Security update for xorg-x11-server SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2024:1261-1 Final 1 1 2024-04-12T13:05:11Z current 2024-04-12T13:05:11Z 2024-04-12T13:05:11Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for xorg-x11-server This update for xorg-x11-server fixes the following issues: - CVE-2024-31080: Fixed ProcXIGetSelectedEvents to use unswapped length (bsc#1222309). - CVE-2024-31081: Fixed ProcXIPassiveGrabDevice to use unswapped length to send reply (bsc#1222310). - CVE-2024-31082: Fixed ProcAppleDRICreatePixmap to use unswapped length to send reply (bsc#1222311). - CVE-2024-31083: Fixed refcounting of glyphs during ProcRenderAddGlyphs (bsc#1222312). Other fixes: - Fixed regression for security fix for CVE-2024-31083 when using Android Studio (bnc#1222442) The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Image SLES15-SP3-SAPCAL-Azure-2024-1261,Image SLES15-SP3-SAPCAL-EC2-HVM-2024-1261,Image SLES15-SP3-SAPCAL-GCE-2024-1261,SUSE-2024-1261,SUSE-SLE-Product-HPC-15-SP2-LTSS-2024-1261,SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-1261,SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-1261,SUSE-SLE-Product-SLES-15-SP2-LTSS-2024-1261,SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-1261,SUSE-SLE-Product-SLES_SAP-15-SP2-2024-1261,SUSE-SLE-Product-SLES_SAP-15-SP3-2024-1261,SUSE-SLE-Product-WE-15-SP5-2024-1261,SUSE-Storage-7.1-2024-1261 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2024/suse-su-20241261-1/ Link for SUSE-SU-2024:1261-1 https://lists.suse.com/pipermail/sle-updates/2024-April/034962.html E-Mail link for SUSE-SU-2024:1261-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1222309 SUSE Bug 1222309 https://bugzilla.suse.com/1222310 SUSE Bug 1222310 https://bugzilla.suse.com/1222311 SUSE Bug 1222311 https://bugzilla.suse.com/1222312 SUSE Bug 1222312 https://bugzilla.suse.com/1222442 SUSE Bug 1222442 https://www.suse.com/security/cve/CVE-2024-31080/ SUSE CVE CVE-2024-31080 page https://www.suse.com/security/cve/CVE-2024-31081/ SUSE CVE CVE-2024-31081 page https://www.suse.com/security/cve/CVE-2024-31082/ SUSE CVE CVE-2024-31082 page https://www.suse.com/security/cve/CVE-2024-31083/ SUSE CVE CVE-2024-31083 page Image SLES15-SP3-SAPCAL-Azure Image SLES15-SP3-SAPCAL-EC2-HVM Image SLES15-SP3-SAPCAL-GCE SUSE Enterprise Storage 7.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS SUSE Linux Enterprise Server 15 SP2-LTSS SUSE Linux Enterprise Server 15 SP3-LTSS SUSE Linux Enterprise Server for SAP Applications 15 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SP3 SUSE Linux Enterprise Workstation Extension 15 SP5 xorg-x11-server-1.20.3-150200.22.5.96.1 xorg-x11-server-extra-1.20.3-150200.22.5.96.1 xorg-x11-server-sdk-1.20.3-150200.22.5.96.1 xorg-x11-server-source-1.20.3-150200.22.5.96.1 xorg-x11-server-wayland-1.20.3-150200.22.5.96.1 xorg-x11-server-1.20.3-150200.22.5.96.1 as a component of Image SLES15-SP3-SAPCAL-Azure xorg-x11-server-1.20.3-150200.22.5.96.1 as a component of Image SLES15-SP3-SAPCAL-EC2-HVM xorg-x11-server-1.20.3-150200.22.5.96.1 as a component of Image SLES15-SP3-SAPCAL-GCE xorg-x11-server-1.20.3-150200.22.5.96.1 as a component of SUSE Enterprise Storage 7.1 xorg-x11-server-extra-1.20.3-150200.22.5.96.1 as a component of SUSE Enterprise Storage 7.1 xorg-x11-server-sdk-1.20.3-150200.22.5.96.1 as a component of SUSE Enterprise Storage 7.1 xorg-x11-server-1.20.3-150200.22.5.96.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS xorg-x11-server-extra-1.20.3-150200.22.5.96.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS xorg-x11-server-sdk-1.20.3-150200.22.5.96.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS xorg-x11-server-1.20.3-150200.22.5.96.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS xorg-x11-server-extra-1.20.3-150200.22.5.96.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS xorg-x11-server-sdk-1.20.3-150200.22.5.96.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS xorg-x11-server-1.20.3-150200.22.5.96.1 as a component of SUSE Linux Enterprise Server 15 SP2-LTSS xorg-x11-server-extra-1.20.3-150200.22.5.96.1 as a component of SUSE Linux Enterprise Server 15 SP2-LTSS xorg-x11-server-sdk-1.20.3-150200.22.5.96.1 as a component of SUSE Linux Enterprise Server 15 SP2-LTSS xorg-x11-server-1.20.3-150200.22.5.96.1 as a component of SUSE Linux Enterprise Server 15 SP3-LTSS xorg-x11-server-extra-1.20.3-150200.22.5.96.1 as a component of SUSE Linux Enterprise Server 15 SP3-LTSS xorg-x11-server-sdk-1.20.3-150200.22.5.96.1 as a component of SUSE Linux Enterprise Server 15 SP3-LTSS xorg-x11-server-1.20.3-150200.22.5.96.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP2 xorg-x11-server-extra-1.20.3-150200.22.5.96.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP2 xorg-x11-server-sdk-1.20.3-150200.22.5.96.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP2 xorg-x11-server-1.20.3-150200.22.5.96.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP3 xorg-x11-server-extra-1.20.3-150200.22.5.96.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP3 xorg-x11-server-sdk-1.20.3-150200.22.5.96.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP3 xorg-x11-server-wayland-1.20.3-150200.22.5.96.1 as a component of SUSE Linux Enterprise Workstation Extension 15 SP5 A heap-based buffer over-read vulnerability was found in the X.org server's ProcXIGetSelectedEvents() function. This issue occurs when byte-swapped length values are used in replies, potentially leading to memory leakage and segmentation faults, particularly when triggered by a client with a different endianness. This vulnerability could be exploited by an attacker to cause the X server to read heap memory values and then transmit them back to the client until encountering an unmapped page, resulting in a crash. Despite the attacker's inability to control the specific memory copied into the replies, the small length values typically stored in a 32-bit integer can result in significant attempted out-of-bounds reads. CVE-2024-31080 Image SLES15-SP3-SAPCAL-Azure:xorg-x11-server-1.20.3-150200.22.5.96.1 Image SLES15-SP3-SAPCAL-EC2-HVM:xorg-x11-server-1.20.3-150200.22.5.96.1 Image SLES15-SP3-SAPCAL-GCE:xorg-x11-server-1.20.3-150200.22.5.96.1 SUSE Enterprise Storage 7.1:xorg-x11-server-1.20.3-150200.22.5.96.1 SUSE Enterprise Storage 7.1:xorg-x11-server-extra-1.20.3-150200.22.5.96.1 SUSE Enterprise Storage 7.1:xorg-x11-server-sdk-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xorg-x11-server-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xorg-x11-server-extra-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xorg-x11-server-sdk-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:xorg-x11-server-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:xorg-x11-server-extra-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:xorg-x11-server-sdk-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server 15 SP2-LTSS:xorg-x11-server-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server 15 SP2-LTSS:xorg-x11-server-extra-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server 15 SP2-LTSS:xorg-x11-server-sdk-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server 15 SP3-LTSS:xorg-x11-server-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server 15 SP3-LTSS:xorg-x11-server-extra-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server 15 SP3-LTSS:xorg-x11-server-sdk-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:xorg-x11-server-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:xorg-x11-server-extra-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:xorg-x11-server-sdk-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server for SAP Applications 15 SP3:xorg-x11-server-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server for SAP Applications 15 SP3:xorg-x11-server-extra-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server for SAP Applications 15 SP3:xorg-x11-server-sdk-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Workstation Extension 15 SP5:xorg-x11-server-wayland-1.20.3-150200.22.5.96.1 important 7.6 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2024/suse-su-20241261-1/ https://www.suse.com/security/cve/CVE-2024-31080.html CVE-2024-31080 https://bugzilla.suse.com/1222309 SUSE Bug 1222309 https://bugzilla.suse.com/1222312 SUSE Bug 1222312 A heap-based buffer over-read vulnerability was found in the X.org server's ProcXIPassiveGrabDevice() function. This issue occurs when byte-swapped length values are used in replies, potentially leading to memory leakage and segmentation faults, particularly when triggered by a client with a different endianness. This vulnerability could be exploited by an attacker to cause the X server to read heap memory values and then transmit them back to the client until encountering an unmapped page, resulting in a crash. Despite the attacker's inability to control the specific memory copied into the replies, the small length values typically stored in a 32-bit integer can result in significant attempted out-of-bounds reads. CVE-2024-31081 Image SLES15-SP3-SAPCAL-Azure:xorg-x11-server-1.20.3-150200.22.5.96.1 Image SLES15-SP3-SAPCAL-EC2-HVM:xorg-x11-server-1.20.3-150200.22.5.96.1 Image SLES15-SP3-SAPCAL-GCE:xorg-x11-server-1.20.3-150200.22.5.96.1 SUSE Enterprise Storage 7.1:xorg-x11-server-1.20.3-150200.22.5.96.1 SUSE Enterprise Storage 7.1:xorg-x11-server-extra-1.20.3-150200.22.5.96.1 SUSE Enterprise Storage 7.1:xorg-x11-server-sdk-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xorg-x11-server-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xorg-x11-server-extra-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xorg-x11-server-sdk-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:xorg-x11-server-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:xorg-x11-server-extra-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:xorg-x11-server-sdk-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server 15 SP2-LTSS:xorg-x11-server-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server 15 SP2-LTSS:xorg-x11-server-extra-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server 15 SP2-LTSS:xorg-x11-server-sdk-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server 15 SP3-LTSS:xorg-x11-server-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server 15 SP3-LTSS:xorg-x11-server-extra-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server 15 SP3-LTSS:xorg-x11-server-sdk-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:xorg-x11-server-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:xorg-x11-server-extra-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:xorg-x11-server-sdk-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server for SAP Applications 15 SP3:xorg-x11-server-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server for SAP Applications 15 SP3:xorg-x11-server-extra-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server for SAP Applications 15 SP3:xorg-x11-server-sdk-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Workstation Extension 15 SP5:xorg-x11-server-wayland-1.20.3-150200.22.5.96.1 important 7.6 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2024/suse-su-20241261-1/ https://www.suse.com/security/cve/CVE-2024-31081.html CVE-2024-31081 https://bugzilla.suse.com/1222310 SUSE Bug 1222310 https://bugzilla.suse.com/1222312 SUSE Bug 1222312 A heap-based buffer over-read vulnerability was found in the X.org server's ProcAppleDRICreatePixmap() function. This issue occurs when byte-swapped length values are used in replies, potentially leading to memory leakage and segmentation faults, particularly when triggered by a client with a different endianness. This vulnerability could be exploited by an attacker to cause the X server to read heap memory values and then transmit them back to the client until encountering an unmapped page, resulting in a crash. Despite the attacker's inability to control the specific memory copied into the replies, the small length values typically stored in a 32-bit integer can result in significant attempted out-of-bounds reads. CVE-2024-31082 Image SLES15-SP3-SAPCAL-Azure:xorg-x11-server-1.20.3-150200.22.5.96.1 Image SLES15-SP3-SAPCAL-EC2-HVM:xorg-x11-server-1.20.3-150200.22.5.96.1 Image SLES15-SP3-SAPCAL-GCE:xorg-x11-server-1.20.3-150200.22.5.96.1 SUSE Enterprise Storage 7.1:xorg-x11-server-1.20.3-150200.22.5.96.1 SUSE Enterprise Storage 7.1:xorg-x11-server-extra-1.20.3-150200.22.5.96.1 SUSE Enterprise Storage 7.1:xorg-x11-server-sdk-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xorg-x11-server-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xorg-x11-server-extra-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xorg-x11-server-sdk-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:xorg-x11-server-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:xorg-x11-server-extra-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:xorg-x11-server-sdk-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server 15 SP2-LTSS:xorg-x11-server-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server 15 SP2-LTSS:xorg-x11-server-extra-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server 15 SP2-LTSS:xorg-x11-server-sdk-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server 15 SP3-LTSS:xorg-x11-server-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server 15 SP3-LTSS:xorg-x11-server-extra-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server 15 SP3-LTSS:xorg-x11-server-sdk-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:xorg-x11-server-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:xorg-x11-server-extra-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:xorg-x11-server-sdk-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server for SAP Applications 15 SP3:xorg-x11-server-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server for SAP Applications 15 SP3:xorg-x11-server-extra-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server for SAP Applications 15 SP3:xorg-x11-server-sdk-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Workstation Extension 15 SP5:xorg-x11-server-wayland-1.20.3-150200.22.5.96.1 important 7.3 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2024/suse-su-20241261-1/ https://www.suse.com/security/cve/CVE-2024-31082.html CVE-2024-31082 https://bugzilla.suse.com/1222311 SUSE Bug 1222311 https://bugzilla.suse.com/1222312 SUSE Bug 1222312 A use-after-free vulnerability was found in the ProcRenderAddGlyphs() function of Xorg servers. This issue occurs when AllocateGlyph() is called to store new glyphs sent by the client to the X server, potentially resulting in multiple entries pointing to the same non-refcounted glyphs. Consequently, ProcRenderAddGlyphs() may free a glyph, leading to a use-after-free scenario when the same glyph pointer is subsequently accessed. This flaw allows an authenticated attacker to execute arbitrary code on the system by sending a specially crafted request. CVE-2024-31083 Image SLES15-SP3-SAPCAL-Azure:xorg-x11-server-1.20.3-150200.22.5.96.1 Image SLES15-SP3-SAPCAL-EC2-HVM:xorg-x11-server-1.20.3-150200.22.5.96.1 Image SLES15-SP3-SAPCAL-GCE:xorg-x11-server-1.20.3-150200.22.5.96.1 SUSE Enterprise Storage 7.1:xorg-x11-server-1.20.3-150200.22.5.96.1 SUSE Enterprise Storage 7.1:xorg-x11-server-extra-1.20.3-150200.22.5.96.1 SUSE Enterprise Storage 7.1:xorg-x11-server-sdk-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xorg-x11-server-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xorg-x11-server-extra-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:xorg-x11-server-sdk-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:xorg-x11-server-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:xorg-x11-server-extra-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:xorg-x11-server-sdk-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server 15 SP2-LTSS:xorg-x11-server-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server 15 SP2-LTSS:xorg-x11-server-extra-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server 15 SP2-LTSS:xorg-x11-server-sdk-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server 15 SP3-LTSS:xorg-x11-server-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server 15 SP3-LTSS:xorg-x11-server-extra-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server 15 SP3-LTSS:xorg-x11-server-sdk-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:xorg-x11-server-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:xorg-x11-server-extra-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server for SAP Applications 15 SP2:xorg-x11-server-sdk-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server for SAP Applications 15 SP3:xorg-x11-server-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server for SAP Applications 15 SP3:xorg-x11-server-extra-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Server for SAP Applications 15 SP3:xorg-x11-server-sdk-1.20.3-150200.22.5.96.1 SUSE Linux Enterprise Workstation Extension 15 SP5:xorg-x11-server-wayland-1.20.3-150200.22.5.96.1 important 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2024/suse-su-20241261-1/ https://www.suse.com/security/cve/CVE-2024-31083.html CVE-2024-31083 https://bugzilla.suse.com/1222312 SUSE Bug 1222312