VYPR

rpm package

suse/kernel-default&distro=SUSE Linux Enterprise High Availability Extension 15 SP6

pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2015%20SP6

Vulnerabilities (4,170)

  • CVE-2024-57849Jan 11, 2025
    affected < 6.4.0-150600.23.38.1fixed 6.4.0-150600.23.38.1

    In the Linux kernel, the following vulnerability has been resolved: s390/cpum_sf: Handle CPU hotplug remove during sampling CPU hotplug remove handling triggers the following function call sequence: CPUHP_AP_PERF_S390_SF_ONLINE --> s390_pmu_sf_offline_cpu() ... CPUHP

  • CVE-2024-57838Jan 11, 2025
    affected < 6.4.0-150600.23.38.1fixed 6.4.0-150600.23.38.1

    In the Linux kernel, the following vulnerability has been resolved: s390/entry: Mark IRQ entries to fix stack depot warnings The stack depot filters out everything outside of the top interrupt context as an uninteresting or irrelevant part of the stack traces. This helps with s

  • CVE-2024-57809Jan 11, 2025
    affected < 6.4.0-150600.23.38.1fixed 6.4.0-150600.23.38.1

    In the Linux kernel, the following vulnerability has been resolved: PCI: imx6: Fix suspend/resume support on i.MX6QDL The suspend/resume functionality is currently broken on the i.MX6QDL platform, as documented in the NXP errata (ERR005723): https://www.nxp.com/docs/en/errat

  • CVE-2024-47809MedJan 11, 2025
    affected < 6.4.0-150600.23.38.1fixed 6.4.0-150600.23.38.1

    In the Linux kernel, the following vulnerability has been resolved: dlm: fix possible lkb_resource null dereference This patch fixes a possible null pointer dereference when this function is called from request_lock() as lkb->lkb_resource is not assigned yet, only after validat

  • CVE-2024-57807Jan 11, 2025
    affected < 6.4.0-150600.23.47.2fixed 6.4.0-150600.23.47.2

    In the Linux kernel, the following vulnerability has been resolved: scsi: megaraid_sas: Fix for a potential deadlock This fixes a 'possible circular locking dependency detected' warning CPU0 CPU1 ---- ---- lock(&instance->reset

  • CVE-2024-57804Jan 11, 2025
    affected < 6.4.0-150600.23.38.1fixed 6.4.0-150600.23.38.1

    In the Linux kernel, the following vulnerability has been resolved: scsi: mpi3mr: Fix corrupt config pages PHY state is switched in sysfs The driver, through the SAS transport, exposes a sysfs interface to enable/disable PHYs in a controller/expander setup. When multiple PHYs

  • CVE-2024-57798Jan 11, 2025
    affected < 6.4.0-150600.23.38.1fixed 6.4.0-150600.23.38.1

    In the Linux kernel, the following vulnerability has been resolved: drm/dp_mst: Ensure mst_primary pointer is valid in drm_dp_mst_handle_up_req() While receiving an MST up request message from one thread in drm_dp_mst_handle_up_req(), the MST topology could be removed from anot

  • CVE-2024-57793Jan 11, 2025
    affected < 6.4.0-150600.23.38.1fixed 6.4.0-150600.23.38.1

    In the Linux kernel, the following vulnerability has been resolved: virt: tdx-guest: Just leak decrypted memory on unrecoverable errors In CoCo VMs it is possible for the untrusted host to cause set_memory_decrypted() to fail such that an error is returned and the resulting mem

  • CVE-2024-57792Jan 11, 2025
    affected < 6.4.0-150600.23.38.1fixed 6.4.0-150600.23.38.1

    In the Linux kernel, the following vulnerability has been resolved: power: supply: gpio-charger: Fix set charge current limits Fix set charge current limits for devices which allow to set the lowest charge current limit to be greater zero. If requested charge current limit is b

  • CVE-2024-57791Jan 11, 2025
    affected < 6.4.0-150600.23.38.1fixed 6.4.0-150600.23.38.1

    In the Linux kernel, the following vulnerability has been resolved: net/smc: check return value of sock_recvmsg when draining clc data When receiving clc msg, the field length in smc_clc_msg_hdr indicates the length of msg should be received from network and the value should no

  • CVE-2024-56372Jan 11, 2025
    affected < 6.4.0-150600.23.38.1fixed 6.4.0-150600.23.38.1

    In the Linux kernel, the following vulnerability has been resolved: net: tun: fix tun_napi_alloc_frags() syzbot reported the following crash [1] Issue came with the blamed commit. Instead of going through all the iov components, we keep using the first one and end up with a ma

  • CVE-2024-56369Jan 11, 2025
    affected < 6.4.0-150600.23.38.1fixed 6.4.0-150600.23.38.1

    In the Linux kernel, the following vulnerability has been resolved: drm/modes: Avoid divide by zero harder in drm_mode_vrefresh() drm_mode_vrefresh() is trying to avoid divide by zero by checking whether htotal or vtotal are zero. But we may still end up with a div-by-zero of v

  • CVE-2024-55916Jan 11, 2025
    affected < 6.4.0-150600.23.38.1fixed 6.4.0-150600.23.38.1

    In the Linux kernel, the following vulnerability has been resolved: Drivers: hv: util: Avoid accessing a ringbuffer not initialized yet If the KVP (or VSS) daemon starts before the VMBus channel's ringbuffer is fully initialized, we can hit the panic below: hv_utils: Registeri

  • CVE-2024-55881Jan 11, 2025
    affected < 6.4.0-150600.23.38.1fixed 6.4.0-150600.23.38.1

    In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Play nice with protected guests in complete_hypercall_exit() Use is_64_bit_hypercall() instead of is_64_bit_mode() to detect a 64-bit hypercall when completing said hypercall. For guests with protect

  • CVE-2024-53690Jan 11, 2025
    affected < 6.4.0-150600.23.38.1fixed 6.4.0-150600.23.38.1

    In the Linux kernel, the following vulnerability has been resolved: nilfs2: prevent use of deleted inode syzbot reported a WARNING in nilfs_rmdir. [1] Because the inode bitmap is corrupted, an inode with an inode number that should exist as a ".nilfs" file was reassigned by ni

  • CVE-2024-53685Jan 11, 2025
    affected < 6.4.0-150600.23.38.1fixed 6.4.0-150600.23.38.1

    In the Linux kernel, the following vulnerability has been resolved: ceph: give up on paths longer than PATH_MAX If the full path to be built by ceph_mdsc_build_path() happens to be longer than PATH_MAX, then this function will enter an endless (retry) loop, effectively blocking

  • CVE-2024-49571Jan 11, 2025
    affected < 6.4.0-150600.23.47.2fixed 6.4.0-150600.23.47.2

    In the Linux kernel, the following vulnerability has been resolved: net/smc: check iparea_offset and ipv6_prefixes_cnt when receiving proposal msg When receiving proposal msg in server, the field iparea_offset and the field ipv6_prefixes_cnt in proposal msg are from the remote

  • CVE-2024-49568Jan 11, 2025
    affected < 6.4.0-150600.23.60.5fixed 6.4.0-150600.23.60.5

    In the Linux kernel, the following vulnerability has been resolved: net/smc: check v2_ext_offset/eid_cnt/ism_gid_cnt when receiving proposal msg When receiving proposal msg in server, the fields v2_ext_offset/ eid_cnt/ism_gid_cnt in proposal msg are from the remote client and c

  • CVE-2024-47408Jan 11, 2025
    affected < 6.4.0-150600.23.47.2fixed 6.4.0-150600.23.47.2

    In the Linux kernel, the following vulnerability has been resolved: net/smc: check smcd_v2_ext_offset when receiving proposal msg When receiving proposal msg in server, the field smcd_v2_ext_offset in proposal msg is from the remote client and can not be fully trusted. Once the

  • CVE-2024-46896Jan 11, 2025
    affected < 6.4.0-150600.23.38.1fixed 6.4.0-150600.23.38.1

    In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: don't access invalid sched Since 2320c9e6a768 ("drm/sched: memset() 'job' in drm_sched_job_init()") accessing job->base.sched can produce unexpected results as the initialisation of (*job)->base.sch

Page 100 of 209