{"document":{"aggregate_severity":{"namespace":"https://www.suse.com/support/security/rating/","text":"moderate"},"category":"csaf_security_advisory","csaf_version":"2.0","distribution":{"text":"Copyright 2024 SUSE LLC. All rights reserved.","tlp":{"label":"WHITE","url":"https://www.first.org/tlp/"}},"lang":"en","notes":[{"category":"summary","text":"Security update for qatengine, qatlib","title":"Title of the patch"},{"category":"description","text":"This update for qatengine, qatlib fixes the following issues:\n\nNote that the 1.6.1 release included in 1.7.0 fixes the following\nvulnerabilities:\n\n  * bsc#1233363 (CVE-2024-28885)\n  * bsc#1233365 (CVE-2024-31074)\n  * bsc#1233366 (CVE-2024-33617)\n\nUpdate to 1.7.0:\n\n  * ipp-crypto name change to cryptography-primitives\n  * QAT_SW GCM memory leak fix in cleanup function\n  * Update limitation section in README for v1.7.0 release\n  * Fix build with OPENSSL_NO_ENGINE\n  * Fix for build issues with qatprovider in qatlib\n  * Bug fixes and README updates to v1.7.0\n  * Remove qat_contig_mem driver support\n  * Add support for building QAT Engine ENGINE and PROVIDER modules\n    with QuicTLS 3.x libraries\n  * Fix for DSA issue with openssl3.2\n  * Fix missing lower bounds check on index i\n  * Enabled SW Fallback support for FBSD\n  * Fix for segfault issue when SHIM config section is unavailable\n  * Fix for Coverity & Resource leak\n  * Fix for RSA failure with SVM enabled in openssl-3.2\n  * SM3 Memory Leak Issue Fix\n  * Fix qatprovider lib name issue with system openssl\n\nUpdate to 1.6.0:\n\n  * Fix issue with make depend for QAT_SW\n  * QAT_HW GCM Memleak fix & bug fixes\n  * QAT2.0 FreeBSD14 intree driver support\n  * Fix OpenSSL 3.2 compatibility issues\n  * Optimize hex dump logging\n  * Clear job tlv on error\n  * QAT_HW RSA Encrypt and Decrypt provider support\n  * QAT_HW AES-CCM Provider support\n  * Add ECDH keymgmt support for provider\n  * Fix QAT_HW SM2 memory leak \n  * Enable qaeMemFreeNonZeroNUMA() for qatlib \n  * Fix polling issue for the process that doesn't have QAT_HW instance\n  * Fix SHA3 qctx initialization issue & potential memleak \n  * Fix compilation error in SM2 with qat_contig_mem \n  * Update year in copyright information to 2024 \n\nUpdate to 1.5.0:\n\n  * use new --enable-qat_insecure_algorithms to avoid regressions\n  * improve support for SM{2,3,4} ciphers\n  * improve SW fallback support\n  * many bug fixes, refactorisations and documentation updates\n\nqatlib was updated to 24.09.0:\n\n  * Improved performance scaling in multi-thread applications\n  * Set core affinity mapping based on NUMA\n    (libnuma now required for building)\n  * bug fixes, see https://github.com/intel/qatlib#resolved-issues\n\nversion update to 24.02.0:\n\n  * Support DC NS (NoSession) APIs\n  * Support Symmetric Crypto SM3 & SM4\n  * Support Asymmetric Crypto SM2\n  * Support DC CompressBound APIs\n  * Bug Fixes. See Resolved section in README.md\n\nupdate to 23.11.0:\n\n  * use new --enable-legacy-algorithms to avoid regressions\n  * add support for data compression chaining (hash then compress)\n  * add support for additional configuration profiles\n  * add support DC NS (NoSession) APIs\n  * add support DC CompressBound APIs\n  * add Support for Chinese SM{2,3,4} ciphers\n  * bump shared library major to 4\n  * refactoring, bug fixes and documentation updates\n\n","title":"Description of the patch"},{"category":"details","text":"SUSE-2025-3943,SUSE-SLE-Product-HPC-15-SP5-ESPOS-2025-3943,SUSE-SLE-Product-HPC-15-SP5-LTSS-2025-3943,SUSE-SLE-Product-SLES-15-SP5-LTSS-2025-3943,SUSE-SLE-Product-SLES_SAP-15-SP5-2025-3943","title":"Patchnames"},{"category":"legal_disclaimer","text":"CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).","title":"Terms of use"}],"publisher":{"category":"vendor","contact_details":"https://www.suse.com/support/security/contact/","name":"SUSE Product Security Team","namespace":"https://www.suse.com/"},"references":[{"category":"external","summary":"SUSE ratings","url":"https://www.suse.com/support/security/rating/"},{"category":"self","summary":"URL of this CSAF notice","url":"https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_3943-1.json"},{"category":"self","summary":"URL for SUSE-SU-2025:3943-1","url":"https://www.suse.com/support/update/announcement/2025/suse-su-20253943-1/"},{"category":"self","summary":"E-Mail link for SUSE-SU-2025:3943-1","url":"https://lists.suse.com/pipermail/sle-security-updates/2025-November/023159.html"},{"category":"self","summary":"SUSE Bug 1233363","url":"https://bugzilla.suse.com/1233363"},{"category":"self","summary":"SUSE Bug 1233365","url":"https://bugzilla.suse.com/1233365"},{"category":"self","summary":"SUSE Bug 1233366","url":"https://bugzilla.suse.com/1233366"},{"category":"self","summary":"SUSE CVE CVE-2024-28885 page","url":"https://www.suse.com/security/cve/CVE-2024-28885/"},{"category":"self","summary":"SUSE CVE CVE-2024-31074 page","url":"https://www.suse.com/security/cve/CVE-2024-31074/"},{"category":"self","summary":"SUSE CVE CVE-2024-33617 page","url":"https://www.suse.com/security/cve/CVE-2024-33617/"}],"title":"Security update for qatengine, qatlib","tracking":{"current_release_date":"2025-11-05T08:16:20Z","generator":{"date":"2025-11-05T08:16:20Z","engine":{"name":"cve-database.git:bin/generate-csaf.pl","version":"1"}},"id":"SUSE-SU-2025:3943-1","initial_release_date":"2025-11-05T08:16:20Z","revision_history":[{"date":"2025-11-05T08:16:20Z","number":"1","summary":"Current version"}],"status":"final","version":"1"}},"product_tree":{"branches":[{"branches":[{"branches":[{"category":"product_version","name":"libqat4-24.09.0-150500.3.3.1.x86_64","product":{"name":"libqat4-24.09.0-150500.3.3.1.x86_64","product_id":"libqat4-24.09.0-150500.3.3.1.x86_64"}},{"category":"product_version","name":"libqatzip3-1.1.0-150500.3.2.1.x86_64","product":{"name":"libqatzip3-1.1.0-150500.3.2.1.x86_64","product_id":"libqatzip3-1.1.0-150500.3.2.1.x86_64"}},{"category":"product_version","name":"libusdm0-24.09.0-150500.3.3.1.x86_64","product":{"name":"libusdm0-24.09.0-150500.3.3.1.x86_64","product_id":"libusdm0-24.09.0-150500.3.3.1.x86_64"}},{"category":"product_version","name":"qatengine-1.7.0-150500.3.3.1.x86_64","product":{"name":"qatengine-1.7.0-150500.3.3.1.x86_64","product_id":"qatengine-1.7.0-150500.3.3.1.x86_64"}},{"category":"product_version","name":"qatlib-24.09.0-150500.3.3.1.x86_64","product":{"name":"qatlib-24.09.0-150500.3.3.1.x86_64","product_id":"qatlib-24.09.0-150500.3.3.1.x86_64"}},{"category":"product_version","name":"qatlib-devel-24.09.0-150500.3.3.1.x86_64","product":{"name":"qatlib-devel-24.09.0-150500.3.3.1.x86_64","product_id":"qatlib-devel-24.09.0-150500.3.3.1.x86_64"}},{"category":"product_version","name":"qatzip-1.1.0-150500.3.2.1.x86_64","product":{"name":"qatzip-1.1.0-150500.3.2.1.x86_64","product_id":"qatzip-1.1.0-150500.3.2.1.x86_64"}},{"category":"product_version","name":"qatzip-devel-1.1.0-150500.3.2.1.x86_64","product":{"name":"qatzip-devel-1.1.0-150500.3.2.1.x86_64","product_id":"qatzip-devel-1.1.0-150500.3.2.1.x86_64"}}],"category":"architecture","name":"x86_64"},{"branches":[{"category":"product_name","name":"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS","product":{"name":"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS","product_id":"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS","product_identification_helper":{"cpe":"cpe:/o:suse:sle_hpc-espos:15:sp5"}}},{"category":"product_name","name":"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS","product":{"name":"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS","product_id":"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS","product_identification_helper":{"cpe":"cpe:/o:suse:sle_hpc-ltss:15:sp5"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server 15 SP5-LTSS","product":{"name":"SUSE Linux Enterprise Server 15 SP5-LTSS","product_id":"SUSE Linux Enterprise Server 15 SP5-LTSS","product_identification_helper":{"cpe":"cpe:/o:suse:sles-ltss:15:sp5"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server for SAP Applications 15 SP5","product":{"name":"SUSE Linux Enterprise Server for SAP Applications 15 SP5","product_id":"SUSE Linux Enterprise Server for SAP Applications 15 SP5","product_identification_helper":{"cpe":"cpe:/o:suse:sles_sap:15:sp5"}}}],"category":"product_family","name":"SUSE Linux Enterprise"}],"category":"vendor","name":"SUSE"}],"relationships":[{"category":"default_component_of","full_product_name":{"name":"libqat4-24.09.0-150500.3.3.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS","product_id":"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libqat4-24.09.0-150500.3.3.1.x86_64"},"product_reference":"libqat4-24.09.0-150500.3.3.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"},{"category":"default_component_of","full_product_name":{"name":"libqatzip3-1.1.0-150500.3.2.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS","product_id":"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libqatzip3-1.1.0-150500.3.2.1.x86_64"},"product_reference":"libqatzip3-1.1.0-150500.3.2.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"},{"category":"default_component_of","full_product_name":{"name":"libusdm0-24.09.0-150500.3.3.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS","product_id":"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libusdm0-24.09.0-150500.3.3.1.x86_64"},"product_reference":"libusdm0-24.09.0-150500.3.3.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"},{"category":"default_component_of","full_product_name":{"name":"qatengine-1.7.0-150500.3.3.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS","product_id":"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:qatengine-1.7.0-150500.3.3.1.x86_64"},"product_reference":"qatengine-1.7.0-150500.3.3.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"},{"category":"default_component_of","full_product_name":{"name":"qatlib-24.09.0-150500.3.3.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS","product_id":"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:qatlib-24.09.0-150500.3.3.1.x86_64"},"product_reference":"qatlib-24.09.0-150500.3.3.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"},{"category":"default_component_of","full_product_name":{"name":"qatlib-devel-24.09.0-150500.3.3.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS","product_id":"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:qatlib-devel-24.09.0-150500.3.3.1.x86_64"},"product_reference":"qatlib-devel-24.09.0-150500.3.3.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"},{"category":"default_component_of","full_product_name":{"name":"qatzip-1.1.0-150500.3.2.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS","product_id":"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:qatzip-1.1.0-150500.3.2.1.x86_64"},"product_reference":"qatzip-1.1.0-150500.3.2.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"},{"category":"default_component_of","full_product_name":{"name":"qatzip-devel-1.1.0-150500.3.2.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS","product_id":"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:qatzip-devel-1.1.0-150500.3.2.1.x86_64"},"product_reference":"qatzip-devel-1.1.0-150500.3.2.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS"},{"category":"default_component_of","full_product_name":{"name":"libqat4-24.09.0-150500.3.3.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS","product_id":"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libqat4-24.09.0-150500.3.3.1.x86_64"},"product_reference":"libqat4-24.09.0-150500.3.3.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"},{"category":"default_component_of","full_product_name":{"name":"libqatzip3-1.1.0-150500.3.2.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS","product_id":"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libqatzip3-1.1.0-150500.3.2.1.x86_64"},"product_reference":"libqatzip3-1.1.0-150500.3.2.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"},{"category":"default_component_of","full_product_name":{"name":"libusdm0-24.09.0-150500.3.3.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS","product_id":"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libusdm0-24.09.0-150500.3.3.1.x86_64"},"product_reference":"libusdm0-24.09.0-150500.3.3.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"},{"category":"default_component_of","full_product_name":{"name":"qatengine-1.7.0-150500.3.3.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS","product_id":"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:qatengine-1.7.0-150500.3.3.1.x86_64"},"product_reference":"qatengine-1.7.0-150500.3.3.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"},{"category":"default_component_of","full_product_name":{"name":"qatlib-24.09.0-150500.3.3.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS","product_id":"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:qatlib-24.09.0-150500.3.3.1.x86_64"},"product_reference":"qatlib-24.09.0-150500.3.3.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"},{"category":"default_component_of","full_product_name":{"name":"qatlib-devel-24.09.0-150500.3.3.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS","product_id":"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:qatlib-devel-24.09.0-150500.3.3.1.x86_64"},"product_reference":"qatlib-devel-24.09.0-150500.3.3.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"},{"category":"default_component_of","full_product_name":{"name":"qatzip-1.1.0-150500.3.2.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS","product_id":"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:qatzip-1.1.0-150500.3.2.1.x86_64"},"product_reference":"qatzip-1.1.0-150500.3.2.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"},{"category":"default_component_of","full_product_name":{"name":"qatzip-devel-1.1.0-150500.3.2.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS","product_id":"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:qatzip-devel-1.1.0-150500.3.2.1.x86_64"},"product_reference":"qatzip-devel-1.1.0-150500.3.2.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS"},{"category":"default_component_of","full_product_name":{"name":"libqat4-24.09.0-150500.3.3.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS","product_id":"SUSE Linux Enterprise Server 15 SP5-LTSS:libqat4-24.09.0-150500.3.3.1.x86_64"},"product_reference":"libqat4-24.09.0-150500.3.3.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise Server 15 SP5-LTSS"},{"category":"default_component_of","full_product_name":{"name":"libqatzip3-1.1.0-150500.3.2.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS","product_id":"SUSE Linux Enterprise Server 15 SP5-LTSS:libqatzip3-1.1.0-150500.3.2.1.x86_64"},"product_reference":"libqatzip3-1.1.0-150500.3.2.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise Server 15 SP5-LTSS"},{"category":"default_component_of","full_product_name":{"name":"libusdm0-24.09.0-150500.3.3.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS","product_id":"SUSE Linux Enterprise Server 15 SP5-LTSS:libusdm0-24.09.0-150500.3.3.1.x86_64"},"product_reference":"libusdm0-24.09.0-150500.3.3.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise Server 15 SP5-LTSS"},{"category":"default_component_of","full_product_name":{"name":"qatengine-1.7.0-150500.3.3.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS","product_id":"SUSE Linux Enterprise Server 15 SP5-LTSS:qatengine-1.7.0-150500.3.3.1.x86_64"},"product_reference":"qatengine-1.7.0-150500.3.3.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise Server 15 SP5-LTSS"},{"category":"default_component_of","full_product_name":{"name":"qatlib-24.09.0-150500.3.3.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS","product_id":"SUSE Linux Enterprise Server 15 SP5-LTSS:qatlib-24.09.0-150500.3.3.1.x86_64"},"product_reference":"qatlib-24.09.0-150500.3.3.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise Server 15 SP5-LTSS"},{"category":"default_component_of","full_product_name":{"name":"qatlib-devel-24.09.0-150500.3.3.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS","product_id":"SUSE Linux Enterprise Server 15 SP5-LTSS:qatlib-devel-24.09.0-150500.3.3.1.x86_64"},"product_reference":"qatlib-devel-24.09.0-150500.3.3.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise Server 15 SP5-LTSS"},{"category":"default_component_of","full_product_name":{"name":"qatzip-1.1.0-150500.3.2.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS","product_id":"SUSE Linux Enterprise Server 15 SP5-LTSS:qatzip-1.1.0-150500.3.2.1.x86_64"},"product_reference":"qatzip-1.1.0-150500.3.2.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise Server 15 SP5-LTSS"},{"category":"default_component_of","full_product_name":{"name":"qatzip-devel-1.1.0-150500.3.2.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP5-LTSS","product_id":"SUSE Linux Enterprise Server 15 SP5-LTSS:qatzip-devel-1.1.0-150500.3.2.1.x86_64"},"product_reference":"qatzip-devel-1.1.0-150500.3.2.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise Server 15 SP5-LTSS"},{"category":"default_component_of","full_product_name":{"name":"libqat4-24.09.0-150500.3.3.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5","product_id":"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libqat4-24.09.0-150500.3.3.1.x86_64"},"product_reference":"libqat4-24.09.0-150500.3.3.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 15 SP5"},{"category":"default_component_of","full_product_name":{"name":"libqatzip3-1.1.0-150500.3.2.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5","product_id":"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libqatzip3-1.1.0-150500.3.2.1.x86_64"},"product_reference":"libqatzip3-1.1.0-150500.3.2.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 15 SP5"},{"category":"default_component_of","full_product_name":{"name":"libusdm0-24.09.0-150500.3.3.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5","product_id":"SUSE Linux Enterprise Server for SAP Applications 15 SP5:libusdm0-24.09.0-150500.3.3.1.x86_64"},"product_reference":"libusdm0-24.09.0-150500.3.3.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 15 SP5"},{"category":"default_component_of","full_product_name":{"name":"qatengine-1.7.0-150500.3.3.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5","product_id":"SUSE Linux Enterprise Server for SAP Applications 15 SP5:qatengine-1.7.0-150500.3.3.1.x86_64"},"product_reference":"qatengine-1.7.0-150500.3.3.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 15 SP5"},{"category":"default_component_of","full_product_name":{"name":"qatlib-24.09.0-150500.3.3.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5","product_id":"SUSE Linux Enterprise Server for SAP Applications 15 SP5:qatlib-24.09.0-150500.3.3.1.x86_64"},"product_reference":"qatlib-24.09.0-150500.3.3.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 15 SP5"},{"category":"default_component_of","full_product_name":{"name":"qatlib-devel-24.09.0-150500.3.3.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5","product_id":"SUSE Linux Enterprise Server for SAP Applications 15 SP5:qatlib-devel-24.09.0-150500.3.3.1.x86_64"},"product_reference":"qatlib-devel-24.09.0-150500.3.3.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 15 SP5"},{"category":"default_component_of","full_product_name":{"name":"qatzip-1.1.0-150500.3.2.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5","product_id":"SUSE Linux Enterprise Server for SAP Applications 15 SP5:qatzip-1.1.0-150500.3.2.1.x86_64"},"product_reference":"qatzip-1.1.0-150500.3.2.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 15 SP5"},{"category":"default_component_of","full_product_name":{"name":"qatzip-devel-1.1.0-150500.3.2.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP5","product_id":"SUSE Linux Enterprise Server for SAP Applications 15 SP5:qatzip-devel-1.1.0-150500.3.2.1.x86_64"},"product_reference":"qatzip-devel-1.1.0-150500.3.2.1.x86_64","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 15 SP5"}]},"vulnerabilities":[{"cve":"CVE-2024-28885","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2024-28885"}],"notes":[{"category":"general","text":"Observable discrepancy in some Intel(R) QAT Engine for OpenSSL software before version v1.6.1 may allow information disclosure via network access.","title":"CVE description"}],"product_status":{"recommended":["SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libqat4-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libqatzip3-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libusdm0-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:qatengine-1.7.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:qatlib-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:qatlib-devel-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:qatzip-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:qatzip-devel-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libqat4-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libqatzip3-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libusdm0-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:qatengine-1.7.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:qatlib-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:qatlib-devel-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:qatzip-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:qatzip-devel-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:libqat4-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:libqatzip3-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:libusdm0-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:qatengine-1.7.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:qatlib-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:qatlib-devel-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:qatzip-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:qatzip-devel-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:libqat4-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:libqatzip3-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:libusdm0-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:qatengine-1.7.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:qatlib-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:qatlib-devel-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:qatzip-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:qatzip-devel-1.1.0-150500.3.2.1.x86_64"]},"references":[{"category":"external","summary":"CVE-2024-28885","url":"https://www.suse.com/security/cve/CVE-2024-28885"},{"category":"external","summary":"SUSE Bug 1233363 for CVE-2024-28885","url":"https://bugzilla.suse.com/1233363"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libqat4-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libqatzip3-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libusdm0-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:qatengine-1.7.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:qatlib-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:qatlib-devel-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:qatzip-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:qatzip-devel-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libqat4-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libqatzip3-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libusdm0-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:qatengine-1.7.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:qatlib-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:qatlib-devel-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:qatzip-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:qatzip-devel-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:libqat4-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:libqatzip3-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:libusdm0-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:qatengine-1.7.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:qatlib-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:qatlib-devel-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:qatzip-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:qatzip-devel-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:libqat4-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:libqatzip3-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:libusdm0-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:qatengine-1.7.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:qatlib-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:qatlib-devel-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:qatzip-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:qatzip-devel-1.1.0-150500.3.2.1.x86_64"]}],"scores":[{"cvss_v3":{"baseScore":5.9,"baseSeverity":"MEDIUM","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N","version":"3.1"},"products":["SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libqat4-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libqatzip3-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libusdm0-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:qatengine-1.7.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:qatlib-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:qatlib-devel-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:qatzip-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:qatzip-devel-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libqat4-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libqatzip3-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libusdm0-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:qatengine-1.7.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:qatlib-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:qatlib-devel-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:qatzip-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:qatzip-devel-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:libqat4-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:libqatzip3-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:libusdm0-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:qatengine-1.7.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:qatlib-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:qatlib-devel-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:qatzip-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:qatzip-devel-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:libqat4-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:libqatzip3-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:libusdm0-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:qatengine-1.7.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:qatlib-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:qatlib-devel-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:qatzip-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:qatzip-devel-1.1.0-150500.3.2.1.x86_64"]}],"threats":[{"category":"impact","date":"2025-11-05T08:16:20Z","details":"moderate"}],"title":"CVE-2024-28885"},{"cve":"CVE-2024-31074","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2024-31074"}],"notes":[{"category":"general","text":"Observable timing discrepancy in some Intel(R) QAT Engine for OpenSSL software before version v1.6.1 may allow information disclosure via network access.","title":"CVE description"}],"product_status":{"recommended":["SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libqat4-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libqatzip3-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libusdm0-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:qatengine-1.7.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:qatlib-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:qatlib-devel-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:qatzip-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:qatzip-devel-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libqat4-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libqatzip3-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libusdm0-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:qatengine-1.7.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:qatlib-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:qatlib-devel-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:qatzip-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:qatzip-devel-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:libqat4-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:libqatzip3-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:libusdm0-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:qatengine-1.7.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:qatlib-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:qatlib-devel-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:qatzip-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:qatzip-devel-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:libqat4-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:libqatzip3-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:libusdm0-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:qatengine-1.7.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:qatlib-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:qatlib-devel-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:qatzip-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:qatzip-devel-1.1.0-150500.3.2.1.x86_64"]},"references":[{"category":"external","summary":"CVE-2024-31074","url":"https://www.suse.com/security/cve/CVE-2024-31074"},{"category":"external","summary":"SUSE Bug 1233365 for CVE-2024-31074","url":"https://bugzilla.suse.com/1233365"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libqat4-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libqatzip3-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libusdm0-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:qatengine-1.7.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:qatlib-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:qatlib-devel-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:qatzip-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:qatzip-devel-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libqat4-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libqatzip3-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libusdm0-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:qatengine-1.7.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:qatlib-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:qatlib-devel-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:qatzip-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:qatzip-devel-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:libqat4-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:libqatzip3-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:libusdm0-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:qatengine-1.7.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:qatlib-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:qatlib-devel-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:qatzip-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:qatzip-devel-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:libqat4-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:libqatzip3-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:libusdm0-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:qatengine-1.7.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:qatlib-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:qatlib-devel-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:qatzip-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:qatzip-devel-1.1.0-150500.3.2.1.x86_64"]}],"scores":[{"cvss_v3":{"baseScore":5.9,"baseSeverity":"MEDIUM","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N","version":"3.1"},"products":["SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libqat4-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libqatzip3-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libusdm0-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:qatengine-1.7.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:qatlib-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:qatlib-devel-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:qatzip-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:qatzip-devel-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libqat4-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libqatzip3-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libusdm0-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:qatengine-1.7.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:qatlib-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:qatlib-devel-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:qatzip-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:qatzip-devel-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:libqat4-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:libqatzip3-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:libusdm0-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:qatengine-1.7.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:qatlib-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:qatlib-devel-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:qatzip-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:qatzip-devel-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:libqat4-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:libqatzip3-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:libusdm0-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:qatengine-1.7.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:qatlib-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:qatlib-devel-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:qatzip-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:qatzip-devel-1.1.0-150500.3.2.1.x86_64"]}],"threats":[{"category":"impact","date":"2025-11-05T08:16:20Z","details":"moderate"}],"title":"CVE-2024-31074"},{"cve":"CVE-2024-33617","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2024-33617"}],"notes":[{"category":"general","text":"Insufficient control flow management in some Intel(R) QAT Engine for OpenSSL software before version v1.6.1 may allow information disclosure via network access.","title":"CVE description"}],"product_status":{"recommended":["SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libqat4-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libqatzip3-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libusdm0-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:qatengine-1.7.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:qatlib-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:qatlib-devel-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:qatzip-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:qatzip-devel-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libqat4-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libqatzip3-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libusdm0-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:qatengine-1.7.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:qatlib-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:qatlib-devel-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:qatzip-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:qatzip-devel-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:libqat4-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:libqatzip3-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:libusdm0-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:qatengine-1.7.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:qatlib-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:qatlib-devel-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:qatzip-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:qatzip-devel-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:libqat4-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:libqatzip3-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:libusdm0-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:qatengine-1.7.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:qatlib-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:qatlib-devel-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:qatzip-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:qatzip-devel-1.1.0-150500.3.2.1.x86_64"]},"references":[{"category":"external","summary":"CVE-2024-33617","url":"https://www.suse.com/security/cve/CVE-2024-33617"},{"category":"external","summary":"SUSE Bug 1233366 for CVE-2024-33617","url":"https://bugzilla.suse.com/1233366"}],"remediations":[{"category":"vendor_fix","details":"To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n","product_ids":["SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libqat4-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libqatzip3-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libusdm0-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:qatengine-1.7.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:qatlib-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:qatlib-devel-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:qatzip-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:qatzip-devel-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libqat4-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libqatzip3-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libusdm0-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:qatengine-1.7.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:qatlib-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:qatlib-devel-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:qatzip-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:qatzip-devel-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:libqat4-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:libqatzip3-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:libusdm0-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:qatengine-1.7.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:qatlib-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:qatlib-devel-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:qatzip-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:qatzip-devel-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:libqat4-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:libqatzip3-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:libusdm0-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:qatengine-1.7.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:qatlib-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:qatlib-devel-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:qatzip-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:qatzip-devel-1.1.0-150500.3.2.1.x86_64"]}],"scores":[{"cvss_v3":{"baseScore":5.9,"baseSeverity":"MEDIUM","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N","version":"3.1"},"products":["SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libqat4-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libqatzip3-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:libusdm0-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:qatengine-1.7.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:qatlib-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:qatlib-devel-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:qatzip-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-ESPOS:qatzip-devel-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libqat4-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libqatzip3-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:libusdm0-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:qatengine-1.7.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:qatlib-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:qatlib-devel-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:qatzip-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS:qatzip-devel-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:libqat4-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:libqatzip3-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:libusdm0-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:qatengine-1.7.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:qatlib-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:qatlib-devel-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:qatzip-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server 15 SP5-LTSS:qatzip-devel-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:libqat4-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:libqatzip3-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:libusdm0-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:qatengine-1.7.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:qatlib-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:qatlib-devel-24.09.0-150500.3.3.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:qatzip-1.1.0-150500.3.2.1.x86_64","SUSE Linux Enterprise Server for SAP Applications 15 SP5:qatzip-devel-1.1.0-150500.3.2.1.x86_64"]}],"threats":[{"category":"impact","date":"2025-11-05T08:16:20Z","details":"moderate"}],"title":"CVE-2024-33617"}]}