SUSE-SU-2025:02146-1

Опубликовано: 27 июн. 2025

Источник: suse-cvrf

Описание

Security update for the Linux Kernel (Live Patch 54 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-150300_59_195 fixes one issue.

The following security issue was fixed:

CVE-2022-49545: ALSA: usb-audio: Cancel pending work at closing a MIDI substream (bsc#1238730).

Список пакетов

SUSE Linux Enterprise Live Patching 15 SP3

kernel-livepatch-5_3_18-150300_59_195-default-3-150300.2.1

Ссылки

https://www.suse.com/support/update/announcement/2025/suse-su-202502146-1/
Link for SUSE-SU-2025:02146-1
https://lists.suse.com/pipermail/sle-updates/2025-June/040519.html
E-Mail link for SUSE-SU-2025:02146-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1238730
SUSE Bug 1238730
https://www.suse.com/security/cve/CVE-2022-49545/
SUSE CVE CVE-2022-49545 page

Описание

In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Cancel pending work at closing a MIDI substream At closing a USB MIDI output substream, there might be still a pending work, which would eventually access the rawmidi runtime object that is being released. For fixing the race, make sure to cancel the pending work at closing.

Затронутые продукты

SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_195-default-3-150300.2.1

Ссылки

https://www.suse.com/security/cve/CVE-2022-49545.html
CVE-2022-49545
https://bugzilla.suse.com/1238729
SUSE Bug 1238729
https://bugzilla.suse.com/1238730
SUSE Bug 1238730

SUSE-SU-2025:02146-1

Описание

Список пакетов

SUSE Linux Enterprise Live Patching 15 SP3

Ссылки

Уязвимость: CVE-2022-49545

Описание

Затронутые продукты

Ссылки