VYPR

rpm package

suse/kernel-default&distro=SUSE Linux Enterprise Live Patching 15 SP6

pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP6

Vulnerabilities (4,170)

  • CVE-2025-40111Nov 12, 2025
    affected < 6.4.0-150600.23.81.3fixed 6.4.0-150600.23.81.3

    In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Fix Use-after-free in validation Nodes stored in the validation duplicates hashtable come from an arena allocator that is cleared at the end of vmw_execbuf_process. All nodes are expected to be clea

  • CVE-2025-40110Nov 12, 2025
    affected < 6.4.0-150600.23.81.3fixed 6.4.0-150600.23.81.3

    In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Fix a null-ptr access in the cursor snooper Check that the resource which is converted to a surface exists before trying to use the cursor snooper on it. vmw_cmd_res_check allows explicit invalid (

  • CVE-2025-40109Nov 9, 2025
    affected < 6.4.0-150600.23.81.3fixed 6.4.0-150600.23.81.3

    In the Linux kernel, the following vulnerability has been resolved: crypto: rng - Ensure set_ent is always present Ensure that set_ent is always set since only drbg provides it.

  • CVE-2025-40107Nov 3, 2025
    affected < 6.4.0-150600.23.81.3fixed 6.4.0-150600.23.81.3

    In the Linux kernel, the following vulnerability has been resolved: can: hi311x: fix null pointer dereference when resuming from sleep before interface was enabled This issue is similar to the vulnerability in the `mcp251x` driver, which was fixed in commit 03c427147b2d ("can:

  • CVE-2025-40105Oct 30, 2025
    affected < 6.4.0-150600.23.81.3fixed 6.4.0-150600.23.81.3

    In the Linux kernel, the following vulnerability has been resolved: vfs: Don't leak disconnected dentries on umount When user calls open_by_handle_at() on some inode that is not cached, we will create disconnected dentry for it. If such dentry is a directory, exportfs_decode_fh

  • CVE-2025-40103Oct 30, 2025
    affected < 6.4.0-150600.23.92.1fixed 6.4.0-150600.23.92.1

    In the Linux kernel, the following vulnerability has been resolved: smb: client: Fix refcount leak for cifs_sb_tlink Fix three refcount inconsistency issues related to `cifs_sb_tlink`. Comments for `cifs_sb_tlink` state that `cifs_put_tlink()` needs to be called after successf

  • CVE-2025-40102Oct 30, 2025
    affected < 6.4.0-150600.23.84.1fixed 6.4.0-150600.23.84.1

    In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Prevent access to vCPU events before init Another day, another syzkaller bug. KVM erroneously allows userspace to pend vCPU events for a vCPU that hasn't been initialized yet, leading to KVM interpr

  • CVE-2025-40100Oct 30, 2025
    affected < 6.4.0-150600.23.78.1fixed 6.4.0-150600.23.78.1

    In the Linux kernel, the following vulnerability has been resolved: btrfs: do not assert we found block group item when creating free space tree Currently, when building a free space tree at populate_free_space_tree(), if we are not using the block group tree feature, we always

  • CVE-2025-40099Oct 30, 2025
    affected < 6.4.0-150600.23.92.1fixed 6.4.0-150600.23.92.1

    In the Linux kernel, the following vulnerability has been resolved: cifs: parse_dfs_referrals: prevent oob on malformed input Malicious SMB server can send invalid reply to FSCTL_DFS_GET_REFERRALS - reply smaller than sizeof(struct get_dfs_referral_rsp) - reply with number of

  • CVE-2025-40098Oct 30, 2025
    affected < 6.4.0-150600.23.81.3fixed 6.4.0-150600.23.81.3

    In the Linux kernel, the following vulnerability has been resolved: ALSA: hda: cs35l41: Fix NULL pointer dereference in cs35l41_get_acpi_mute_state() Return value of a function acpi_evaluate_dsm() is dereferenced without checking for NULL, but it is usually checked for this fu

  • CVE-2025-40097Oct 30, 2025
    affected < 6.4.0-150600.23.87.1fixed 6.4.0-150600.23.87.1

    In the Linux kernel, the following vulnerability has been resolved: ALSA: hda: Fix missing pointer check in hda_component_manager_init function The __component_match_add function may assign the 'matchptr' pointer the value ERR_PTR(-ENOMEM), which will subsequently be dereferenc

  • CVE-2025-40096Oct 30, 2025
    affected < 6.4.0-150600.23.78.1fixed 6.4.0-150600.23.78.1

    In the Linux kernel, the following vulnerability has been resolved: drm/sched: Fix potential double free in drm_sched_job_add_resv_dependencies When adding dependencies with drm_sched_job_add_dependency(), that function consumes the fence reference both on success and failure,

  • CVE-2025-40088Oct 30, 2025
    affected < 6.4.0-150600.23.78.1fixed 6.4.0-150600.23.78.1

    In the Linux kernel, the following vulnerability has been resolved: hfsplus: fix slab-out-of-bounds read in hfsplus_strcasecmp() The hfsplus_strcasecmp() logic can trigger the issue: [ 117.317703][ T9855] ================================================================== [ 1

  • CVE-2025-40087Oct 30, 2025
    affected < 6.4.0-150600.23.78.1fixed 6.4.0-150600.23.78.1

    In the Linux kernel, the following vulnerability has been resolved: NFSD: Define a proc_layoutcommit for the FlexFiles layout type Avoid a crash if a pNFS client should happen to send a LAYOUTCOMMIT operation on a FlexFiles layout.

  • CVE-2025-40085Oct 29, 2025
    affected < 6.4.0-150600.23.78.1fixed 6.4.0-150600.23.78.1

    In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Fix NULL pointer deference in try_to_register_card In try_to_register_card(), the return value of usb_ifnum_to_if() is passed directly to usb_interface_claimed() without a NULL check, which wil

  • CVE-2025-40083Oct 29, 2025
    affected < 6.4.0-150600.23.81.3fixed 6.4.0-150600.23.81.3

    In the Linux kernel, the following vulnerability has been resolved: net/sched: sch_qfq: Fix null-deref in agg_dequeue To prevent a potential crash in agg_dequeue (net/sched/sch_qfq.c) when cl->qdisc->ops->peek(cl->qdisc) returns NULL, we check the return value before using it,

  • CVE-2025-40081Oct 28, 2025
    affected < 6.4.0-150600.23.84.1fixed 6.4.0-150600.23.84.1

    In the Linux kernel, the following vulnerability has been resolved: perf: arm_spe: Prevent overflow in PERF_IDX2OFF() Cast nr_pages to unsigned long to avoid overflow when handling large AUX buffer sizes (>= 2 GiB).

  • CVE-2025-40080Oct 28, 2025
    affected < 6.4.0-150600.23.78.1fixed 6.4.0-150600.23.78.1

    In the Linux kernel, the following vulnerability has been resolved: nbd: restrict sockets to TCP and UDP Recently, syzbot started to abuse NBD with all kinds of sockets. Commit cf1b2326b734 ("nbd: verify socket is supported during setup") made sure the socket supported a shutd

  • CVE-2025-40078Oct 28, 2025
    affected < 6.4.0-150600.23.78.1fixed 6.4.0-150600.23.78.1

    In the Linux kernel, the following vulnerability has been resolved: bpf: Explicitly check accesses to bpf_sock_addr Syzkaller found a kernel warning on the following sock_addr program: 0: r0 = 0 1: r2 = *(u32 *)(r1 +60) 2: exit which triggers: verifier bug: e

  • CVE-2025-40075Oct 28, 2025
    affected < 6.4.0-150600.23.81.3fixed 6.4.0-150600.23.81.3

    In the Linux kernel, the following vulnerability has been resolved: tcp_metrics: use dst_dev_net_rcu() Replace three dst_dev() with a lockdep enabled helper.

Page 22 of 209