opensuse/kernel-rt&distro=openSUSE Leap Micro 5.3

Vulnerabilities (676)

• CVE-2023-52574Mar 2, 2024
  affected < 5.14.21-150400.15.76.1fixed 5.14.21-150400.15.76.1

  In the Linux kernel, the following vulnerability has been resolved: team: fix null-ptr-deref when team device type is changed Get a null-ptr-deref bug as follows with reproducer [1]. BUG: kernel NULL pointer dereference, address: 0000000000000228 ... RIP: 0010:vlan_dev_hard_he

• CVE-2023-52569Mar 2, 2024
  affected < 5.14.21-150400.15.76.1fixed 5.14.21-150400.15.76.1

  In the Linux kernel, the following vulnerability has been resolved: btrfs: remove BUG() after failure to insert delayed dir index item Instead of calling BUG() when we fail to insert a delayed dir index item into the delayed node's tree, we can just release all the resources we

• CVE-2023-52567Mar 2, 2024
  affected < 5.14.21-150400.15.76.1fixed 5.14.21-150400.15.76.1

  In the Linux kernel, the following vulnerability has been resolved: serial: 8250_port: Check IRQ data before use In case the leaf driver wants to use IRQ polling (irq = 0) and IIR register shows that an interrupt happened in the 8250 hardware the IRQ data can be NULL. In such a

• CVE-2023-52566Mar 2, 2024
  affected < 5.14.21-150400.15.76.1fixed 5.14.21-150400.15.76.1

  In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix potential use after free in nilfs_gccache_submit_read_data() In nilfs_gccache_submit_read_data(), brelse(bh) is called to drop the reference count of bh when the call to nilfs_dat_translate() fails.

• CVE-2023-52564Mar 2, 2024
  affected < 5.14.21-150400.15.76.1fixed 5.14.21-150400.15.76.1

  In the Linux kernel, the following vulnerability has been resolved: Revert "tty: n_gsm: fix UAF in gsm_cleanup_mux" This reverts commit 9b9c8195f3f0d74a826077fc1c01b9ee74907239. The commit above is reverted as it did not solve the original issue. gsm_cleanup_mux() tries to fr

• CVE-2023-52559Mar 2, 2024
  affected < 5.14.21-150400.15.71.1fixed 5.14.21-150400.15.71.1

  In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Avoid memory allocation in iommu_suspend() The iommu_suspend() syscore suspend callback is invoked with IRQ disabled. Allocating memory with the GFP_KERNEL flag may re-enable IRQs during the suspend

• CVE-2023-52532Mar 2, 2024
  affected < 5.14.21-150400.15.76.1fixed 5.14.21-150400.15.76.1

  In the Linux kernel, the following vulnerability has been resolved: net: mana: Fix TX CQE error handling For an unknown TX CQE error type (probably from a newer hardware), still free the SKB, update the queue tail, etc., otherwise the accounting will be wrong. Also, TX errors

• CVE-2023-52531Mar 2, 2024
  affected < 5.14.21-150400.15.71.1fixed 5.14.21-150400.15.71.1

  In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: Fix a memory corruption issue A few lines above, space is kzalloc()'ed for: sizeof(struct iwl_nvm_data) + sizeof(struct ieee80211_channel) + sizeof(struct ieee80211_rate) 'mvm->nvm_data'

• CVE-2023-52530Mar 2, 2024
  affected < 5.14.21-150400.15.71.1fixed 5.14.21-150400.15.71.1

  In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: fix potential key use-after-free When ieee80211_key_link() is called by ieee80211_gtk_rekey_add() but returns 0 due to KRACK protection (identical key reinstall), ieee80211_gtk_rekey_add() will

• CVE-2023-52529Mar 2, 2024
  affected < 5.14.21-150400.15.76.1fixed 5.14.21-150400.15.76.1

  In the Linux kernel, the following vulnerability has been resolved: HID: sony: Fix a potential memory leak in sony_probe() If an error occurs after a successful usb_alloc_urb() call, usb_free_urb() should be called.

• CVE-2023-52528Mar 2, 2024
  affected < 5.14.21-150400.15.76.1fixed 5.14.21-150400.15.76.1

  In the Linux kernel, the following vulnerability has been resolved: net: usb: smsc75xx: Fix uninit-value access in __smsc75xx_read_reg syzbot reported the following uninit-value access issue: ===================================================== BUG: KMSAN: uninit-value in sms

• CVE-2023-52525Mar 2, 2024
  affected < 5.14.21-150400.15.76.1fixed 5.14.21-150400.15.76.1

  In the Linux kernel, the following vulnerability has been resolved: wifi: mwifiex: Fix oob check condition in mwifiex_process_rx_packet Only skip the code path trying to access the rfc1042 headers when the buffer is too small, so the driver can still process packets without rfc

• CVE-2023-52524Mar 2, 2024
  affected < 5.14.21-150400.15.76.1fixed 5.14.21-150400.15.76.1

  In the Linux kernel, the following vulnerability has been resolved: net: nfc: llcp: Add lock when modifying device list The device list needs its associated lock held when modifying it, or the list could become corrupted, as syzbot discovered.

• CVE-2023-52523Mar 2, 2024
  affected < 5.14.21-150400.15.76.1fixed 5.14.21-150400.15.76.1

  In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Reject sk_msg egress redirects to non-TCP sockets With a SOCKMAP/SOCKHASH map and an sk_msg program user can steer messages sent from one TCP socket (s1) to actually egress from another TCP socket

• CVE-2023-52520Mar 2, 2024
  affected < 5.14.21-150400.15.76.1fixed 5.14.21-150400.15.76.1

  In the Linux kernel, the following vulnerability has been resolved: platform/x86: think-lmi: Fix reference leak If a duplicate attribute is found using kset_find_obj(), a reference to that attribute is returned which needs to be disposed accordingly using kobject_put(). Move th

• CVE-2023-52519Mar 2, 2024
  affected < 5.14.21-150400.15.76.1fixed 5.14.21-150400.15.76.1

  In the Linux kernel, the following vulnerability has been resolved: HID: intel-ish-hid: ipc: Disable and reenable ACPI GPE bit The EHL (Elkhart Lake) based platforms provide a OOB (Out of band) service, which allows to wakup device when the system is in S5 (Soft-Off state). Thi

• CVE-2023-52517Mar 2, 2024
  affected < 5.14.21-150400.15.76.1fixed 5.14.21-150400.15.76.1

  In the Linux kernel, the following vulnerability has been resolved: spi: sun6i: fix race between DMA RX transfer completion and RX FIFO drain Previously the transfer complete IRQ immediately drained to RX FIFO to read any data remaining in FIFO to the RX buffer. This behaviour

• CVE-2023-52515Mar 2, 2024
  affected < 5.14.21-150400.15.76.1fixed 5.14.21-150400.15.76.1

  In the Linux kernel, the following vulnerability has been resolved: RDMA/srp: Do not call scsi_done() from srp_abort() After scmd_eh_abort_handler() has called the SCSI LLD eh_abort_handler callback, it performs one of the following actions: * Call scsi_queue_insert(). * Call s

• CVE-2023-52513Mar 2, 2024
  affected < 5.14.21-150400.15.76.1fixed 5.14.21-150400.15.76.1

  In the Linux kernel, the following vulnerability has been resolved: RDMA/siw: Fix connection failure handling In case immediate MPA request processing fails, the newly created endpoint unlinks the listening endpoint and is ready to be dropped. This special case was not handled

• CVE-2023-52511Mar 2, 2024
  affected < 5.14.21-150400.15.76.1fixed 5.14.21-150400.15.76.1

  In the Linux kernel, the following vulnerability has been resolved: spi: sun6i: reduce DMA RX transfer width to single byte Through empirical testing it has been determined that sometimes RX SPI transfers with DMA enabled return corrupted data. This is down to single or even mu