.com/?submit.380383", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415389", "creation_date": "2024-07-29T14:00:02.954724+02:00", "modified_date": "2024-07-29T14:02:02.372091+02:00", "ts_ignore": "2024-07-29T14:02:02.197180+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415388, "name": "CVE-2024-7193", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415388/", "references": [ { "name": "CVE-2024-7193", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-7193", "source": "National Vulnerability Database" }, { "name": "CVE-2024-7193", "url": "https://www.cve.org/CVERecord?id=CVE-2024-7193", "source": "Mitre CVE Database" }, { "name": "https://app.any.run/tasks/37401db6-5584-4f21-8cc5-73240c4ea2dc/", "url": "https://app.any.run/tasks/37401db6-5584-4f21-8cc5-73240c4ea2dc/", "source": "URL" }, { "name": "https://community.mp3tag.de/t/mp3tag-development-build-status/455/1", "url": "https://community.mp3tag.de/t/mp3tag-development-build-status/455/1", "source": "URL" }, { "name": "https://vuldb.com/?ctiid.272614", "url": "https://vuldb.com/?ctiid.272614", "source": "URL" }, { "name": "https://vuldb.com/?id.272614", "url": "https://vuldb.com/?id.272614", "source": "URL" }, { "name": "https://vuldb.com/?submit.379523", "url": "https://vuldb.com/?submit.379523", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415388", "creation_date": "2024-07-29T14:00:02.442120+02:00", "modified_date": "2024-07-29T14:02:01.091826+02:00", "ts_ignore": "2024-07-29T14:02:00.945559+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415387, "name": "CVE-2024-7192", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415387/", "references": [ { "name": "CVE-2024-7192", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-7192", "source": "National Vulnerability Database" }, { "name": "CVE-2024-7192", "url": "https://www.cve.org/CVERecord?id=CVE-2024-7192", "source": "Mitre CVE Database" }, { "name": "https://github.com/DeepMountains/Mirage/blob/main/CVE7-6.md", "url": "https://github.com/DeepMountains/Mirage/blob/main/CVE7-6.md", "source": "OpenSSL Git" }, { "name": "https://vuldb.com/?ctiid.272613", "url": "https://vuldb.com/?ctiid.272613", "source": "URL" }, { "name": "https://vuldb.com/?id.272613", "url": "https://vuldb.com/?id.272613", "source": "URL" }, { "name": "https://vuldb.com/?submit.380387", "url": "https://vuldb.com/?submit.380387", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415387", "creation_date": "2024-07-29T12:00:07.302209+02:00", "modified_date": "2024-07-29T12:00:21.883800+02:00", "ts_ignore": "2024-07-29T12:00:21.723088+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415386, "name": "CVE-2024-7191", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415386/", "references": [ { "name": "CVE-2024-7191", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-7191", "source": "National Vulnerability Database" }, { "name": "CVE-2024-7191", "url": "https://www.cve.org/CVERecord?id=CVE-2024-7191", "source": "Mitre CVE Database" }, { "name": "https://github.com/DeepMountains/Mirage/blob/main/CVE7-5.md", "url": "https://github.com/DeepMountains/Mirage/blob/main/CVE7-5.md", "source": "OpenSSL Git" }, { "name": "https://vuldb.com/?ctiid.272612", "url": "https://vuldb.com/?ctiid.272612", "source": "URL" }, { "name": "https://vuldb.com/?id.272612", "url": "https://vuldb.com/?id.272612", "source": "URL" }, { "name": "https://vuldb.com/?submit.380386", "url": "https://vuldb.com/?submit.380386", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415386", "creation_date": "2024-07-29T12:00:06.809611+02:00", "modified_date": "2024-07-29T12:00:20.196802+02:00", "ts_ignore": "2024-07-29T12:00:20.043584+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415385, "name": "CVE-2024-41881", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415385/", "references": [ { "name": "CVE-2024-41881", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41881", "source": "National Vulnerability Database" }, { "name": "CVE-2024-41881", "url": "https://www.cve.org/CVERecord?id=CVE-2024-41881", "source": "Mitre CVE Database" }, { "name": "https://github.com/PhilipHazel/SDoP", "url": "https://github.com/PhilipHazel/SDoP", "source": "OpenSSL Git" }, { "name": "https://github.com/PhilipHazel/SDoP/commit/ff83d851b4b39ff2fd37ab2ab14365649515b023", "url": "https://github.com/PhilipHazel/SDoP/commit/ff83d851b4b39ff2fd37ab2ab14365649515b023", "source": "OpenSSL Git" }, { "name": "https://jvn.jp/en/jp/JVN16420523/", "url": "https://jvn.jp/en/jp/JVN16420523/", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415385", "creation_date": "2024-07-29T12:00:06.329834+02:00", "modified_date": "2024-07-29T12:00:31.497310+02:00", "ts_ignore": "2024-07-29T12:00:31.359830+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415384, "name": "CVE-2024-41726", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415384/", "references": [ { "name": "CVE-2024-41726", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41726", "source": "National Vulnerability Database" }, { "name": "CVE-2024-41726", "url": "https://www.cve.org/CVERecord?id=CVE-2024-41726", "source": "Mitre CVE Database" }, { "name": "https://jvn.jp/en/jp/JVN84326763/", "url": "https://jvn.jp/en/jp/JVN84326763/", "source": "URL" }, { "name": "https://www.skyseaclientview.net/news/240729_02/", "url": "https://www.skyseaclientview.net/news/240729_02/", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415384", "creation_date": "2024-07-29T12:00:05.731437+02:00", "modified_date": "2024-07-29T12:00:11.704318+02:00", "ts_ignore": "2024-07-29T12:00:11.566898+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415383, "name": "CVE-2024-41143", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415383/", "references": [ { "name": "CVE-2024-41143", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41143", "source": "National Vulnerability Database" }, { "name": "CVE-2024-41143", "url": "https://www.cve.org/CVERecord?id=CVE-2024-41143", "source": "Mitre CVE Database" }, { "name": "https://jvn.jp/en/jp/JVN84326763/", "url": "https://jvn.jp/en/jp/JVN84326763/", "source": "URL" }, { "name": "https://www.skyseaclientview.net/news/240729_02/", "url": "https://www.skyseaclientview.net/news/240729_02/", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415383", "creation_date": "2024-07-29T12:00:05.192482+02:00", "modified_date": "2024-07-29T12:00:11.334517+02:00", "ts_ignore": "2024-07-29T12:00:11.179406+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415382, "name": "CVE-2024-41139", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415382/", "references": [ { "name": "CVE-2024-41139", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41139", "source": "National Vulnerability Database" }, { "name": "CVE-2024-41139", "url": "https://www.cve.org/CVERecord?id=CVE-2024-41139", "source": "Mitre CVE Database" }, { "name": "https://jvn.jp/en/jp/JVN84326763/", "url": "https://jvn.jp/en/jp/JVN84326763/", "source": "URL" }, { "name": "https://www.skyseaclientview.net/news/240729_02/", "url": "https://www.skyseaclientview.net/news/240729_02/", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415382", "creation_date": "2024-07-29T12:00:04.575056+02:00", "modified_date": "2024-07-29T12:00:10.524202+02:00", "ts_ignore": "2024-07-29T12:00:10.374779+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415381, "name": "CVE-2024-7190", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415381/", "references": [ { "name": "CVE-2024-7190", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-7190", "source": "National Vulnerability Database" }, { "name": "CVE-2024-7190", "url": "https://www.cve.org/CVERecord?id=CVE-2024-7190", "source": "Mitre CVE Database" }, { "name": "https://github.com/DeepMountains/Mirage/blob/main/CVE7-4.md", "url": "https://github.com/DeepMountains/Mirage/blob/main/CVE7-4.md", "source": "OpenSSL Git" }, { "name": "https://vuldb.com/?ctiid.272611", "url": "https://vuldb.com/?ctiid.272611", "source": "URL" }, { "name": "https://vuldb.com/?id.272611", "url": "https://vuldb.com/?id.272611", "source": "URL" }, { "name": "https://vuldb.com/?submit.380385", "url": "https://vuldb.com/?submit.380385", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415381", "creation_date": "2024-07-29T12:00:04.102946+02:00", "modified_date": "2024-07-29T12:00:17.457336+02:00", "ts_ignore": "2024-07-29T12:00:17.316599+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415380, "name": "CVE-2024-7189", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415380/", "references": [ { "name": "CVE-2024-7189", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-7189", "source": "National Vulnerability Database" }, { "name": "CVE-2024-7189", "url": "https://www.cve.org/CVERecord?id=CVE-2024-7189", "source": "Mitre CVE Database" }, { "name": "https://github.com/L1OudFd8cl09/CVE/blob/main/25_07_2024_a.md", "url": "https://github.com/L1OudFd8cl09/CVE/blob/main/25_07_2024_a.md", "source": "OpenSSL Git" }, { "name": "https://vuldb.com/?ctiid.272610", "url": "https://vuldb.com/?ctiid.272610", "source": "URL" }, { "name": "https://vuldb.com/?id.272610", "url": "https://vuldb.com/?id.272610", "source": "URL" }, { "name": "https://vuldb.com/?submit.380209", "url": "https://vuldb.com/?submit.380209", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415380", "creation_date": "2024-07-29T12:00:03.580803+02:00", "modified_date": "2024-07-29T12:00:16.153469+02:00", "ts_ignore": "2024-07-29T12:00:16.012296+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415377, "name": "CVE-2024-7188", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415377/", "references": [ { "name": "CVE-2024-7188", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-7188", "source": "National Vulnerability Database" }, { "name": "CVE-2024-7188", "url": "https://www.cve.org/CVERecord?id=CVE-2024-7188", "source": "Mitre CVE Database" }, { "name": "https://github.com/bigb0x/CVEs/blob/main/quicklancer-2-4.md", "url": "https://github.com/bigb0x/CVEs/blob/main/quicklancer-2-4.md", "source": "OpenSSL Git" }, { "name": "https://vuldb.com/?ctiid.272609", "url": "https://vuldb.com/?ctiid.272609", "source": "URL" }, { "name": "https://vuldb.com/?id.272609", "url": "https://vuldb.com/?id.272609", "source": "URL" }, { "name": "https://vuldb.com/?submit.378279", "url": "https://vuldb.com/?submit.378279", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415377", "creation_date": "2024-07-29T10:00:28.579153+02:00", "modified_date": "2024-07-29T10:12:34.443892+02:00", "ts_ignore": "2024-07-29T10:12:34.284933+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415376, "name": "CVE-2024-7187", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415376/", "references": [ { "name": "CVE-2024-7187", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-7187", "source": "National Vulnerability Database" }, { "name": "CVE-2024-7187", "url": "https://www.cve.org/CVERecord?id=CVE-2024-7187", "source": "Mitre CVE Database" }, { "name": "https://github.com/abcdefg-png/IoT-vulnerable/blob/main/TOTOLINK/A3600R/UploadCustomModule.md", "url": "https://github.com/abcdefg-png/IoT-vulnerable/blob/main/TOTOLINK/A3600R/UploadCustomModule.md", "source": "OpenSSL Git" }, { "name": "https://vuldb.com/?ctiid.272608", "url": "https://vuldb.com/?ctiid.272608", "source": "URL" }, { "name": "https://vuldb.com/?id.272608", "url": "https://vuldb.com/?id.272608", "source": "URL" }, { "name": "https://vuldb.com/?submit.378291", "url": "https://vuldb.com/?submit.378291", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415376", "creation_date": "2024-07-29T10:00:28.031556+02:00", "modified_date": "2024-07-29T10:12:13.142824+02:00", "ts_ignore": "2024-07-29T10:12:13.001546+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415375, "name": "CVE-2024-7186", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415375/", "references": [ { "name": "CVE-2024-7186", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-7186", "source": "National Vulnerability Database" }, { "name": "CVE-2024-7186", "url": "https://www.cve.org/CVERecord?id=CVE-2024-7186", "source": "Mitre CVE Database" }, { "name": "https://github.com/abcdefg-png/IoT-vulnerable/blob/main/TOTOLINK/A3600R/setWiFiAclAddConfig.md", "url": "https://github.com/abcdefg-png/IoT-vulnerable/blob/main/TOTOLINK/A3600R/setWiFiAclAddConfig.md", "source": "OpenSSL Git" }, { "name": "https://vuldb.com/?ctiid.272607", "url": "https://vuldb.com/?ctiid.272607", "source": "URL" }, { "name": "https://vuldb.com/?id.272607", "url": "https://vuldb.com/?id.272607", "source": "URL" }, { "name": "https://vuldb.com/?submit.378055", "url": "https://vuldb.com/?submit.378055", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415375", "creation_date": "2024-07-29T10:00:22.254254+02:00", "modified_date": "2024-07-29T10:12:11.350040+02:00", "ts_ignore": "2024-07-29T10:12:11.212243+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415374, "name": "CVE-2024-7185", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415374/", "references": [ { "name": "CVE-2024-7185", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-7185", "source": "National Vulnerability Database" }, { "name": "CVE-2024-7185", "url": "https://www.cve.org/CVERecord?id=CVE-2024-7185", "source": "Mitre CVE Database" }, { "name": "https://github.com/abcdefg-png/IoT-vulnerable/blob/main/TOTOLINK/A3600R/setWebWlanIdx.md", "url": "https://github.com/abcdefg-png/IoT-vulnerable/blob/main/TOTOLINK/A3600R/setWebWlanIdx.md", "source": "OpenSSL Git" }, { "name": "https://vuldb.com/?ctiid.272606", "url": "https://vuldb.com/?ctiid.272606", "source": "URL" }, { "name": "https://vuldb.com/?id.272606", "url": "https://vuldb.com/?id.272606", "source": "URL" }, { "name": "https://vuldb.com/?submit.378054", "url": "https://vuldb.com/?submit.378054", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415374", "creation_date": "2024-07-29T10:00:21.790599+02:00", "modified_date": "2024-07-29T10:12:10.727832+02:00", "ts_ignore": "2024-07-29T10:12:10.574579+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415373, "name": "CVE-2024-6487", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415373/", "references": [ { "name": "CVE-2024-6487", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-6487", "source": "National Vulnerability Database" }, { "name": "CVE-2024-6487", "url": "https://www.cve.org/CVERecord?id=CVE-2024-6487", "source": "Mitre CVE Database" }, { "name": "https://wpscan.com/vulnerability/eeec9608-a7b2-4926-bac2-4c81a65dd473/", "url": "https://wpscan.com/vulnerability/eeec9608-a7b2-4926-bac2-4c81a65dd473/", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415373", "creation_date": "2024-07-29T10:00:21.327086+02:00", "modified_date": "2024-07-29T10:12:04.272073+02:00", "ts_ignore": "2024-07-29T10:12:04.144866+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415372, "name": "CVE-2024-6366", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415372/", "references": [ { "name": "CVE-2024-6366", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-6366", "source": "National Vulnerability Database" }, { "name": "CVE-2024-6366", "url": "https://www.cve.org/CVERecord?id=CVE-2024-6366", "source": "Mitre CVE Database" }, { "name": "https://wpscan.com/vulnerability/5b90cbdd-52cc-4e7b-bf39-bea0dd59e19e/", "url": "https://wpscan.com/vulnerability/5b90cbdd-52cc-4e7b-bf39-bea0dd59e19e/", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415372", "creation_date": "2024-07-29T10:00:20.864657+02:00", "modified_date": "2024-07-29T10:12:03.831614+02:00", "ts_ignore": "2024-07-29T10:12:03.691141+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415371, "name": "CVE-2024-6362", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415371/", "references": [ { "name": "CVE-2024-6362", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-6362", "source": "National Vulnerability Database" }, { "name": "CVE-2024-6362", "url": "https://www.cve.org/CVERecord?id=CVE-2024-6362", "source": "Mitre CVE Database" }, { "name": "https://wpscan.com/vulnerability/d2e2d06b-0f07-40b9-9b87-3373f62ae1a9/", "url": "https://wpscan.com/vulnerability/d2e2d06b-0f07-40b9-9b87-3373f62ae1a9/", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415371", "creation_date": "2024-07-29T10:00:20.437066+02:00", "modified_date": "2024-07-29T10:12:03.038537+02:00", "ts_ignore": "2024-07-29T10:12:02.901449+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415370, "name": "CVE-2024-5883", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415370/", "references": [ { "name": "CVE-2024-5883", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-5883", "source": "National Vulnerability Database" }, { "name": "CVE-2024-5883", "url": "https://www.cve.org/CVERecord?id=CVE-2024-5883", "source": "Mitre CVE Database" }, { "name": "https://wpscan.com/vulnerability/a1894884-c739-4ef4-8d9c-392171ab3d68/", "url": "https://wpscan.com/vulnerability/a1894884-c739-4ef4-8d9c-392171ab3d68/", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415370", "creation_date": "2024-07-29T10:00:20.004005+02:00", "modified_date": "2024-07-29T10:12:01.407957+02:00", "ts_ignore": "2024-07-29T10:12:01.277579+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415369, "name": "CVE-2024-5882", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415369/", "references": [ { "name": "CVE-2024-5882", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-5882", "source": "National Vulnerability Database" }, { "name": "CVE-2024-5882", "url": "https://www.cve.org/CVERecord?id=CVE-2024-5882", "source": "Mitre CVE Database" }, { "name": "https://wpscan.com/vulnerability/5e8d7808-8f3e-4fc9-a1e7-e108da031ca7/", "url": "https://wpscan.com/vulnerability/5e8d7808-8f3e-4fc9-a1e7-e108da031ca7/", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415369", "creation_date": "2024-07-29T10:00:19.556406+02:00", "modified_date": "2024-07-29T10:12:00.977985+02:00", "ts_ignore": "2024-07-29T10:12:00.851168+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415368, "name": "bnc#1228532", "severity": "moderate", "state": "Analyzed", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415368/", "references": [ { "name": "bnc#1228532", "url": "https://bugzilla.suse.com/show_bug.cgi?id=1228532", "source": "SUSE Bugzilla" }, { "name": "CVE-2024-41019", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41019", "source": "National Vulnerability Database" }, { "name": "CVE-2024-41019", "url": "https://git.kernel.org/pub/scm/linux/security/vulns.git/plain/cve/published/2024/CVE-2024-41019.mbox", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/35652dfa8cc9a8a900ec0f1e0395781f94ffc5f0", "url": "https://git.kernel.org/stable/c/35652dfa8cc9a8a900ec0f1e0395781f94ffc5f0", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/50c47879650b4c97836a0086632b3a2e300b0f06", "url": "https://git.kernel.org/stable/c/50c47879650b4c97836a0086632b3a2e300b0f06", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/617cf144c206f98978ec730b17159344fd147cb4", "url": "https://git.kernel.org/stable/c/617cf144c206f98978ec730b17159344fd147cb4", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/6ae7265a7b816879fd0203e83b5030d3720bbb7a", "url": "https://git.kernel.org/stable/c/6ae7265a7b816879fd0203e83b5030d3720bbb7a", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/818a257428644b8873e79c44404d8fb6598d4440", "url": "https://git.kernel.org/stable/c/818a257428644b8873e79c44404d8fb6598d4440", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/82c94e6a7bd116724738aa67eba6f5fedf3a3319", "url": "https://git.kernel.org/stable/c/82c94e6a7bd116724738aa67eba6f5fedf3a3319", "source": "Linux Kernel CNA" }, { "name": "rh#2300302", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2300302", "source": "Redhat Bugzilla" }, { "name": "CVE-2024-41019", "url": "https://www.cve.org/CVERecord?id=CVE-2024-41019", "source": "Mitre CVE Database" } ], "user": "abergmann", "cvss": [ { "id": 431534, "score": 5.5, "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "reference": "CVE-2024-41019", "creation_date": "2024-07-30T12:06:48.530232+02:00", "description": "", "modified_date": "2024-07-30T12:06:48.530254+02:00", "source": "SUSE", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41019", "version": 3.1 }, { "id": 431703, "score": 5.5, "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "reference": "CVE-2024-41019", "creation_date": "2024-07-31T14:01:22.081122+02:00", "description": "", "modified_date": "2024-07-31T14:01:22.081138+02:00", "source": "Redhat", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41019", "version": 3.1 }, { "id": 431890, "score": 5.5, "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "reference": "CVE-2024-41019", "creation_date": "2024-08-01T03:00:11.220795+02:00", "description": "", "modified_date": "2024-08-01T03:00:11.220812+02:00", "source": "AMAZON_LINUX", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41019", "version": 3.1 } ], "affected_packages": [ { "package": "kernel-source", "codestream": "SUSE:ALP:Source:Standard:1.0", "product": null, "relation": "Affected", "id": 5803556 }, { "package": "kernel-source", "codestream": "SUSE:SLE-11-SP4:Update", "product": null, "relation": "Not affected", "id": 5803557 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP3:Update", "product": null, "relation": "Not affected", "id": 5803558 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP3:Update:Products:Teradata:Update", "product": null, "relation": "Not affected", "id": 5803559 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP4:Update", "product": null, "relation": "Not affected", "id": 5803560 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP5:Update", "product": null, "relation": "Not affected", "id": 5803561 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP1:Update", "product": null, "relation": "Not affected", "id": 5803562 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP2:Update", "product": null, "relation": "Not affected", "id": 5803563 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP3:Update", "product": null, "relation": "Not affected", "id": 5803564 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP4:Update", "product": null, "relation": "Not affected", "id": 5803565 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Not affected", "id": 5803566 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP6:Update", "product": null, "relation": "Affected", "id": 5803567 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15:Update", "product": null, "relation": "Not affected", "id": 5803568 }, { "package": "kernel-source", "codestream": "SUSE:SLFO:Main", "product": null, "relation": "Affected", "id": 5803569 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Affected", "id": 5803553 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Not affected", "id": 5803548 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sl-micro:6.0", "summary": "SUSE Linux Micro", "version": "6.0", "name": "SL-Micro" }, "relation": "Affected", "id": 5803555 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-hpc:12:sp5", "summary": "SUSE Linux Enterprise High Performance Computing", "version": "12-SP5", "name": "SLE-HPC" }, "relation": "Not affected", "id": 5803527 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles:12:sp5", "summary": "SUSE Linux Enterprise Server", "version": "12-SP5", "name": "SLES" }, "relation": "Not affected", "id": 5803528 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5803531 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp1", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP1", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5803532 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp2", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP2", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5803533 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:12:sp4", "summary": "SUSE Linux Enterprise Server LTSS", "version": "12-SP4", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5803535 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp3", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP3", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5803550 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp4", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP4", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5803554 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_ltss_teradata:12:sp3", "summary": "SUSE Linux Enterprise Server Teradata LTSS", "version": "12-SP3", "name": "SLES_LTSS_TERADATA" }, "relation": "Not affected", "id": 5803545 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp4", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP4", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5803525 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp5", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP5", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5803529 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp2", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP2", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5803530 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp3", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP3", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5803536 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp4", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP4", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5803538 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_teradata:12:sp3", "summary": "SUSE Linux Enterprise Server Teradata", "version": "12-SP3", "name": "SLES_TERADATA" }, "relation": "Not affected", "id": 5803526 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-espos:15:sp4", "summary": "SUSE Linux Enterprise High Performance Computing ESPOS", "version": "15-SP4", "name": "SLE_HPC-ESPOS" }, "relation": "Not affected", "id": 5803539 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp4", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP4", "name": "SLE_HPC-LTSS" }, "relation": "Not affected", "id": 5803540 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp3", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP3", "name": "SLE_HPC-LTSS" }, "relation": "Not affected", "id": 5803537 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp2", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP2", "name": "SLE_HPC-LTSS" }, "relation": "Not affected", "id": 5803534 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-proxy:4.3", "summary": "SUSE Manager Proxy", "version": "4.3", "name": "SUSE-Manager-Proxy" }, "relation": "Not affected", "id": 5803541 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-retail-branch-server:4.3", "summary": "SUSE Manager Retail Branch Server", "version": "4.3", "name": "SUSE-Manager-Retail-Branch-Server" }, "relation": "Not affected", "id": 5803542 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-server:4.3", "summary": "SUSE Manager Server", "version": "4.3", "name": "SUSE-Manager-Server" }, "relation": "Not affected", "id": 5803543 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse_sles_ltss:11:sp4", "summary": "SUSE Linux Enterprise Server 11 SP4 LTSS", "version": "11-SP4", "name": "SUSE_SLES_LTSS" }, "relation": "Not affected", "id": 5803524 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse_sles_ltss-extreme-core:11:sp4", "summary": "SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE", "version": "11-SP4", "name": "SUSE_SLES_LTSS-EXTREME-CORE" }, "relation": "Not affected", "id": 5803549 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:ses:7.1", "summary": "SUSE Enterprise Storage", "version": "7.1", "name": "ses" }, "relation": "Not affected", "id": 5803544 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-basesystem:15:sp5", "summary": "Basesystem Module", "version": "15-SP5", "name": "sle-module-basesystem" }, "relation": "Not affected", "id": 5803547 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-basesystem:15:sp6", "summary": "Basesystem Module", "version": "15-SP6", "name": "sle-module-basesystem" }, "relation": "Affected", "id": 5803552 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-development-tools:15:sp5", "summary": "Development Tools Module", "version": "15-SP5", "name": "sle-module-development-tools" }, "relation": "Not affected", "id": 5803546 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-development-tools:15:sp6", "summary": "Development Tools Module", "version": "15-SP6", "name": "sle-module-development-tools" }, "relation": "Affected", "id": 5803551 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-12-SP5:Update", "product": null, "relation": "Not affected", "id": 5788871 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP4:Update", "product": null, "relation": "Not affected", "id": 5788872 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Not affected", "id": 5788873 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP6:Update", "product": null, "relation": "Affected", "id": 5788874 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Not affected", "id": 5788868 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Affected", "id": 5788870 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-hpc:12:sp5", "summary": "SUSE Linux Enterprise High Performance Computing", "version": "12-SP5", "name": "SLE-HPC" }, "relation": "Not affected", "id": 5788864 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles:12:sp5", "summary": "SUSE Linux Enterprise Server", "version": "12-SP5", "name": "SLES" }, "relation": "Not affected", "id": 5788865 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp5", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP5", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5788866 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp5", "summary": "Public Cloud Module", "version": "15-SP5", "name": "sle-module-public-cloud" }, "relation": "Not affected", "id": 5788867 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp6", "summary": "Public Cloud Module", "version": "15-SP6", "name": "sle-module-public-cloud" }, "relation": "Affected", "id": 5788869 }, { "package": "kernel-source-rt", "codestream": "SUSE:ALP:Source:Standard:1.0", "product": null, "relation": "Affected", "id": 5788886 }, { "package": "kernel-source-rt", "codestream": "SUSE:Carwos:1", "product": null, "relation": "Not affected", "id": 5788887 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-12-SP5:Update:Products:SLERT:Update", "product": null, "relation": "Not affected", "id": 5788888 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP3:Update:Products:SLERT:Update", "product": null, "relation": "Not affected", "id": 5788889 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP4:Update:Products:SLERT:Update", "product": null, "relation": "Not affected", "id": 5788890 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Not affected", "id": 5788891 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP6:Update:Products:SLERT:Update", "product": null, "relation": "Affected", "id": 5788892 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLFO:Main", "product": null, "relation": "Affected", "id": 5788893 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Not affected", "id": 5788880 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Affected", "id": 5788884 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sl-micro:6.0", "summary": "SUSE Linux Micro", "version": "6.0", "name": "SL-Micro" }, "relation": "Affected", "id": 5788885 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.5", "summary": "SUSE Linux Enterprise Micro", "version": "5.5", "name": "SLE-Micro" }, "relation": "Not affected", "id": 5788883 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.4", "summary": "SUSE Linux Enterprise Micro", "version": "5.4", "name": "SLE-Micro" }, "relation": "Not affected", "id": 5788881 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.3", "summary": "SUSE Linux Enterprise Micro", "version": "5.3", "name": "SLE-Micro" }, "relation": "Not affected", "id": 5788878 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-linux-enterprise-rt:12:sp5", "summary": "SUSE Linux Enterprise Real Time", "version": "12-SP5", "name": "SUSE-Linux-Enterprise-RT" }, "relation": "Not affected", "id": 5788875 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-microos:5.2", "summary": "SUSE Linux Enterprise Micro", "version": "5.2", "name": "SUSE-MicroOS" }, "relation": "Not affected", "id": 5788877 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-microos:5.1", "summary": "SUSE Linux Enterprise Micro", "version": "5.1", "name": "SUSE-MicroOS" }, "relation": "Not affected", "id": 5788876 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-rt:15:sp5", "summary": "SUSE Real Time Module", "version": "15-SP5", "name": "sle-module-rt" }, "relation": "Not affected", "id": 5788879 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-rt:15:sp6", "summary": "SUSE Real Time Module", "version": "15-SP6", "name": "sle-module-rt" }, "relation": "Affected", "id": 5788882 } ], "url": "https://smash.suse.de/api/issue/415368", "creation_date": "2024-07-29T10:00:19.312484+02:00", "modified_date": "2024-07-30T12:07:13.923228+02:00", "ts_ignore": null, "ts_analysis": "2024-07-29T11:42:13.504771+02:00", "ts_analyzed": "2024-07-30T12:07:13.921164+02:00", "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415367, "name": "CVE-2024-5285", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415367/", "references": [ { "name": "CVE-2024-5285", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-5285", "source": "National Vulnerability Database" }, { "name": "CVE-2024-5285", "url": "https://www.cve.org/CVERecord?id=CVE-2024-5285", "source": "Mitre CVE Database" }, { "name": "https://wpscan.com/vulnerability/792f3904-88bd-47d1-9049-afccdd74853a/", "url": "https://wpscan.com/vulnerability/792f3904-88bd-47d1-9049-afccdd74853a/", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415367", "creation_date": "2024-07-29T10:00:19.096486+02:00", "modified_date": "2024-07-29T10:12:00.387953+02:00", "ts_ignore": "2024-07-29T10:12:00.252005+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415366, "name": "CVE-2024-4483", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415366/", "references": [ { "name": "CVE-2024-4483", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-4483", "source": "National Vulnerability Database" }, { "name": "CVE-2024-4483", "url": "https://www.cve.org/CVERecord?id=CVE-2024-4483", "source": "Mitre CVE Database" }, { "name": "https://wpscan.com/vulnerability/8f2ac76c-f3f8-41f9-a32a-f414825cf6f1/", "url": "https://wpscan.com/vulnerability/8f2ac76c-f3f8-41f9-a32a-f414825cf6f1/", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415366", "creation_date": "2024-07-29T10:00:18.656194+02:00", "modified_date": "2024-07-29T10:11:59.696446+02:00", "ts_ignore": "2024-07-29T10:11:59.559016+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415365, "name": "CVE-2024-41637", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415365/", "references": [ { "name": "CVE-2024-41637", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41637", "source": "National Vulnerability Database" }, { "name": "CVE-2024-41637", "url": "https://www.cve.org/CVERecord?id=CVE-2024-41637", "source": "Mitre CVE Database" }, { "name": "MISC:github.com:CVE-2021-38557", "url": "https://github.com/RaspAP/raspap-webgui", "source": "OpenSSL Git" }, { "name": "https://blog.0xzon.dev/2024-07-27-CVE-2024-41637/", "url": "https://blog.0xzon.dev/2024-07-27-CVE-2024-41637/", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415365", "creation_date": "2024-07-29T10:00:18.236306+02:00", "modified_date": "2024-07-29T10:20:30.661391+02:00", "ts_ignore": "2024-07-29T10:20:30.520224+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415364, "name": "CVE-2024-37381", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415364/", "references": [ { "name": "CVE-2024-37381", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-37381", "source": "National Vulnerability Database" }, { "name": "CVE-2024-37381", "url": "https://www.cve.org/CVERecord?id=CVE-2024-37381", "source": "Mitre CVE Database" }, { "name": "https://forums.ivanti.com/s/article/Security-Advisory-EPM-July-2024-for-EPM-2024", "url": "https://forums.ivanti.com/s/article/Security-Advisory-EPM-July-2024-for-EPM-2024", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415364", "creation_date": "2024-07-29T10:00:17.799046+02:00", "modified_date": "2024-07-29T10:20:19.088920+02:00", "ts_ignore": "2024-07-29T10:20:18.950714+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415363, "name": "bnc#1228408", "severity": "moderate", "state": "Analyzed", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415363/", "references": [ { "name": "bnc#1228408", "url": "https://bugzilla.suse.com/show_bug.cgi?id=1228408", "source": "SUSE Bugzilla" }, { "name": "jsc#CAR-3995", "url": "https://jira.suse.com/browse/CAR-3995", "source": "SUSE Jira" }, { "name": "CVE-2024-41014", "url": "https://git.kernel.org/pub/scm/linux/security/vulns.git/plain/cve/published/2024/CVE-2024-41014.mbox", "source": "Linux Kernel CNA" }, { "name": "CVE-2024-41014", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41014", "source": "National Vulnerability Database" }, { "name": "https://git.kernel.org/stable/c/fb63435b7c7dc112b1ae1baea5486e0a6e27b196", "url": "https://git.kernel.org/stable/c/fb63435b7c7dc112b1ae1baea5486e0a6e27b196", "source": "Linux Kernel CNA" }, { "name": "rh#2300297", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2300297", "source": "Redhat Bugzilla" }, { "name": "CVE-2024-41014", "url": "https://www.cve.org/CVERecord?id=CVE-2024-41014", "source": "Mitre CVE Database" } ], "user": "amattiazzo", "cvss": [ { "id": 431389, "score": 5.5, "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "reference": "CVE-2024-41014", "creation_date": "2024-07-29T12:38:19.240426+02:00", "description": "", "modified_date": "2024-07-29T12:42:58.742240+02:00", "source": "SUSE", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41014", "version": 3.1 }, { "id": 431698, "score": 5.5, "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "reference": "CVE-2024-41014", "creation_date": "2024-07-31T14:01:19.483577+02:00", "description": "", "modified_date": "2024-07-31T14:01:19.483594+02:00", "source": "Redhat", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41014", "version": 3.1 }, { "id": 431892, "score": 5.5, "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "reference": "CVE-2024-41014", "creation_date": "2024-08-01T03:00:13.107834+02:00", "description": "", "modified_date": "2024-08-01T03:00:13.107851+02:00", "source": "AMAZON_LINUX", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41014", "version": 3.1 } ], "affected_packages": [ { "package": "kernel-source", "codestream": "SUSE:ALP:Source:Standard:1.0", "product": null, "relation": "Affected", "id": 5788774 }, { "package": "kernel-source", "codestream": "SUSE:SLE-11-SP4:Update", "product": null, "relation": "Affected", "id": 5788775 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP3:Update", "product": null, "relation": "Affected", "id": 5788776 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP3:Update:Products:Teradata:Update", "product": null, "relation": "Affected", "id": 5788777 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP4:Update", "product": null, "relation": "Affected", "id": 5788778 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP5:Update", "product": null, "relation": "Affected", "id": 5788779 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP1:Update", "product": null, "relation": "Affected", "id": 5788780 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP2:Update", "product": null, "relation": "Affected", "id": 5788781 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP3:Update", "product": null, "relation": "Affected", "id": 5788782 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP4:Update", "product": null, "relation": "Affected", "id": 5788783 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Affected", "id": 5788784 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP6:Update", "product": null, "relation": "Affected", "id": 5788785 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15:Update", "product": null, "relation": "Affected", "id": 5788786 }, { "package": "kernel-source", "codestream": "SUSE:SLFO:Main", "product": null, "relation": "Affected", "id": 5788787 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Affected", "id": 5788771 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Affected", "id": 5788766 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sl-micro:6.0", "summary": "SUSE Linux Micro", "version": "6.0", "name": "SL-Micro" }, "relation": "Affected", "id": 5788773 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-hpc:12:sp5", "summary": "SUSE Linux Enterprise High Performance Computing", "version": "12-SP5", "name": "SLE-HPC" }, "relation": "Affected", "id": 5788745 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles:12:sp5", "summary": "SUSE Linux Enterprise Server", "version": "12-SP5", "name": "SLES" }, "relation": "Affected", "id": 5788746 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5788749 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp2", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP2", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5788751 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp1", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP1", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5788750 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:12:sp4", "summary": "SUSE Linux Enterprise Server LTSS", "version": "12-SP4", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5788753 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp4", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP4", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5788772 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp3", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP3", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5788768 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_ltss_teradata:12:sp3", "summary": "SUSE Linux Enterprise Server Teradata LTSS", "version": "12-SP3", "name": "SLES_LTSS_TERADATA" }, "relation": "Affected", "id": 5788763 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp4", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP4", "name": "SLES_SAP" }, "relation": "Affected", "id": 5788756 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp3", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP3", "name": "SLES_SAP" }, "relation": "Affected", "id": 5788754 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp2", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP2", "name": "SLES_SAP" }, "relation": "Affected", "id": 5788748 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp4", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP4", "name": "SLES_SAP" }, "relation": "Affected", "id": 5788743 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp5", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP5", "name": "SLES_SAP" }, "relation": "Affected", "id": 5788747 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_teradata:12:sp3", "summary": "SUSE Linux Enterprise Server Teradata", "version": "12-SP3", "name": "SLES_TERADATA" }, "relation": "Affected", "id": 5788744 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-espos:15:sp4", "summary": "SUSE Linux Enterprise High Performance Computing ESPOS", "version": "15-SP4", "name": "SLE_HPC-ESPOS" }, "relation": "Affected", "id": 5788757 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp2", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP2", "name": "SLE_HPC-LTSS" }, "relation": "Affected", "id": 5788752 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp3", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP3", "name": "SLE_HPC-LTSS" }, "relation": "Affected", "id": 5788755 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp4", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP4", "name": "SLE_HPC-LTSS" }, "relation": "Affected", "id": 5788758 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-proxy:4.3", "summary": "SUSE Manager Proxy", "version": "4.3", "name": "SUSE-Manager-Proxy" }, "relation": "Affected", "id": 5788759 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-retail-branch-server:4.3", "summary": "SUSE Manager Retail Branch Server", "version": "4.3", "name": "SUSE-Manager-Retail-Branch-Server" }, "relation": "Affected", "id": 5788760 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-server:4.3", "summary": "SUSE Manager Server", "version": "4.3", "name": "SUSE-Manager-Server" }, "relation": "Affected", "id": 5788761 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse_sles_ltss:11:sp4", "summary": "SUSE Linux Enterprise Server 11 SP4 LTSS", "version": "11-SP4", "name": "SUSE_SLES_LTSS" }, "relation": "Affected", "id": 5788742 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse_sles_ltss-extreme-core:11:sp4", "summary": "SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE", "version": "11-SP4", "name": "SUSE_SLES_LTSS-EXTREME-CORE" }, "relation": "Affected", "id": 5788767 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:ses:7.1", "summary": "SUSE Enterprise Storage", "version": "7.1", "name": "ses" }, "relation": "Affected", "id": 5788762 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-basesystem:15:sp5", "summary": "Basesystem Module", "version": "15-SP5", "name": "sle-module-basesystem" }, "relation": "Affected", "id": 5788765 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-basesystem:15:sp6", "summary": "Basesystem Module", "version": "15-SP6", "name": "sle-module-basesystem" }, "relation": "Affected", "id": 5788770 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-development-tools:15:sp6", "summary": "Development Tools Module", "version": "15-SP6", "name": "sle-module-development-tools" }, "relation": "Affected", "id": 5788769 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-development-tools:15:sp5", "summary": "Development Tools Module", "version": "15-SP5", "name": "sle-module-development-tools" }, "relation": "Affected", "id": 5788764 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-12-SP5:Update", "product": null, "relation": "Affected", "id": 5788795 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP4:Update", "product": null, "relation": "Unsupported", "id": 5788796 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Affected", "id": 5788797 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP6:Update", "product": null, "relation": "Affected", "id": 5788798 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Affected", "id": 5788794 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Affected", "id": 5788792 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-hpc:12:sp5", "summary": "SUSE Linux Enterprise High Performance Computing", "version": "12-SP5", "name": "SLE-HPC" }, "relation": "Affected", "id": 5788788 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles:12:sp5", "summary": "SUSE Linux Enterprise Server", "version": "12-SP5", "name": "SLES" }, "relation": "Affected", "id": 5788789 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp5", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP5", "name": "SLES_SAP" }, "relation": "Affected", "id": 5788790 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp5", "summary": "Public Cloud Module", "version": "15-SP5", "name": "sle-module-public-cloud" }, "relation": "Affected", "id": 5788791 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp6", "summary": "Public Cloud Module", "version": "15-SP6", "name": "sle-module-public-cloud" }, "relation": "Affected", "id": 5788793 }, { "package": "kernel-source-rt", "codestream": "SUSE:ALP:Source:Standard:1.0", "product": null, "relation": "Affected", "id": 5788810 }, { "package": "kernel-source-rt", "codestream": "SUSE:Carwos:1", "product": null, "relation": "Affected", "id": 5788811 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-12-SP5:Update:Products:SLERT:Update", "product": null, "relation": "Affected", "id": 5788812 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP3:Update:Products:SLERT:Update", "product": null, "relation": "Affected", "id": 5788813 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP4:Update:Products:SLERT:Update", "product": null, "relation": "Affected", "id": 5788814 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Affected", "id": 5788815 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP6:Update:Products:SLERT:Update", "product": null, "relation": "Affected", "id": 5788816 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLFO:Main", "product": null, "relation": "Affected", "id": 5788817 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Affected", "id": 5788804 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Affected", "id": 5788808 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sl-micro:6.0", "summary": "SUSE Linux Micro", "version": "6.0", "name": "SL-Micro" }, "relation": "Affected", "id": 5788809 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.5", "summary": "SUSE Linux Enterprise Micro", "version": "5.5", "name": "SLE-Micro" }, "relation": "Affected", "id": 5788807 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.4", "summary": "SUSE Linux Enterprise Micro", "version": "5.4", "name": "SLE-Micro" }, "relation": "Affected", "id": 5788805 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.3", "summary": "SUSE Linux Enterprise Micro", "version": "5.3", "name": "SLE-Micro" }, "relation": "Affected", "id": 5788802 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-linux-enterprise-rt:12:sp5", "summary": "SUSE Linux Enterprise Real Time", "version": "12-SP5", "name": "SUSE-Linux-Enterprise-RT" }, "relation": "Affected", "id": 5788799 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-microos:5.1", "summary": "SUSE Linux Enterprise Micro", "version": "5.1", "name": "SUSE-MicroOS" }, "relation": "Affected", "id": 5788800 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-microos:5.2", "summary": "SUSE Linux Enterprise Micro", "version": "5.2", "name": "SUSE-MicroOS" }, "relation": "Affected", "id": 5788801 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-rt:15:sp5", "summary": "SUSE Real Time Module", "version": "15-SP5", "name": "sle-module-rt" }, "relation": "Affected", "id": 5788803 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-rt:15:sp6", "summary": "SUSE Real Time Module", "version": "15-SP6", "name": "sle-module-rt" }, "relation": "Affected", "id": 5788806 } ], "url": "https://smash.suse.de/api/issue/415363", "creation_date": "2024-07-29T10:00:17.745986+02:00", "modified_date": "2024-07-29T12:43:25.391318+02:00", "ts_ignore": null, "ts_analysis": "2024-07-29T10:34:36.625178+02:00", "ts_analyzed": "2024-07-29T12:43:25.388880+02:00", "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415362, "name": "bnc#1228399", "severity": "moderate", "state": "Resolved", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415362/", "references": [ { "name": "bnc#1228399", "url": "https://bugzilla.suse.com/show_bug.cgi?id=1228399", "source": "SUSE Bugzilla" }, { "name": "CVE-2024-41018", "url": "https://git.kernel.org/pub/scm/linux/security/vulns.git/plain/cve/published/2024/CVE-2024-41018.mbox", "source": "Linux Kernel CNA" }, { "name": "CVE-2024-41018", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41018", "source": "National Vulnerability Database" }, { "name": "https://git.kernel.org/stable/c/702d4930eb06dcfda85a2fa67e8a1a27bfa2a845", "url": "https://git.kernel.org/stable/c/702d4930eb06dcfda85a2fa67e8a1a27bfa2a845", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/9b71f820f7168f1eab8378c80c7ea8a022a475bc", "url": "https://git.kernel.org/stable/c/9b71f820f7168f1eab8378c80c7ea8a022a475bc", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/c114d2b88f8b226d4b2acf5a1ba0412cde6c31dd", "url": "https://git.kernel.org/stable/c/c114d2b88f8b226d4b2acf5a1ba0412cde6c31dd", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/f3124d51e4e7b56a732419d8dc270e807252334f", "url": "https://git.kernel.org/stable/c/f3124d51e4e7b56a732419d8dc270e807252334f", "source": "Linux Kernel CNA" }, { "name": "rh#2300301", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2300301", "source": "Redhat Bugzilla" }, { "name": "CVE-2024-41018", "url": "https://www.cve.org/CVERecord?id=CVE-2024-41018", "source": "Mitre CVE Database" } ], "user": "tleroy", "cvss": [ { "id": 431387, "score": 5.5, "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "reference": "CVE-2024-41018", "creation_date": "2024-07-29T12:04:23.761737+02:00", "description": "", "modified_date": "2024-07-29T12:04:23.761754+02:00", "source": "SUSE", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41018", "version": 3.1 }, { "id": 431702, "score": 5.5, "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "reference": "CVE-2024-41018", "creation_date": "2024-07-31T14:01:21.639854+02:00", "description": "", "modified_date": "2024-07-31T14:01:21.639871+02:00", "source": "Redhat", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41018", "version": 3.1 }, { "id": 431886, "score": 5.5, "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "reference": "CVE-2024-41018", "creation_date": "2024-08-01T03:00:08.132783+02:00", "description": "", "modified_date": "2024-08-01T03:00:08.132802+02:00", "source": "AMAZON_LINUX", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41018", "version": 3.1 } ], "affected_packages": [ { "package": "kernel-source", "codestream": "SUSE:ALP:Source:Standard:1.0", "product": null, "relation": "Not affected", "id": 5788712 }, { "package": "kernel-source", "codestream": "SUSE:SLE-11-SP4:Update", "product": null, "relation": "Not affected", "id": 5788713 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP3:Update", "product": null, "relation": "Not affected", "id": 5788714 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP3:Update:Products:Teradata:Update", "product": null, "relation": "Not affected", "id": 5788715 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP4:Update", "product": null, "relation": "Not affected", "id": 5788716 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP5:Update", "product": null, "relation": "Not affected", "id": 5788717 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP1:Update", "product": null, "relation": "Not affected", "id": 5788718 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP2:Update", "product": null, "relation": "Not affected", "id": 5788719 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP3:Update", "product": null, "relation": "Not affected", "id": 5788720 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP4:Update", "product": null, "relation": "Not affected", "id": 5788721 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Not affected", "id": 5788722 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP6:Update", "product": null, "relation": "Not affected", "id": 5788723 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15:Update", "product": null, "relation": "Not affected", "id": 5788724 }, { "package": "kernel-source", "codestream": "SUSE:SLFO:Main", "product": null, "relation": "Not affected", "id": 5788725 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Not affected", "id": 5788695 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Not affected", "id": 5788690 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sl-micro:6.0", "summary": "SUSE Linux Micro", "version": "6.0", "name": "SL-Micro" }, "relation": "Not affected", "id": 5788711 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-hpc:12:sp5", "summary": "SUSE Linux Enterprise High Performance Computing", "version": "12-SP5", "name": "SLE-HPC" }, "relation": "Not affected", "id": 5788669 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles:12:sp5", "summary": "SUSE Linux Enterprise Server", "version": "12-SP5", "name": "SLES" }, "relation": "Not affected", "id": 5788670 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5788673 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp1", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP1", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5788674 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp4", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP4", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5788696 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp2", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP2", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5788675 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp3", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP3", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5788692 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:12:sp4", "summary": "SUSE Linux Enterprise Server LTSS", "version": "12-SP4", "name": "SLES-LTSS" }, "relation": "Not affected", "id": 5788677 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_ltss_teradata:12:sp3", "summary": "SUSE Linux Enterprise Server Teradata LTSS", "version": "12-SP3", "name": "SLES_LTSS_TERADATA" }, "relation": "Not affected", "id": 5788687 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp4", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP4", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5788680 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp2", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP2", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5788672 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp3", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP3", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5788678 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp4", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP4", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5788667 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp5", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP5", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5788671 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_teradata:12:sp3", "summary": "SUSE Linux Enterprise Server Teradata", "version": "12-SP3", "name": "SLES_TERADATA" }, "relation": "Not affected", "id": 5788668 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-espos:15:sp4", "summary": "SUSE Linux Enterprise High Performance Computing ESPOS", "version": "15-SP4", "name": "SLE_HPC-ESPOS" }, "relation": "Not affected", "id": 5788681 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp3", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP3", "name": "SLE_HPC-LTSS" }, "relation": "Not affected", "id": 5788679 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp2", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP2", "name": "SLE_HPC-LTSS" }, "relation": "Not affected", "id": 5788676 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp4", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP4", "name": "SLE_HPC-LTSS" }, "relation": "Not affected", "id": 5788682 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-proxy:4.3", "summary": "SUSE Manager Proxy", "version": "4.3", "name": "SUSE-Manager-Proxy" }, "relation": "Not affected", "id": 5788683 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-retail-branch-server:4.3", "summary": "SUSE Manager Retail Branch Server", "version": "4.3", "name": "SUSE-Manager-Retail-Branch-Server" }, "relation": "Not affected", "id": 5788684 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-server:4.3", "summary": "SUSE Manager Server", "version": "4.3", "name": "SUSE-Manager-Server" }, "relation": "Not affected", "id": 5788685 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse_sles_ltss:11:sp4", "summary": "SUSE Linux Enterprise Server 11 SP4 LTSS", "version": "11-SP4", "name": "SUSE_SLES_LTSS" }, "relation": "Not affected", "id": 5788666 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse_sles_ltss-extreme-core:11:sp4", "summary": "SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE", "version": "11-SP4", "name": "SUSE_SLES_LTSS-EXTREME-CORE" }, "relation": "Not affected", "id": 5788691 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:ses:7.1", "summary": "SUSE Enterprise Storage", "version": "7.1", "name": "ses" }, "relation": "Not affected", "id": 5788686 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-basesystem:15:sp5", "summary": "Basesystem Module", "version": "15-SP5", "name": "sle-module-basesystem" }, "relation": "Not affected", "id": 5788689 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-basesystem:15:sp6", "summary": "Basesystem Module", "version": "15-SP6", "name": "sle-module-basesystem" }, "relation": "Not affected", "id": 5788694 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-development-tools:15:sp5", "summary": "Development Tools Module", "version": "15-SP5", "name": "sle-module-development-tools" }, "relation": "Not affected", "id": 5788688 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-development-tools:15:sp6", "summary": "Development Tools Module", "version": "15-SP6", "name": "sle-module-development-tools" }, "relation": "Not affected", "id": 5788693 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-12-SP5:Update", "product": null, "relation": "Not affected", "id": 5788726 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP4:Update", "product": null, "relation": "Unsupported", "id": 5788727 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Not affected", "id": 5788728 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP6:Update", "product": null, "relation": "Not affected", "id": 5788729 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Not affected", "id": 5788701 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Not affected", "id": 5788703 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-hpc:12:sp5", "summary": "SUSE Linux Enterprise High Performance Computing", "version": "12-SP5", "name": "SLE-HPC" }, "relation": "Not affected", "id": 5788697 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles:12:sp5", "summary": "SUSE Linux Enterprise Server", "version": "12-SP5", "name": "SLES" }, "relation": "Not affected", "id": 5788698 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp5", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP5", "name": "SLES_SAP" }, "relation": "Not affected", "id": 5788699 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp6", "summary": "Public Cloud Module", "version": "15-SP6", "name": "sle-module-public-cloud" }, "relation": "Not affected", "id": 5788702 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp5", "summary": "Public Cloud Module", "version": "15-SP5", "name": "sle-module-public-cloud" }, "relation": "Not affected", "id": 5788700 }, { "package": "kernel-source-rt", "codestream": "SUSE:ALP:Source:Standard:1.0", "product": null, "relation": "Not affected", "id": 5788734 }, { "package": "kernel-source-rt", "codestream": "SUSE:Carwos:1", "product": null, "relation": "Not affected", "id": 5788735 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-12-SP5:Update:Products:SLERT:Update", "product": null, "relation": "Not affected", "id": 5788736 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP3:Update:Products:SLERT:Update", "product": null, "relation": "Not affected", "id": 5788737 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP4:Update:Products:SLERT:Update", "product": null, "relation": "Not affected", "id": 5788738 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Not affected", "id": 5788739 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP6:Update:Products:SLERT:Update", "product": null, "relation": "Not affected", "id": 5788740 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLFO:Main", "product": null, "relation": "Not affected", "id": 5788741 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Not affected", "id": 5788707 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Not affected", "id": 5788710 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sl-micro:6.0", "summary": "SUSE Linux Micro", "version": "6.0", "name": "SL-Micro" }, "relation": "Not affected", "id": 5788733 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.4", "summary": "SUSE Linux Enterprise Micro", "version": "5.4", "name": "SLE-Micro" }, "relation": "Not affected", "id": 5788708 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.3", "summary": "SUSE Linux Enterprise Micro", "version": "5.3", "name": "SLE-Micro" }, "relation": "Not affected", "id": 5788706 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.5", "summary": "SUSE Linux Enterprise Micro", "version": "5.5", "name": "SLE-Micro" }, "relation": "Not affected", "id": 5788709 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-linux-enterprise-rt:12:sp5", "summary": "SUSE Linux Enterprise Real Time", "version": "12-SP5", "name": "SUSE-Linux-Enterprise-RT" }, "relation": "Not affected", "id": 5788730 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-microos:5.1", "summary": "SUSE Linux Enterprise Micro", "version": "5.1", "name": "SUSE-MicroOS" }, "relation": "Not affected", "id": 5788704 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-microos:5.2", "summary": "SUSE Linux Enterprise Micro", "version": "5.2", "name": "SUSE-MicroOS" }, "relation": "Not affected", "id": 5788705 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-rt:15:sp5", "summary": "SUSE Real Time Module", "version": "15-SP5", "name": "sle-module-rt" }, "relation": "Not affected", "id": 5788731 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-rt:15:sp6", "summary": "SUSE Real Time Module", "version": "15-SP6", "name": "sle-module-rt" }, "relation": "Not affected", "id": 5788732 } ], "url": "https://smash.suse.de/api/issue/415362", "creation_date": "2024-07-29T10:00:13.392910+02:00", "modified_date": "2024-07-29T12:04:38.625660+02:00", "ts_ignore": null, "ts_analysis": "2024-07-29T10:46:22.566241+02:00", "ts_analyzed": null, "ts_resolved": "2024-07-29T12:04:38.450412+02:00", "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415361, "name": "bnc#1228403", "severity": "moderate", "state": "Analyzed", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415361/", "references": [ { "name": "bnc#1228403", "url": "https://bugzilla.suse.com/show_bug.cgi?id=1228403", "source": "SUSE Bugzilla" }, { "name": "CVE-2024-41017", "url": "https://git.kernel.org/pub/scm/linux/security/vulns.git/plain/cve/published/2024/CVE-2024-41017.mbox", "source": "Linux Kernel CNA" }, { "name": "CVE-2024-41017", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41017", "source": "National Vulnerability Database" }, { "name": "https://git.kernel.org/stable/c/17440dbc66ab98b410514b04987f61deedb86751", "url": "https://git.kernel.org/stable/c/17440dbc66ab98b410514b04987f61deedb86751", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/4e034f7e563ab723b93a59980e4a1bb33198ece8", "url": "https://git.kernel.org/stable/c/4e034f7e563ab723b93a59980e4a1bb33198ece8", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/6386f1b6a10e5d1ddd03db4ff6dfc55d488852ce", "url": "https://git.kernel.org/stable/c/6386f1b6a10e5d1ddd03db4ff6dfc55d488852ce", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/7e21574195a45fc193555fa40e99fed16565ff7e", "url": "https://git.kernel.org/stable/c/7e21574195a45fc193555fa40e99fed16565ff7e", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/7f91bd0f2941fa36449ce1a15faaa64f840d9746", "url": "https://git.kernel.org/stable/c/7f91bd0f2941fa36449ce1a15faaa64f840d9746", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/d0fa70aca54c8643248e89061da23752506ec0d4", "url": "https://git.kernel.org/stable/c/d0fa70aca54c8643248e89061da23752506ec0d4", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/dbde7bc91093fa9c2410e418b236b70fde044b73", "url": "https://git.kernel.org/stable/c/dbde7bc91093fa9c2410e418b236b70fde044b73", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/f4435f476b9bf059cd9e26a69f5b29c768d00375", "url": "https://git.kernel.org/stable/c/f4435f476b9bf059cd9e26a69f5b29c768d00375", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/fc16776a82e8df97b6c4f9a10ba95aa44cef7ba5", "url": "https://git.kernel.org/stable/c/fc16776a82e8df97b6c4f9a10ba95aa44cef7ba5", "source": "Linux Kernel CNA" }, { "name": "rh#2300300", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2300300", "source": "Redhat Bugzilla" }, { "name": "CVE-2024-41017", "url": "https://www.cve.org/CVERecord?id=CVE-2024-41017", "source": "Mitre CVE Database" } ], "user": "crazybyte", "cvss": [ { "id": 431386, "score": 5.5, "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "reference": "CVE-2024-41017", "creation_date": "2024-07-29T11:57:59.667515+02:00", "description": "", "modified_date": "2024-07-29T11:57:59.667540+02:00", "source": "SUSE", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41017", "version": 3.1 }, { "id": 431701, "score": 5.5, "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "reference": "CVE-2024-41017", "creation_date": "2024-07-31T14:01:21.100076+02:00", "description": "", "modified_date": "2024-07-31T14:01:21.100092+02:00", "source": "Redhat", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41017", "version": 3.1 }, { "id": 431887, "score": 5.5, "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "reference": "CVE-2024-41017", "creation_date": "2024-08-01T03:00:08.887845+02:00", "description": "", "modified_date": "2024-08-01T03:00:08.887861+02:00", "source": "AMAZON_LINUX", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41017", "version": 3.1 } ], "affected_packages": [ { "package": "kernel-source", "codestream": "SUSE:ALP:Source:Standard:1.0", "product": null, "relation": "Affected", "id": 5788619 }, { "package": "kernel-source", "codestream": "SUSE:SLE-11-SP4:Update", "product": null, "relation": "Affected", "id": 5788620 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP3:Update", "product": null, "relation": "Affected", "id": 5788621 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP3:Update:Products:Teradata:Update", "product": null, "relation": "Affected", "id": 5788622 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP4:Update", "product": null, "relation": "Affected", "id": 5788623 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP5:Update", "product": null, "relation": "Affected", "id": 5788624 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP1:Update", "product": null, "relation": "Affected", "id": 5788625 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP2:Update", "product": null, "relation": "Affected", "id": 5788626 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP3:Update", "product": null, "relation": "Affected", "id": 5788627 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP4:Update", "product": null, "relation": "Affected", "id": 5788628 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Affected", "id": 5788629 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP6:Update", "product": null, "relation": "Affected", "id": 5788630 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15:Update", "product": null, "relation": "Affected", "id": 5788631 }, { "package": "kernel-source", "codestream": "SUSE:SLFO:Main", "product": null, "relation": "Affected", "id": 5788632 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Affected", "id": 5788611 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Affected", "id": 5788616 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sl-micro:6.0", "summary": "SUSE Linux Micro", "version": "6.0", "name": "SL-Micro" }, "relation": "Affected", "id": 5788618 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-hpc:12:sp5", "summary": "SUSE Linux Enterprise High Performance Computing", "version": "12-SP5", "name": "SLE-HPC" }, "relation": "Affected", "id": 5788590 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles:12:sp5", "summary": "SUSE Linux Enterprise Server", "version": "12-SP5", "name": "SLES" }, "relation": "Affected", "id": 5788591 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5788594 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp1", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP1", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5788595 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:12:sp4", "summary": "SUSE Linux Enterprise Server LTSS", "version": "12-SP4", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5788598 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp4", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP4", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5788617 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp3", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP3", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5788613 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp2", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP2", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5788596 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_ltss_teradata:12:sp3", "summary": "SUSE Linux Enterprise Server Teradata LTSS", "version": "12-SP3", "name": "SLES_LTSS_TERADATA" }, "relation": "Affected", "id": 5788608 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp2", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP2", "name": "SLES_SAP" }, "relation": "Affected", "id": 5788593 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp3", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP3", "name": "SLES_SAP" }, "relation": "Affected", "id": 5788599 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp4", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP4", "name": "SLES_SAP" }, "relation": "Affected", "id": 5788601 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp4", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP4", "name": "SLES_SAP" }, "relation": "Affected", "id": 5788588 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp5", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP5", "name": "SLES_SAP" }, "relation": "Affected", "id": 5788592 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_teradata:12:sp3", "summary": "SUSE Linux Enterprise Server Teradata", "version": "12-SP3", "name": "SLES_TERADATA" }, "relation": "Affected", "id": 5788589 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-espos:15:sp4", "summary": "SUSE Linux Enterprise High Performance Computing ESPOS", "version": "15-SP4", "name": "SLE_HPC-ESPOS" }, "relation": "Affected", "id": 5788602 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp2", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP2", "name": "SLE_HPC-LTSS" }, "relation": "Affected", "id": 5788597 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp3", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP3", "name": "SLE_HPC-LTSS" }, "relation": "Affected", "id": 5788600 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp4", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP4", "name": "SLE_HPC-LTSS" }, "relation": "Affected", "id": 5788603 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-proxy:4.3", "summary": "SUSE Manager Proxy", "version": "4.3", "name": "SUSE-Manager-Proxy" }, "relation": "Affected", "id": 5788604 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-retail-branch-server:4.3", "summary": "SUSE Manager Retail Branch Server", "version": "4.3", "name": "SUSE-Manager-Retail-Branch-Server" }, "relation": "Affected", "id": 5788605 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-server:4.3", "summary": "SUSE Manager Server", "version": "4.3", "name": "SUSE-Manager-Server" }, "relation": "Affected", "id": 5788606 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse_sles_ltss:11:sp4", "summary": "SUSE Linux Enterprise Server 11 SP4 LTSS", "version": "11-SP4", "name": "SUSE_SLES_LTSS" }, "relation": "Affected", "id": 5788587 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse_sles_ltss-extreme-core:11:sp4", "summary": "SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE", "version": "11-SP4", "name": "SUSE_SLES_LTSS-EXTREME-CORE" }, "relation": "Affected", "id": 5788612 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:ses:7.1", "summary": "SUSE Enterprise Storage", "version": "7.1", "name": "ses" }, "relation": "Affected", "id": 5788607 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-basesystem:15:sp5", "summary": "Basesystem Module", "version": "15-SP5", "name": "sle-module-basesystem" }, "relation": "Affected", "id": 5788610 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-basesystem:15:sp6", "summary": "Basesystem Module", "version": "15-SP6", "name": "sle-module-basesystem" }, "relation": "Affected", "id": 5788615 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-development-tools:15:sp5", "summary": "Development Tools Module", "version": "15-SP5", "name": "sle-module-development-tools" }, "relation": "Affected", "id": 5788609 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-development-tools:15:sp6", "summary": "Development Tools Module", "version": "15-SP6", "name": "sle-module-development-tools" }, "relation": "Affected", "id": 5788614 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-12-SP5:Update", "product": null, "relation": "Affected", "id": 5788640 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP4:Update", "product": null, "relation": "Unsupported", "id": 5788641 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Affected", "id": 5788642 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP6:Update", "product": null, "relation": "Affected", "id": 5788643 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Affected", "id": 5788637 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Affected", "id": 5788639 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-hpc:12:sp5", "summary": "SUSE Linux Enterprise High Performance Computing", "version": "12-SP5", "name": "SLE-HPC" }, "relation": "Affected", "id": 5788633 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles:12:sp5", "summary": "SUSE Linux Enterprise Server", "version": "12-SP5", "name": "SLES" }, "relation": "Affected", "id": 5788634 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp5", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP5", "name": "SLES_SAP" }, "relation": "Affected", "id": 5788635 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp6", "summary": "Public Cloud Module", "version": "15-SP6", "name": "sle-module-public-cloud" }, "relation": "Affected", "id": 5788638 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp5", "summary": "Public Cloud Module", "version": "15-SP5", "name": "sle-module-public-cloud" }, "relation": "Affected", "id": 5788636 }, { "package": "kernel-source-rt", "codestream": "SUSE:ALP:Source:Standard:1.0", "product": null, "relation": "Affected", "id": 5788655 }, { "package": "kernel-source-rt", "codestream": "SUSE:Carwos:1", "product": null, "relation": "Affected", "id": 5788656 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-12-SP5:Update:Products:SLERT:Update", "product": null, "relation": "Affected", "id": 5788657 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP3:Update:Products:SLERT:Update", "product": null, "relation": "Affected", "id": 5788658 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP4:Update:Products:SLERT:Update", "product": null, "relation": "Affected", "id": 5788659 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Affected", "id": 5788660 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP6:Update:Products:SLERT:Update", "product": null, "relation": "Affected", "id": 5788661 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLFO:Main", "product": null, "relation": "Affected", "id": 5788662 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Affected", "id": 5788653 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Affected", "id": 5788649 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sl-micro:6.0", "summary": "SUSE Linux Micro", "version": "6.0", "name": "SL-Micro" }, "relation": "Affected", "id": 5788654 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.5", "summary": "SUSE Linux Enterprise Micro", "version": "5.5", "name": "SLE-Micro" }, "relation": "Affected", "id": 5788652 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.4", "summary": "SUSE Linux Enterprise Micro", "version": "5.4", "name": "SLE-Micro" }, "relation": "Affected", "id": 5788650 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.3", "summary": "SUSE Linux Enterprise Micro", "version": "5.3", "name": "SLE-Micro" }, "relation": "Affected", "id": 5788647 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-linux-enterprise-rt:12:sp5", "summary": "SUSE Linux Enterprise Real Time", "version": "12-SP5", "name": "SUSE-Linux-Enterprise-RT" }, "relation": "Affected", "id": 5788644 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-microos:5.2", "summary": "SUSE Linux Enterprise Micro", "version": "5.2", "name": "SUSE-MicroOS" }, "relation": "Affected", "id": 5788646 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-microos:5.1", "summary": "SUSE Linux Enterprise Micro", "version": "5.1", "name": "SUSE-MicroOS" }, "relation": "Affected", "id": 5788645 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-rt:15:sp5", "summary": "SUSE Real Time Module", "version": "15-SP5", "name": "sle-module-rt" }, "relation": "Affected", "id": 5788648 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-rt:15:sp6", "summary": "SUSE Real Time Module", "version": "15-SP6", "name": "sle-module-rt" }, "relation": "Affected", "id": 5788651 } ], "url": "https://smash.suse.de/api/issue/415361", "creation_date": "2024-07-29T10:00:09.449852+02:00", "modified_date": "2024-07-29T12:00:09.841824+02:00", "ts_ignore": null, "ts_analysis": "2024-07-29T11:42:33.867104+02:00", "ts_analyzed": "2024-07-29T12:00:04.960852+02:00", "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415360, "name": "bnc#1228409", "severity": "low", "state": "Analyzed", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415360/", "references": [ { "name": "bnc#1228409", "url": "https://bugzilla.suse.com/show_bug.cgi?id=1228409", "source": "SUSE Bugzilla" }, { "name": "jsc#CAR-3997", "url": "https://jira.suse.com/browse/CAR-3997", "source": "SUSE Jira" }, { "name": "CVE-2024-41015", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41015", "source": "National Vulnerability Database" }, { "name": "CVE-2024-41015", "url": "https://git.kernel.org/pub/scm/linux/security/vulns.git/plain/cve/published/2024/CVE-2024-41015.mbox", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/13d38c00df97289e6fba2e54193959293fd910d2", "url": "https://git.kernel.org/stable/c/13d38c00df97289e6fba2e54193959293fd910d2", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/255547c6bb8940a97eea94ef9d464ea5967763fb", "url": "https://git.kernel.org/stable/c/255547c6bb8940a97eea94ef9d464ea5967763fb", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/53de17ad01cb5f6f8426f597e9d5c87d4cf53bb7", "url": "https://git.kernel.org/stable/c/53de17ad01cb5f6f8426f597e9d5c87d4cf53bb7", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/564d23cc5b216211e1694d53f7e45959396874d0", "url": "https://git.kernel.org/stable/c/564d23cc5b216211e1694d53f7e45959396874d0", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/624b380074f0dc209fb8706db3295c735079f34c", "url": "https://git.kernel.org/stable/c/624b380074f0dc209fb8706db3295c735079f34c", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/77495e5da5cb110a8fed27b052c77853fe282176", "url": "https://git.kernel.org/stable/c/77495e5da5cb110a8fed27b052c77853fe282176", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/e05a24289db90f76ff606086aadd62d068a88dcd", "url": "https://git.kernel.org/stable/c/e05a24289db90f76ff606086aadd62d068a88dcd", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/edb2e67dd4626b06fd7eb37252d5067912e78d59", "url": "https://git.kernel.org/stable/c/edb2e67dd4626b06fd7eb37252d5067912e78d59", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/fd65685594ee707cbf3ddf22ebb73697786ac114", "url": "https://git.kernel.org/stable/c/fd65685594ee707cbf3ddf22ebb73697786ac114", "source": "Linux Kernel CNA" }, { "name": "rh#2300298", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2300298", "source": "Redhat Bugzilla" }, { "name": "CVE-2024-41015", "url": "https://www.cve.org/CVERecord?id=CVE-2024-41015", "source": "Mitre CVE Database" } ], "user": "amattiazzo", "cvss": [ { "id": 431392, "score": 3.3, "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N", "reference": "CVE-2024-41015", "creation_date": "2024-07-29T14:17:54.920326+02:00", "description": "", "modified_date": "2024-07-29T14:17:54.920342+02:00", "source": "SUSE", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41015", "version": 3.1 }, { "id": 431699, "score": 5.5, "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "reference": "CVE-2024-41015", "creation_date": "2024-07-31T14:01:20.040499+02:00", "description": "", "modified_date": "2024-07-31T14:01:20.040517+02:00", "source": "Redhat", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41015", "version": 3.1 }, { "id": 431884, "score": 5.5, "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "reference": "CVE-2024-41015", "creation_date": "2024-08-01T03:00:06.548549+02:00", "description": "", "modified_date": "2024-08-01T03:00:06.548565+02:00", "source": "AMAZON_LINUX", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41015", "version": 3.1 } ], "affected_packages": [ { "package": "kernel-source", "codestream": "SUSE:ALP:Source:Standard:1.0", "product": null, "relation": "Affected", "id": 5788543 }, { "package": "kernel-source", "codestream": "SUSE:SLE-11-SP4:Update", "product": null, "relation": "Affected", "id": 5788544 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP3:Update", "product": null, "relation": "Affected", "id": 5788545 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP3:Update:Products:Teradata:Update", "product": null, "relation": "Affected", "id": 5788546 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP4:Update", "product": null, "relation": "Affected", "id": 5788547 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP5:Update", "product": null, "relation": "Affected", "id": 5788548 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP1:Update", "product": null, "relation": "Affected", "id": 5788549 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP2:Update", "product": null, "relation": "Affected", "id": 5788550 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP3:Update", "product": null, "relation": "Affected", "id": 5788551 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP4:Update", "product": null, "relation": "Affected", "id": 5788552 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Affected", "id": 5788553 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP6:Update", "product": null, "relation": "Affected", "id": 5788554 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15:Update", "product": null, "relation": "Affected", "id": 5788555 }, { "package": "kernel-source", "codestream": "SUSE:SLFO:Main", "product": null, "relation": "Affected", "id": 5788556 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Affected", "id": 5788535 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Affected", "id": 5788540 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sl-micro:6.0", "summary": "SUSE Linux Micro", "version": "6.0", "name": "SL-Micro" }, "relation": "Affected", "id": 5788542 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-hpc:12:sp5", "summary": "SUSE Linux Enterprise High Performance Computing", "version": "12-SP5", "name": "SLE-HPC" }, "relation": "Affected", "id": 5788514 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles:12:sp5", "summary": "SUSE Linux Enterprise Server", "version": "12-SP5", "name": "SLES" }, "relation": "Affected", "id": 5788515 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5788518 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp1", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP1", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5788519 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp2", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP2", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5788520 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:12:sp4", "summary": "SUSE Linux Enterprise Server LTSS", "version": "12-SP4", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5788522 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp4", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP4", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5788541 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp3", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP3", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5788537 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_ltss_teradata:12:sp3", "summary": "SUSE Linux Enterprise Server Teradata LTSS", "version": "12-SP3", "name": "SLES_LTSS_TERADATA" }, "relation": "Affected", "id": 5788532 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp4", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP4", "name": "SLES_SAP" }, "relation": "Affected", "id": 5788512 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp5", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP5", "name": "SLES_SAP" }, "relation": "Affected", "id": 5788516 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp4", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP4", "name": "SLES_SAP" }, "relation": "Affected", "id": 5788525 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp3", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP3", "name": "SLES_SAP" }, "relation": "Affected", "id": 5788523 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp2", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP2", "name": "SLES_SAP" }, "relation": "Affected", "id": 5788517 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_teradata:12:sp3", "summary": "SUSE Linux Enterprise Server Teradata", "version": "12-SP3", "name": "SLES_TERADATA" }, "relation": "Affected", "id": 5788513 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-espos:15:sp4", "summary": "SUSE Linux Enterprise High Performance Computing ESPOS", "version": "15-SP4", "name": "SLE_HPC-ESPOS" }, "relation": "Affected", "id": 5788526 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp4", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP4", "name": "SLE_HPC-LTSS" }, "relation": "Affected", "id": 5788527 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp3", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP3", "name": "SLE_HPC-LTSS" }, "relation": "Affected", "id": 5788524 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp2", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP2", "name": "SLE_HPC-LTSS" }, "relation": "Affected", "id": 5788521 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-proxy:4.3", "summary": "SUSE Manager Proxy", "version": "4.3", "name": "SUSE-Manager-Proxy" }, "relation": "Affected", "id": 5788528 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-retail-branch-server:4.3", "summary": "SUSE Manager Retail Branch Server", "version": "4.3", "name": "SUSE-Manager-Retail-Branch-Server" }, "relation": "Affected", "id": 5788529 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-server:4.3", "summary": "SUSE Manager Server", "version": "4.3", "name": "SUSE-Manager-Server" }, "relation": "Affected", "id": 5788530 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse_sles_ltss:11:sp4", "summary": "SUSE Linux Enterprise Server 11 SP4 LTSS", "version": "11-SP4", "name": "SUSE_SLES_LTSS" }, "relation": "Affected", "id": 5788511 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse_sles_ltss-extreme-core:11:sp4", "summary": "SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE", "version": "11-SP4", "name": "SUSE_SLES_LTSS-EXTREME-CORE" }, "relation": "Affected", "id": 5788536 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:ses:7.1", "summary": "SUSE Enterprise Storage", "version": "7.1", "name": "ses" }, "relation": "Affected", "id": 5788531 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-basesystem:15:sp5", "summary": "Basesystem Module", "version": "15-SP5", "name": "sle-module-basesystem" }, "relation": "Affected", "id": 5788534 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-basesystem:15:sp6", "summary": "Basesystem Module", "version": "15-SP6", "name": "sle-module-basesystem" }, "relation": "Affected", "id": 5788539 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-development-tools:15:sp6", "summary": "Development Tools Module", "version": "15-SP6", "name": "sle-module-development-tools" }, "relation": "Affected", "id": 5788538 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-development-tools:15:sp5", "summary": "Development Tools Module", "version": "15-SP5", "name": "sle-module-development-tools" }, "relation": "Affected", "id": 5788533 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-12-SP5:Update", "product": null, "relation": "Affected", "id": 5788564 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP4:Update", "product": null, "relation": "Unsupported", "id": 5788565 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Affected", "id": 5788566 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP6:Update", "product": null, "relation": "Affected", "id": 5788567 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Affected", "id": 5788561 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Affected", "id": 5788563 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-hpc:12:sp5", "summary": "SUSE Linux Enterprise High Performance Computing", "version": "12-SP5", "name": "SLE-HPC" }, "relation": "Affected", "id": 5788557 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles:12:sp5", "summary": "SUSE Linux Enterprise Server", "version": "12-SP5", "name": "SLES" }, "relation": "Affected", "id": 5788558 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp5", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP5", "name": "SLES_SAP" }, "relation": "Affected", "id": 5788559 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp6", "summary": "Public Cloud Module", "version": "15-SP6", "name": "sle-module-public-cloud" }, "relation": "Affected", "id": 5788562 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp5", "summary": "Public Cloud Module", "version": "15-SP5", "name": "sle-module-public-cloud" }, "relation": "Affected", "id": 5788560 }, { "package": "kernel-source-rt", "codestream": "SUSE:ALP:Source:Standard:1.0", "product": null, "relation": "Affected", "id": 5788579 }, { "package": "kernel-source-rt", "codestream": "SUSE:Carwos:1", "product": null, "relation": "Affected", "id": 5788580 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-12-SP5:Update:Products:SLERT:Update", "product": null, "relation": "Affected", "id": 5788581 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP3:Update:Products:SLERT:Update", "product": null, "relation": "Affected", "id": 5788582 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP4:Update:Products:SLERT:Update", "product": null, "relation": "Affected", "id": 5788583 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Affected", "id": 5788584 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP6:Update:Products:SLERT:Update", "product": null, "relation": "Affected", "id": 5788585 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLFO:Main", "product": null, "relation": "Affected", "id": 5788586 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Affected", "id": 5788577 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Affected", "id": 5788573 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sl-micro:6.0", "summary": "SUSE Linux Micro", "version": "6.0", "name": "SL-Micro" }, "relation": "Affected", "id": 5788578 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.4", "summary": "SUSE Linux Enterprise Micro", "version": "5.4", "name": "SLE-Micro" }, "relation": "Affected", "id": 5788574 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.3", "summary": "SUSE Linux Enterprise Micro", "version": "5.3", "name": "SLE-Micro" }, "relation": "Affected", "id": 5788571 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.5", "summary": "SUSE Linux Enterprise Micro", "version": "5.5", "name": "SLE-Micro" }, "relation": "Affected", "id": 5788576 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-linux-enterprise-rt:12:sp5", "summary": "SUSE Linux Enterprise Real Time", "version": "12-SP5", "name": "SUSE-Linux-Enterprise-RT" }, "relation": "Affected", "id": 5788568 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-microos:5.1", "summary": "SUSE Linux Enterprise Micro", "version": "5.1", "name": "SUSE-MicroOS" }, "relation": "Affected", "id": 5788569 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-microos:5.2", "summary": "SUSE Linux Enterprise Micro", "version": "5.2", "name": "SUSE-MicroOS" }, "relation": "Affected", "id": 5788570 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-rt:15:sp5", "summary": "SUSE Real Time Module", "version": "15-SP5", "name": "sle-module-rt" }, "relation": "Affected", "id": 5788572 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-rt:15:sp6", "summary": "SUSE Real Time Module", "version": "15-SP6", "name": "sle-module-rt" }, "relation": "Affected", "id": 5788575 } ], "url": "https://smash.suse.de/api/issue/415360", "creation_date": "2024-07-29T10:00:05.447054+02:00", "modified_date": "2024-07-29T14:18:04.422733+02:00", "ts_ignore": null, "ts_analysis": "2024-07-29T10:34:37.388515+02:00", "ts_analyzed": "2024-07-29T14:18:04.419224+02:00", "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415359, "name": "bnc#1228410", "severity": "moderate", "state": "Analyzed", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415359/", "references": [ { "name": "bnc#1228410", "url": "https://bugzilla.suse.com/show_bug.cgi?id=1228410", "source": "SUSE Bugzilla" }, { "name": "jsc#CAR-3996", "url": "https://jira.suse.com/browse/CAR-3996", "source": "SUSE Jira" }, { "name": "CVE-2024-41016", "url": "https://git.kernel.org/pub/scm/linux/security/vulns.git/plain/cve/published/2024/CVE-2024-41016.mbox", "source": "Linux Kernel CNA" }, { "name": "CVE-2024-41016", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41016", "source": "National Vulnerability Database" }, { "name": "https://git.kernel.org/stable/c/af77c4fc1871847b528d58b7fdafb4aa1f6a9262", "url": "https://git.kernel.org/stable/c/af77c4fc1871847b528d58b7fdafb4aa1f6a9262", "source": "Linux Kernel CNA" }, { "name": "rh#2300299", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2300299", "source": "Redhat Bugzilla" }, { "name": "CVE-2024-41016", "url": "https://www.cve.org/CVERecord?id=CVE-2024-41016", "source": "Mitre CVE Database" } ], "user": "amattiazzo", "cvss": [ { "id": 431390, "score": 5.5, "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N", "reference": "CVE-2024-41016", "creation_date": "2024-07-29T13:10:11.810061+02:00", "description": "", "modified_date": "2024-07-29T13:10:11.810088+02:00", "source": "SUSE", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41016", "version": 3.1 }, { "id": 431700, "score": 5.5, "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "reference": "CVE-2024-41016", "creation_date": "2024-07-31T14:01:20.588616+02:00", "description": "", "modified_date": "2024-07-31T14:01:20.588633+02:00", "source": "Redhat", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41016", "version": 3.1 }, { "id": 431893, "score": 5.5, "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "reference": "CVE-2024-41016", "creation_date": "2024-08-01T03:00:13.858102+02:00", "description": "", "modified_date": "2024-08-01T03:00:13.858123+02:00", "source": "AMAZON_LINUX", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41016", "version": 3.1 } ], "affected_packages": [ { "package": "kernel-source", "codestream": "SUSE:ALP:Source:Standard:1.0", "product": null, "relation": "Affected", "id": 5788467 }, { "package": "kernel-source", "codestream": "SUSE:SLE-11-SP4:Update", "product": null, "relation": "Affected", "id": 5788468 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP3:Update", "product": null, "relation": "Affected", "id": 5788469 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP3:Update:Products:Teradata:Update", "product": null, "relation": "Affected", "id": 5788470 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP4:Update", "product": null, "relation": "Affected", "id": 5788471 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP5:Update", "product": null, "relation": "Affected", "id": 5788472 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP1:Update", "product": null, "relation": "Affected", "id": 5788473 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP2:Update", "product": null, "relation": "Affected", "id": 5788474 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP3:Update", "product": null, "relation": "Affected", "id": 5788475 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP4:Update", "product": null, "relation": "Affected", "id": 5788476 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Affected", "id": 5788477 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP6:Update", "product": null, "relation": "Affected", "id": 5788478 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15:Update", "product": null, "relation": "Affected", "id": 5788479 }, { "package": "kernel-source", "codestream": "SUSE:SLFO:Main", "product": null, "relation": "Affected", "id": 5788480 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Affected", "id": 5788459 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Affected", "id": 5788464 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sl-micro:6.0", "summary": "SUSE Linux Micro", "version": "6.0", "name": "SL-Micro" }, "relation": "Affected", "id": 5788466 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-hpc:12:sp5", "summary": "SUSE Linux Enterprise High Performance Computing", "version": "12-SP5", "name": "SLE-HPC" }, "relation": "Affected", "id": 5788438 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles:12:sp5", "summary": "SUSE Linux Enterprise Server", "version": "12-SP5", "name": "SLES" }, "relation": "Affected", "id": 5788439 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp3", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP3", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5788461 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp1", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP1", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5788443 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp2", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP2", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5788444 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5788442 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:12:sp4", "summary": "SUSE Linux Enterprise Server LTSS", "version": "12-SP4", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5788446 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp4", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP4", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5788465 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_ltss_teradata:12:sp3", "summary": "SUSE Linux Enterprise Server Teradata LTSS", "version": "12-SP3", "name": "SLES_LTSS_TERADATA" }, "relation": "Affected", "id": 5788456 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp4", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP4", "name": "SLES_SAP" }, "relation": "Affected", "id": 5788436 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp4", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP4", "name": "SLES_SAP" }, "relation": "Affected", "id": 5788449 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp2", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP2", "name": "SLES_SAP" }, "relation": "Affected", "id": 5788441 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp5", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP5", "name": "SLES_SAP" }, "relation": "Affected", "id": 5788440 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp3", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP3", "name": "SLES_SAP" }, "relation": "Affected", "id": 5788447 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_teradata:12:sp3", "summary": "SUSE Linux Enterprise Server Teradata", "version": "12-SP3", "name": "SLES_TERADATA" }, "relation": "Affected", "id": 5788437 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-espos:15:sp4", "summary": "SUSE Linux Enterprise High Performance Computing ESPOS", "version": "15-SP4", "name": "SLE_HPC-ESPOS" }, "relation": "Affected", "id": 5788450 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp4", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP4", "name": "SLE_HPC-LTSS" }, "relation": "Affected", "id": 5788451 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp2", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP2", "name": "SLE_HPC-LTSS" }, "relation": "Affected", "id": 5788445 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp3", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP3", "name": "SLE_HPC-LTSS" }, "relation": "Affected", "id": 5788448 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-proxy:4.3", "summary": "SUSE Manager Proxy", "version": "4.3", "name": "SUSE-Manager-Proxy" }, "relation": "Affected", "id": 5788452 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-retail-branch-server:4.3", "summary": "SUSE Manager Retail Branch Server", "version": "4.3", "name": "SUSE-Manager-Retail-Branch-Server" }, "relation": "Affected", "id": 5788453 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-server:4.3", "summary": "SUSE Manager Server", "version": "4.3", "name": "SUSE-Manager-Server" }, "relation": "Affected", "id": 5788454 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse_sles_ltss:11:sp4", "summary": "SUSE Linux Enterprise Server 11 SP4 LTSS", "version": "11-SP4", "name": "SUSE_SLES_LTSS" }, "relation": "Affected", "id": 5788435 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse_sles_ltss-extreme-core:11:sp4", "summary": "SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE", "version": "11-SP4", "name": "SUSE_SLES_LTSS-EXTREME-CORE" }, "relation": "Affected", "id": 5788460 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:ses:7.1", "summary": "SUSE Enterprise Storage", "version": "7.1", "name": "ses" }, "relation": "Affected", "id": 5788455 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-basesystem:15:sp5", "summary": "Basesystem Module", "version": "15-SP5", "name": "sle-module-basesystem" }, "relation": "Affected", "id": 5788458 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-basesystem:15:sp6", "summary": "Basesystem Module", "version": "15-SP6", "name": "sle-module-basesystem" }, "relation": "Affected", "id": 5788463 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-development-tools:15:sp6", "summary": "Development Tools Module", "version": "15-SP6", "name": "sle-module-development-tools" }, "relation": "Affected", "id": 5788462 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-development-tools:15:sp5", "summary": "Development Tools Module", "version": "15-SP5", "name": "sle-module-development-tools" }, "relation": "Affected", "id": 5788457 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-12-SP5:Update", "product": null, "relation": "Affected", "id": 5788488 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP4:Update", "product": null, "relation": "Unsupported", "id": 5788489 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Affected", "id": 5788490 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP6:Update", "product": null, "relation": "Affected", "id": 5788491 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Affected", "id": 5788485 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Affected", "id": 5788487 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-hpc:12:sp5", "summary": "SUSE Linux Enterprise High Performance Computing", "version": "12-SP5", "name": "SLE-HPC" }, "relation": "Affected", "id": 5788481 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles:12:sp5", "summary": "SUSE Linux Enterprise Server", "version": "12-SP5", "name": "SLES" }, "relation": "Affected", "id": 5788482 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp5", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP5", "name": "SLES_SAP" }, "relation": "Affected", "id": 5788483 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp5", "summary": "Public Cloud Module", "version": "15-SP5", "name": "sle-module-public-cloud" }, "relation": "Affected", "id": 5788484 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp6", "summary": "Public Cloud Module", "version": "15-SP6", "name": "sle-module-public-cloud" }, "relation": "Affected", "id": 5788486 }, { "package": "kernel-source-rt", "codestream": "SUSE:ALP:Source:Standard:1.0", "product": null, "relation": "Affected", "id": 5788503 }, { "package": "kernel-source-rt", "codestream": "SUSE:Carwos:1", "product": null, "relation": "Affected", "id": 5788504 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-12-SP5:Update:Products:SLERT:Update", "product": null, "relation": "Affected", "id": 5788505 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP3:Update:Products:SLERT:Update", "product": null, "relation": "Affected", "id": 5788506 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP4:Update:Products:SLERT:Update", "product": null, "relation": "Affected", "id": 5788507 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Affected", "id": 5788508 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP6:Update:Products:SLERT:Update", "product": null, "relation": "Affected", "id": 5788509 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLFO:Main", "product": null, "relation": "Affected", "id": 5788510 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Affected", "id": 5788497 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Affected", "id": 5788501 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sl-micro:6.0", "summary": "SUSE Linux Micro", "version": "6.0", "name": "SL-Micro" }, "relation": "Affected", "id": 5788502 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.5", "summary": "SUSE Linux Enterprise Micro", "version": "5.5", "name": "SLE-Micro" }, "relation": "Affected", "id": 5788500 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.4", "summary": "SUSE Linux Enterprise Micro", "version": "5.4", "name": "SLE-Micro" }, "relation": "Affected", "id": 5788498 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.3", "summary": "SUSE Linux Enterprise Micro", "version": "5.3", "name": "SLE-Micro" }, "relation": "Affected", "id": 5788495 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-linux-enterprise-rt:12:sp5", "summary": "SUSE Linux Enterprise Real Time", "version": "12-SP5", "name": "SUSE-Linux-Enterprise-RT" }, "relation": "Affected", "id": 5788492 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-microos:5.2", "summary": "SUSE Linux Enterprise Micro", "version": "5.2", "name": "SUSE-MicroOS" }, "relation": "Affected", "id": 5788494 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-microos:5.1", "summary": "SUSE Linux Enterprise Micro", "version": "5.1", "name": "SUSE-MicroOS" }, "relation": "Affected", "id": 5788493 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-rt:15:sp5", "summary": "SUSE Real Time Module", "version": "15-SP5", "name": "sle-module-rt" }, "relation": "Affected", "id": 5788496 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-rt:15:sp6", "summary": "SUSE Real Time Module", "version": "15-SP6", "name": "sle-module-rt" }, "relation": "Affected", "id": 5788499 } ], "url": "https://smash.suse.de/api/issue/415359", "creation_date": "2024-07-29T10:00:03.739259+02:00", "modified_date": "2024-07-29T13:12:39.323675+02:00", "ts_ignore": null, "ts_analysis": "2024-07-29T10:34:37.874944+02:00", "ts_analyzed": "2024-07-29T13:12:39.321676+02:00", "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415357, "name": "bnc#1228405", "severity": "low", "state": "Analyzed", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415357/", "references": [ { "name": "bnc#1228405", "url": "https://bugzilla.suse.com/show_bug.cgi?id=1228405", "source": "SUSE Bugzilla" }, { "name": "jsc#CAR-3994", "url": "https://jira.suse.com/browse/CAR-3994", "source": "SUSE Jira" }, { "name": "CVE-2024-41013", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41013", "source": "National Vulnerability Database" }, { "name": "CVE-2024-41013", "url": "https://git.kernel.org/pub/scm/linux/security/vulns.git/plain/cve/published/2024/CVE-2024-41013.mbox", "source": "Linux Kernel CNA" }, { "name": "https://git.kernel.org/stable/c/0c7fcdb6d06cdf8b19b57c17605215b06afa864a", "url": "https://git.kernel.org/stable/c/0c7fcdb6d06cdf8b19b57c17605215b06afa864a", "source": "Linux Kernel CNA" }, { "name": "rh#2300296", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2300296", "source": "Redhat Bugzilla" }, { "name": "CVE-2024-41013", "url": "https://www.cve.org/CVERecord?id=CVE-2024-41013", "source": "Mitre CVE Database" } ], "user": "amattiazzo", "cvss": [ { "id": 431388, "score": 3.3, "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", "reference": "CVE-2024-41013", "creation_date": "2024-07-29T12:10:43.247066+02:00", "description": "", "modified_date": "2024-07-29T12:26:43.537827+02:00", "source": "SUSE", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41013", "version": 3.1 }, { "id": 431697, "score": 5.5, "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "reference": "CVE-2024-41013", "creation_date": "2024-07-31T14:01:18.906988+02:00", "description": "", "modified_date": "2024-07-31T14:01:18.907005+02:00", "source": "Redhat", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41013", "version": 3.1 }, { "id": 431888, "score": 5.5, "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "reference": "CVE-2024-41013", "creation_date": "2024-08-01T03:00:09.682344+02:00", "description": "", "modified_date": "2024-08-01T03:00:09.682360+02:00", "source": "AMAZON_LINUX", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-41013", "version": 3.1 } ], "affected_packages": [ { "package": "kernel-source", "codestream": "SUSE:ALP:Source:Standard:1.0", "product": null, "relation": "Affected", "id": 5788391 }, { "package": "kernel-source", "codestream": "SUSE:SLE-11-SP4:Update", "product": null, "relation": "Affected", "id": 5788392 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP3:Update", "product": null, "relation": "Affected", "id": 5788393 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP3:Update:Products:Teradata:Update", "product": null, "relation": "Affected", "id": 5788394 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP4:Update", "product": null, "relation": "Affected", "id": 5788395 }, { "package": "kernel-source", "codestream": "SUSE:SLE-12-SP5:Update", "product": null, "relation": "Affected", "id": 5788396 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP1:Update", "product": null, "relation": "Affected", "id": 5788397 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP2:Update", "product": null, "relation": "Affected", "id": 5788398 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP3:Update", "product": null, "relation": "Affected", "id": 5788399 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP4:Update", "product": null, "relation": "Affected", "id": 5788400 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Affected", "id": 5788401 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15-SP6:Update", "product": null, "relation": "Affected", "id": 5788402 }, { "package": "kernel-source", "codestream": "SUSE:SLE-15:Update", "product": null, "relation": "Affected", "id": 5788403 }, { "package": "kernel-source", "codestream": "SUSE:SLFO:Main", "product": null, "relation": "Affected", "id": 5788404 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Affected", "id": 5788388 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Affected", "id": 5788383 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sl-micro:6.0", "summary": "SUSE Linux Micro", "version": "6.0", "name": "SL-Micro" }, "relation": "Affected", "id": 5788390 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-hpc:12:sp5", "summary": "SUSE Linux Enterprise High Performance Computing", "version": "12-SP5", "name": "SLE-HPC" }, "relation": "Affected", "id": 5788362 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles:12:sp5", "summary": "SUSE Linux Enterprise Server", "version": "12-SP5", "name": "SLES" }, "relation": "Affected", "id": 5788363 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5788366 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp4", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP4", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5788389 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp2", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP2", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5788368 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp1", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP1", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5788367 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:12:sp4", "summary": "SUSE Linux Enterprise Server LTSS", "version": "12-SP4", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5788370 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles-ltss:15:sp3", "summary": "SUSE Linux Enterprise Server LTSS", "version": "15-SP3", "name": "SLES-LTSS" }, "relation": "Affected", "id": 5788385 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_ltss_teradata:12:sp3", "summary": "SUSE Linux Enterprise Server Teradata LTSS", "version": "12-SP3", "name": "SLES_LTSS_TERADATA" }, "relation": "Affected", "id": 5788380 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp2", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP2", "name": "SLES_SAP" }, "relation": "Affected", "id": 5788365 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp5", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP5", "name": "SLES_SAP" }, "relation": "Affected", "id": 5788364 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp4", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP4", "name": "SLES_SAP" }, "relation": "Affected", "id": 5788360 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp4", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP4", "name": "SLES_SAP" }, "relation": "Affected", "id": 5788373 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:15:sp3", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "15-SP3", "name": "SLES_SAP" }, "relation": "Affected", "id": 5788371 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_teradata:12:sp3", "summary": "SUSE Linux Enterprise Server Teradata", "version": "12-SP3", "name": "SLES_TERADATA" }, "relation": "Affected", "id": 5788361 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-espos:15:sp4", "summary": "SUSE Linux Enterprise High Performance Computing ESPOS", "version": "15-SP4", "name": "SLE_HPC-ESPOS" }, "relation": "Affected", "id": 5788374 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp2", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP2", "name": "SLE_HPC-LTSS" }, "relation": "Affected", "id": 5788369 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp3", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP3", "name": "SLE_HPC-LTSS" }, "relation": "Affected", "id": 5788372 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp4", "summary": "SUSE Linux Enterprise High Performance Computing LTSS", "version": "15-SP4", "name": "SLE_HPC-LTSS" }, "relation": "Affected", "id": 5788375 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-proxy:4.3", "summary": "SUSE Manager Proxy", "version": "4.3", "name": "SUSE-Manager-Proxy" }, "relation": "Affected", "id": 5788376 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-retail-branch-server:4.3", "summary": "SUSE Manager Retail Branch Server", "version": "4.3", "name": "SUSE-Manager-Retail-Branch-Server" }, "relation": "Affected", "id": 5788377 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-manager-server:4.3", "summary": "SUSE Manager Server", "version": "4.3", "name": "SUSE-Manager-Server" }, "relation": "Affected", "id": 5788378 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse_sles_ltss:11:sp4", "summary": "SUSE Linux Enterprise Server 11 SP4 LTSS", "version": "11-SP4", "name": "SUSE_SLES_LTSS" }, "relation": "Affected", "id": 5788359 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse_sles_ltss-extreme-core:11:sp4", "summary": "SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE", "version": "11-SP4", "name": "SUSE_SLES_LTSS-EXTREME-CORE" }, "relation": "Affected", "id": 5788384 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:ses:7.1", "summary": "SUSE Enterprise Storage", "version": "7.1", "name": "ses" }, "relation": "Affected", "id": 5788379 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-basesystem:15:sp6", "summary": "Basesystem Module", "version": "15-SP6", "name": "sle-module-basesystem" }, "relation": "Affected", "id": 5788387 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-basesystem:15:sp5", "summary": "Basesystem Module", "version": "15-SP5", "name": "sle-module-basesystem" }, "relation": "Affected", "id": 5788382 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-development-tools:15:sp6", "summary": "Development Tools Module", "version": "15-SP6", "name": "sle-module-development-tools" }, "relation": "Affected", "id": 5788386 }, { "package": "kernel-source", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-development-tools:15:sp5", "summary": "Development Tools Module", "version": "15-SP5", "name": "sle-module-development-tools" }, "relation": "Affected", "id": 5788381 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-12-SP5:Update", "product": null, "relation": "Affected", "id": 5788412 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP4:Update", "product": null, "relation": "Unsupported", "id": 5788413 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Affected", "id": 5788414 }, { "package": "kernel-source-azure", "codestream": "SUSE:SLE-15-SP6:Update", "product": null, "relation": "Affected", "id": 5788415 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Affected", "id": 5788411 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Affected", "id": 5788409 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-hpc:12:sp5", "summary": "SUSE Linux Enterprise High Performance Computing", "version": "12-SP5", "name": "SLE-HPC" }, "relation": "Affected", "id": 5788405 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles:12:sp5", "summary": "SUSE Linux Enterprise Server", "version": "12-SP5", "name": "SLES" }, "relation": "Affected", "id": 5788406 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sles_sap:12:sp5", "summary": "SUSE Linux Enterprise Server for SAP Applications", "version": "12-SP5", "name": "SLES_SAP" }, "relation": "Affected", "id": 5788407 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp5", "summary": "Public Cloud Module", "version": "15-SP5", "name": "sle-module-public-cloud" }, "relation": "Affected", "id": 5788408 }, { "package": "kernel-source-azure", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-public-cloud:15:sp6", "summary": "Public Cloud Module", "version": "15-SP6", "name": "sle-module-public-cloud" }, "relation": "Affected", "id": 5788410 }, { "package": "kernel-source-rt", "codestream": "SUSE:ALP:Source:Standard:1.0", "product": null, "relation": "Affected", "id": 5788427 }, { "package": "kernel-source-rt", "codestream": "SUSE:Carwos:1", "product": null, "relation": "Affected", "id": 5788428 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-12-SP5:Update:Products:SLERT:Update", "product": null, "relation": "Affected", "id": 5788429 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP3:Update:Products:SLERT:Update", "product": null, "relation": "Affected", "id": 5788430 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP4:Update:Products:SLERT:Update", "product": null, "relation": "Affected", "id": 5788431 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP5:Update", "product": null, "relation": "Affected", "id": 5788432 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLE-15-SP6:Update:Products:SLERT:Update", "product": null, "relation": "Affected", "id": 5788433 }, { "package": "kernel-source-rt", "codestream": "SUSE:SLFO:Main", "product": null, "relation": "Affected", "id": 5788434 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.6", "summary": "openSUSE Leap", "version": "15.6", "name": "Leap" }, "relation": "Affected", "id": 5788425 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:opensuse:leap:15.5", "summary": "openSUSE Leap", "version": "15.5", "name": "Leap" }, "relation": "Affected", "id": 5788421 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sl-micro:6.0", "summary": "SUSE Linux Micro", "version": "6.0", "name": "SL-Micro" }, "relation": "Affected", "id": 5788426 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.5", "summary": "SUSE Linux Enterprise Micro", "version": "5.5", "name": "SLE-Micro" }, "relation": "Affected", "id": 5788424 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.4", "summary": "SUSE Linux Enterprise Micro", "version": "5.4", "name": "SLE-Micro" }, "relation": "Affected", "id": 5788422 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-micro:5.3", "summary": "SUSE Linux Enterprise Micro", "version": "5.3", "name": "SLE-Micro" }, "relation": "Affected", "id": 5788419 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-linux-enterprise-rt:12:sp5", "summary": "SUSE Linux Enterprise Real Time", "version": "12-SP5", "name": "SUSE-Linux-Enterprise-RT" }, "relation": "Affected", "id": 5788416 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-microos:5.1", "summary": "SUSE Linux Enterprise Micro", "version": "5.1", "name": "SUSE-MicroOS" }, "relation": "Affected", "id": 5788417 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:suse-microos:5.2", "summary": "SUSE Linux Enterprise Micro", "version": "5.2", "name": "SUSE-MicroOS" }, "relation": "Affected", "id": 5788418 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-rt:15:sp5", "summary": "SUSE Real Time Module", "version": "15-SP5", "name": "sle-module-rt" }, "relation": "Affected", "id": 5788420 }, { "package": "kernel-source-rt", "codestream": null, "product": { "cpe": "cpe:/o:suse:sle-module-rt:15:sp6", "summary": "SUSE Real Time Module", "version": "15-SP6", "name": "sle-module-rt" }, "relation": "Affected", "id": 5788423 } ], "url": "https://smash.suse.de/api/issue/415357", "creation_date": "2024-07-29T10:00:01.211352+02:00", "modified_date": "2024-07-29T12:30:57.100416+02:00", "ts_ignore": null, "ts_analysis": "2024-07-29T10:34:36.626366+02:00", "ts_analyzed": "2024-07-29T12:30:57.098529+02:00", "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415356, "name": "CVE-2024-7184", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415356/", "references": [ { "name": "CVE-2024-7184", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-7184", "source": "National Vulnerability Database" }, { "name": "CVE-2024-7184", "url": "https://www.cve.org/CVERecord?id=CVE-2024-7184", "source": "Mitre CVE Database" }, { "name": "https://github.com/abcdefg-png/IoT-vulnerable/blob/main/TOTOLINK/A3600R/setUrlFilterRules.md", "url": "https://github.com/abcdefg-png/IoT-vulnerable/blob/main/TOTOLINK/A3600R/setUrlFilterRules.md", "source": "OpenSSL Git" }, { "name": "https://vuldb.com/?ctiid.272605", "url": "https://vuldb.com/?ctiid.272605", "source": "URL" }, { "name": "https://vuldb.com/?id.272605", "url": "https://vuldb.com/?id.272605", "source": "URL" }, { "name": "https://vuldb.com/?submit.378053", "url": "https://vuldb.com/?submit.378053", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415356", "creation_date": "2024-07-29T08:00:17.828465+02:00", "modified_date": "2024-07-29T08:38:58.596337+02:00", "ts_ignore": "2024-07-29T08:38:58.432712+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415355, "name": "CVE-2024-7183", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415355/", "references": [ { "name": "CVE-2024-7183", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-7183", "source": "National Vulnerability Database" }, { "name": "CVE-2024-7183", "url": "https://www.cve.org/CVERecord?id=CVE-2024-7183", "source": "Mitre CVE Database" }, { "name": "https://github.com/abcdefg-png/IoT-vulnerable/blob/main/TOTOLINK/A3600R/setUploadSetting.md", "url": "https://github.com/abcdefg-png/IoT-vulnerable/blob/main/TOTOLINK/A3600R/setUploadSetting.md", "source": "OpenSSL Git" }, { "name": "https://vuldb.com/?ctiid.272604", "url": "https://vuldb.com/?ctiid.272604", "source": "URL" }, { "name": "https://vuldb.com/?id.272604", "url": "https://vuldb.com/?id.272604", "source": "URL" }, { "name": "https://vuldb.com/?submit.378052", "url": "https://vuldb.com/?submit.378052", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415355", "creation_date": "2024-07-29T08:00:17.324774+02:00", "modified_date": "2024-07-29T08:38:57.310580+02:00", "ts_ignore": "2024-07-29T08:38:57.163224+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415354, "name": "CVE-2024-7202", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415354/", "references": [ { "name": "CVE-2024-7202", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-7202", "source": "National Vulnerability Database" }, { "name": "CVE-2024-7202", "url": "https://www.cve.org/CVERecord?id=CVE-2024-7202", "source": "Mitre CVE Database" }, { "name": "https://www.twcert.org.tw/en/cp-139-7963-44648-2.html", "url": "https://www.twcert.org.tw/en/cp-139-7963-44648-2.html", "source": "URL" }, { "name": "https://www.twcert.org.tw/tw/cp-132-7962-dd216-1.html", "url": "https://www.twcert.org.tw/tw/cp-132-7962-dd216-1.html", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415354", "creation_date": "2024-07-29T08:00:16.788599+02:00", "modified_date": "2024-07-29T08:45:15.382736+02:00", "ts_ignore": "2024-07-29T08:45:15.234506+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415353, "name": "CVE-2024-7182", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415353/", "references": [ { "name": "CVE-2024-7182", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-7182", "source": "National Vulnerability Database" }, { "name": "CVE-2024-7182", "url": "https://www.cve.org/CVERecord?id=CVE-2024-7182", "source": "Mitre CVE Database" }, { "name": "https://github.com/abcdefg-png/IoT-vulnerable/blob/main/TOTOLINK/A3600R/setUpgradeFW.md", "url": "https://github.com/abcdefg-png/IoT-vulnerable/blob/main/TOTOLINK/A3600R/setUpgradeFW.md", "source": "OpenSSL Git" }, { "name": "https://vuldb.com/?ctiid.272603", "url": "https://vuldb.com/?ctiid.272603", "source": "URL" }, { "name": "https://vuldb.com/?id.272603", "url": "https://vuldb.com/?id.272603", "source": "URL" }, { "name": "https://vuldb.com/?submit.378051", "url": "https://vuldb.com/?submit.378051", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415353", "creation_date": "2024-07-29T08:00:16.100837+02:00", "modified_date": "2024-07-29T08:38:56.447000+02:00", "ts_ignore": "2024-07-29T08:38:56.286922+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415352, "name": "CVE-2024-7181", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415352/", "references": [ { "name": "CVE-2024-7181", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-7181", "source": "National Vulnerability Database" }, { "name": "CVE-2024-7181", "url": "https://www.cve.org/CVERecord?id=CVE-2024-7181", "source": "Mitre CVE Database" }, { "name": "https://github.com/abcdefg-png/IoT-vulnerable/blob/main/TOTOLINK/A3600R/setTelnetCfg.md", "url": "https://github.com/abcdefg-png/IoT-vulnerable/blob/main/TOTOLINK/A3600R/setTelnetCfg.md", "source": "OpenSSL Git" }, { "name": "https://vuldb.com/?ctiid.272602", "url": "https://vuldb.com/?ctiid.272602", "source": "URL" }, { "name": "https://vuldb.com/?id.272602", "url": "https://vuldb.com/?id.272602", "source": "URL" }, { "name": "https://vuldb.com/?submit.378050", "url": "https://vuldb.com/?submit.378050", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415352", "creation_date": "2024-07-29T08:00:15.257414+02:00", "modified_date": "2024-07-29T08:38:55.370213+02:00", "ts_ignore": "2024-07-29T08:38:55.224234+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415351, "name": "CVE-2024-7201", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415351/", "references": [ { "name": "CVE-2024-7201", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-7201", "source": "National Vulnerability Database" }, { "name": "CVE-2024-7201", "url": "https://www.cve.org/CVERecord?id=CVE-2024-7201", "source": "Mitre CVE Database" }, { "name": "https://www.twcert.org.tw/en/cp-139-7961-c575f-2.html", "url": "https://www.twcert.org.tw/en/cp-139-7961-c575f-2.html", "source": "URL" }, { "name": "https://www.twcert.org.tw/tw/cp-132-7960-0ee18-1.html", "url": "https://www.twcert.org.tw/tw/cp-132-7960-0ee18-1.html", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415351", "creation_date": "2024-07-29T06:00:04.884690+02:00", "modified_date": "2024-07-29T06:00:46.692783+02:00", "ts_ignore": "2024-07-29T06:00:46.551640+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415350, "name": "CVE-2024-7180", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415350/", "references": [ { "name": "CVE-2024-7180", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-7180", "source": "National Vulnerability Database" }, { "name": "CVE-2024-7180", "url": "https://www.cve.org/CVERecord?id=CVE-2024-7180", "source": "Mitre CVE Database" }, { "name": "https://github.com/abcdefg-png/IoT-vulnerable/blob/main/TOTOLINK/A3600R/setPortForwardRules.md", "url": "https://github.com/abcdefg-png/IoT-vulnerable/blob/main/TOTOLINK/A3600R/setPortForwardRules.md", "source": "OpenSSL Git" }, { "name": "https://vuldb.com/?ctiid.272601", "url": "https://vuldb.com/?ctiid.272601", "source": "URL" }, { "name": "https://vuldb.com/?id.272601", "url": "https://vuldb.com/?id.272601", "source": "URL" }, { "name": "https://vuldb.com/?submit.378049", "url": "https://vuldb.com/?submit.378049", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415350", "creation_date": "2024-07-29T06:00:04.407825+02:00", "modified_date": "2024-07-29T06:00:44.120753+02:00", "ts_ignore": "2024-07-29T06:00:43.975805+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415349, "name": "CVE-2024-7179", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415349/", "references": [ { "name": "CVE-2024-7179", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-7179", "source": "National Vulnerability Database" }, { "name": "CVE-2024-7179", "url": "https://www.cve.org/CVERecord?id=CVE-2024-7179", "source": "Mitre CVE Database" }, { "name": "https://github.com/abcdefg-png/IoT-vulnerable/blob/main/TOTOLINK/A3600R/setParentalRules.md", "url": "https://github.com/abcdefg-png/IoT-vulnerable/blob/main/TOTOLINK/A3600R/setParentalRules.md", "source": "OpenSSL Git" }, { "name": "https://vuldb.com/?ctiid.272600", "url": "https://vuldb.com/?ctiid.272600", "source": "URL" }, { "name": "https://vuldb.com/?id.272600", "url": "https://vuldb.com/?id.272600", "source": "URL" }, { "name": "https://vuldb.com/?submit.378048", "url": "https://vuldb.com/?submit.378048", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415349", "creation_date": "2024-07-29T06:00:03.883841+02:00", "modified_date": "2024-07-29T06:00:41.780869+02:00", "ts_ignore": "2024-07-29T06:00:41.639601+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415348, "name": "CVE-2024-7178", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415348/", "references": [ { "name": "CVE-2024-7178", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-7178", "source": "National Vulnerability Database" }, { "name": "CVE-2024-7178", "url": "https://www.cve.org/CVERecord?id=CVE-2024-7178", "source": "Mitre CVE Database" }, { "name": "https://github.com/abcdefg-png/IoT-vulnerable/blob/main/TOTOLINK/A3600R/setMacQos.md", "url": "https://github.com/abcdefg-png/IoT-vulnerable/blob/main/TOTOLINK/A3600R/setMacQos.md", "source": "OpenSSL Git" }, { "name": "https://vuldb.com/?ctiid.272599", "url": "https://vuldb.com/?ctiid.272599", "source": "URL" }, { "name": "https://vuldb.com/?id.272599", "url": "https://vuldb.com/?id.272599", "source": "URL" }, { "name": "https://vuldb.com/?submit.378045", "url": "https://vuldb.com/?submit.378045", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415348", "creation_date": "2024-07-29T06:00:03.373223+02:00", "modified_date": "2024-07-29T06:00:40.812803+02:00", "ts_ignore": "2024-07-29T06:00:40.670202+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415347, "name": "CVE-2024-5670", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415347/", "references": [ { "name": "CVE-2024-5670", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-5670", "source": "National Vulnerability Database" }, { "name": "CVE-2024-5670", "url": "https://www.cve.org/CVERecord?id=CVE-2024-5670", "source": "Mitre CVE Database" }, { "name": "https://www.twcert.org.tw/en/cp-139-7959-09d0e-2.html", "url": "https://www.twcert.org.tw/en/cp-139-7959-09d0e-2.html", "source": "URL" }, { "name": "https://www.twcert.org.tw/tw/cp-132-7958-817f4-1.html", "url": "https://www.twcert.org.tw/tw/cp-132-7958-817f4-1.html", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415347", "creation_date": "2024-07-29T06:00:02.906775+02:00", "modified_date": "2024-07-29T06:00:50.948669+02:00", "ts_ignore": "2024-07-29T06:00:50.803713+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415346, "name": "CVE-2024-32671", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415346/", "references": [ { "name": "CVE-2024-32671", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-32671", "source": "National Vulnerability Database" }, { "name": "CVE-2024-32671", "url": "https://www.cve.org/CVERecord?id=CVE-2024-32671", "source": "Mitre CVE Database" }, { "name": "https://github.com/Samsung/escargot/pull/1359", "url": "https://github.com/Samsung/escargot/pull/1359", "source": "OpenSSL Git" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415346", "creation_date": "2024-07-29T06:00:02.371827+02:00", "modified_date": "2024-07-29T06:01:28.154754+02:00", "ts_ignore": "2024-07-29T06:01:28.016077+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415345, "name": "CVE-2024-7177", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415345/", "references": [ { "name": "CVE-2024-7177", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-7177", "source": "National Vulnerability Database" }, { "name": "CVE-2024-7177", "url": "https://www.cve.org/CVERecord?id=CVE-2024-7177", "source": "Mitre CVE Database" }, { "name": "https://github.com/abcdefg-png/IoT-vulnerable/blob/main/TOTOLINK/A3600R/setLanguageCfg.md", "url": "https://github.com/abcdefg-png/IoT-vulnerable/blob/main/TOTOLINK/A3600R/setLanguageCfg.md", "source": "OpenSSL Git" }, { "name": "https://vuldb.com/?ctiid.272598", "url": "https://vuldb.com/?ctiid.272598", "source": "URL" }, { "name": "https://vuldb.com/?id.272598", "url": "https://vuldb.com/?id.272598", "source": "URL" }, { "name": "https://vuldb.com/?submit.378044", "url": "https://vuldb.com/?submit.378044", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415345", "creation_date": "2024-07-29T06:00:01.865568+02:00", "modified_date": "2024-07-29T06:00:40.163665+02:00", "ts_ignore": "2024-07-29T06:00:40.030401+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415344, "name": "CVE-2024-7176", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415344/", "references": [ { "name": "CVE-2024-7176", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-7176", "source": "National Vulnerability Database" }, { "name": "CVE-2024-7176", "url": "https://www.cve.org/CVERecord?id=CVE-2024-7176", "source": "Mitre CVE Database" }, { "name": "https://github.com/abcdefg-png/IoT-vulnerable/blob/main/TOTOLINK/A3600R/setIpQosRules.md", "url": "https://github.com/abcdefg-png/IoT-vulnerable/blob/main/TOTOLINK/A3600R/setIpQosRules.md", "source": "OpenSSL Git" }, { "name": "https://vuldb.com/?ctiid.272597", "url": "https://vuldb.com/?ctiid.272597", "source": "URL" }, { "name": "https://vuldb.com/?id.272597", "url": "https://vuldb.com/?id.272597", "source": "URL" }, { "name": "https://vuldb.com/?submit.378043", "url": "https://vuldb.com/?submit.378043", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415344", "creation_date": "2024-07-29T06:00:01.236400+02:00", "modified_date": "2024-07-29T06:00:48.776860+02:00", "ts_ignore": "2024-07-29T06:00:48.640459+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415342, "name": "CVE-2024-7175", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415342/", "references": [ { "name": "CVE-2024-7175", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-7175", "source": "National Vulnerability Database" }, { "name": "CVE-2024-7175", "url": "https://www.cve.org/CVERecord?id=CVE-2024-7175", "source": "Mitre CVE Database" }, { "name": "https://github.com/abcdefg-png/IoT-vulnerable/blob/main/TOTOLINK/A3600R/setDiagnosisCfg.md", "url": "https://github.com/abcdefg-png/IoT-vulnerable/blob/main/TOTOLINK/A3600R/setDiagnosisCfg.md", "source": "OpenSSL Git" }, { "name": "https://vuldb.com/?ctiid.272596", "url": "https://vuldb.com/?ctiid.272596", "source": "URL" }, { "name": "https://vuldb.com/?id.272596", "url": "https://vuldb.com/?id.272596", "source": "URL" }, { "name": "https://vuldb.com/?submit.378042", "url": "https://vuldb.com/?submit.378042", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415342", "creation_date": "2024-07-29T04:00:04.117688+02:00", "modified_date": "2024-07-29T05:54:04.825233+02:00", "ts_ignore": "2024-07-29T05:54:04.678078+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415341, "name": "CVE-2024-7174", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415341/", "references": [ { "name": "CVE-2024-7174", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-7174", "source": "National Vulnerability Database" }, { "name": "CVE-2024-7174", "url": "https://www.cve.org/CVERecord?id=CVE-2024-7174", "source": "Mitre CVE Database" }, { "name": "https://github.com/abcdefg-png/IoT-vulnerable/blob/main/TOTOLINK/A3600R/setDeviceName.md", "url": "https://github.com/abcdefg-png/IoT-vulnerable/blob/main/TOTOLINK/A3600R/setDeviceName.md", "source": "OpenSSL Git" }, { "name": "https://vuldb.com/?ctiid.272595", "url": "https://vuldb.com/?ctiid.272595", "source": "URL" }, { "name": "https://vuldb.com/?id.272595", "url": "https://vuldb.com/?id.272595", "source": "URL" }, { "name": "https://vuldb.com/?submit.378041", "url": "https://vuldb.com/?submit.378041", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415341", "creation_date": "2024-07-29T04:00:03.584607+02:00", "modified_date": "2024-07-29T05:54:06.533909+02:00", "ts_ignore": "2024-07-29T05:54:06.389479+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415340, "name": "CVE-2024-7173", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415340/", "references": [ { "name": "CVE-2024-7173", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-7173", "source": "National Vulnerability Database" }, { "name": "CVE-2024-7173", "url": "https://www.cve.org/CVERecord?id=CVE-2024-7173", "source": "Mitre CVE Database" }, { "name": "https://github.com/abcdefg-png/IoT-vulnerable/blob/main/TOTOLINK/A3600R/loginauth.md", "url": "https://github.com/abcdefg-png/IoT-vulnerable/blob/main/TOTOLINK/A3600R/loginauth.md", "source": "OpenSSL Git" }, { "name": "https://vuldb.com/?ctiid.272594", "url": "https://vuldb.com/?ctiid.272594", "source": "URL" }, { "name": "https://vuldb.com/?id.272594", "url": "https://vuldb.com/?id.272594", "source": "URL" }, { "name": "https://vuldb.com/?submit.378040", "url": "https://vuldb.com/?submit.378040", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415340", "creation_date": "2024-07-29T04:00:02.858525+02:00", "modified_date": "2024-07-29T05:54:07.744636+02:00", "ts_ignore": "2024-07-29T05:54:07.588269+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415339, "name": "CVE-2024-7172", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415339/", "references": [ { "name": "CVE-2024-7172", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-7172", "source": "National Vulnerability Database" }, { "name": "CVE-2024-7172", "url": "https://www.cve.org/CVERecord?id=CVE-2024-7172", "source": "Mitre CVE Database" }, { "name": "https://github.com/abcdefg-png/IoT-vulnerable/blob/main/TOTOLINK/A3600R/getSaveConfig.md", "url": "https://github.com/abcdefg-png/IoT-vulnerable/blob/main/TOTOLINK/A3600R/getSaveConfig.md", "source": "OpenSSL Git" }, { "name": "https://vuldb.com/?ctiid.272593", "url": "https://vuldb.com/?ctiid.272593", "source": "URL" }, { "name": "https://vuldb.com/?id.272593", "url": "https://vuldb.com/?id.272593", "source": "URL" }, { "name": "https://vuldb.com/?submit.378039", "url": "https://vuldb.com/?submit.378039", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415339", "creation_date": "2024-07-29T02:00:08.188895+02:00", "modified_date": "2024-07-29T05:54:09.412682+02:00", "ts_ignore": "2024-07-29T05:54:09.275154+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415338, "name": "CVE-2024-7171", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415338/", "references": [ { "name": "CVE-2024-7171", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-7171", "source": "National Vulnerability Database" }, { "name": "CVE-2024-7171", "url": "https://www.cve.org/CVERecord?id=CVE-2024-7171", "source": "Mitre CVE Database" }, { "name": "https://github.com/abcdefg-png/IoT-vulnerable/blob/main/TOTOLINK/A3600R/NTPSyncWithHost.md", "url": "https://github.com/abcdefg-png/IoT-vulnerable/blob/main/TOTOLINK/A3600R/NTPSyncWithHost.md", "source": "OpenSSL Git" }, { "name": "https://vuldb.com/?ctiid.272592", "url": "https://vuldb.com/?ctiid.272592", "source": "URL" }, { "name": "https://vuldb.com/?id.272592", "url": "https://vuldb.com/?id.272592", "source": "URL" }, { "name": "https://vuldb.com/?submit.378038", "url": "https://vuldb.com/?submit.378038", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415338", "creation_date": "2024-07-29T02:00:07.682315+02:00", "modified_date": "2024-07-29T05:54:10.546959+02:00", "ts_ignore": "2024-07-29T05:54:10.410117+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415337, "name": "CVE-2024-7170", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415337/", "references": [ { "name": "CVE-2024-7170", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-7170", "source": "National Vulnerability Database" }, { "name": "CVE-2024-7170", "url": "https://www.cve.org/CVERecord?id=CVE-2024-7170", "source": "Mitre CVE Database" }, { "name": "https://github.com/abcdefg-png/IoT-vulnerable/blob/main/TOTOLINK/A3000RU/product.md", "url": "https://github.com/abcdefg-png/IoT-vulnerable/blob/main/TOTOLINK/A3000RU/product.md", "source": "OpenSSL Git" }, { "name": "https://vuldb.com/?ctiid.272591", "url": "https://vuldb.com/?ctiid.272591", "source": "URL" }, { "name": "https://vuldb.com/?id.272591", "url": "https://vuldb.com/?id.272591", "source": "URL" }, { "name": "https://vuldb.com/?submit.377957", "url": "https://vuldb.com/?submit.377957", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415337", "creation_date": "2024-07-29T02:00:06.193100+02:00", "modified_date": "2024-07-29T05:54:12.096743+02:00", "ts_ignore": "2024-07-29T05:54:11.953750+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415336, "name": "CVE-2024-7169", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415336/", "references": [ { "name": "CVE-2024-7169", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-7169", "source": "National Vulnerability Database" }, { "name": "CVE-2024-7169", "url": "https://www.cve.org/CVERecord?id=CVE-2024-7169", "source": "Mitre CVE Database" }, { "name": "https://gist.github.com/topsky979/421c916be6ab09dc990896b07185ec89", "url": "https://gist.github.com/topsky979/421c916be6ab09dc990896b07185ec89", "source": "URL" }, { "name": "https://vuldb.com/?ctiid.272583", "url": "https://vuldb.com/?ctiid.272583", "source": "URL" }, { "name": "https://vuldb.com/?id.272583", "url": "https://vuldb.com/?id.272583", "source": "URL" }, { "name": "https://vuldb.com/?submit.380185", "url": "https://vuldb.com/?submit.380185", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415336", "creation_date": "2024-07-29T00:00:06.816952+02:00", "modified_date": "2024-07-29T05:54:13.383372+02:00", "ts_ignore": "2024-07-29T05:54:13.244699+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415335, "name": "CVE-2024-7168", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415335/", "references": [ { "name": "CVE-2024-7168", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-7168", "source": "National Vulnerability Database" }, { "name": "CVE-2024-7168", "url": "https://www.cve.org/CVERecord?id=CVE-2024-7168", "source": "Mitre CVE Database" }, { "name": "https://gist.github.com/topsky979/14187eec46d6bc04772eadae7ac4e930", "url": "https://gist.github.com/topsky979/14187eec46d6bc04772eadae7ac4e930", "source": "URL" }, { "name": "https://vuldb.com/?ctiid.272582", "url": "https://vuldb.com/?ctiid.272582", "source": "URL" }, { "name": "https://vuldb.com/?id.272582", "url": "https://vuldb.com/?id.272582", "source": "URL" }, { "name": "https://vuldb.com/?submit.380184", "url": "https://vuldb.com/?submit.380184", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415335", "creation_date": "2024-07-28T22:00:03.074688+02:00", "modified_date": "2024-07-29T05:54:14.765555+02:00", "ts_ignore": "2024-07-29T05:54:14.625472+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415334, "name": "CVE-2024-7167", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415334/", "references": [ { "name": "CVE-2024-7167", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-7167", "source": "National Vulnerability Database" }, { "name": "CVE-2024-7167", "url": "https://www.cve.org/CVERecord?id=CVE-2024-7167", "source": "Mitre CVE Database" }, { "name": "https://gist.github.com/topsky979/69a797bc0b33fc19144a727a0be31685", "url": "https://gist.github.com/topsky979/69a797bc0b33fc19144a727a0be31685", "source": "URL" }, { "name": "https://vuldb.com/?ctiid.272581", "url": "https://vuldb.com/?ctiid.272581", "source": "URL" }, { "name": "https://vuldb.com/?id.272581", "url": "https://vuldb.com/?id.272581", "source": "URL" }, { "name": "https://vuldb.com/?submit.380181", "url": "https://vuldb.com/?submit.380181", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415334", "creation_date": "2024-07-28T22:00:02.591955+02:00", "modified_date": "2024-07-29T05:54:52.911146+02:00", "ts_ignore": "2024-07-29T05:54:52.768220+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415333, "name": "CVE-2024-7166", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415333/", "references": [ { "name": "CVE-2024-7166", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-7166", "source": "National Vulnerability Database" }, { "name": "CVE-2024-7166", "url": "https://www.cve.org/CVERecord?id=CVE-2024-7166", "source": "Mitre CVE Database" }, { "name": "https://gist.github.com/topsky979/8ab4ff5ffb2a555694931d14329f5a5d", "url": "https://gist.github.com/topsky979/8ab4ff5ffb2a555694931d14329f5a5d", "source": "URL" }, { "name": "https://vuldb.com/?ctiid.272580", "url": "https://vuldb.com/?ctiid.272580", "source": "URL" }, { "name": "https://vuldb.com/?id.272580", "url": "https://vuldb.com/?id.272580", "source": "URL" }, { "name": "https://vuldb.com/?submit.380180", "url": "https://vuldb.com/?submit.380180", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415333", "creation_date": "2024-07-28T22:00:02.073327+02:00", "modified_date": "2024-07-29T05:54:51.464209+02:00", "ts_ignore": "2024-07-29T05:54:51.314916+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415332, "name": "CVE-2024-7165", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415332/", "references": [ { "name": "CVE-2024-7165", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-7165", "source": "National Vulnerability Database" }, { "name": "CVE-2024-7165", "url": "https://www.cve.org/CVERecord?id=CVE-2024-7165", "source": "Mitre CVE Database" }, { "name": "https://gist.github.com/topsky979/efe8fa56e557bf3244909f348d5874f7", "url": "https://gist.github.com/topsky979/efe8fa56e557bf3244909f348d5874f7", "source": "URL" }, { "name": "https://vuldb.com/?ctiid.272579", "url": "https://vuldb.com/?ctiid.272579", "source": "URL" }, { "name": "https://vuldb.com/?id.272579", "url": "https://vuldb.com/?id.272579", "source": "URL" }, { "name": "https://vuldb.com/?submit.380179", "url": "https://vuldb.com/?submit.380179", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415332", "creation_date": "2024-07-28T22:00:01.434235+02:00", "modified_date": "2024-07-29T05:54:51.720349+02:00", "ts_ignore": "2024-07-29T05:54:51.582512+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415331, "name": "CVE-2024-7164", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415331/", "references": [ { "name": "CVE-2024-7164", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-7164", "source": "National Vulnerability Database" }, { "name": "CVE-2024-7164", "url": "https://www.cve.org/CVERecord?id=CVE-2024-7164", "source": "Mitre CVE Database" }, { "name": "https://gist.github.com/topsky979/d53eab0322b187bfe151b3f1f31958e2", "url": "https://gist.github.com/topsky979/d53eab0322b187bfe151b3f1f31958e2", "source": "URL" }, { "name": "https://vuldb.com/?ctiid.272578", "url": "https://vuldb.com/?ctiid.272578", "source": "URL" }, { "name": "https://vuldb.com/?id.272578", "url": "https://vuldb.com/?id.272578", "source": "URL" }, { "name": "https://vuldb.com/?submit.380174", "url": "https://vuldb.com/?submit.380174", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415331", "creation_date": "2024-07-28T20:00:05.966477+02:00", "modified_date": "2024-07-29T05:54:51.935290+02:00", "ts_ignore": "2024-07-29T05:54:51.789029+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415330, "name": "CVE-2024-7163", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415330/", "references": [ { "name": "CVE-2024-7163", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-7163", "source": "National Vulnerability Database" }, { "name": "CVE-2024-7163", "url": "https://www.cve.org/CVERecord?id=CVE-2024-7163", "source": "Mitre CVE Database" }, { "name": "https://github.com/HuaQiPro/seacms/issues/28", "url": "https://github.com/HuaQiPro/seacms/issues/28", "source": "OpenSSL Git" }, { "name": "https://vuldb.com/?ctiid.272577", "url": "https://vuldb.com/?ctiid.272577", "source": "URL" }, { "name": "https://vuldb.com/?id.272577", "url": "https://vuldb.com/?id.272577", "source": "URL" }, { "name": "https://vuldb.com/?submit.379477", "url": "https://vuldb.com/?submit.379477", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415330", "creation_date": "2024-07-28T20:00:05.480883+02:00", "modified_date": "2024-07-29T05:54:52.145377+02:00", "ts_ignore": "2024-07-29T05:54:52.007407+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415329, "name": "CVE-2024-7162", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415329/", "references": [ { "name": "CVE-2024-7162", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-7162", "source": "National Vulnerability Database" }, { "name": "CVE-2024-7162", "url": "https://www.cve.org/CVERecord?id=CVE-2024-7162", "source": "Mitre CVE Database" }, { "name": "https://github.com/HuaQiPro/seacms/issues/29", "url": "https://github.com/HuaQiPro/seacms/issues/29", "source": "OpenSSL Git" }, { "name": "https://vuldb.com/?ctiid.272576", "url": "https://vuldb.com/?ctiid.272576", "source": "URL" }, { "name": "https://vuldb.com/?id.272576", "url": "https://vuldb.com/?id.272576", "source": "URL" }, { "name": "https://vuldb.com/?submit.379474", "url": "https://vuldb.com/?submit.379474", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415329", "creation_date": "2024-07-28T20:00:05.013249+02:00", "modified_date": "2024-07-29T05:54:52.366534+02:00", "ts_ignore": "2024-07-29T05:54:52.220690+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415328, "name": "CVE-2024-7161", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415328/", "references": [ { "name": "CVE-2024-7161", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-7161", "source": "National Vulnerability Database" }, { "name": "CVE-2024-7161", "url": "https://www.cve.org/CVERecord?id=CVE-2024-7161", "source": "Mitre CVE Database" }, { "name": "https://github.com/HuaQiPro/seacms/issues/30", "url": "https://github.com/HuaQiPro/seacms/issues/30", "source": "OpenSSL Git" }, { "name": "https://vuldb.com/?ctiid.272575", "url": "https://vuldb.com/?ctiid.272575", "source": "URL" }, { "name": "https://vuldb.com/?id.272575", "url": "https://vuldb.com/?id.272575", "source": "URL" }, { "name": "https://vuldb.com/?submit.379473", "url": "https://vuldb.com/?submit.379473", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415328", "creation_date": "2024-07-28T20:00:04.283352+02:00", "modified_date": "2024-07-29T05:54:52.475245+02:00", "ts_ignore": "2024-07-29T05:54:52.324915+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415327, "name": "CVE-2024-7160", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415327/", "references": [ { "name": "CVE-2024-7160", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-7160", "source": "National Vulnerability Database" }, { "name": "CVE-2024-7160", "url": "https://www.cve.org/CVERecord?id=CVE-2024-7160", "source": "Mitre CVE Database" }, { "name": "https://github.com/abcdefg-png/IoT-vulnerable/blob/main/TOTOLINK/A3700R/setWanCfg.md", "url": "https://github.com/abcdefg-png/IoT-vulnerable/blob/main/TOTOLINK/A3700R/setWanCfg.md", "source": "OpenSSL Git" }, { "name": "https://vuldb.com/?ctiid.272574", "url": "https://vuldb.com/?ctiid.272574", "source": "URL" }, { "name": "https://vuldb.com/?id.272574", "url": "https://vuldb.com/?id.272574", "source": "URL" }, { "name": "https://vuldb.com/?submit.377080", "url": "https://vuldb.com/?submit.377080", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415327", "creation_date": "2024-07-28T18:00:06.577527+02:00", "modified_date": "2024-07-29T05:54:52.581720+02:00", "ts_ignore": "2024-07-29T05:54:52.438297+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415326, "name": "CVE-2024-7159", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415326/", "references": [ { "name": "CVE-2024-7159", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-7159", "source": "National Vulnerability Database" }, { "name": "CVE-2024-7159", "url": "https://www.cve.org/CVERecord?id=CVE-2024-7159", "source": "Mitre CVE Database" }, { "name": "https://github.com/abcdefg-png/IoT-vulnerable/blob/main/TOTOLINK/A3600R/product.md", "url": "https://github.com/abcdefg-png/IoT-vulnerable/blob/main/TOTOLINK/A3600R/product.md", "source": "OpenSSL Git" }, { "name": "https://vuldb.com/?ctiid.272573", "url": "https://vuldb.com/?ctiid.272573", "source": "URL" }, { "name": "https://vuldb.com/?id.272573", "url": "https://vuldb.com/?id.272573", "source": "URL" }, { "name": "https://vuldb.com/?submit.377942", "url": "https://vuldb.com/?submit.377942", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415326", "creation_date": "2024-07-28T18:00:06.087197+02:00", "modified_date": "2024-07-29T05:54:52.698544+02:00", "ts_ignore": "2024-07-29T05:54:52.553895+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415325, "name": "CVE-2024-7158", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415325/", "references": [ { "name": "CVE-2024-7158", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-7158", "source": "National Vulnerability Database" }, { "name": "CVE-2024-7158", "url": "https://www.cve.org/CVERecord?id=CVE-2024-7158", "source": "Mitre CVE Database" }, { "name": "https://github.com/abcdefg-png/IoT-vulnerable/blob/main/TOTOLINK/A3100R/setTelnetCfg.md", "url": "https://github.com/abcdefg-png/IoT-vulnerable/blob/main/TOTOLINK/A3100R/setTelnetCfg.md", "source": "OpenSSL Git" }, { "name": "https://vuldb.com/?ctiid.272572", "url": "https://vuldb.com/?ctiid.272572", "source": "URL" }, { "name": "https://vuldb.com/?id.272572", "url": "https://vuldb.com/?id.272572", "source": "URL" }, { "name": "https://vuldb.com/?submit.377543", "url": "https://vuldb.com/?submit.377543", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415325", "creation_date": "2024-07-28T18:00:05.342151+02:00", "modified_date": "2024-07-29T05:54:52.798666+02:00", "ts_ignore": "2024-07-29T05:54:52.651135+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415324, "name": "CVE-2024-7157", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415324/", "references": [ { "name": "CVE-2024-7157", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-7157", "source": "National Vulnerability Database" }, { "name": "CVE-2024-7157", "url": "https://www.cve.org/CVERecord?id=CVE-2024-7157", "source": "Mitre CVE Database" }, { "name": "https://github.com/abcdefg-png/IoT-vulnerable/blob/main/TOTOLINK/A3100R/getSaveConfig.md", "url": "https://github.com/abcdefg-png/IoT-vulnerable/blob/main/TOTOLINK/A3100R/getSaveConfig.md", "source": "OpenSSL Git" }, { "name": "https://vuldb.com/?ctiid.272571", "url": "https://vuldb.com/?ctiid.272571", "source": "URL" }, { "name": "https://vuldb.com/?id.272571", "url": "https://vuldb.com/?id.272571", "source": "URL" }, { "name": "https://vuldb.com/?submit.377542", "url": "https://vuldb.com/?submit.377542", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415324", "creation_date": "2024-07-28T14:00:05.932588+02:00", "modified_date": "2024-07-29T05:54:53.009930+02:00", "ts_ignore": "2024-07-29T05:54:52.868566+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415323, "name": "CVE-2024-7156", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415323/", "references": [ { "name": "CVE-2024-7156", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-7156", "source": "National Vulnerability Database" }, { "name": "CVE-2024-7156", "url": "https://www.cve.org/CVERecord?id=CVE-2024-7156", "source": "Mitre CVE Database" }, { "name": "https://github.com/abcdefg-png/IoT-vulnerable/blob/main/TOTOLINK/A3700R/ExportSettings.md", "url": "https://github.com/abcdefg-png/IoT-vulnerable/blob/main/TOTOLINK/A3700R/ExportSettings.md", "source": "OpenSSL Git" }, { "name": "https://vuldb.com/?ctiid.272570", "url": "https://vuldb.com/?ctiid.272570", "source": "URL" }, { "name": "https://vuldb.com/?id.272570", "url": "https://vuldb.com/?id.272570", "source": "URL" }, { "name": "https://vuldb.com/?submit.377473", "url": "https://vuldb.com/?submit.377473", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415323", "creation_date": "2024-07-28T14:00:05.436104+02:00", "modified_date": "2024-07-29T05:54:53.121714+02:00", "ts_ignore": "2024-07-29T05:54:52.983567+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415322, "name": "CVE-2024-7155", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415322/", "references": [ { "name": "CVE-2024-7155", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-7155", "source": "National Vulnerability Database" }, { "name": "CVE-2024-7155", "url": "https://www.cve.org/CVERecord?id=CVE-2024-7155", "source": "Mitre CVE Database" }, { "name": "https://github.com/abcdefg-png/IoT-vulnerable/blob/main/TOTOLINK/A3300R/shadow.md", "url": "https://github.com/abcdefg-png/IoT-vulnerable/blob/main/TOTOLINK/A3300R/shadow.md", "source": "OpenSSL Git" }, { "name": "https://vuldb.com/?ctiid.272569", "url": "https://vuldb.com/?ctiid.272569", "source": "URL" }, { "name": "https://vuldb.com/?id.272569", "url": "https://vuldb.com/?id.272569", "source": "URL" }, { "name": "https://vuldb.com/?submit.377465", "url": "https://vuldb.com/?submit.377465", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415322", "creation_date": "2024-07-28T14:00:04.950625+02:00", "modified_date": "2024-07-29T05:54:53.231340+02:00", "ts_ignore": "2024-07-29T05:54:53.081596+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415321, "name": "CVE-2024-7154", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415321/", "references": [ { "name": "CVE-2024-7154", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-7154", "source": "National Vulnerability Database" }, { "name": "CVE-2024-7154", "url": "https://www.cve.org/CVERecord?id=CVE-2024-7154", "source": "Mitre CVE Database" }, { "name": "https://github.com/abcdefg-png/IoT-vulnerable/blob/main/TOTOLINK/A3700R/setWizardCfg_changepw.md", "url": "https://github.com/abcdefg-png/IoT-vulnerable/blob/main/TOTOLINK/A3700R/setWizardCfg_changepw.md", "source": "OpenSSL Git" }, { "name": "https://vuldb.com/?ctiid.272568", "url": "https://vuldb.com/?ctiid.272568", "source": "URL" }, { "name": "https://vuldb.com/?id.272568", "url": "https://vuldb.com/?id.272568", "source": "URL" }, { "name": "https://vuldb.com/?submit.377463", "url": "https://vuldb.com/?submit.377463", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415321", "creation_date": "2024-07-28T14:00:01.025684+02:00", "modified_date": "2024-07-29T05:54:53.331618+02:00", "ts_ignore": "2024-07-29T05:54:53.192769+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415319, "name": "CVE-2024-42055", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415319/", "references": [ { "name": "CVE-2024-42055", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-42055", "source": "National Vulnerability Database" }, { "name": "CVE-2024-42055", "url": "https://www.cve.org/CVERecord?id=CVE-2024-42055", "source": "Mitre CVE Database" }, { "name": "https://github.com/CervantesSec/cervantes/commit/78631a034d0fb3323a53fb7428b2022b29a0d2cd", "url": "https://github.com/CervantesSec/cervantes/commit/78631a034d0fb3323a53fb7428b2022b29a0d2cd", "source": "OpenSSL Git" }, { "name": "https://www.getastra.com/blog/vulnerability/xss-insecure-file-cervantes/", "url": "https://www.getastra.com/blog/vulnerability/xss-insecure-file-cervantes/", "source": "URL" }, { "name": "https://www.jinsonvarghese.com/stored-xss-file-upload-vulnerabilities-found-in-cervantes/", "url": "https://www.jinsonvarghese.com/stored-xss-file-upload-vulnerabilities-found-in-cervantes/", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415319", "creation_date": "2024-07-28T08:00:04.655598+02:00", "modified_date": "2024-07-29T05:53:47.978526+02:00", "ts_ignore": "2024-07-29T05:53:47.827284+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415318, "name": "CVE-2024-42054", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415318/", "references": [ { "name": "CVE-2024-42054", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-42054", "source": "National Vulnerability Database" }, { "name": "CVE-2024-42054", "url": "https://www.cve.org/CVERecord?id=CVE-2024-42054", "source": "Mitre CVE Database" }, { "name": "https://github.com/CervantesSec/cervantes/commit/78631a034d0fb3323a53fb7428b2022b29a0d2cd", "url": "https://github.com/CervantesSec/cervantes/commit/78631a034d0fb3323a53fb7428b2022b29a0d2cd", "source": "OpenSSL Git" }, { "name": "https://www.getastra.com/blog/vulnerability/xss-insecure-file-cervantes/", "url": "https://www.getastra.com/blog/vulnerability/xss-insecure-file-cervantes/", "source": "URL" }, { "name": "https://www.jinsonvarghese.com/stored-xss-file-upload-vulnerabilities-found-in-cervantes/", "url": "https://www.jinsonvarghese.com/stored-xss-file-upload-vulnerabilities-found-in-cervantes/", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415318", "creation_date": "2024-07-28T08:00:02.563244+02:00", "modified_date": "2024-07-29T05:53:48.247888+02:00", "ts_ignore": "2024-07-29T05:53:48.098927+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415317, "name": "CVE-2024-42053", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415317/", "references": [ { "name": "CVE-2024-42053", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-42053", "source": "National Vulnerability Database" }, { "name": "CVE-2024-42053", "url": "https://www.cve.org/CVERecord?id=CVE-2024-42053", "source": "Mitre CVE Database" }, { "name": "https://github.com/SpacePlant/Vulns/blob/main/Advisories/2024/2.md", "url": "https://github.com/SpacePlant/Vulns/blob/main/Advisories/2024/2.md", "source": "OpenSSL Git" }, { "name": "https://support-splashtopbusiness.splashtop.com/hc/en-us/articles/18223802896539-Splashtop-Streamer-version-v3-6-0-0-for-Windows-released", "url": "https://support-splashtopbusiness.splashtop.com/hc/en-us/articles/18223802896539-Splashtop-Streamer-version-v3-6-0-0-for-Windows-released", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415317", "creation_date": "2024-07-28T06:00:04.374934+02:00", "modified_date": "2024-07-29T05:53:48.453904+02:00", "ts_ignore": "2024-07-29T05:53:48.326236+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415316, "name": "CVE-2024-42052", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415316/", "references": [ { "name": "CVE-2024-42052", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-42052", "source": "National Vulnerability Database" }, { "name": "CVE-2024-42052", "url": "https://www.cve.org/CVERecord?id=CVE-2024-42052", "source": "Mitre CVE Database" }, { "name": "https://github.com/SpacePlant/Vulns/blob/main/Advisories/2024/1.md", "url": "https://github.com/SpacePlant/Vulns/blob/main/Advisories/2024/1.md", "source": "OpenSSL Git" }, { "name": "https://support-splashtopbusiness.splashtop.com/hc/en-us/articles/15813655496603-Splashtop-Streamer-version-v3-5-8-0-for-Windows-released", "url": "https://support-splashtopbusiness.splashtop.com/hc/en-us/articles/15813655496603-Splashtop-Streamer-version-v3-5-8-0-for-Windows-released", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415316", "creation_date": "2024-07-28T06:00:03.906924+02:00", "modified_date": "2024-07-29T05:52:47.373992+02:00", "ts_ignore": "2024-07-29T05:52:47.228818+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415315, "name": "CVE-2024-42051", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415315/", "references": [ { "name": "CVE-2024-42051", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-42051", "source": "National Vulnerability Database" }, { "name": "CVE-2024-42051", "url": "https://www.cve.org/CVERecord?id=CVE-2024-42051", "source": "Mitre CVE Database" }, { "name": "https://github.com/SpacePlant/Vulns/blob/main/Advisories/2024/3.md", "url": "https://github.com/SpacePlant/Vulns/blob/main/Advisories/2024/3.md", "source": "OpenSSL Git" }, { "name": "https://support-splashtopbusiness.splashtop.com/hc/en-us/articles/20716875636763-Splashtop-Streamer-version-v3-6-2-0-for-Windows-released", "url": "https://support-splashtopbusiness.splashtop.com/hc/en-us/articles/20716875636763-Splashtop-Streamer-version-v3-6-2-0-for-Windows-released", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415315", "creation_date": "2024-07-28T06:00:03.451313+02:00", "modified_date": "2024-07-29T05:52:46.761846+02:00", "ts_ignore": "2024-07-29T05:52:46.607421+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415314, "name": "CVE-2024-42050", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415314/", "references": [ { "name": "CVE-2024-42050", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-42050", "source": "National Vulnerability Database" }, { "name": "CVE-2024-42050", "url": "https://www.cve.org/CVERecord?id=CVE-2024-42050", "source": "Mitre CVE Database" }, { "name": "https://github.com/SpacePlant/Vulns/blob/main/Advisories/2024/4.md", "url": "https://github.com/SpacePlant/Vulns/blob/main/Advisories/2024/4.md", "source": "OpenSSL Git" }, { "name": "https://support-splashtopbusiness.splashtop.com/hc/en-us/articles/25584410412571--Splashtop-Streamer-version-v3-7-0-0-for-Windows-released", "url": "https://support-splashtopbusiness.splashtop.com/hc/en-us/articles/25584410412571--Splashtop-Streamer-version-v3-7-0-0-for-Windows-released", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415314", "creation_date": "2024-07-28T06:00:02.989098+02:00", "modified_date": "2024-07-29T05:52:45.588784+02:00", "ts_ignore": "2024-07-29T05:52:45.453010+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415313, "name": "CVE-2024-42049", "severity": "not set", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415313/", "references": [ { "name": "CVE-2024-42049", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-42049", "source": "National Vulnerability Database" }, { "name": "CVE-2024-42049", "url": "https://www.cve.org/CVERecord?id=CVE-2024-42049", "source": "Mitre CVE Database" }, { "name": "MISC:www.tightvnc.com:CVE-2021-42785", "url": "https://www.tightvnc.com/whatsnew.php", "source": "URL" }, { "name": "https://sourceforge.net/p/vnc-tight/bugs/1629/", "url": "https://sourceforge.net/p/vnc-tight/bugs/1629/", "source": "URL" } ], "user": null, "cvss": [], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415313", "creation_date": "2024-07-28T06:00:01.242253+02:00", "modified_date": "2024-07-29T05:52:44.662830+02:00", "ts_ignore": "2024-07-29T05:52:44.505252+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415312, "name": "CVE-2024-6815", "severity": "important", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415312/", "references": [ { "name": "CVE-2024-6815", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-6815", "source": "National Vulnerability Database" }, { "name": "ZDI-24-967", "url": "https://www.zerodayinitiative.com/advisories/ZDI-24-967/", "source": "ZDI" } ], "user": null, "cvss": [ { "id": 431384, "score": 7.8, "vector": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "reference": "CVE-2024-6815", "creation_date": "2024-07-28T02:00:24.683021+02:00", "description": "", "modified_date": "2024-07-28T02:00:24.683077+02:00", "source": "ZDI", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-6815", "version": 3 } ], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415312", "creation_date": "2024-07-28T02:00:24.704310+02:00", "modified_date": "2024-07-29T05:52:57.243087+02:00", "ts_ignore": "2024-07-29T05:52:57.102898+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415311, "name": "CVE-2024-6816", "severity": "important", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415311/", "references": [ { "name": "CVE-2024-6816", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-6816", "source": "National Vulnerability Database" }, { "name": "ZDI-24-968", "url": "https://www.zerodayinitiative.com/advisories/ZDI-24-968/", "source": "ZDI" } ], "user": null, "cvss": [ { "id": 431383, "score": 7.8, "vector": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "reference": "CVE-2024-6816", "creation_date": "2024-07-28T02:00:22.931226+02:00", "description": "", "modified_date": "2024-07-28T02:00:22.931243+02:00", "source": "ZDI", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-6816", "version": 3 } ], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415311", "creation_date": "2024-07-28T02:00:22.950934+02:00", "modified_date": "2024-07-29T05:52:55.627146+02:00", "ts_ignore": "2024-07-29T05:52:55.492115+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" }, { "id": 415310, "name": "CVE-2024-6817", "severity": "important", "state": "Ignore", "kpi": { "id": 7, "name": "Other", "duration": "30 00:00:00", "description": "The issue does not fit into one of the other KPI classifications." }, "category": "Security", "ui_url": "/issue/415310/", "references": [ { "name": "CVE-2024-6817", "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-6817", "source": "National Vulnerability Database" }, { "name": "ZDI-24-969", "url": "https://www.zerodayinitiative.com/advisories/ZDI-24-969/", "source": "ZDI" } ], "user": null, "cvss": [ { "id": 431382, "score": 7.8, "vector": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "reference": "CVE-2024-6817", "creation_date": "2024-07-28T02:00:21.211976+02:00", "description": "", "modified_date": "2024-07-28T02:00:21.211995+02:00", "source": "ZDI", "reference_url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2024-6817", "version": 3 } ], "affected_packages": [], "url": "https://smash.suse.de/api/issue/415310", "creation_date": "2024-07-28T02:00:21.232954+02:00", "modified_date": "2024-07-29T05:52:54.365697+02:00", "ts_ignore": "2024-07-29T05:52:54.211587+02:00", "ts_analysis": null, "ts_analyzed": null, "ts_resolved": null, "ts_deleted": null, "description": "*** SECURITY TEAM ONLY ***", "summary": "*** SECURITY TEAM ONLY ***" } ] }