opensuse/kernel-default&distro=openSUSE Leap Micro 5.5

Vulnerabilities (928)

• CVE-2023-52857May 21, 2024
  affected < 5.14.21-150500.55.73.1fixed 5.14.21-150500.55.73.1

  In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: Fix coverity issue with unintentional integer overflow 1. Instead of multiplying 2 variable of different types. Change to assign a value of one variable and then multiply the other variable. 2. A

• CVE-2023-52846May 21, 2024
  affected < 5.14.21-150500.55.73.1fixed 5.14.21-150500.55.73.1

  In the Linux kernel, the following vulnerability has been resolved: hsr: Prevent use after free in prp_create_tagged_frame() The prp_fill_rct() function can fail. In that situation, it frees the skb and returns NULL. Meanwhile on the success path, it returns the original skb.

• CVE-2023-52845May 21, 2024
  affected < 5.14.21-150500.55.73.1fixed 5.14.21-150500.55.73.1

  In the Linux kernel, the following vulnerability has been resolved: tipc: Change nla_policy for bearer-related names to NLA_NUL_STRING syzbot reported the following uninit-value access issue [1]: ===================================================== BUG: KMSAN: uninit-value in

• CVE-2023-52843May 21, 2024
  affected < 5.14.21-150500.55.73.1fixed 5.14.21-150500.55.73.1

  In the Linux kernel, the following vulnerability has been resolved: llc: verify mac len before reading mac header LLC reads the mac header with eth_hdr without verifying that the skb has an Ethernet header. Syzbot was able to enter llc_rcv on a tun device. Tun can insert packe

• CVE-2023-52837May 21, 2024
  affected < 5.14.21-150500.55.73.1fixed 5.14.21-150500.55.73.1

  In the Linux kernel, the following vulnerability has been resolved: nbd: fix uaf in nbd_open Commit 4af5f2e03013 ("nbd: use blk_mq_alloc_disk and blk_cleanup_disk") cleans up disk by blk_cleanup_disk() and it won't set disk->private_data as NULL as before. UAF may be triggered

• CVE-2023-52835May 21, 2024
  affected < 5.14.21-150500.55.73.1fixed 5.14.21-150500.55.73.1

  In the Linux kernel, the following vulnerability has been resolved: perf/core: Bail out early if the request AUX area is out of bound When perf-record with a large AUX area, e.g 4GB, it fails with: #perf record -C 0 -m ,4G -e arm_spe_0// -- sleep 1 failed to mmap with

• CVE-2023-52812May 21, 2024
  affected < 5.14.21-150500.55.73.1fixed 5.14.21-150500.55.73.1

  In the Linux kernel, the following vulnerability has been resolved: drm/amd: check num of link levels when update pcie param In SR-IOV environment, the value of pcie_table->num_of_link_levels will be 0, and num_of_levels - 1 will cause array index out of bounds

• CVE-2023-52800May 21, 2024
  affected < 5.14.21-150500.55.73.1fixed 5.14.21-150500.55.73.1

  In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: fix htt pktlog locking The ath11k active pdevs are protected by RCU but the htt pktlog handling code calling ath11k_mac_get_ar_by_pdev_id() was not marked as a read-side critical section. Mark th

• CVE-2023-52787May 21, 2024
  affected < 5.14.21-150500.55.73.1fixed 5.14.21-150500.55.73.1

  In the Linux kernel, the following vulnerability has been resolved: blk-mq: make sure active queue usage is held for bio_integrity_prep() blk_integrity_unregister() can come if queue usage counter isn't held for one bio with integrity prepared, so this request may be completed

• CVE-2023-52784May 21, 2024
  affected < 5.14.21-150500.55.73.1fixed 5.14.21-150500.55.73.1

  In the Linux kernel, the following vulnerability has been resolved: bonding: stop the device in bond_setup_by_slave() Commit 9eed321cde22 ("net: lapbether: only support ethernet devices") has been able to keep syzbot away from net/lapb, until today. In the following splat [1],

• CVE-2023-52775May 21, 2024
  affected < 5.14.21-150500.55.73.1fixed 5.14.21-150500.55.73.1

  In the Linux kernel, the following vulnerability has been resolved: net/smc: avoid data corruption caused by decline We found a data corruption issue during testing of SMC-R on Redis applications. The benchmark has a low probability of reporting a strange error as shown below.

• CVE-2023-52766May 21, 2024
  affected < 5.14.21-150500.55.73.1fixed 5.14.21-150500.55.73.1

  In the Linux kernel, the following vulnerability has been resolved: i3c: mipi-i3c-hci: Fix out of bounds access in hci_dma_irq_handler Do not loop over ring headers in hci_dma_irq_handler() that are not allocated and enabled in hci_dma_init(). Otherwise out of bounds access wil

• CVE-2023-52762May 21, 2024
  affected < 5.14.21-150500.55.73.1fixed 5.14.21-150500.55.73.1

  In the Linux kernel, the following vulnerability has been resolved: virtio-blk: fix implicit overflow on virtio_max_dma_size The following codes have an implicit conversion from size_t to u32: (u32)max_size = (size_t)virtio_max_dma_size(vdev); This may lead overflow, Ex (size_

• CVE-2023-52752May 21, 2024
  affected < 5.14.21-150500.55.73.1fixed 5.14.21-150500.55.73.1

  In the Linux kernel, the following vulnerability has been resolved: smb: client: fix use-after-free bug in cifs_debug_data_proc_show() Skip SMB sessions that are being teared down (e.g. @ses->ses_status == SES_EXITING) in cifs_debug_data_proc_show() to avoid use-after-free in @

• CVE-2023-52751May 21, 2024
  affected < 5.14.21-150500.55.73.1fixed 5.14.21-150500.55.73.1

  In the Linux kernel, the following vulnerability has been resolved: smb: client: fix use-after-free in smb2_query_info_compound() The following UAF was triggered when running fstests generic/072 with KASAN enabled against Windows Server 2022 and mount options 'multichannel,max_

• CVE-2021-47432May 21, 2024
  affected < 5.14.21-150500.55.73.1fixed 5.14.21-150500.55.73.1

  In the Linux kernel, the following vulnerability has been resolved: lib/generic-radix-tree.c: Don't overflow in peek() When we started spreading new inode numbers throughout most of the 64 bit inode space, that triggered some corner case bugs, in particular some integer overflo

• CVE-2023-52737May 21, 2024
  affected < 5.14.21-150500.55.73.1fixed 5.14.21-150500.55.73.1

  In the Linux kernel, the following vulnerability has been resolved: btrfs: lock the inode in shared mode before starting fiemap Currently fiemap does not take the inode's lock (VFS lock), it only locks a file range in the inode's io tree. This however can lead to a deadlock if

• CVE-2023-52735May 21, 2024
  affected < 5.14.21-150500.55.73.1fixed 5.14.21-150500.55.73.1

  In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Don't let sock_map_{close,destroy,unhash} call itself sock_map proto callbacks should never call themselves by design. Protect against bugs like [1] and break out of the recursive loop to avoid a

• CVE-2022-48706May 21, 2024
  affected < 5.14.21-150500.55.80.2fixed 5.14.21-150500.55.80.2

  In the Linux kernel, the following vulnerability has been resolved: vdpa: ifcvf: Do proper cleanup if IFCVF init fails ifcvf_mgmt_dev leaks memory if it is not freed before returning. Call is made to correct return statement so memory does not leak. ifcvf_init_hw does not take

• CVE-2024-36008MedMay 20, 2024
  affected < 5.14.21-150500.55.73.1fixed 5.14.21-150500.55.73.1

  In the Linux kernel, the following vulnerability has been resolved: ipv4: check for NULL idev in ip_route_use_hint() syzbot was able to trigger a NULL deref in fib_validate_source() in an old tree [1]. It appears the bug exists in latest trees. All calls to __in_dev_get_rcu()