VYPR

rpm package

suse/kernel-default&distro=SUSE Linux Enterprise Live Patching 15 SP1

pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP1

Vulnerabilities (669)

  • CVE-2020-9383HigFeb 25, 2020
    affected < 4.12.14-197.37.1fixed 4.12.14-197.37.1

    An issue was discovered in the Linux kernel 3.16 through 5.5.6. set_fdc in drivers/block/floppy.c leads to a wait_til_ready out-of-bounds read because the FDC index is not checked for errors before assigning it, aka CID-2e90ca68b0d2.

  • CVE-2020-8992MedFeb 14, 2020
    affected < 4.12.14-197.34.1fixed 4.12.14-197.34.1

    ext4_protect_reserved_inode in fs/ext4/block_validity.c in the Linux kernel through 5.5.3 allows attackers to cause a denial of service (soft lockup) via a crafted journal size.

  • CVE-2020-8649MedFeb 6, 2020
    affected < 4.12.14-197.37.1fixed 4.12.14-197.37.1

    There is a use-after-free vulnerability in the Linux kernel through 5.5.2 in the vgacon_invert_region function in drivers/video/console/vgacon.c.

  • CVE-2020-8648HigFeb 6, 2020
    affected < 4.12.14-197.34.1fixed 4.12.14-197.34.1

    There is a use-after-free vulnerability in the Linux kernel through 5.5.2 in the n_tty_receive_buf_common function in drivers/tty/n_tty.c.

  • CVE-2020-8647MedFeb 6, 2020
    affected < 4.12.14-197.37.1fixed 4.12.14-197.37.1

    There is a use-after-free vulnerability in the Linux kernel through 5.5.2 in the vc_do_resize function in drivers/tty/vt/vt.c.

  • CVE-2019-15126LowFeb 5, 2020
    affected < 4.12.14-197.105.1fixed 4.12.14-197.105.1

    An issue was discovered on Broadcom Wi-Fi client devices. Specifically timed and handcrafted traffic can cause internal errors (related to state transitions) in a WLAN device that lead to improper layer 2 Wi-Fi encryption with a consequent possibility of information disclosure ov

  • CVE-2020-8428HigJan 29, 2020
    affected < 4.12.14-197.34.1fixed 4.12.14-197.34.1

    fs/namei.c in the Linux kernel before 5.5 has a may_create_in_sticky use-after-free, which allows local users to cause a denial of service (OOPS) or possibly obtain sensitive information from kernel memory, aka CID-d0cb50185ae9. One attack vector may be an open system call for a

  • CVE-2019-14615MedJan 17, 2020
    affected < 4.12.14-197.34.1fixed 4.12.14-197.34.1

    Insufficient control flow in certain data structures for some Intel(R) Processors with Intel(R) Processor Graphics may allow an unauthenticated user to potentially enable information disclosure via local access.

  • CVE-2019-9503HigJan 16, 2020
    affected < 4.12.14-197.4.1fixed 4.12.14-197.4.1

    The Broadcom brcmfmac WiFi driver prior to commit a4176ec356c73a46c07c181c6d04039fafa34a9f is vulnerable to a frame validation bypass. If the brcmfmac driver receives a firmware event frame from a remote source, the is_wlc_event_frame function will cause this frame to be discarde

  • CVE-2019-9500HigJan 16, 2020
    affected < 4.12.14-197.4.1fixed 4.12.14-197.4.1

    The Broadcom brcmfmac WiFi driver prior to commit 1b5e2423164b3670e8bc9174e4762d297990deff is vulnerable to a heap buffer overflow. If the Wake-up on Wireless LAN functionality is configured, a malicious event frame can be constructed to trigger an heap buffer overflow in the brc

  • CVE-2020-7053HigJan 14, 2020
    affected < 4.12.14-197.34.1fixed 4.12.14-197.34.1

    In the Linux kernel 4.14 longterm through 4.14.165 and 4.19 longterm through 4.19.96 (and 5.x before 5.2), there is a use-after-free (write) in the i915_ppgtt_close function in drivers/gpu/drm/i915/i915_gem_gtt.c, aka CID-7dc40713618c. This is related to i915_gem_context_destroy_

  • CVE-2019-19332MedJan 9, 2020
    affected < 4.12.14-197.34.1fixed 4.12.14-197.34.1

    An out-of-bounds memory write issue was found in the Linux Kernel, version 3.13 through 5.4, in the way the Linux kernel's KVM hypervisor handled the 'KVM_GET_EMULATED_CPUID' ioctl(2) request to get CPUID features emulated by the KVM hypervisor. A user or process able to access t

  • CVE-2019-19927MedDec 31, 2019
    affected < 4.12.14-197.34.1fixed 4.12.14-197.34.1

    In the Linux kernel 5.0.0-rc7 (as distributed in ubuntu/linux.git on kernel.ubuntu.com), mounting a crafted f2fs filesystem image and performing some operations can lead to slab-out-of-bounds read access in ttm_put_pages in drivers/gpu/drm/ttm/ttm_page_alloc.c. This is related to

  • CVE-2019-20096MedDec 30, 2019
    affected < 4.12.14-197.34.1fixed 4.12.14-197.34.1

    In the Linux kernel before 5.1, there is a memory leak in __feat_register_sp() in net/dccp/feat.c, which may cause denial of service, aka CID-1d3ff0950e2b.

  • CVE-2019-20095MedDec 30, 2019
    affected < 4.12.14-197.34.1fixed 4.12.14-197.34.1

    mwifiex_tm_cmd in drivers/net/wireless/marvell/mwifiex/cfg80211.c in the Linux kernel before 5.1.6 has some error-handling cases that did not free allocated hostcmd memory, aka CID-003b686ace82. This will cause a memory leak and denial of service.

  • CVE-2019-20054MedDec 28, 2019
    affected < 4.12.14-197.34.1fixed 4.12.14-197.34.1

    In the Linux kernel before 5.0.6, there is a NULL pointer dereference in drop_sysctl_table() in fs/proc/proc_sysctl.c, related to put_links, aka CID-23da9588037e.

  • CVE-2019-19966MedDec 25, 2019
    affected < 4.12.14-197.34.1fixed 4.12.14-197.34.1

    In the Linux kernel before 5.1.6, there is a use-after-free in cpia2_exit() in drivers/media/usb/cpia2/cpia2_v4l.c that will cause denial of service, aka CID-dea37a972655.

  • CVE-2019-19965MedDec 25, 2019
    affected < 4.12.14-197.34.1fixed 4.12.14-197.34.1

    In the Linux kernel through 5.4.6, there is a NULL pointer dereference in drivers/scsi/libsas/sas_discover.c because of mishandling of port disconnection during discovery, related to a PHY down race condition, aka CID-f70267f379b5.

  • CVE-2019-19770HigDec 12, 2019
    affected < 4.12.14-197.40.1fixed 4.12.14-197.40.1

    In the Linux kernel 4.19.83, there is a use-after-free (read) in the debugfs_remove function in fs/debugfs/inode.c (which is used to remove a file or directory in debugfs that was previously created with a call to another debugfs function such as debugfs_create_file). NOTE: Linux

  • CVE-2019-19768HigDec 12, 2019
    affected < 4.12.14-197.37.1fixed 4.12.14-197.37.1

    In the Linux kernel 5.4.0-rc2, there is a use-after-free (read) in the __blk_add_trace function in kernel/trace/blktrace.c (which is used to fill out a blk_io_trace structure and place it in a per-cpu sub-buffer).

Page 25 of 34