{"affected":[{"ecosystem_specific":{"binaries":[{"kernel-livepatch-5_3_18-150300_59_195-default":"7-150300.2.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Live Patching 15 SP3","name":"kernel-livepatch-SLE15-SP3_Update_54","purl":"pkg:rpm/suse/kernel-livepatch-SLE15-SP3_Update_54&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP3"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"7-150300.2.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for the Linux Kernel 5.3.18-150300_59_195 fixes several issues.\n\nThe following security issues were fixed:\n\n- CVE-2025-21999: proc: fix UAF in proc_get_inode() (bsc#1242579).\n- CVE-2022-49053: scsi: target: tcmu: Fix possible page UAF (bsc#1237930).\n- CVE-2025-38001: net_sched: hfsc: Address reentrant enqueue adding class to eltree twice (bsc#1244235).\n- CVE-2025-38000: sch_hfsc: Fix qlen accounting bug when using peek in hfsc_enqueue() (bsc#1245775).\n- CVE-2025-37890: net_sched: hfsc: Fix a UAF vulnerability in class with netem as child qdisc (bsc#1245791).\n- CVE-2025-38212: ipc: fix to protect IPCS lookups using RCU (bsc#1246030).\n","id":"SUSE-SU-2025:03129-1","modified":"2025-09-10T10:04:28Z","published":"2025-09-10T10:04:28Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2025/suse-su-202503129-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1237930"},{"type":"REPORT","url":"https://bugzilla.suse.com/1242579"},{"type":"REPORT","url":"https://bugzilla.suse.com/1244235"},{"type":"REPORT","url":"https://bugzilla.suse.com/1245775"},{"type":"REPORT","url":"https://bugzilla.suse.com/1245791"},{"type":"REPORT","url":"https://bugzilla.suse.com/1246030"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2022-49053"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-21999"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-37890"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-38000"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-38001"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-38212"}],"related":["CVE-2022-49053","CVE-2025-21999","CVE-2025-37890","CVE-2025-38000","CVE-2025-38001","CVE-2025-38212"],"summary":"Security update for the Linux Kernel (Live Patch 54 for SLE 15 SP3)","upstream":["CVE-2022-49053","CVE-2025-21999","CVE-2025-37890","CVE-2025-38000","CVE-2025-38001","CVE-2025-38212"]}