{ "document":{ "aggregate_severity":{ "namespace":"https://nvd.nist.gov/vuln-metrics/cvss", "text":"High" }, "category":"csaf_vex", "csaf_version":"2.0", "distribution":{ "tlp":{ "label":"WHITE", "url":"https:/www.first.org/tlp/" } }, "lang":"en", "notes":[ { "text":"kernel security update", "category":"general", "title":"Synopsis" }, { "text":"An update for kernel is now available for openEuler-22.03-LTS-SP3", "category":"general", "title":"Summary" }, { "text":"The Linux Kernel, the operating system core itself.\n\nSecurity Fix(es):\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\npinmux: Use sequential access to access desc->pinmux data\n\nWhen two client of the same gpio call pinctrl_select_state() for the\nsame functionality, we are seeing NULL pointer issue while accessing\ndesc->mux_owner.\n\nLet's say two processes A, B executing in pin_request() for the same pin\nand process A updates the desc->mux_usecount but not yet updated the\ndesc->mux_owner while process B see the desc->mux_usecount which got\nupdated by A path and further executes strcmp and while accessing\ndesc->mux_owner it crashes with NULL pointer.\n\nSerialize the access to mux related setting with a mutex lock.\n\n\tcpu0 (process A)\t\t\tcpu1(process B)\n\npinctrl_select_state() {\t\t pinctrl_select_state() {\n pin_request() {\t\t\t\tpin_request() {\n ...\n\t\t\t\t\t\t ....\n } else {\n desc->mux_usecount++;\n \t\t\t\t\t\tdesc->mux_usecount && strcmp(desc->mux_owner, owner)) {\n\n if (desc->mux_usecount > 1)\n return 0;\n desc->mux_owner = owner;\n\n }\t\t\t\t\t\t}(CVE-2024-47141)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nnet/smc: check iparea_offset and ipv6_prefixes_cnt when receiving proposal msg\n\nWhen receiving proposal msg in server, the field iparea_offset\nand the field ipv6_prefixes_cnt in proposal msg are from the\nremote client and can not be fully trusted. Especially the\nfield iparea_offset, once exceed the max value, there has the\nchance to access wrong address, and crash may happen.\n\nThis patch checks iparea_offset and ipv6_prefixes_cnt before using them.(CVE-2024-49571)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nspi: mpc52xx: Add cancel_work_sync before module remove\n\nIf we remove the module which will call mpc52xx_spi_remove\nit will free 'ms' through spi_unregister_controller.\nwhile the work ms->work will be used. The sequence of operations\nthat may lead to a UAF bug.\n\nFix it by ensuring that the work is canceled before proceeding with\nthe cleanup in mpc52xx_spi_remove.(CVE-2024-50051)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: fix potential array underflow in ucsi_ccg_sync_control()\n\nThe \"command\" variable can be controlled by the user via debugfs. The\nworry is that if con_index is zero then \"&uc->ucsi->connector[con_index\n- 1]\" would be an array underflow.(CVE-2024-53203)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nzram: fix NULL pointer in comp_algorithm_show()\n\nLTP reported a NULL pointer dereference as followed:\n\n CPU: 7 UID: 0 PID: 5995 Comm: cat Kdump: loaded Not tainted 6.12.0-rc6+ #3\n Hardware name: QEMU KVM Virtual Machine, BIOS 0.0.0 02/06/2015\n pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n pc : __pi_strcmp+0x24/0x140\n lr : zcomp_available_show+0x60/0x100 [zram]\n sp : ffff800088b93b90\n x29: ffff800088b93b90 x28: 0000000000000001 x27: 0000000000400cc0\n x26: 0000000000000ffe x25: ffff80007b3e2388 x24: 0000000000000000\n x23: ffff80007b3e2390 x22: ffff0004041a9000 x21: ffff80007b3e2900\n x20: 0000000000000000 x19: 0000000000000000 x18: 0000000000000000\n x17: 0000000000000000 x16: 0000000000000000 x15: 0000000000000000\n x14: 0000000000000000 x13: 0000000000000000 x12: 0000000000000000\n x11: 0000000000000000 x10: ffff80007b3e2900 x9 : ffff80007b3cb280\n x8 : 0101010101010101 x7 : 0000000000000000 x6 : 0000000000000000\n x5 : 0000000000000040 x4 : 0000000000000000 x3 : 00656c722d6f7a6c\n x2 : 0000000000000000 x1 : ffff80007b3e2900 x0 : 0000000000000000\n Call trace:\n __pi_strcmp+0x24/0x140\n comp_algorithm_show+0x40/0x70 [zram]\n dev_attr_show+0x28/0x80\n sysfs_kf_seq_show+0x90/0x140\n kernfs_seq_show+0x34/0x48\n seq_read_iter+0x1d4/0x4e8\n kernfs_fop_read_iter+0x40/0x58\n new_sync_read+0x9c/0x168\n vfs_read+0x1a8/0x1f8\n ksys_read+0x74/0x108\n __arm64_sys_read+0x24/0x38\n invoke_syscall+0x50/0x120\n el0_svc_common.constprop.0+0xc8/0xf0\n do_el0_svc+0x24/0x38\n el0_svc+0x38/0x138\n el0t_64_sync_handler+0xc0/0xc8\n el0t_64_sync+0x188/0x190\n\nThe zram->comp_algs[ZRAM_PRIMARY_COMP] can be NULL in zram_add() if\ncomp_algorithm_set() has not been called. User can access the zram device\nby sysfs after device_add_disk(), so there is a time window to trigger the\nNULL pointer dereference. Move it ahead device_add_disk() to make sure\nwhen user can access the zram device, it is ready. comp_algorithm_set()\nis protected by zram->init_lock in other places and no such problem.(CVE-2024-53222)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: prevent use of deleted inode\n\nsyzbot reported a WARNING in nilfs_rmdir. [1]\n\nBecause the inode bitmap is corrupted, an inode with an inode number that\nshould exist as a \".nilfs\" file was reassigned by nilfs_mkdir for \"file0\",\ncausing an inode duplication during execution. And this causes an\nunderflow of i_nlink in rmdir operations.\n\nThe inode is used twice by the same task to unmount and remove directories\n\".nilfs\" and \"file0\", it trigger warning in nilfs_rmdir.\n\nAvoid to this issue, check i_nlink in nilfs_iget(), if it is 0, it means\nthat this inode has been deleted, and iput is executed to reclaim it.\n\n[1]\nWARNING: CPU: 1 PID: 5824 at fs/inode.c:407 drop_nlink+0xc4/0x110 fs/inode.c:407\n...\nCall Trace:\n \n nilfs_rmdir+0x1b0/0x250 fs/nilfs2/namei.c:342\n vfs_rmdir+0x3a3/0x510 fs/namei.c:4394\n do_rmdir+0x3b5/0x580 fs/namei.c:4453\n __do_sys_rmdir fs/namei.c:4472 [inline]\n __se_sys_rmdir fs/namei.c:4470 [inline]\n __x64_sys_rmdir+0x47/0x50 fs/namei.c:4470\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f(CVE-2024-53690)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\ndrm: adv7511: Fix use-after-free in adv7533_attach_dsi()\n\nThe host_node pointer was assigned and freed in adv7533_parse_dt(), and\nlater, adv7533_attach_dsi() uses the same. Fix this use-after-free issue\nby dropping of_node_put() in adv7533_parse_dt() and calling of_node_put()\nin error path of probe() and also in the remove().(CVE-2024-57887)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\nALSA: seq: oss: Fix races at processing SysEx messages\n\nOSS sequencer handles the SysEx messages split in 6 bytes packets, and\nALSA sequencer OSS layer tries to combine those. It stores the data\nin the internal buffer and this access is racy as of now, which may\nlead to the out-of-bounds access.\n\nAs a temporary band-aid fix, introduce a mutex for serializing the\nprocess of the SysEx message packets.(CVE-2024-57893)\n\nIn the Linux kernel, the following vulnerability has been resolved:\n\niio: light: vcnl4035: fix information leak in triggered buffer\n\nThe 'buffer' local array is used to push data to userspace from a\ntriggered buffer, but it does not set an initial value for the single\ndata element, which is an u16 aligned to 8 bytes. That leaves at least\n4 bytes uninitialized even after writing an integer value with\nregmap_read().\n\nInitialize the array to zero before using it to avoid pushing\nuninitialized information to userspace.(CVE-2024-57910)", "category":"general", "title":"Description" }, { "text":"An update for kernel is now available for openEuler-22.03-LTS-SP3.\n\nopenEuler Security has rated this update as having a security impact of high. A Common Vunlnerability Scoring System(CVSS)base score,which gives a detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section.", "category":"general", "title":"Topic" }, { "text":"High", "category":"general", "title":"Severity" }, { "text":"kernel", "category":"general", "title":"Affected Component" } ], "publisher":{ "issuing_authority":"openEuler security committee", "name":"openEuler", "namespace":"https://www.openeuler.org", "contact_details":"openeuler-security@openeuler.org", "category":"vendor" }, "references":[ { "summary":"openEuler-SA-2025-1113", "category":"self", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-1113" }, { "summary":"CVE-2024-47141", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-47141&packageName=kernel" }, { "summary":"CVE-2024-49571", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-49571&packageName=kernel" }, { "summary":"CVE-2024-50051", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-50051&packageName=kernel" }, { "summary":"CVE-2024-53203", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-53203&packageName=kernel" }, { "summary":"CVE-2024-53222", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-53222&packageName=kernel" }, { "summary":"CVE-2024-53690", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-53690&packageName=kernel" }, { "summary":"CVE-2024-57887", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-57887&packageName=kernel" }, { "summary":"CVE-2024-57893", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-57893&packageName=kernel" }, { "summary":"CVE-2024-57910", "category":"self", "url":"https://www.openeuler.org/en/security/cve/detail/?cveId=CVE-2024-57910&packageName=kernel" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-47141" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-49571" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-50051" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-53203" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-53222" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-53690" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-57887" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-57893" }, { "summary":"nvd cve", "category":"external", "url":"https://nvd.nist.gov/vuln/detail/CVE-2024-57910" }, { "summary":"openEuler-SA-2025-1113 vex file", "category":"self", "url":"https://repo.openeuler.org/security/data/csaf/advisories/2025/csaf-openeuler-sa-2025-1113.json" } ], "title":"An update for kernel is now available for openEuler-22.03-LTS-SP3", "tracking":{ "initial_release_date":"2025-02-15T09:48:44+08:00", "revision_history":[ { "date":"2025-02-15T09:48:44+08:00", "summary":"Initial", "number":"1.0.0" } ], "generator":{ "date":"2025-02-15T09:48:44+08:00", "engine":{ "name":"openEuler CSAF Tool V1.0" } }, "current_release_date":"2025-02-15T09:48:44+08:00", "id":"openEuler-SA-2025-1113", "version":"1.0.0", "status":"final" } }, "product_tree":{ "branches":[ { "name":"openEuler", "category":"vendor", "branches":[ { "name":"openEuler", "branches":[ { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"openEuler-22.03-LTS-SP3", "name":"openEuler-22.03-LTS-SP3" }, "name":"openEuler-22.03-LTS-SP3", "category":"product_version" } ], "category":"product_name" }, { "name":"aarch64", "branches":[ { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm", "name":"kernel-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm" }, "name":"kernel-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm", "name":"kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm" }, "name":"kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm", "name":"kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm" }, "name":"kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm", "name":"kernel-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm" }, "name":"kernel-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-headers-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm", "name":"kernel-headers-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm" }, "name":"kernel-headers-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-source-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm", "name":"kernel-source-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm" }, "name":"kernel-source-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-tools-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm", "name":"kernel-tools-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm" }, "name":"kernel-tools-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm", "name":"kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm" }, "name":"kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm", "name":"kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm" }, "name":"kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"perf-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm", "name":"perf-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm" }, "name":"perf-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm", "name":"perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm" }, "name":"perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"python3-perf-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm", "name":"python3-perf-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm" }, "name":"python3-perf-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm", "name":"python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm" }, "name":"python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm", "category":"product_version" } ], "category":"architecture" }, { "name":"src", "branches":[ { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-5.10.0-249.0.0.151.oe2203sp3.src.rpm", "name":"kernel-5.10.0-249.0.0.151.oe2203sp3.src.rpm" }, "name":"kernel-5.10.0-249.0.0.151.oe2203sp3.src.rpm", "category":"product_version" } ], "category":"architecture" }, { "name":"x86_64", "branches":[ { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm", "name":"kernel-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm" }, "name":"kernel-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm", "name":"kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm" }, "name":"kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm", "name":"kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm" }, "name":"kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm", "name":"kernel-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm" }, "name":"kernel-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-headers-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm", "name":"kernel-headers-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm" }, "name":"kernel-headers-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-source-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm", "name":"kernel-source-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm" }, "name":"kernel-source-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-tools-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm", "name":"kernel-tools-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm" }, "name":"kernel-tools-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm", "name":"kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm" }, "name":"kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm", "name":"kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm" }, "name":"kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"perf-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm", "name":"perf-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm" }, "name":"perf-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm", "name":"perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm" }, "name":"perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"python3-perf-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm", "name":"python3-perf-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm" }, "name":"python3-perf-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm", "category":"product_version" }, { "product":{ "product_identification_helper":{ "cpe":"cpe:/a:openEuler:openEuler:22.03-LTS-SP3" }, "product_id":"python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm", "name":"python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm" }, "name":"python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm", "category":"product_version" } ], "category":"architecture" } ] } ], "relationships":[ { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "name":"kernel-5.10.0-249.0.0.151.oe2203sp3.aarch64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "name":"kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.aarch64", "name":"kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.aarch64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "name":"kernel-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-headers-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.aarch64", "name":"kernel-headers-5.10.0-249.0.0.151.oe2203sp3.aarch64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-source-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.aarch64", "name":"kernel-source-5.10.0-249.0.0.151.oe2203sp3.aarch64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-tools-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.aarch64", "name":"kernel-tools-5.10.0-249.0.0.151.oe2203sp3.aarch64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "name":"kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "name":"kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"perf-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "name":"perf-5.10.0-249.0.0.151.oe2203sp3.aarch64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "name":"perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"python3-perf-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "name":"python3-perf-5.10.0-249.0.0.151.oe2203sp3.aarch64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "name":"python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-5.10.0-249.0.0.151.oe2203sp3.src.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.src", "name":"kernel-5.10.0-249.0.0.151.oe2203sp3.src as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "name":"kernel-5.10.0-249.0.0.151.oe2203sp3.x86_64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "name":"kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.x86_64", "name":"kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.x86_64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "name":"kernel-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-headers-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.x86_64", "name":"kernel-headers-5.10.0-249.0.0.151.oe2203sp3.x86_64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-source-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.x86_64", "name":"kernel-source-5.10.0-249.0.0.151.oe2203sp3.x86_64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-tools-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.x86_64", "name":"kernel-tools-5.10.0-249.0.0.151.oe2203sp3.x86_64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "name":"kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "name":"kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"perf-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "name":"perf-5.10.0-249.0.0.151.oe2203sp3.x86_64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "name":"perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"python3-perf-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "name":"python3-perf-5.10.0-249.0.0.151.oe2203sp3.x86_64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" }, { "relates_to_product_reference":"openEuler-22.03-LTS-SP3", "product_reference":"python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64.rpm", "full_product_name":{ "product_id":"openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "name":"python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64 as a component of openEuler-22.03-LTS-SP3" }, "category":"default_component_of" } ] }, "vulnerabilities":[ { "cve":"CVE-2024-47141", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\npinmux: Use sequential access to access desc->pinmux data\n\nWhen two client of the same gpio call pinctrl_select_state() for the\nsame functionality, we are seeing NULL pointer issue while accessing\ndesc->mux_owner.\n\nLet's say two processes A, B executing in pin_request() for the same pin\nand process A updates the desc->mux_usecount but not yet updated the\ndesc->mux_owner while process B see the desc->mux_usecount which got\nupdated by A path and further executes strcmp and while accessing\ndesc->mux_owner it crashes with NULL pointer.\n\nSerialize the access to mux related setting with a mutex lock.\n\n\tcpu0 (process A)\t\t\tcpu1(process B)\n\npinctrl_select_state() {\t\t pinctrl_select_state() {\n pin_request() {\t\t\t\tpin_request() {\n ...\n\t\t\t\t\t\t ....\n } else {\n desc->mux_usecount++;\n \t\t\t\t\t\tdesc->mux_usecount && strcmp(desc->mux_owner, owner)) {\n\n if (desc->mux_usecount > 1)\n return 0;\n desc->mux_owner = owner;\n\n }\t\t\t\t\t\t}", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-1113" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"MEDIUM", "baseScore":5.5, "vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"Medium", "category":"impact" } ], "title":"CVE-2024-47141" }, { "cve":"CVE-2024-49571", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\nnet/smc: check iparea_offset and ipv6_prefixes_cnt when receiving proposal msg\n\nWhen receiving proposal msg in server, the field iparea_offset\nand the field ipv6_prefixes_cnt in proposal msg are from the\nremote client and can not be fully trusted. Especially the\nfield iparea_offset, once exceed the max value, there has the\nchance to access wrong address, and crash may happen.\n\nThis patch checks iparea_offset and ipv6_prefixes_cnt before using them.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-1113" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"MEDIUM", "baseScore":5.5, "vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"Medium", "category":"impact" } ], "title":"CVE-2024-49571" }, { "cve":"CVE-2024-50051", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\nspi: mpc52xx: Add cancel_work_sync before module remove\n\nIf we remove the module which will call mpc52xx_spi_remove\nit will free 'ms' through spi_unregister_controller.\nwhile the work ms->work will be used. The sequence of operations\nthat may lead to a UAF bug.\n\nFix it by ensuring that the work is canceled before proceeding with\nthe cleanup in mpc52xx_spi_remove.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-1113" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"HIGH", "baseScore":7.8, "vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"High", "category":"impact" } ], "title":"CVE-2024-50051" }, { "cve":"CVE-2024-53203", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\nusb: typec: fix potential array underflow in ucsi_ccg_sync_control()\n\nThe \"command\" variable can be controlled by the user via debugfs. The\nworry is that if con_index is zero then \"&uc->ucsi->connector[con_index\n- 1]\" would be an array underflow.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-1113" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"HIGH", "baseScore":7.8, "vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"High", "category":"impact" } ], "title":"CVE-2024-53203" }, { "cve":"CVE-2024-53222", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\nzram: fix NULL pointer in comp_algorithm_show()\n\nLTP reported a NULL pointer dereference as followed:\n\n CPU: 7 UID: 0 PID: 5995 Comm: cat Kdump: loaded Not tainted 6.12.0-rc6+ #3\n Hardware name: QEMU KVM Virtual Machine, BIOS 0.0.0 02/06/2015\n pstate: 40400005 (nZcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)\n pc : __pi_strcmp+0x24/0x140\n lr : zcomp_available_show+0x60/0x100 [zram]\n sp : ffff800088b93b90\n x29: ffff800088b93b90 x28: 0000000000000001 x27: 0000000000400cc0\n x26: 0000000000000ffe x25: ffff80007b3e2388 x24: 0000000000000000\n x23: ffff80007b3e2390 x22: ffff0004041a9000 x21: ffff80007b3e2900\n x20: 0000000000000000 x19: 0000000000000000 x18: 0000000000000000\n x17: 0000000000000000 x16: 0000000000000000 x15: 0000000000000000\n x14: 0000000000000000 x13: 0000000000000000 x12: 0000000000000000\n x11: 0000000000000000 x10: ffff80007b3e2900 x9 : ffff80007b3cb280\n x8 : 0101010101010101 x7 : 0000000000000000 x6 : 0000000000000000\n x5 : 0000000000000040 x4 : 0000000000000000 x3 : 00656c722d6f7a6c\n x2 : 0000000000000000 x1 : ffff80007b3e2900 x0 : 0000000000000000\n Call trace:\n __pi_strcmp+0x24/0x140\n comp_algorithm_show+0x40/0x70 [zram]\n dev_attr_show+0x28/0x80\n sysfs_kf_seq_show+0x90/0x140\n kernfs_seq_show+0x34/0x48\n seq_read_iter+0x1d4/0x4e8\n kernfs_fop_read_iter+0x40/0x58\n new_sync_read+0x9c/0x168\n vfs_read+0x1a8/0x1f8\n ksys_read+0x74/0x108\n __arm64_sys_read+0x24/0x38\n invoke_syscall+0x50/0x120\n el0_svc_common.constprop.0+0xc8/0xf0\n do_el0_svc+0x24/0x38\n el0_svc+0x38/0x138\n el0t_64_sync_handler+0xc0/0xc8\n el0t_64_sync+0x188/0x190\n\nThe zram->comp_algs[ZRAM_PRIMARY_COMP] can be NULL in zram_add() if\ncomp_algorithm_set() has not been called. User can access the zram device\nby sysfs after device_add_disk(), so there is a time window to trigger the\nNULL pointer dereference. Move it ahead device_add_disk() to make sure\nwhen user can access the zram device, it is ready. comp_algorithm_set()\nis protected by zram->init_lock in other places and no such problem.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-1113" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"MEDIUM", "baseScore":5.5, "vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"Medium", "category":"impact" } ], "title":"CVE-2024-53222" }, { "cve":"CVE-2024-53690", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\nnilfs2: prevent use of deleted inode\n\nsyzbot reported a WARNING in nilfs_rmdir. [1]\n\nBecause the inode bitmap is corrupted, an inode with an inode number that\nshould exist as a \".nilfs\" file was reassigned by nilfs_mkdir for \"file0\",\ncausing an inode duplication during execution. And this causes an\nunderflow of i_nlink in rmdir operations.\n\nThe inode is used twice by the same task to unmount and remove directories\n\".nilfs\" and \"file0\", it trigger warning in nilfs_rmdir.\n\nAvoid to this issue, check i_nlink in nilfs_iget(), if it is 0, it means\nthat this inode has been deleted, and iput is executed to reclaim it.\n\n[1]\nWARNING: CPU: 1 PID: 5824 at fs/inode.c:407 drop_nlink+0xc4/0x110 fs/inode.c:407\n...\nCall Trace:\n \n nilfs_rmdir+0x1b0/0x250 fs/nilfs2/namei.c:342\n vfs_rmdir+0x3a3/0x510 fs/namei.c:4394\n do_rmdir+0x3b5/0x580 fs/namei.c:4453\n __do_sys_rmdir fs/namei.c:4472 [inline]\n __se_sys_rmdir fs/namei.c:4470 [inline]\n __x64_sys_rmdir+0x47/0x50 fs/namei.c:4470\n do_syscall_x64 arch/x86/entry/common.c:52 [inline]\n do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83\n entry_SYSCALL_64_after_hwframe+0x77/0x7f", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-1113" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"MEDIUM", "baseScore":5.5, "vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"Medium", "category":"impact" } ], "title":"CVE-2024-53690" }, { "cve":"CVE-2024-57887", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\ndrm: adv7511: Fix use-after-free in adv7533_attach_dsi()\n\nThe host_node pointer was assigned and freed in adv7533_parse_dt(), and\nlater, adv7533_attach_dsi() uses the same. Fix this use-after-free issue\nby dropping of_node_put() in adv7533_parse_dt() and calling of_node_put()\nin error path of probe() and also in the remove().", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-1113" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"HIGH", "baseScore":7.8, "vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"High", "category":"impact" } ], "title":"CVE-2024-57887" }, { "cve":"CVE-2024-57893", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\nALSA: seq: oss: Fix races at processing SysEx messages\n\nOSS sequencer handles the SysEx messages split in 6 bytes packets, and\nALSA sequencer OSS layer tries to combine those. It stores the data\nin the internal buffer and this access is racy as of now, which may\nlead to the out-of-bounds access.\n\nAs a temporary band-aid fix, introduce a mutex for serializing the\nprocess of the SysEx message packets.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-1113" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"MEDIUM", "baseScore":5.5, "vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"Medium", "category":"impact" } ], "title":"CVE-2024-57893" }, { "cve":"CVE-2024-57910", "notes":[ { "text":"In the Linux kernel, the following vulnerability has been resolved:\n\niio: light: vcnl4035: fix information leak in triggered buffer\n\nThe 'buffer' local array is used to push data to userspace from a\ntriggered buffer, but it does not set an initial value for the single\ndata element, which is an u16 aligned to 8 bytes. That leaves at least\n4 bytes uninitialized even after writing an integer value with\nregmap_read().\n\nInitialize the array to zero before using it to avoid pushing\nuninitialized information to userspace.", "category":"description", "title":"Vulnerability Description" } ], "product_status":{ "fixed":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64" ] }, "remediations":[ { "product_ids":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64" ], "details":"kernel security update", "category":"vendor_fix", "url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-1113" } ], "scores":[ { "cvss_v3":{ "baseSeverity":"HIGH", "baseScore":7.1, "vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H", "version":"3.1" }, "products":[ "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.aarch64", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.src", "openEuler-22.03-LTS-SP3:kernel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-debugsource-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-headers-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-source-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:kernel-tools-devel-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-5.10.0-249.0.0.151.oe2203sp3.x86_64", "openEuler-22.03-LTS-SP3:python3-perf-debuginfo-5.10.0-249.0.0.151.oe2203sp3.x86_64" ] } ], "threats":[ { "details":"High", "category":"impact" } ], "title":"CVE-2024-57910" } ] }