VYPR

rpm package

suse/kernel-default&distro=SUSE Linux Enterprise High Availability Extension 15 SP2

pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2015%20SP2

Vulnerabilities (997)

  • CVE-2021-42252HigOct 11, 2021
    affected < 5.3.18-24.93.1fixed 5.3.18-24.93.1

    An issue was discovered in aspeed_lpc_ctrl_mmap in drivers/soc/aspeed/aspeed-lpc-ctrl.c in the Linux kernel before 5.14.6. Local attackers able to access the Aspeed LPC control interface could overwrite memory in the kernel and potentially execute privileges, aka CID-b49a0e69a7b1

  • CVE-2021-42008HigOct 5, 2021
    affected < 5.3.18-24.93.1fixed 5.3.18-24.93.1

    The decode_data function in drivers/net/hamradio/6pack.c in the Linux kernel before 5.13.13 has a slab out-of-bounds write. Input from a process that has the CAP_NET_ADMIN capability can lead to root access.

  • CVE-2021-41864HigOct 2, 2021
    affected < 5.3.18-24.93.1fixed 5.3.18-24.93.1

    prealloc_elems_and_freelist in kernel/bpf/stackmap.c in the Linux kernel before 5.14.12 allows unprivileged users to trigger an eBPF multiplication integer overflow with a resultant out-of-bounds write.

  • CVE-2021-3653HigSep 29, 2021
    affected < 5.3.18-24.83.2fixed 5.3.18-24.83.2

    A flaw was found in the KVM's AMD code for supporting SVM nested virtualization. The flaw occurs when processing the VMCB (virtual machine control block) provided by the L1 guest to spawn/handle a nested guest (L2). Due to improper validation of the "int_ctl" field, this issue co

  • CVE-2021-40490HigSep 3, 2021
    affected < 5.3.18-24.86.2fixed 5.3.18-24.86.2

    A race condition was discovered in ext4_write_inline_data_end in fs/ext4/inline.c in the ext4 subsystem in the Linux kernel through 5.13.13.

  • CVE-2021-21781LowAug 18, 2021
    affected < 5.3.18-24.78.1fixed 5.3.18-24.78.1

    An information disclosure vulnerability exists in the ARM SIGPAGE functionality of Linux Kernel v5.4.66 and v5.4.54. The latest version (5.11-rc4) seems to still be vulnerable. A userland application can read the contents of the sigpage, which can leak kernel memory contents. An

  • CVE-2021-3573MedAug 13, 2021
    affected < 5.3.18-24.70.1fixed 5.3.18-24.70.1

    A use-after-free in function hci_sock_bound_ioctl() of the Linux kernel HCI subsystem was found in the way user calls ioct HCIUNBLOCKADDR or other way triggers race condition of the call hci_unregister_dev() together with one of the calls hci_sock_blacklist_add(), hci_sock_blackl

  • CVE-2021-38207HigAug 8, 2021
    affected < 5.3.18-24.83.2fixed 5.3.18-24.83.2

    drivers/net/ethernet/xilinx/ll_temac_main.c in the Linux kernel before 5.12.13 allows remote attackers to cause a denial of service (buffer overflow and lockup) by sending heavy network traffic for about ten minutes.

  • CVE-2021-38205LowAug 8, 2021
    affected < 5.3.18-24.83.2fixed 5.3.18-24.83.2

    drivers/net/ethernet/xilinx/xilinx_emaclite.c in the Linux kernel before 5.13.3 makes it easier for attackers to defeat an ASLR protection mechanism because it prints a kernel pointer (i.e., the real IOMEM pointer).

  • CVE-2021-38204MedAug 8, 2021
    affected < 5.3.18-24.83.2fixed 5.3.18-24.83.2

    drivers/usb/host/max3421-hcd.c in the Linux kernel before 5.13.6 allows physically proximate attackers to cause a denial of service (use-after-free and panic) by removing a MAX-3421 USB device in certain situations.

  • CVE-2021-38198MedAug 8, 2021
    affected < 5.3.18-24.83.2fixed 5.3.18-24.83.2

    arch/x86/kvm/mmu/paging_tmpl.h in the Linux kernel before 5.12.11 incorrectly computes the access permissions of a shadow page, leading to a missing guest protection page fault.

  • CVE-2021-38160HigAug 7, 2021
    affected < 5.3.18-24.83.2fixed 5.3.18-24.83.2

    In drivers/char/virtio_console.c in the Linux kernel before 5.13.4, data corruption or loss can be triggered by an untrusted device that supplies a buf->len value exceeding the buffer size. NOTE: the vendor indicates that the cited data corruption is not a vulnerability in any ex

  • CVE-2021-3655LowAug 5, 2021
    affected < 5.3.18-24.93.1fixed 5.3.18-24.93.1

    A vulnerability was found in the Linux kernel in versions prior to v5.14-rc1. Missing size validations on inbound SCTP packets may allow the kernel to read uninitialized memory.

  • CVE-2021-3679MedAug 5, 2021
    affected < 5.3.18-24.83.2fixed 5.3.18-24.83.2

    A lack of CPU resource in the Linux kernel tracing module functionality in versions prior to 5.14-rc3 was found in the way user uses trace ring buffer in a specific way. Only privileged local users (with CAP_SYS_ADMIN capability) could use this flaw to starve the resources causin

  • CVE-2021-34556MedAug 2, 2021
    affected < 5.3.18-24.83.2fixed 5.3.18-24.83.2

    In the Linux kernel through 5.13.7, an unprivileged BPF program can obtain sensitive information from kernel memory via a Speculative Store Bypass side-channel attack because the protection mechanism neglects the possibility of uninitialized memory locations on the BPF stack.

  • CVE-2021-35477MedAug 2, 2021
    affected < 5.3.18-24.83.2fixed 5.3.18-24.83.2

    In the Linux kernel through 5.13.7, an unprivileged BPF program can obtain sensitive information from kernel memory via a Speculative Store Bypass side-channel attack because a certain preempting store operation does not necessarily occur before a store operation that has an atta

  • CVE-2021-37576HigJul 26, 2021
    affected < 5.3.18-24.78.1fixed 5.3.18-24.78.1

    arch/powerpc/kvm/book3s_rtas.c in the Linux kernel through 5.13.5 on the powerpc platform allows KVM guest OS users to cause host OS memory corruption via rtas_args.nargs, aka CID-f62f3c20647e.

  • CVE-2021-37159MedJul 21, 2021
    affected < 5.3.18-24.96.1fixed 5.3.18-24.96.1

    hso_free_net_device in drivers/net/usb/hso.c in the Linux kernel through 5.13.4 calls unregister_netdev without checking for the NETREG_REGISTERED state, leading to a use-after-free and a double free.

  • CVE-2021-33909HigJul 20, 2021
    affected < 5.3.18-24.75.3fixed 5.3.18-24.75.3

    fs/seq_file.c in the Linux kernel 3.16 through 5.13.x before 5.13.4 does not properly restrict seq buffer allocations, leading to an integer overflow, an Out-of-bounds Write, and escalation to root by an unprivileged user, aka CID-8cae8cd89f05.

  • CVE-2021-3612HigJul 9, 2021
    affected < 5.3.18-24.75.3fixed 5.3.18-24.75.3

    An out-of-bounds memory write flaw was found in the Linux kernel's joystick devices subsystem in versions before 5.9-rc1, in the way the user calls ioctl JSIOCSBTNMAP. This flaw allows a local user to crash the system or possibly escalate their privileges on the system. The highe

Page 42 of 50