VYPR

rpm package

suse/kernel-azure&distro=SUSE Linux Enterprise Module for Public Cloud 15 SP5

pkg:rpm/suse/kernel-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP5

Vulnerabilities (2,432)

  • CVE-2024-40940Jul 12, 2024
    affected < 5.14.21-150500.33.63.1fixed 5.14.21-150500.33.63.1

    In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix tainted pointer delete is case of flow rules creation fail In case of flow rule creation fail in mlx5_lag_create_port_sel_table(), instead of previously created rules, the tainted pointer is delet

  • CVE-2024-40937Jul 12, 2024
    affected < 5.14.21-150500.33.63.1fixed 5.14.21-150500.33.63.1

    In the Linux kernel, the following vulnerability has been resolved: gve: Clear napi->skb before dev_kfree_skb_any() gve_rx_free_skb incorrectly leaves napi->skb referencing an skb after it is freed with dev_kfree_skb_any(). This can result in a subsequent call to napi_get_frags

  • CVE-2024-40935Jul 12, 2024
    affected < 5.14.21-150500.33.63.1fixed 5.14.21-150500.33.63.1

    In the Linux kernel, the following vulnerability has been resolved: cachefiles: flush all requests after setting CACHEFILES_DEAD In ondemand mode, when the daemon is processing an open request, if the kernel flags the cache as CACHEFILES_DEAD, the cachefiles_daemon_write() will

  • CVE-2024-40932Jul 12, 2024
    affected < 5.14.21-150500.33.63.1fixed 5.14.21-150500.33.63.1

    In the Linux kernel, the following vulnerability has been resolved: drm/exynos/vidi: fix memory leak in .get_modes() The duplicated EDID is never freed. Fix it.

  • CVE-2024-40931Jul 12, 2024
    affected < 5.14.21-150500.33.63.1fixed 5.14.21-150500.33.63.1

    In the Linux kernel, the following vulnerability has been resolved: mptcp: ensure snd_una is properly initialized on connect This is strictly related to commit fb7a0d334894 ("mptcp: ensure snd_nxt is properly initialized on connect"). It turns out that syzkaller can trigger the

  • CVE-2024-40929Jul 12, 2024
    affected < 5.14.21-150500.33.63.1fixed 5.14.21-150500.33.63.1

    In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: check n_ssids before accessing the ssids In some versions of cfg80211, the ssids poinet might be a valid one even though n_ssids is 0. Accessing the pointer in this case will cuase an out-of

  • CVE-2024-40927Jul 12, 2024
    affected < 5.14.21-150500.33.63.1fixed 5.14.21-150500.33.63.1

    In the Linux kernel, the following vulnerability has been resolved: xhci: Handle TD clearing for multiple streams case When multiple streams are in use, multiple TDs might be in flight when an endpoint is stopped. We need to issue a Set TR Dequeue Pointer for each, to ensure ev

  • CVE-2024-40924Jul 12, 2024
    affected < 5.14.21-150500.33.63.1fixed 5.14.21-150500.33.63.1

    In the Linux kernel, the following vulnerability has been resolved: drm/i915/dpt: Make DPT object unshrinkable In some scenarios, the DPT object gets shrunk but the actual framebuffer did not and thus its still there on the DPT's vm->bound_list. Then it tries to rewrite the PTE

  • CVE-2024-40923Jul 12, 2024
    affected < 5.14.21-150500.33.63.1fixed 5.14.21-150500.33.63.1

    In the Linux kernel, the following vulnerability has been resolved: vmxnet3: disable rx data ring on dma allocation failure When vmxnet3_rq_create() fails to allocate memory for rq->data_ring.base, the subsequent call to vmxnet3_rq_destroy_all_rxdataring does not reset rq->data

  • CVE-2024-40919Jul 12, 2024
    affected < 5.14.21-150500.33.63.1fixed 5.14.21-150500.33.63.1

    In the Linux kernel, the following vulnerability has been resolved: bnxt_en: Adjust logging of firmware messages in case of released token in __hwrm_send() In case of token is released due to token->state == BNXT_HWRM_DEFERRED, released token (set to NULL) is used in log messag

  • CVE-2024-40911Jul 12, 2024
    affected < 5.14.21-150500.33.63.1fixed 5.14.21-150500.33.63.1

    In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: Lock wiphy in cfg80211_get_station Wiphy should be locked before calling rdev_get_station() (see lockdep assert in ieee80211_get_station()). This fixes the following kernel NULL dereference:

  • CVE-2024-40910Jul 12, 2024
    affected < 5.14.21-150500.33.69.1fixed 5.14.21-150500.33.69.1

    In the Linux kernel, the following vulnerability has been resolved: ax25: Fix refcount imbalance on inbound connections When releasing a socket in ax25_release(), we call netdev_put() to decrease the refcount on the associated ax.25 device. However, the execution path for accep

  • CVE-2024-40909Jul 12, 2024
    affected < 5.14.21-150500.33.63.1fixed 5.14.21-150500.33.63.1

    In the Linux kernel, the following vulnerability has been resolved: bpf: Fix a potential use-after-free in bpf_link_free() After commit 1a80dbcb2dba, bpf_link can be freed by link->ops->dealloc_deferred, but the code still tests and uses link->ops->dealloc afterward, which lead

  • CVE-2024-40908Jul 12, 2024
    affected < 5.14.21-150500.33.63.1fixed 5.14.21-150500.33.63.1

    In the Linux kernel, the following vulnerability has been resolved: bpf: Set run context for rawtp test_run callback syzbot reported crash when rawtp program executed through the test_run interface calls bpf_get_attach_cookie helper or any other helper that touches task->bpf_ct

  • CVE-2024-40906Jul 12, 2024
    affected < 5.14.21-150500.33.63.1fixed 5.14.21-150500.33.63.1

    In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Always stop health timer during driver removal Currently, if teardown_hca fails to execute during driver removal, mlx5 does not stop the health timer. Afterwards, mlx5 continue with driver teardown. T

  • CVE-2024-40904Jul 12, 2024
    affected < 5.14.21-150500.33.63.1fixed 5.14.21-150500.33.63.1

    In the Linux kernel, the following vulnerability has been resolved: USB: class: cdc-wdm: Fix CPU lockup caused by excessive log messages The syzbot fuzzer found that the interrupt-URB completion callback in the cdc-wdm driver was taking too long, and the driver's immediate resu

  • CVE-2024-40903Jul 12, 2024
    affected < 5.14.21-150500.33.63.1fixed 5.14.21-150500.33.63.1

    In the Linux kernel, the following vulnerability has been resolved: usb: typec: tcpm: fix use-after-free case in tcpm_register_source_caps There could be a potential use-after-free case in tcpm_register_source_caps(). This could happen when: * new (say invalid) source caps are

  • CVE-2024-40902Jul 12, 2024
    affected < 5.14.21-150500.33.63.1fixed 5.14.21-150500.33.63.1

    In the Linux kernel, the following vulnerability has been resolved: jfs: xattr: fix buffer overflow for invalid xattr When an xattr size is not what is expected, it is printed out to the kernel log in hex format as a form of debugging. But when that xattr size is bigger than t

  • CVE-2024-40901Jul 12, 2024
    affected < 5.14.21-150500.33.63.1fixed 5.14.21-150500.33.63.1

    In the Linux kernel, the following vulnerability has been resolved: scsi: mpt3sas: Avoid test/set_bit() operating in non-allocated memory There is a potential out-of-bounds access when using test_bit() on a single word. The test_bit() and set_bit() functions operate on long val

  • CVE-2024-40900Jul 12, 2024
    affected < 5.14.21-150500.33.63.1fixed 5.14.21-150500.33.63.1

    In the Linux kernel, the following vulnerability has been resolved: cachefiles: remove requests from xarray during flushing requests Even with CACHEFILES_DEAD set, we can still read the requests, so in the following concurrency the request may be used after it has been freed:

Page 46 of 122