VYPR

rpm package

suse/kernel-default&distro=SUSE Linux Enterprise High Availability Extension 15 SP6

pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2015%20SP6

Vulnerabilities (4,170)

  • CVE-2025-38419Jul 25, 2025
    affected < 6.4.0-150600.23.73.1fixed 6.4.0-150600.23.73.1

    In the Linux kernel, the following vulnerability has been resolved: remoteproc: core: Cleanup acquired resources when rproc_handle_resources() fails in rproc_attach() When rproc->state = RPROC_DETACHED and rproc_attach() is used to attach to the remote processor, if rproc_handl

  • CVE-2025-38418Jul 25, 2025
    affected < 6.4.0-150600.23.73.1fixed 6.4.0-150600.23.73.1

    In the Linux kernel, the following vulnerability has been resolved: remoteproc: core: Release rproc->clean_table after rproc_attach() fails When rproc->state = RPROC_DETACHED is attached to remote processor through rproc_attach(), if rproc_handle_resources() returns failure, th

  • CVE-2025-38416Jul 25, 2025
    affected < 6.4.0-150600.23.65.1fixed 6.4.0-150600.23.65.1

    In the Linux kernel, the following vulnerability has been resolved: NFC: nci: uart: Set tty->disc_data only in success path Setting tty->disc_data before opening the NCI device means we need to clean it up on error paths. This also opens some short window if device starts send

  • CVE-2025-38415Jul 25, 2025
    affected < 6.4.0-150600.23.65.1fixed 6.4.0-150600.23.65.1

    In the Linux kernel, the following vulnerability has been resolved: Squashfs: check return result of sb_min_blocksize Syzkaller reports an "UBSAN: shift-out-of-bounds in squashfs_bio_read" bug. Syzkaller forks multiple processes which after mounting the Squashfs filesystem, is

  • CVE-2025-38414Jul 25, 2025
    affected < 6.4.0-150600.23.65.1fixed 6.4.0-150600.23.65.1

    In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: fix GCC_GCC_PCIE_HOT_RST definition for WCN7850 GCC_GCC_PCIE_HOT_RST is wrongly defined for WCN7850, causing kernel crash on some specific platforms. Since this register is divergent for WCN7850

  • CVE-2025-38412Jul 25, 2025
    affected < 6.4.0-150600.23.65.1fixed 6.4.0-150600.23.65.1

    In the Linux kernel, the following vulnerability has been resolved: platform/x86: dell-wmi-sysman: Fix WMI data block retrieval in sysfs callbacks After retrieving WMI data blocks in sysfs callbacks, check for the validity of them before dereferencing their content.

  • CVE-2025-38410Jul 25, 2025
    affected < 6.4.0-150600.23.65.1fixed 6.4.0-150600.23.65.1

    In the Linux kernel, the following vulnerability has been resolved: drm/msm: Fix a fence leak in submit error path In error paths, we could unref the submit without calling drm_sched_entity_push_job(), so msm_job_free() will never get called. Since drm_sched_job_cleanup() will

  • CVE-2025-38409Jul 25, 2025
    affected < 6.4.0-150600.23.65.1fixed 6.4.0-150600.23.65.1

    In the Linux kernel, the following vulnerability has been resolved: drm/msm: Fix another leak in the submit error path put_unused_fd() doesn't free the installed file, if we've already done fd_install(). So we need to also free the sync_file. Patchwork: https://patchwork.free

  • CVE-2025-38408Jul 25, 2025
    affected < 6.4.0-150600.23.73.1fixed 6.4.0-150600.23.73.1

    In the Linux kernel, the following vulnerability has been resolved: genirq/irq_sim: Initialize work context pointers properly Initialize `ops` member's pointers properly by using kzalloc() instead of kmalloc() when allocating the simulation work context. Otherwise the pointers

  • CVE-2025-38400MedJul 25, 2025
    affected < 6.4.0-150600.23.65.1fixed 6.4.0-150600.23.65.1

    In the Linux kernel, the following vulnerability has been resolved: nfs: Clean up /proc/net/rpc/nfs when nfs_fs_proc_net_init() fails. syzbot reported a warning below [1] following a fault injection in nfs_fs_proc_net_init(). [0] When nfs_fs_proc_net_init() fails, /proc/net/rp

  • CVE-2025-38393MedJul 25, 2025
    affected < 6.4.0-150600.23.65.1fixed 6.4.0-150600.23.65.1

    In the Linux kernel, the following vulnerability has been resolved: NFSv4/pNFS: Fix a race to wake on NFS_LAYOUT_DRAIN We found a few different systems hung up in writeback waiting on the same page lock, and one task waiting on the NFS_LAYOUT_DRAIN bit in pnfs_update_layout(),

  • CVE-2025-38364MedJul 25, 2025
    affected < 6.4.0-150600.23.65.1fixed 6.4.0-150600.23.65.1

    In the Linux kernel, the following vulnerability has been resolved: maple_tree: fix MA_STATE_PREALLOC flag in mas_preallocate() Temporarily clear the preallocation flag when explicitly requesting allocations. Pre-existing allocations are already counted against the request thr

  • CVE-2025-38406Jul 25, 2025
    affected < 6.4.0-150600.23.65.1fixed 6.4.0-150600.23.65.1

    In the Linux kernel, the following vulnerability has been resolved: wifi: ath6kl: remove WARN on bad firmware input If the firmware gives bad input, that's nothing to do with the driver's stack at this point etc., so the WARN_ON() doesn't add any value. Additionally, this is on

  • CVE-2025-38404Jul 25, 2025
    affected < 6.4.0-150600.23.65.1fixed 6.4.0-150600.23.65.1

    In the Linux kernel, the following vulnerability has been resolved: usb: typec: displayport: Fix potential deadlock The deadlock can occur due to a recursive lock acquisition of `cros_typec_altmode_data::mutex`. The call chain is as follows: 1. cros_typec_altmode_work() acquire

  • CVE-2025-38403Jul 25, 2025
    affected < 6.4.0-150600.23.65.1fixed 6.4.0-150600.23.65.1

    In the Linux kernel, the following vulnerability has been resolved: vsock/vmci: Clear the vmci transport packet properly when initializing it In vmci_transport_packet_init memset the vmci_transport_packet before populating the fields to avoid any uninitialised data being left i

  • CVE-2025-38402Jul 25, 2025
    affected < 6.4.0-150600.23.73.1fixed 6.4.0-150600.23.73.1

    In the Linux kernel, the following vulnerability has been resolved: idpf: return 0 size for RSS key if not supported Returning -EOPNOTSUPP from function returning u32 is leading to cast and invalid size value as a result. -EOPNOTSUPP as a size probably will lead to allocation

  • CVE-2025-38401Jul 25, 2025
    affected < 6.4.0-150600.23.65.1fixed 6.4.0-150600.23.65.1

    In the Linux kernel, the following vulnerability has been resolved: mtk-sd: Prevent memory corruption from DMA map failure If msdc_prepare_data() fails to map the DMA region, the request is not prepared for data receiving, but msdc_start_data() proceeds the DMA with previous se

  • CVE-2025-38399Jul 25, 2025
    affected < 6.4.0-150600.23.65.1fixed 6.4.0-150600.23.65.1

    In the Linux kernel, the following vulnerability has been resolved: scsi: target: Fix NULL pointer dereference in core_scsi3_decode_spec_i_port() The function core_scsi3_decode_spec_i_port(), in its error code path, unconditionally calls core_scsi3_lunacl_undepend_item() passin

  • CVE-2025-38396Jul 25, 2025
    affected < 6.4.0-150600.23.65.1fixed 6.4.0-150600.23.65.1

    In the Linux kernel, the following vulnerability has been resolved: fs: export anon_inode_make_secure_inode() and fix secretmem LSM bypass Export anon_inode_make_secure_inode() to allow KVM guest_memfd to create anonymous inodes with proper security context. This replaces the c

  • CVE-2025-38395Jul 25, 2025
    affected < 6.4.0-150600.23.65.1fixed 6.4.0-150600.23.65.1

    In the Linux kernel, the following vulnerability has been resolved: regulator: gpio: Fix the out-of-bounds access to drvdata::gpiods drvdata::gpiods is supposed to hold an array of 'gpio_desc' pointers. But the memory is allocated for only one pointer. This will lead to out-of-

Page 56 of 209