VYPR

rpm package

suse/kernel-default&distro=SUSE Linux Enterprise High Availability Extension 15 SP6

pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2015%20SP6

Vulnerabilities (4,170)

  • CVE-2024-56644Dec 27, 2024
    affected < 6.4.0-150600.23.38.1fixed 6.4.0-150600.23.38.1

    In the Linux kernel, the following vulnerability has been resolved: net/ipv6: release expired exception dst cached in socket Dst objects get leaked in ip6_negative_advice() when this function is executed for an expired IPv6 route located in the exception table. There are severa

  • CVE-2024-56643Dec 27, 2024
    affected < 6.4.0-150600.23.38.1fixed 6.4.0-150600.23.38.1

    In the Linux kernel, the following vulnerability has been resolved: dccp: Fix memory leak in dccp_feat_change_recv If dccp_feat_push_confirm() fails after new value for SP feature was accepted without reconciliation ('entry == NULL' branch), memory allocated for that value with

  • CVE-2024-56642Dec 27, 2024
    affected < 6.4.0-150600.23.38.1fixed 6.4.0-150600.23.38.1

    In the Linux kernel, the following vulnerability has been resolved: tipc: Fix use-after-free of kernel socket in cleanup_bearer(). syzkaller reported a use-after-free of UDP kernel socket in cleanup_bearer() without repro. [0][1] When bearer_disable() calls tipc_udp_disable(),

  • CVE-2024-56641Dec 27, 2024
    affected < 6.4.0-150600.23.50.1fixed 6.4.0-150600.23.50.1

    In the Linux kernel, the following vulnerability has been resolved: net/smc: initialize close_work early to avoid warning We encountered a warning that close_work was canceled before initialization. WARNING: CPU: 7 PID: 111103 at kernel/workqueue.c:3047 __flush_work+0x19e/0x

  • CVE-2024-56640Dec 27, 2024
    affected < 6.4.0-150600.23.47.2fixed 6.4.0-150600.23.47.2

    In the Linux kernel, the following vulnerability has been resolved: net/smc: fix LGR and link use-after-free issue We encountered a LGR/link use-after-free issue, which manifested as the LGR/link refcnt reaching 0 early and entering the clear process, making resource access uns

  • CVE-2024-56638Dec 27, 2024
    affected < 6.4.0-150600.23.47.2fixed 6.4.0-150600.23.47.2

    In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_inner: incorrect percpu area handling under softirq Softirq can interrupt ongoing packet from process context that is walking over the percpu area that contains inner header offsets. Disable bh

  • CVE-2024-56637Dec 27, 2024
    affected < 6.4.0-150600.23.38.1fixed 6.4.0-150600.23.38.1

    In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: Hold module reference while requesting a module User space may unload ip_set.ko while it is itself requesting a set type backend module, leading to a kernel crash. The race condition may be pr

  • CVE-2024-56636Dec 27, 2024
    affected < 6.4.0-150600.23.38.1fixed 6.4.0-150600.23.38.1

    In the Linux kernel, the following vulnerability has been resolved: geneve: do not assume mac header is set in geneve_xmit_skb() We should not assume mac header is set in output path. Use skb_eth_hdr() instead of eth_hdr() to fix the issue. sysbot reported the following : W

  • CVE-2024-56635Dec 27, 2024
    affected < 6.4.0-150600.23.38.1fixed 6.4.0-150600.23.38.1

    In the Linux kernel, the following vulnerability has been resolved: net: avoid potential UAF in default_operstate() syzbot reported an UAF in default_operstate() [1] Issue is a race between device and netns dismantles. After calling __rtnl_unlock() from netdev_run_todo(), we

  • CVE-2024-56634Dec 27, 2024
    affected < 6.4.0-150600.23.38.1fixed 6.4.0-150600.23.38.1

    In the Linux kernel, the following vulnerability has been resolved: gpio: grgpio: Add NULL check in grgpio_probe devm_kasprintf() can return a NULL pointer on failure,but this returned value in grgpio_probe is not checked. Add NULL check in grgpio_probe, to handle kernel NULL p

  • CVE-2024-56633Dec 27, 2024
    affected < 6.4.0-150600.23.42.2fixed 6.4.0-150600.23.42.2

    In the Linux kernel, the following vulnerability has been resolved: tcp_bpf: Fix the sk_mem_uncharge logic in tcp_bpf_sendmsg The current sk memory accounting logic in __SK_REDIRECT is pre-uncharging tosend bytes, which is either msg->sg.size or a smaller value apply_bytes. Po

  • CVE-2024-56632Dec 27, 2024
    affected < 6.4.0-150600.23.38.1fixed 6.4.0-150600.23.38.1

    In the Linux kernel, the following vulnerability has been resolved: nvme-tcp: fix the memleak while create new ctrl failed Now while we create new ctrl failed, we have not free the tagset occupied by admin_q, here try to fix it.

  • CVE-2024-56630Dec 27, 2024
    affected < 6.4.0-150600.23.38.1fixed 6.4.0-150600.23.38.1

    In the Linux kernel, the following vulnerability has been resolved: ocfs2: free inode when ocfs2_get_init_inode() fails syzbot is reporting busy inodes after unmount, for commit 9c89fe0af826 ("ocfs2: Handle error from dquot_initialize()") forgot to call iput() when new_inode()

  • CVE-2024-56629Dec 27, 2024
    affected < 6.4.0-150600.23.38.1fixed 6.4.0-150600.23.38.1

    In the Linux kernel, the following vulnerability has been resolved: HID: wacom: fix when get product name maybe null pointer Due to incorrect dev->product reporting by certain devices, null pointer dereferences occur when dev->product is empty, leading to potential system crash

  • CVE-2024-56625Dec 27, 2024
    affected < 6.4.0-150600.23.38.1fixed 6.4.0-150600.23.38.1

    In the Linux kernel, the following vulnerability has been resolved: can: dev: can_set_termination(): allow sleeping GPIOs In commit 6e86a1543c37 ("can: dev: provide optional GPIO based termination support") GPIO based termination support was added. For no particular reason tha

  • CVE-2024-56623Dec 27, 2024
    affected < 6.4.0-150600.23.38.1fixed 6.4.0-150600.23.38.1

    In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix use after free on unload System crash is observed with stack trace warning of use after free. There are 2 signals to tell dpc_thread to terminate (UNLOADING flag and kthread_stop). On settin

  • CVE-2024-56622Dec 27, 2024
    affected < 6.4.0-150600.23.38.1fixed 6.4.0-150600.23.38.1

    In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: core: sysfs: Prevent div by zero Prevent a division by 0 when monitoring is not enabled.

  • CVE-2024-56620Dec 27, 2024
    affected < 6.4.0-150600.23.38.1fixed 6.4.0-150600.23.38.1

    In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: qcom: Only free platform MSIs when ESI is enabled Otherwise, it will result in a NULL pointer dereference as below: Unable to handle kernel NULL pointer dereference at virtual address 00000000000000

  • CVE-2024-56619Dec 27, 2024
    affected < 6.4.0-150600.23.38.1fixed 6.4.0-150600.23.38.1

    In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry() Syzbot reported that when searching for records in a directory where the inode's i_size is corrupted and has a large value, memory access

  • CVE-2024-56617Dec 27, 2024
    affected < 6.4.0-150600.23.38.1fixed 6.4.0-150600.23.38.1

    In the Linux kernel, the following vulnerability has been resolved: cacheinfo: Allocate memory during CPU hotplug if not done from the primary CPU Commit 5944ce092b97 ("arch_topology: Build cacheinfo from primary CPU") adds functionality that architectures can use to option

Page 106 of 209