rpm package
suse/kernel-default&distro=SUSE Linux Enterprise High Availability Extension 15 SP2
pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2015%20SP2
Vulnerabilities (997)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2021-47063 | Hig | 7.8 | < 5.3.18-150200.24.188.1 | 5.3.18-150200.24.188.1 | Feb 29, 2024 | In the Linux kernel, the following vulnerability has been resolved: drm: bridge/panel: Cleanup connector on bridge detach If we don't call drm_connector_cleanup() manually in panel_bridge_detach(), the connector will be cleaned up with the other DRM objects in the call to drm_m | |
| CVE-2021-47061 | Hig | 7.8 | < 5.3.18-150200.24.183.1 | 5.3.18-150200.24.183.1 | Feb 29, 2024 | In the Linux kernel, the following vulnerability has been resolved: KVM: Destroy I/O bus devices on unregister failure _after_ sync'ing SRCU If allocating a new instance of an I/O bus fails when unregistering a device, wait to destroy the device until after all readers are guar | |
| CVE-2021-47060 | Med | 6.0 | < 5.3.18-150200.24.183.1 | 5.3.18-150200.24.183.1 | Feb 29, 2024 | In the Linux kernel, the following vulnerability has been resolved: KVM: Stop looking for coalesced MMIO zones if the bus is destroyed Abort the walk of coalesced MMIO zones if kvm_io_bus_unregister_dev() fails to allocate memory for the new instance of the bus. If it can't in | |
| CVE-2021-47058 | Hig | 7.8 | < 5.3.18-150200.24.188.1 | 5.3.18-150200.24.188.1 | Feb 29, 2024 | In the Linux kernel, the following vulnerability has been resolved: regmap: set debugfs_name to NULL after it is freed There is a upstream commit cffa4b2122f5("regmap:debugfs: Fix a memory leak when calling regmap_attach_dev") that adds a if condition when create name for debug | |
| CVE-2021-47056 | Med | 5.5 | < 5.3.18-150200.24.188.1 | 5.3.18-150200.24.188.1 | Feb 29, 2024 | In the Linux kernel, the following vulnerability has been resolved: crypto: qat - ADF_STATUS_PF_RUNNING should be set after adf_dev_init ADF_STATUS_PF_RUNNING is (only) used and checked by adf_vf2pf_shutdown() before calling adf_iov_putmsg()->mutex_lock(vf2pf_lock), however the | |
| CVE-2021-47055 | Med | 5.5 | < 5.3.18-150200.24.188.1 | 5.3.18-150200.24.188.1 | Feb 29, 2024 | In the Linux kernel, the following vulnerability has been resolved: mtd: require write permissions for locking and badblock ioctls MEMLOCK, MEMUNLOCK and OTPLOCK modify protection bits. Thus require write permission. Depending on the hardware MEMLOCK might even be write-once, e | |
| CVE-2021-47054 | Med | 5.5 | < 5.3.18-150200.24.183.1 | 5.3.18-150200.24.183.1 | Feb 29, 2024 | In the Linux kernel, the following vulnerability has been resolved: bus: qcom: Put child node before return Put child node before return to fix potential reference count leak. Generally, the reference count of child is incremented and decremented automatically in the macro for_ | |
| CVE-2021-47020 | Med | 5.5 | < 5.3.18-150200.24.188.1 | 5.3.18-150200.24.188.1 | Feb 29, 2024 | In the Linux kernel, the following vulnerability has been resolved: soundwire: stream: fix memory leak in stream config error path When stream config is failed, master runtime will release all slave runtime in the slave_rt_list, but slave runtime is not added to the list at thi | |
| CVE-2024-26607 | Med | 4.7 | < 5.3.18-150200.24.183.1 | 5.3.18-150200.24.183.1 | Feb 29, 2024 | In the Linux kernel, the following vulnerability has been resolved: drm/bridge: sii902x: Fix probing race issue A null pointer dereference crash has been observed rarely on TI platforms using sii9022 bridge: [ 53.271356] sii902x_get_edid+0x34/0x70 [sii902x] [ 53.276066] | |
| CVE-2023-52482 | Hig | 7.8 | < 5.3.18-150200.24.183.1 | 5.3.18-150200.24.183.1 | Feb 29, 2024 | In the Linux kernel, the following vulnerability has been resolved: x86/srso: Add SRSO mitigation for Hygon processors Add mitigation for the speculative return stack overflow vulnerability which exists on Hygon processors too. | |
| CVE-2023-52478 | Med | 4.7 | < 5.3.18-150200.24.183.1 | 5.3.18-150200.24.183.1 | Feb 29, 2024 | In the Linux kernel, the following vulnerability has been resolved: HID: logitech-hidpp: Fix kernel crash on receiver USB disconnect hidpp_connect_event() has *four* time-of-check vs time-of-use (TOCTOU) races when it races with itself. hidpp_connect_event() primarily runs fro | |
| CVE-2023-52477 | Med | 5.5 | < 5.3.18-150200.24.188.1 | 5.3.18-150200.24.188.1 | Feb 29, 2024 | In the Linux kernel, the following vulnerability has been resolved: usb: hub: Guard against accesses to uninitialized BOS descriptors Many functions in drivers/usb/core/hub.c and drivers/usb/core/hub.h access fields inside udev->bos without checking if it was allocated and init | |
| CVE-2023-52476 | Med | 5.5 | < 5.3.18-150200.24.188.1 | 5.3.18-150200.24.188.1 | Feb 29, 2024 | In the Linux kernel, the following vulnerability has been resolved: perf/x86/lbr: Filter vsyscall addresses We found that a panic can occur when a vsyscall is made while LBR sampling is active. If the vsyscall is interrupted (NMI) for perf sampling, this call sequence can occur | |
| CVE-2023-52475 | Hig | 7.8 | < 5.3.18-150200.24.183.1 | 5.3.18-150200.24.183.1 | Feb 29, 2024 | In the Linux kernel, the following vulnerability has been resolved: Input: powermate - fix use-after-free in powermate_config_complete syzbot has found a use-after-free bug [1] in the powermate driver. This happens when the device is disconnected, which leads to a memory free f | |
| CVE-2023-51779 | Hig | 7.0 | < 5.3.18-150200.24.175.1 | 5.3.18-150200.24.175.1 | Feb 29, 2024 | bt_sock_recvmsg in net/bluetooth/af_bluetooth.c in the Linux kernel through 6.6.8 has a use-after-free because of a bt_sock_ioctl race condition. | |
| CVE-2021-47051 | Med | 5.5 | < 5.3.18-150200.24.188.1 | 5.3.18-150200.24.188.1 | Feb 28, 2024 | In the Linux kernel, the following vulnerability has been resolved: spi: fsl-lpspi: Fix PM reference leak in lpspi_prepare_xfer_hardware() pm_runtime_get_sync will increment pm usage counter even it failed. Forgetting to putting operation will result in reference leak here. Fix | |
| CVE-2021-47049 | Hig | 7.8 | < 5.3.18-150200.24.188.1 | 5.3.18-150200.24.188.1 | Feb 28, 2024 | In the Linux kernel, the following vulnerability has been resolved: Drivers: hv: vmbus: Use after free in __vmbus_open() The "open_info" variable is added to the &vmbus_connection.chn_msg_list, but the error handling frees "open_info" without removing it from the list. This wi | |
| CVE-2021-47045 | Med | 5.5 | < 5.3.18-150200.24.188.1 | 5.3.18-150200.24.188.1 | Feb 28, 2024 | In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix null pointer dereference in lpfc_prep_els_iocb() It is possible to call lpfc_issue_els_plogi() passing a did for which no matching ndlp is found. A call is then made to lpfc_prep_els_iocb() with | |
| CVE-2021-47041 | Med | 5.5 | < 5.3.18-150200.24.191.1 | 5.3.18-150200.24.191.1 | Feb 28, 2024 | In the Linux kernel, the following vulnerability has been resolved: nvmet-tcp: fix incorrect locking in state_change sk callback We are not changing anything in the TCP connection state so we should not take a write_lock but rather a read lock. This caused a deadlock when runn | |
| CVE-2021-47034 | Med | 4.4 | < 5.3.18-150200.24.188.1 | 5.3.18-150200.24.188.1 | Feb 28, 2024 | In the Linux kernel, the following vulnerability has been resolved: powerpc/64s: Fix pte update for kernel memory on radix When adding a PTE a ptesync is needed to order the update of the PTE with subsequent accesses otherwise a spurious fault may be raised. radix__set_pte_at( |
- affected < 5.3.18-150200.24.188.1fixed 5.3.18-150200.24.188.1
In the Linux kernel, the following vulnerability has been resolved: drm: bridge/panel: Cleanup connector on bridge detach If we don't call drm_connector_cleanup() manually in panel_bridge_detach(), the connector will be cleaned up with the other DRM objects in the call to drm_m
- affected < 5.3.18-150200.24.183.1fixed 5.3.18-150200.24.183.1
In the Linux kernel, the following vulnerability has been resolved: KVM: Destroy I/O bus devices on unregister failure _after_ sync'ing SRCU If allocating a new instance of an I/O bus fails when unregistering a device, wait to destroy the device until after all readers are guar
- affected < 5.3.18-150200.24.183.1fixed 5.3.18-150200.24.183.1
In the Linux kernel, the following vulnerability has been resolved: KVM: Stop looking for coalesced MMIO zones if the bus is destroyed Abort the walk of coalesced MMIO zones if kvm_io_bus_unregister_dev() fails to allocate memory for the new instance of the bus. If it can't in
- affected < 5.3.18-150200.24.188.1fixed 5.3.18-150200.24.188.1
In the Linux kernel, the following vulnerability has been resolved: regmap: set debugfs_name to NULL after it is freed There is a upstream commit cffa4b2122f5("regmap:debugfs: Fix a memory leak when calling regmap_attach_dev") that adds a if condition when create name for debug
- affected < 5.3.18-150200.24.188.1fixed 5.3.18-150200.24.188.1
In the Linux kernel, the following vulnerability has been resolved: crypto: qat - ADF_STATUS_PF_RUNNING should be set after adf_dev_init ADF_STATUS_PF_RUNNING is (only) used and checked by adf_vf2pf_shutdown() before calling adf_iov_putmsg()->mutex_lock(vf2pf_lock), however the
- affected < 5.3.18-150200.24.188.1fixed 5.3.18-150200.24.188.1
In the Linux kernel, the following vulnerability has been resolved: mtd: require write permissions for locking and badblock ioctls MEMLOCK, MEMUNLOCK and OTPLOCK modify protection bits. Thus require write permission. Depending on the hardware MEMLOCK might even be write-once, e
- affected < 5.3.18-150200.24.183.1fixed 5.3.18-150200.24.183.1
In the Linux kernel, the following vulnerability has been resolved: bus: qcom: Put child node before return Put child node before return to fix potential reference count leak. Generally, the reference count of child is incremented and decremented automatically in the macro for_
- affected < 5.3.18-150200.24.188.1fixed 5.3.18-150200.24.188.1
In the Linux kernel, the following vulnerability has been resolved: soundwire: stream: fix memory leak in stream config error path When stream config is failed, master runtime will release all slave runtime in the slave_rt_list, but slave runtime is not added to the list at thi
- affected < 5.3.18-150200.24.183.1fixed 5.3.18-150200.24.183.1
In the Linux kernel, the following vulnerability has been resolved: drm/bridge: sii902x: Fix probing race issue A null pointer dereference crash has been observed rarely on TI platforms using sii9022 bridge: [ 53.271356] sii902x_get_edid+0x34/0x70 [sii902x] [ 53.276066]
- affected < 5.3.18-150200.24.183.1fixed 5.3.18-150200.24.183.1
In the Linux kernel, the following vulnerability has been resolved: x86/srso: Add SRSO mitigation for Hygon processors Add mitigation for the speculative return stack overflow vulnerability which exists on Hygon processors too.
- affected < 5.3.18-150200.24.183.1fixed 5.3.18-150200.24.183.1
In the Linux kernel, the following vulnerability has been resolved: HID: logitech-hidpp: Fix kernel crash on receiver USB disconnect hidpp_connect_event() has *four* time-of-check vs time-of-use (TOCTOU) races when it races with itself. hidpp_connect_event() primarily runs fro
- affected < 5.3.18-150200.24.188.1fixed 5.3.18-150200.24.188.1
In the Linux kernel, the following vulnerability has been resolved: usb: hub: Guard against accesses to uninitialized BOS descriptors Many functions in drivers/usb/core/hub.c and drivers/usb/core/hub.h access fields inside udev->bos without checking if it was allocated and init
- affected < 5.3.18-150200.24.188.1fixed 5.3.18-150200.24.188.1
In the Linux kernel, the following vulnerability has been resolved: perf/x86/lbr: Filter vsyscall addresses We found that a panic can occur when a vsyscall is made while LBR sampling is active. If the vsyscall is interrupted (NMI) for perf sampling, this call sequence can occur
- affected < 5.3.18-150200.24.183.1fixed 5.3.18-150200.24.183.1
In the Linux kernel, the following vulnerability has been resolved: Input: powermate - fix use-after-free in powermate_config_complete syzbot has found a use-after-free bug [1] in the powermate driver. This happens when the device is disconnected, which leads to a memory free f
- affected < 5.3.18-150200.24.175.1fixed 5.3.18-150200.24.175.1
bt_sock_recvmsg in net/bluetooth/af_bluetooth.c in the Linux kernel through 6.6.8 has a use-after-free because of a bt_sock_ioctl race condition.
- affected < 5.3.18-150200.24.188.1fixed 5.3.18-150200.24.188.1
In the Linux kernel, the following vulnerability has been resolved: spi: fsl-lpspi: Fix PM reference leak in lpspi_prepare_xfer_hardware() pm_runtime_get_sync will increment pm usage counter even it failed. Forgetting to putting operation will result in reference leak here. Fix
- affected < 5.3.18-150200.24.188.1fixed 5.3.18-150200.24.188.1
In the Linux kernel, the following vulnerability has been resolved: Drivers: hv: vmbus: Use after free in __vmbus_open() The "open_info" variable is added to the &vmbus_connection.chn_msg_list, but the error handling frees "open_info" without removing it from the list. This wi
- affected < 5.3.18-150200.24.188.1fixed 5.3.18-150200.24.188.1
In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix null pointer dereference in lpfc_prep_els_iocb() It is possible to call lpfc_issue_els_plogi() passing a did for which no matching ndlp is found. A call is then made to lpfc_prep_els_iocb() with
- affected < 5.3.18-150200.24.191.1fixed 5.3.18-150200.24.191.1
In the Linux kernel, the following vulnerability has been resolved: nvmet-tcp: fix incorrect locking in state_change sk callback We are not changing anything in the TCP connection state so we should not take a write_lock but rather a read lock. This caused a deadlock when runn
- affected < 5.3.18-150200.24.188.1fixed 5.3.18-150200.24.188.1
In the Linux kernel, the following vulnerability has been resolved: powerpc/64s: Fix pte update for kernel memory on radix When adding a PTE a ptesync is needed to order the update of the PTE with subsequent accesses otherwise a spurious fault may be raised. radix__set_pte_at(
Page 18 of 50