opensuse/kernel-source-rt&distro=openSUSE Leap 15.2

Vulnerabilities (124)

• CVE-2020-11668Apr 9, 2020
  affected < 5.3.18-lp152.3.5.1fixed 5.3.18-lp152.3.5.1

  In the Linux kernel before 5.6.1, drivers/media/usb/gspca/xirlink_cit.c (aka the Xirlink camera USB driver) mishandles invalid descriptors, aka CID-a246b4d54770.

• CVE-2019-19769Dec 12, 2019
  affected < 5.3.18-lp152.3.8.1fixed 5.3.18-lp152.3.8.1

  In the Linux kernel 5.3.10, there is a use-after-free (read) in the perf_trace_lock_acquire function (related to include/trace/events/lock.h).

• CVE-2019-19462Nov 30, 2019
  affected < 5.3.18-lp152.3.5.1fixed 5.3.18-lp152.3.5.1

  relay_open in kernel/relay.c in the Linux kernel through 5.4.1 allows local users to cause a denial of service (such as relay blockage) by triggering a NULL alloc_percpu result.

• CVE-2019-18814Nov 7, 2019
  affected < 5.3.18-lp152.3.8.1fixed 5.3.18-lp152.3.8.1

  An issue was discovered in the Linux kernel through 5.3.9. There is a use-after-free when aa_label_parse() fails in aa_audit_rule_init() in security/apparmor/audit.c.