suse/kernel-default&distro=SUSE Linux Enterprise Micro 5.1

Vulnerabilities (1,638)

• CVE-2025-38664Aug 22, 2025
  affected < 5.3.18-150300.59.221.1fixed 5.3.18-150300.59.221.1

  In the Linux kernel, the following vulnerability has been resolved: ice: Fix a null pointer dereference in ice_copy_and_init_pkg() Add check for the return value of devm_kmemdup() to prevent potential null pointer dereference.

• CVE-2025-38644Aug 22, 2025
  affected < 5.3.18-150300.59.218.1fixed 5.3.18-150300.59.218.1

  In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: reject TDLS operations when station is not associated syzbot triggered a WARN in ieee80211_tdls_oper() by sending NL80211_TDLS_ENABLE_LINK immediately after NL80211_CMD_CONNECT, before associati

• CVE-2025-38618Aug 22, 2025
  affected < 5.3.18-150300.59.218.1fixed 5.3.18-150300.59.218.1

  In the Linux kernel, the following vulnerability has been resolved: vsock: Do not allow binding to VMADDR_PORT_ANY It is possible for a vsock to autobind to VMADDR_PORT_ANY. This can cause a use-after-free when a connection is made to the bound socket. The socket returned by ac

• CVE-2025-38617Aug 22, 2025
  affected < 5.3.18-150300.59.218.1fixed 5.3.18-150300.59.218.1

  In the Linux kernel, the following vulnerability has been resolved: net/packet: fix a race in packet_set_ring() and packet_notifier() When packet_set_ring() releases po->bind_lock, another thread can run packet_notifier() and process an NETDEV_UP event. This race and the fix a

• CVE-2024-58239Aug 22, 2025
  affected < 5.3.18-150300.59.218.1fixed 5.3.18-150300.59.218.1

  In the Linux kernel, the following vulnerability has been resolved: tls: stop recv() if initial process_rx_list gave us non-DATA If we have a non-DATA record on the rx_list and another record of the same type still on the queue, we will end up merging them: - process_rx_list c

• CVE-2025-38608Aug 19, 2025
  affected < 5.3.18-150300.59.218.1fixed 5.3.18-150300.59.218.1

  In the Linux kernel, the following vulnerability has been resolved: bpf, ktls: Fix data corruption when using bpf_msg_pop_data() in ktls When sending plaintext data, we initially calculated the corresponding ciphertext length. However, if we later reduced the plaintext data len

• CVE-2025-38572Aug 19, 2025
  affected < 5.3.18-150300.59.221.1fixed 5.3.18-150300.59.221.1

  In the Linux kernel, the following vulnerability has been resolved: ipv6: reject malicious packets in ipv6_gso_segment() syzbot was able to craft a packet with very long IPv6 extension headers leading to an overflow of skb->transport_header. This 16bit field has a limited rang

• CVE-2025-38563Aug 19, 2025
  affected < 5.3.18-150300.59.218.1fixed 5.3.18-150300.59.218.1

  In the Linux kernel, the following vulnerability has been resolved: perf/core: Prevent VMA split of buffer mappings The perf mmap code is careful about mmap()'ing the user page with the ringbuffer and additionally the auxiliary buffer, when the event supports it. Once the first

• CVE-2025-38553Aug 19, 2025
  affected < 5.3.18-150300.59.221.1fixed 5.3.18-150300.59.221.1

  In the Linux kernel, the following vulnerability has been resolved: net/sched: Restrict conditions for adding duplicating netems to qdisc tree netem_enqueue's duplication prevention logic breaks when a netem resides in a qdisc tree with other netems - this can lead to a soft lo

• CVE-2025-38546Aug 16, 2025
  affected < 5.3.18-150300.59.218.1fixed 5.3.18-150300.59.218.1

  In the Linux kernel, the following vulnerability has been resolved: atm: clip: Fix memory leak of struct clip_vcc. ioctl(ATMARP_MKIP) allocates struct clip_vcc and set it to vcc->user_back. The code assumes that vcc_destroy_socket() passes NULL skb to vcc->push() when the sock

• CVE-2025-38499MedAug 11, 2025
  affected < 5.3.18-150300.59.218.1fixed 5.3.18-150300.59.218.1

  In the Linux kernel, the following vulnerability has been resolved: clone_private_mnt(): make sure that caller has CAP_SYS_ADMIN in the right userns What we want is to verify there is that clone won't expose something hidden by a mount we wouldn't be able to undo. "Wouldn't be

• CVE-2022-50233Aug 9, 2025
  affected < 5.3.18-150300.59.221.1fixed 5.3.18-150300.59.221.1

  In the Linux kernel, the following vulnerability has been resolved: Bluetooth: eir: Fix using strlen with hdev->{dev_name,short_name} Both dev_name and short_name are not guaranteed to be NULL terminated so this instead use strnlen and then attempt to determine if the resulting

• CVE-2025-38498MedJul 30, 2025
  affected < 5.3.18-150300.59.218.1fixed 5.3.18-150300.59.218.1

  In the Linux kernel, the following vulnerability has been resolved: do_change_type(): refuse to operate on unmounted/not ours mounts Ensure that propagation settings can only be changed for mounts located in the caller's mount namespace. This change aligns permission checking w

• CVE-2025-38477MedJul 28, 2025
  affected < 5.3.18-150300.59.218.1fixed 5.3.18-150300.59.218.1

  In the Linux kernel, the following vulnerability has been resolved: net/sched: sch_qfq: Fix race condition on qfq_aggregate A race condition can occur when 'agg' is modified in qfq_change_agg (called during qfq_enqueue) while other threads access it concurrently. For example, q

• CVE-2025-38468MedJul 28, 2025
  affected < 5.3.18-150300.59.218.1fixed 5.3.18-150300.59.218.1

  In the Linux kernel, the following vulnerability has been resolved: net/sched: Return NULL when htb_lookup_leaf encounters an empty rbtree htb_lookup_leaf has a BUG_ON that can trigger with the following: tc qdisc del dev lo root tc qdisc add dev lo root handle 1: htb default

• CVE-2025-38497Jul 28, 2025
  affected < 5.3.18-150300.59.215.1fixed 5.3.18-150300.59.215.1

  In the Linux kernel, the following vulnerability has been resolved: usb: gadget: configfs: Fix OOB read on empty string write When writing an empty string to either 'qw_sign' or 'landingPage' sysfs attributes, the store functions attempt to access page[l - 1] before validating

• CVE-2025-38495Jul 28, 2025
  affected < 5.3.18-150300.59.215.1fixed 5.3.18-150300.59.215.1

  In the Linux kernel, the following vulnerability has been resolved: HID: core: ensure the allocated report buffer can contain the reserved report ID When the report ID is not used, the low level transport drivers expect the first byte to be 0. However, currently the allocated b

• CVE-2025-38494Jul 28, 2025
  affected < 5.3.18-150300.59.215.1fixed 5.3.18-150300.59.215.1

  In the Linux kernel, the following vulnerability has been resolved: HID: core: do not bypass hid_hw_raw_request hid_hw_raw_request() is actually useful to ensure the provided buffer and length are valid. Directly calling in the low level transport driver function bypassed those

• CVE-2025-38488Jul 28, 2025
  affected < 5.3.18-150300.59.221.1fixed 5.3.18-150300.59.221.1

  In the Linux kernel, the following vulnerability has been resolved: smb: client: fix use-after-free in crypt_message when using async crypto The CVE-2024-50047 fix removed asynchronous crypto handling from crypt_message(), assuming all crypto operations are synchronous. However

• CVE-2025-38460Jul 25, 2025
  affected < 5.3.18-150300.59.218.1fixed 5.3.18-150300.59.218.1

  In the Linux kernel, the following vulnerability has been resolved: atm: clip: Fix potential null-ptr-deref in to_atmarpd(). atmarpd is protected by RTNL since commit f3a0592b37b8 ("[ATM]: clip causes unregister hang"). However, it is not enough because to_atmarpd() is called