suse/kernel-azure&distro=SUSE Linux Enterprise Module for Public Cloud 15 SP7

Vulnerabilities (2,269)

• CVE-2025-21906Apr 1, 2025
  affected < 6.4.0-150700.20.3.1fixed 6.4.0-150700.20.3.1

  In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: clean up ROC on failure If the firmware fails to start the session protection, then we do call iwl_mvm_roc_finished() here, but that won't do anything at all because IWL_MVM_STATUS_ROC_P2P_R

• CVE-2025-21905Apr 1, 2025
  affected < 6.4.0-150700.20.3.1fixed 6.4.0-150700.20.3.1

  In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: limit printed string from FW file There's no guarantee here that the file is always with a NUL-termination, so reading the string may read beyond the end of the TLV. If that's the last TLV in the

• CVE-2025-21904Apr 1, 2025
  affected < 6.4.0-150700.20.3.1fixed 6.4.0-150700.20.3.1

  In the Linux kernel, the following vulnerability has been resolved: caif_virtio: fix wrong pointer check in cfv_probe() del_vqs() frees virtqueues, therefore cfv->vq_tx pointer should be checked for NULL before calling it, not cfv->vdev. Also the current implementation is redun

• CVE-2025-21901Apr 1, 2025
  affected < 6.4.0-150700.20.6.1fixed 6.4.0-150700.20.6.1

  In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxt_re: Add sanity checks on rdev validity There is a possibility that ulp_irq_stop and ulp_irq_start callbacks will be called when the device is in detached state. This can cause a crash due to NULL poin

• CVE-2025-21899Apr 1, 2025
  affected < 6.4.0-150700.20.6.1fixed 6.4.0-150700.20.6.1

  In the Linux kernel, the following vulnerability has been resolved: tracing: Fix bad hist from corrupting named_triggers list The following commands causes a crash: ~# cd /sys/kernel/tracing/events/rcu/rcu_callback ~# echo 'hist:name=bad:keys=common_pid:onmax(bogus).save(com

• CVE-2025-21898Apr 1, 2025
  affected < 6.4.0-150700.20.6.1fixed 6.4.0-150700.20.6.1

  In the Linux kernel, the following vulnerability has been resolved: ftrace: Avoid potential division by zero in function_stat_show() Check whether denominator expression x * (x - 1) * 1000 mod {2^32, 2^64} produce zero and skip stddev computation in that case. For now don't ca

• CVE-2025-21895Apr 1, 2025
  affected < 6.4.0-150700.20.3.1fixed 6.4.0-150700.20.3.1

  In the Linux kernel, the following vulnerability has been resolved: perf/core: Order the PMU list to fix warning about unordered pmu_ctx_list Syskaller triggers a warning due to prev_epc->pmu != next_epc->pmu in perf_event_swap_task_ctx_data(). vmcore shows that two lists have

• CVE-2025-21894Apr 1, 2025
  affected < 6.4.0-150700.20.3.1fixed 6.4.0-150700.20.3.1

  In the Linux kernel, the following vulnerability has been resolved: net: enetc: VFs do not support HWTSTAMP_TX_ONESTEP_SYNC Actually ENETC VFs do not support HWTSTAMP_TX_ONESTEP_SYNC because only ENETC PF can access PMa_SINGLE_STEP registers. And there will be a crash if VFs ar

• CVE-2025-21893Mar 31, 2025
  affected < 6.4.0-150700.20.3.1fixed 6.4.0-150700.20.3.1

  In the Linux kernel, the following vulnerability has been resolved: keys: Fix UAF in key_put() Once a key's reference count has been reduced to 0, the garbage collector thread may destroy it at any time and so key_put() is not allowed to touch the key after that point. The mos

• CVE-2025-21892Mar 27, 2025
  affected < 6.4.0-150700.20.3.1fixed 6.4.0-150700.20.3.1

  In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix the recovery flow of the UMR QP This patch addresses an issue in the recovery flow of the UMR QP, ensuring tasks do not get stuck, as highlighted by the call trace [1]. During recovery, before t

• CVE-2025-21891Mar 27, 2025
  affected < 6.4.0-150700.20.3.1fixed 6.4.0-150700.20.3.1

  In the Linux kernel, the following vulnerability has been resolved: ipvlan: ensure network headers are in skb linear part syzbot found that ipvlan_process_v6_outbound() was assuming the IPv6 network header isis present in skb->head [1] Add the needed pskb_network_may_pull() ca

• CVE-2025-21890Mar 27, 2025
  affected < 6.4.0-150700.20.3.1fixed 6.4.0-150700.20.3.1

  In the Linux kernel, the following vulnerability has been resolved: idpf: fix checksums set in idpf_rx_rsc() idpf_rx_rsc() uses skb_transport_offset(skb) while the transport header is not set yet. This triggers the following warning for CONFIG_DEBUG_NET=y builds. DEBUG_NET_WA

• CVE-2025-21889Mar 27, 2025
  affected < 6.4.0-150700.20.3.1fixed 6.4.0-150700.20.3.1

  In the Linux kernel, the following vulnerability has been resolved: perf/core: Add RCU read lock protection to perf_iterate_ctx() The perf_iterate_ctx() function performs RCU list traversal but currently lacks RCU read lock protection. This causes lockdep warnings when running

• CVE-2025-21888Mar 27, 2025
  affected < 6.4.0-150700.20.3.1fixed 6.4.0-150700.20.3.1

  In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix a WARN during dereg_mr for DM type Memory regions (MR) of type DM (device memory) do not have an associated umem. In the __mlx5_ib_dereg_mr() -> mlx5_free_priv_descs() flow, the code incorrectly

• CVE-2025-21887Mar 27, 2025
  affected < 6.4.0-150700.20.3.1fixed 6.4.0-150700.20.3.1

  In the Linux kernel, the following vulnerability has been resolved: ovl: fix UAF in ovl_dentry_update_reval by moving dput() in ovl_link_up The issue was caused by dput(upper) being called before ovl_dentry_update_reval(), while upper->d_flags was still accessed in ovl_dentry_r

• CVE-2025-21886Mar 27, 2025
  affected < 6.4.0-150700.20.3.1fixed 6.4.0-150700.20.3.1

  In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix implicit ODP hang on parent deregistration Fix the destroy_unused_implicit_child_mr() to prevent hanging during parent deregistration as of below [1]. Upon entering destroy_unused_implicit_child

• CVE-2025-21885Mar 27, 2025
  affected < 6.4.0-150700.20.3.1fixed 6.4.0-150700.20.3.1

  In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxt_re: Fix the page details for the srq created by kernel consumers While using nvme target with use_srq on, below kernel panic is noticed. [ 549.698111] bnxt_en 0000:41:00.0 enp65s0np0: FEC autoneg of

• CVE-2025-21884Mar 27, 2025
  affected < 6.4.0-150700.20.3.1fixed 6.4.0-150700.20.3.1

  In the Linux kernel, the following vulnerability has been resolved: net: better track kernel sockets lifetime While kernel sockets are dismantled during pernet_operations->exit(), their freeing can be delayed by any tx packets still held in qdisc or device queues, due to skb_se

• CVE-2025-21883Mar 27, 2025
  affected < 6.4.0-150700.20.3.1fixed 6.4.0-150700.20.3.1

  In the Linux kernel, the following vulnerability has been resolved: ice: Fix deinitializing VF in error path If ice_ena_vfs() fails after calling ice_create_vf_entries(), it frees all VFs without removing them from snapshot PF-VF mailbox list, leading to list corruption. Repro

• CVE-2025-21882Mar 27, 2025
  affected < 6.4.0-150700.20.3.1fixed 6.4.0-150700.20.3.1

  In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix vport QoS cleanup on error When enabling vport QoS fails, the scheduling node was never freed, causing a leak. Add the missing free and reset the vport scheduling node pointer to NULL.