VYPR

rpm package

suse/kernel-default&distro=SUSE Linux Enterprise High Availability Extension 15 SP6

pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20High%20Availability%20Extension%2015%20SP6

Vulnerabilities (4,170)

  • CVE-2025-37790May 1, 2025
    affected < 6.4.0-150600.23.53.1fixed 6.4.0-150600.23.53.1

    In the Linux kernel, the following vulnerability has been resolved: net: mctp: Set SOCK_RCU_FREE Bind lookup runs under RCU, so ensure that a socket doesn't go away in the middle of a lookup.

  • CVE-2025-37789May 1, 2025
    affected < 6.4.0-150600.23.53.1fixed 6.4.0-150600.23.53.1

    In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: fix nested key length validation in the set() action It's not safe to access nla_len(ovs_key) if the data is smaller than the netlink header. Check that the attribute is OK first.

  • CVE-2025-37788May 1, 2025
    affected < 6.4.0-150600.23.53.1fixed 6.4.0-150600.23.53.1

    In the Linux kernel, the following vulnerability has been resolved: cxgb4: fix memory leak in cxgb4_init_ethtool_filters() error path In the for loop used to allocate the loc_array and bmap for each port, a memory leak is possible when the allocation for loc_array succeeds, but

  • CVE-2025-37787May 1, 2025
    affected < 6.4.0-150600.23.53.1fixed 6.4.0-150600.23.53.1

    In the Linux kernel, the following vulnerability has been resolved: net: dsa: mv88e6xxx: avoid unregistering devlink regions which were never registered Russell King reports that a system with mv88e6xxx dereferences a NULL pointer when unbinding this driver: https://lore.kernel

  • CVE-2025-37786May 1, 2025
    affected < 6.4.0-150600.23.60.5fixed 6.4.0-150600.23.60.5

    In the Linux kernel, the following vulnerability has been resolved: net: dsa: free routing table on probe failure If complete = true in dsa_tree_setup(), it means that we are the last switch of the tree which is successfully probing, and we should be setting up all switches fro

  • CVE-2025-37781May 1, 2025
    affected < 6.4.0-150600.23.53.1fixed 6.4.0-150600.23.53.1

    In the Linux kernel, the following vulnerability has been resolved: i2c: cros-ec-tunnel: defer probe if parent EC is not present When i2c-cros-ec-tunnel and the EC driver are built-in, the EC parent device will not be found, leading to NULL pointer dereference. That can also b

  • CVE-2025-37780May 1, 2025
    affected < 6.4.0-150600.23.53.1fixed 6.4.0-150600.23.53.1

    In the Linux kernel, the following vulnerability has been resolved: isofs: Prevent the use of too small fid syzbot reported a slab-out-of-bounds Read in isofs_fh_to_parent. [1] The handle_bytes value passed in by the reproducing program is equal to 12. In handle_to_path(), onl

  • CVE-2025-37773May 1, 2025
    affected < 6.4.0-150600.23.53.1fixed 6.4.0-150600.23.53.1

    In the Linux kernel, the following vulnerability has been resolved: virtiofs: add filesystem context source name check In certain scenarios, for example, during fuzz testing, the source name may be NULL, which could lead to a kernel panic. Therefore, an extra check for the sour

  • CVE-2025-37772May 1, 2025
    affected < 6.4.0-150600.23.53.1fixed 6.4.0-150600.23.53.1

    In the Linux kernel, the following vulnerability has been resolved: RDMA/cma: Fix workqueue crash in cma_netevent_work_handler struct rdma_cm_id has member "struct work_struct net_work" that is reused for enqueuing cma_netevent_work_handler()s onto cma_wq. Below crash[1] can o

  • CVE-2025-37771May 1, 2025
    affected < 6.4.0-150600.23.53.1fixed 6.4.0-150600.23.53.1

    In the Linux kernel, the following vulnerability has been resolved: drm/amd/pm: Prevent division by zero The user can set any speed value. If speed is greater than UINT_MAX/8, division by zero is possible. Found by Linux Verification Center (linuxtesting.org) with SVACE.

  • CVE-2025-37770May 1, 2025
    affected < 6.4.0-150600.23.53.1fixed 6.4.0-150600.23.53.1

    In the Linux kernel, the following vulnerability has been resolved: drm/amd/pm: Prevent division by zero The user can set any speed value. If speed is greater than UINT_MAX/8, division by zero is possible. Found by Linux Verification Center (linuxtesting.org) with SVACE.

  • CVE-2025-37769May 1, 2025
    affected < 6.4.0-150600.23.53.1fixed 6.4.0-150600.23.53.1

    In the Linux kernel, the following vulnerability has been resolved: drm/amd/pm/smu11: Prevent division by zero The user can set any speed value. If speed is greater than UINT_MAX/8, division by zero is possible. Found by Linux Verification Center (linuxtesting.org) with SVACE.

  • CVE-2025-37768May 1, 2025
    affected < 6.4.0-150600.23.53.1fixed 6.4.0-150600.23.53.1

    In the Linux kernel, the following vulnerability has been resolved: drm/amd/pm: Prevent division by zero The user can set any speed value. If speed is greater than UINT_MAX/8, division by zero is possible. Found by Linux Verification Center (linuxtesting.org) with SVACE.

  • CVE-2025-37767May 1, 2025
    affected < 6.4.0-150600.23.53.1fixed 6.4.0-150600.23.53.1

    In the Linux kernel, the following vulnerability has been resolved: drm/amd/pm: Prevent division by zero The user can set any speed value. If speed is greater than UINT_MAX/8, division by zero is possible. Found by Linux Verification Center (linuxtesting.org) with SVACE.

  • CVE-2025-37766May 1, 2025
    affected < 6.4.0-150600.23.53.1fixed 6.4.0-150600.23.53.1

    In the Linux kernel, the following vulnerability has been resolved: drm/amd/pm: Prevent division by zero The user can set any speed value. If speed is greater than UINT_MAX/8, division by zero is possible. Found by Linux Verification Center (linuxtesting.org) with SVACE.

  • CVE-2025-37765May 1, 2025
    affected < 6.4.0-150600.23.53.1fixed 6.4.0-150600.23.53.1

    In the Linux kernel, the following vulnerability has been resolved: drm/nouveau: prime: fix ttm_bo_delayed_delete oops Fix an oops in ttm_bo_delayed_delete which results from dererencing a dangling pointer: Oops: general protection fault, probably for non-canonical address 0x6

  • CVE-2025-37758May 1, 2025
    affected < 6.4.0-150600.23.53.1fixed 6.4.0-150600.23.53.1

    In the Linux kernel, the following vulnerability has been resolved: ata: pata_pxa: Fix potential NULL pointer dereference in pxa_ata_probe() devm_ioremap() returns NULL on error. Currently, pxa_ata_probe() does not check for this case, which can result in a NULL pointer derefer

  • CVE-2025-37757May 1, 2025
    affected < 6.4.0-150600.23.60.5fixed 6.4.0-150600.23.60.5

    In the Linux kernel, the following vulnerability has been resolved: tipc: fix memory leak in tipc_link_xmit In case the backlog transmit queue for system-importance messages is overloaded, tipc_link_xmit() returns -ENOBUFS but the skb list is not purged. This leads to memory le

  • CVE-2025-37755May 1, 2025
    affected < 6.4.0-150600.23.53.1fixed 6.4.0-150600.23.53.1

    In the Linux kernel, the following vulnerability has been resolved: net: libwx: handle page_pool_dev_alloc_pages error page_pool_dev_alloc_pages could return NULL. There was a WARN_ON(!page) but it would still proceed to use the NULL pointer and then crash. This is similar to

  • CVE-2025-37754May 1, 2025
    affected < 6.4.0-150600.23.53.1fixed 6.4.0-150600.23.53.1

    In the Linux kernel, the following vulnerability has been resolved: drm/i915/huc: Fix fence not released on early probe errors HuC delayed loading fence, introduced with commit 27536e03271da ("drm/i915/huc: track delayed HuC load with a fence"), is registered with object tracke

Page 75 of 209