rpm package
opensuse/kernel-kvmsmall&distro=openSUSE Leap 15.2
pkg:rpm/opensuse/kernel-kvmsmall&distro=openSUSE%20Leap%2015.2
Vulnerabilities (187)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2020-12364 | — | < 5.3.18-lp152.66.2 | 5.3.18-lp152.66.2 | Feb 17, 2021 | Null pointer reference in some Intel(R) Graphics Drivers for Windows* before version 26.20.100.7212 and before version Linux kernel version 5.5 may allow a privileged user to potentially enable a denial of service via local access. | ||
| CVE-2020-12363 | — | < 5.3.18-lp152.66.2 | 5.3.18-lp152.66.2 | Feb 17, 2021 | Improper input validation in some Intel(R) Graphics Drivers for Windows* before version 26.20.100.7212 and before Linux kernel version 5.5 may allow a privileged user to potentially enable a denial of service via local access. | ||
| CVE-2020-12362 | — | < 5.3.18-lp152.66.2 | 5.3.18-lp152.66.2 | Feb 17, 2021 | Integer overflow in the firmware for some Intel(R) Graphics Drivers for Windows * before version 26.20.100.7212 and before Linux kernel version 5.5 may allow a privileged user to potentially enable an escalation of privilege via local access. | ||
| CVE-2020-16120 | — | < 5.3.18-lp152.50.1 | 5.3.18-lp152.50.1 | Feb 10, 2021 | Overlayfs did not properly perform permission checking when copying up files in an overlayfs and could be exploited from within a user namespace, if, for example, unprivileged user namespaces were allowed. It was possible to have a file not readable by an unprivileged user to be | ||
| CVE-2020-24490 | — | < 5.3.18-lp152.47.2 | 5.3.18-lp152.47.2 | Feb 2, 2021 | Improper buffer restrictions in BlueZ may allow an unauthenticated user to potentially enable denial of service via adjacent access. This affects all Linux kernel versions that support BlueZ. | ||
| CVE-2021-3348 | — | < 5.3.18-lp152.63.1 | 5.3.18-lp152.63.1 | Feb 1, 2021 | nbd_add_socket in drivers/block/nbd.c in the Linux kernel through 5.10.12 has an ndb_queue_rq use-after-free that could be triggered by local attackers (with access to the nbd device) via an I/O request at a certain point during device setup, aka CID-b98e762e3d71. | ||
| CVE-2021-3347 | — | < 5.3.18-lp152.63.1 | 5.3.18-lp152.63.1 | Jan 29, 2021 | An issue was discovered in the Linux kernel through 5.10.11. PI futexes have a kernel stack use-after-free during fault handling, allowing local users to execute code in the kernel, aka CID-34b1a1ce1458. | ||
| CVE-2020-28374 | — | < 5.3.18-lp152.60.1 | 5.3.18-lp152.60.1 | Jan 13, 2021 | In drivers/target/target_core_xcopy.c in the Linux kernel before 5.10.7, insufficient identifier checking in the LIO SCSI target code can be used by remote attackers to read or write files via directory traversal in an XCOPY request, aka CID-2896c93811e3. For example, an attack c | ||
| CVE-2021-0342 | — | < 5.3.18-lp152.63.1 | 5.3.18-lp152.63.1 | Jan 11, 2021 | In tun_get_user of tun.c, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges required. User interaction is not required for exploitation. Product: Android; Versions: Android kernel; Androi | ||
| CVE-2020-27835 | — | < 5.3.18-lp152.60.1 | 5.3.18-lp152.60.1 | Jan 7, 2021 | A use after free in the Linux kernel infiniband hfi1 driver in versions prior to 5.10-rc6 was found in the way user calls Ioctl after open dev file and fork. A local user could use this flaw to crash the system. | ||
| CVE-2020-36158 | — | < 5.3.18-lp152.60.1 | 5.3.18-lp152.60.1 | Jan 5, 2021 | mwifiex_cmd_802_11_ad_hoc_start in drivers/net/wireless/marvell/mwifiex/join.c in the Linux kernel through 5.10.4 might allow remote attackers to execute arbitrary code via a long SSID value, aka CID-5c455c5ab332. | ||
| CVE-2020-29569 | — | < 5.3.18-lp152.63.1 | 5.3.18-lp152.63.1 | Dec 15, 2020 | An issue was discovered in the Linux kernel through 5.10.1, as used with Xen through 4.14.x. The Linux kernel PV block backend expects the kernel thread handler to reset ring->xenblkd to NULL when stopped. However, the handler may not have time to run if the frontend quickly togg | ||
| CVE-2020-27777 | — | < 5.3.18-lp152.54.1 | 5.3.18-lp152.54.1 | Dec 15, 2020 | A flaw was found in the way RTAS handled memory accesses in userspace to kernel communication. On a locked down (usually due to Secure Boot) guest system running on top of PowerVM or KVM hypervisors (pseries platform) a root like local user could use this flaw to further increase | ||
| CVE-2020-29568 | — | < 5.3.18-lp152.63.1 | 5.3.18-lp152.63.1 | Dec 15, 2020 | An issue was discovered in Xen through 4.14.x. Some OSes (such as Linux, FreeBSD, and NetBSD) are processing watch events using a single thread. If the events are received faster than the thread is able to handle, they will get queued. As the queue is unbounded, a guest may be ab | ||
| CVE-2020-27068 | — | < 5.3.18-lp152.60.1 | 5.3.18-lp152.60.1 | Dec 15, 2020 | Product: AndroidVersions: Android kernelAndroid ID: A-127973231References: Upstream kernel | ||
| CVE-2020-0465 | — | < 5.3.18-lp152.60.1 | 5.3.18-lp152.60.1 | Dec 14, 2020 | In various methods of hid-multitouch.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions | ||
| CVE-2020-0444 | — | < 5.3.18-lp152.60.1 | 5.3.18-lp152.60.1 | Dec 14, 2020 | In audit_free_lsm_field of auditfilter.c, there is a possible bad kfree due to a logic error in audit_data_to_entry. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVe | ||
| CVE-2020-0466 | — | < 5.3.18-lp152.60.1 | 5.3.18-lp152.60.1 | Dec 14, 2020 | In do_epoll_ctl and ep_loop_check_proc of eventpoll.c, there is a possible use after free due to a logic error. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersion | ||
| CVE-2020-27825 | — | < 5.3.18-lp152.60.1 | 5.3.18-lp152.60.1 | Dec 11, 2020 | A use-after-free flaw was found in kernel/trace/ring_buffer.c in Linux kernel (before 5.10-rc1). There was a race problem in trace_open and resize of cpu buffer running parallely on different cpus, may cause a denial of service problem (DOS). This flaw could even allow a local at | ||
| CVE-2020-27786 | — | < 5.3.18-lp152.60.1 | 5.3.18-lp152.60.1 | Dec 11, 2020 | A flaw was found in the Linux kernel’s implementation of MIDI, where an attacker with a local account and the permissions to issue ioctl commands to midi devices could trigger a use-after-free issue. A write to this specific memory while freed and before use causes the flow of ex |
- CVE-2020-12364Feb 17, 2021affected < 5.3.18-lp152.66.2fixed 5.3.18-lp152.66.2
Null pointer reference in some Intel(R) Graphics Drivers for Windows* before version 26.20.100.7212 and before version Linux kernel version 5.5 may allow a privileged user to potentially enable a denial of service via local access.
- CVE-2020-12363Feb 17, 2021affected < 5.3.18-lp152.66.2fixed 5.3.18-lp152.66.2
Improper input validation in some Intel(R) Graphics Drivers for Windows* before version 26.20.100.7212 and before Linux kernel version 5.5 may allow a privileged user to potentially enable a denial of service via local access.
- CVE-2020-12362Feb 17, 2021affected < 5.3.18-lp152.66.2fixed 5.3.18-lp152.66.2
Integer overflow in the firmware for some Intel(R) Graphics Drivers for Windows * before version 26.20.100.7212 and before Linux kernel version 5.5 may allow a privileged user to potentially enable an escalation of privilege via local access.
- CVE-2020-16120Feb 10, 2021affected < 5.3.18-lp152.50.1fixed 5.3.18-lp152.50.1
Overlayfs did not properly perform permission checking when copying up files in an overlayfs and could be exploited from within a user namespace, if, for example, unprivileged user namespaces were allowed. It was possible to have a file not readable by an unprivileged user to be
- CVE-2020-24490Feb 2, 2021affected < 5.3.18-lp152.47.2fixed 5.3.18-lp152.47.2
Improper buffer restrictions in BlueZ may allow an unauthenticated user to potentially enable denial of service via adjacent access. This affects all Linux kernel versions that support BlueZ.
- CVE-2021-3348Feb 1, 2021affected < 5.3.18-lp152.63.1fixed 5.3.18-lp152.63.1
nbd_add_socket in drivers/block/nbd.c in the Linux kernel through 5.10.12 has an ndb_queue_rq use-after-free that could be triggered by local attackers (with access to the nbd device) via an I/O request at a certain point during device setup, aka CID-b98e762e3d71.
- CVE-2021-3347Jan 29, 2021affected < 5.3.18-lp152.63.1fixed 5.3.18-lp152.63.1
An issue was discovered in the Linux kernel through 5.10.11. PI futexes have a kernel stack use-after-free during fault handling, allowing local users to execute code in the kernel, aka CID-34b1a1ce1458.
- CVE-2020-28374Jan 13, 2021affected < 5.3.18-lp152.60.1fixed 5.3.18-lp152.60.1
In drivers/target/target_core_xcopy.c in the Linux kernel before 5.10.7, insufficient identifier checking in the LIO SCSI target code can be used by remote attackers to read or write files via directory traversal in an XCOPY request, aka CID-2896c93811e3. For example, an attack c
- CVE-2021-0342Jan 11, 2021affected < 5.3.18-lp152.63.1fixed 5.3.18-lp152.63.1
In tun_get_user of tun.c, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges required. User interaction is not required for exploitation. Product: Android; Versions: Android kernel; Androi
- CVE-2020-27835Jan 7, 2021affected < 5.3.18-lp152.60.1fixed 5.3.18-lp152.60.1
A use after free in the Linux kernel infiniband hfi1 driver in versions prior to 5.10-rc6 was found in the way user calls Ioctl after open dev file and fork. A local user could use this flaw to crash the system.
- CVE-2020-36158Jan 5, 2021affected < 5.3.18-lp152.60.1fixed 5.3.18-lp152.60.1
mwifiex_cmd_802_11_ad_hoc_start in drivers/net/wireless/marvell/mwifiex/join.c in the Linux kernel through 5.10.4 might allow remote attackers to execute arbitrary code via a long SSID value, aka CID-5c455c5ab332.
- CVE-2020-29569Dec 15, 2020affected < 5.3.18-lp152.63.1fixed 5.3.18-lp152.63.1
An issue was discovered in the Linux kernel through 5.10.1, as used with Xen through 4.14.x. The Linux kernel PV block backend expects the kernel thread handler to reset ring->xenblkd to NULL when stopped. However, the handler may not have time to run if the frontend quickly togg
- CVE-2020-27777Dec 15, 2020affected < 5.3.18-lp152.54.1fixed 5.3.18-lp152.54.1
A flaw was found in the way RTAS handled memory accesses in userspace to kernel communication. On a locked down (usually due to Secure Boot) guest system running on top of PowerVM or KVM hypervisors (pseries platform) a root like local user could use this flaw to further increase
- CVE-2020-29568Dec 15, 2020affected < 5.3.18-lp152.63.1fixed 5.3.18-lp152.63.1
An issue was discovered in Xen through 4.14.x. Some OSes (such as Linux, FreeBSD, and NetBSD) are processing watch events using a single thread. If the events are received faster than the thread is able to handle, they will get queued. As the queue is unbounded, a guest may be ab
- CVE-2020-27068Dec 15, 2020affected < 5.3.18-lp152.60.1fixed 5.3.18-lp152.60.1
Product: AndroidVersions: Android kernelAndroid ID: A-127973231References: Upstream kernel
- CVE-2020-0465Dec 14, 2020affected < 5.3.18-lp152.60.1fixed 5.3.18-lp152.60.1
In various methods of hid-multitouch.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions
- CVE-2020-0444Dec 14, 2020affected < 5.3.18-lp152.60.1fixed 5.3.18-lp152.60.1
In audit_free_lsm_field of auditfilter.c, there is a possible bad kfree due to a logic error in audit_data_to_entry. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVe
- CVE-2020-0466Dec 14, 2020affected < 5.3.18-lp152.60.1fixed 5.3.18-lp152.60.1
In do_epoll_ctl and ep_loop_check_proc of eventpoll.c, there is a possible use after free due to a logic error. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersion
- CVE-2020-27825Dec 11, 2020affected < 5.3.18-lp152.60.1fixed 5.3.18-lp152.60.1
A use-after-free flaw was found in kernel/trace/ring_buffer.c in Linux kernel (before 5.10-rc1). There was a race problem in trace_open and resize of cpu buffer running parallely on different cpus, may cause a denial of service problem (DOS). This flaw could even allow a local at
- CVE-2020-27786Dec 11, 2020affected < 5.3.18-lp152.60.1fixed 5.3.18-lp152.60.1
A flaw was found in the Linux kernel’s implementation of MIDI, where an attacker with a local account and the permissions to issue ioctl commands to midi devices could trigger a use-after-free issue. A write to this specific memory while freed and before use causes the flow of ex
Page 6 of 10