{"affected":[{"ecosystem_specific":{"binaries":[{"kernel-livepatch-6_4_0-150700_51-default":"3-150700.3.6.2"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Live Patching 15 SP7","name":"kernel-livepatch-SLE15-SP7_Update_0","purl":"pkg:rpm/suse/kernel-livepatch-SLE15-SP7_Update_0&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP7"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"3-150700.3.6.2"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"This update for the Linux Kernel 6.4.0-150700_51 fixes several issues.\n\nThe following security issues were fixed:\n\n- CVE-2025-38087: net/sched: fix use-after-free in taprio_dev_notifier (bsc#1245504).\n- CVE-2025-21999: proc: fix UAF in proc_get_inode() (bsc#1242579).\n- CVE-2025-38001: net_sched: hfsc: Address reentrant enqueue adding class to eltree twice (bsc#1244235).\n- CVE-2025-21659: netdev: prevent accessing NAPI instances from another namespace (bsc#1236207).\n- CVE-2025-38000: sch_hfsc: Fix qlen accounting bug when using peek in hfsc_enqueue() (bsc#1245775).\n- CVE-2025-37890: net_sched: hfsc: Fix a UAF vulnerability in class with netem as child qdisc (bsc#1245791).\n- CVE-2025-21701: net: avoid race between device unregistration and ethnl ops (bsc#1245805).\n- CVE-2025-38212: ipc: fix to protect IPCS lookups using RCU (bsc#1246030).\n","id":"SUSE-SU-2025:03215-1","modified":"2025-09-14T23:18:14Z","published":"2025-09-14T23:18:14Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2025/suse-su-202503215-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/1236207"},{"type":"REPORT","url":"https://bugzilla.suse.com/1242579"},{"type":"REPORT","url":"https://bugzilla.suse.com/1244235"},{"type":"REPORT","url":"https://bugzilla.suse.com/1245505"},{"type":"REPORT","url":"https://bugzilla.suse.com/1245775"},{"type":"REPORT","url":"https://bugzilla.suse.com/1245791"},{"type":"REPORT","url":"https://bugzilla.suse.com/1245805"},{"type":"REPORT","url":"https://bugzilla.suse.com/1246030"},{"type":"REPORT","url":"https://bugzilla.suse.com/1248108"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-21659"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-21701"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-21999"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-37890"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-38000"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-38001"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-38087"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2025-38212"}],"related":["CVE-2025-21659","CVE-2025-21701","CVE-2025-21999","CVE-2025-37890","CVE-2025-38000","CVE-2025-38001","CVE-2025-38087","CVE-2025-38212"],"summary":"Security update for the Linux Kernel (Live Patch 0 for SLE 15 SP7)","upstream":["CVE-2025-21659","CVE-2025-21701","CVE-2025-21999","CVE-2025-37890","CVE-2025-38000","CVE-2025-38001","CVE-2025-38087","CVE-2025-38212"]}