suse/kernel-default&distro=SUSE Linux Enterprise Micro 5.5

Vulnerabilities (4,617)

• CVE-2022-50459Oct 1, 2025
  affected < 5.14.21-150500.55.124.1fixed 5.14.21-150500.55.124.1

  In the Linux kernel, the following vulnerability has been resolved: scsi: iscsi: iscsi_tcp: Fix null-ptr-deref while calling getpeername() Fix a NULL pointer crash that occurs when we are freeing the socket at the same time we access it via sysfs. The problem is that: 1. isc

• CVE-2022-50458Oct 1, 2025
  affected < 5.14.21-150500.55.124.1fixed 5.14.21-150500.55.124.1

  In the Linux kernel, the following vulnerability has been resolved: clk: tegra: Fix refcount leak in tegra210_clock_init of_find_matching_node() returns a node pointer with refcount incremented, we should use of_node_put() on it when not need anymore. Add missing of_node_put()

• CVE-2022-50456Oct 1, 2025
  affected < 5.14.21-150500.55.124.1fixed 5.14.21-150500.55.124.1

  In the Linux kernel, the following vulnerability has been resolved: btrfs: fix resolving backrefs for inline extent followed by prealloc If a file consists of an inline extent followed by a regular or prealloc extent, then a legitimate attempt to resolve a logical address in th

• CVE-2022-50454Oct 1, 2025
  affected < 5.14.21-150500.55.124.1fixed 5.14.21-150500.55.124.1

  In the Linux kernel, the following vulnerability has been resolved: drm/nouveau: fix a use-after-free in nouveau_gem_prime_import_sg_table() nouveau_bo_init() is backed by ttm_bo_init() and ferries its return code back to the caller. On failures, ttm will call nouveau_bo_del_tt

• CVE-2022-50453Oct 1, 2025
  affected < 5.14.21-150500.55.124.1fixed 5.14.21-150500.55.124.1

  In the Linux kernel, the following vulnerability has been resolved: gpiolib: cdev: fix NULL-pointer dereferences There are several places where we can crash the kernel by requesting lines, unbinding the GPIO device, then calling any of the system calls relevant to the GPIO char

• CVE-2022-50452Oct 1, 2025
  affected < 5.14.21-150500.55.124.1fixed 5.14.21-150500.55.124.1

  In the Linux kernel, the following vulnerability has been resolved: net: sched: cake: fix null pointer access issue when cake_init() fails When the default qdisc is cake, if the qdisc of dev_queue fails to be inited during mqprio_init(), cake_reset() is invoked to clear resourc

• CVE-2022-50449Oct 1, 2025
  affected < 5.14.21-150500.55.124.1fixed 5.14.21-150500.55.124.1

  In the Linux kernel, the following vulnerability has been resolved: clk: samsung: Fix memory leak in _samsung_clk_register_pll() If clk_register() fails, @pll->rate_table may have allocated memory by kmemdup(), so it needs to be freed, otherwise will cause memory leak issue, th

• CVE-2022-50447Oct 1, 2025
  affected < 5.14.21-150500.55.124.1fixed 5.14.21-150500.55.124.1

  In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_conn: Fix crash on hci_create_cis_sync When attempting to connect multiple ISO sockets without using DEFER_SETUP may result in the following crash: BUG: KASAN: null-ptr-deref in hci_create_cis_s

• CVE-2023-53487Oct 1, 2025
  affected < 5.14.21-150500.55.124.1fixed 5.14.21-150500.55.124.1

  In the Linux kernel, the following vulnerability has been resolved: powerpc/rtas_flash: allow user copy to flash block cache objects With hardened usercopy enabled (CONFIG_HARDENED_USERCOPY=y), using the /proc/powerpc/rtas/firmware_update interface to prepare a system firmware

• CVE-2023-53485Oct 1, 2025
  affected < 5.14.21-150500.55.124.1fixed 5.14.21-150500.55.124.1

  In the Linux kernel, the following vulnerability has been resolved: fs: jfs: Fix UBSAN: array-index-out-of-bounds in dbAllocDmapLev Syzkaller reported the following issue: UBSAN: array-index-out-of-bounds in fs/jfs/jfs_dmap.c:1965:6 index -84 is out of range for type 's8[341]'

• CVE-2023-53482Oct 1, 2025
  affected < 5.14.21-150500.55.124.1fixed 5.14.21-150500.55.124.1

  In the Linux kernel, the following vulnerability has been resolved: iommu: Fix error unwind in iommu_group_alloc() If either iommu_group_grate_file() fails then the iommu_group is leaked. Destroy it on these error paths. Found by kselftest/iommu/iommufd_fail_nth

• CVE-2023-53480Oct 1, 2025
  affected < 5.14.21-150500.55.124.1fixed 5.14.21-150500.55.124.1

  In the Linux kernel, the following vulnerability has been resolved: kobject: Add sanity check for kset->kobj.ktype in kset_register() When I register a kset in the following way: static struct kset my_kset; kobject_set_name(&my_kset.kobj, "my_kset"); ret = kset_regist

• CVE-2023-53476Oct 1, 2025
  affected < 5.14.21-150500.55.124.1fixed 5.14.21-150500.55.124.1

  In the Linux kernel, the following vulnerability has been resolved: iw_cxgb4: Fix potential NULL dereference in c4iw_fill_res_cm_id_entry() This condition needs to match the previous "if (epcp->state == LISTEN) {" exactly to avoid a NULL dereference of either "listen_ep" or "ep

• CVE-2023-53475Oct 1, 2025
  affected < 5.14.21-150500.55.124.1fixed 5.14.21-150500.55.124.1

  In the Linux kernel, the following vulnerability has been resolved: usb: xhci: tegra: fix sleep in atomic call When we set the dual-role port to Host mode, we observed the following splat: [ 167.057718] BUG: sleeping function called from invalid context at include/linux/sched/

• CVE-2023-53474Oct 1, 2025
  affected < 5.14.21-150500.55.124.1fixed 5.14.21-150500.55.124.1

  In the Linux kernel, the following vulnerability has been resolved: x86/MCE/AMD: Use an u64 for bank_map Thee maximum number of MCA banks is 64 (MAX_NR_BANKS), see a0bc32b3cacf ("x86/mce: Increase maximum number of banks to 64"). However, the bank_map which contains a bitfi

• CVE-2023-53473Oct 1, 2025
  affected < 5.14.21-150500.55.124.1fixed 5.14.21-150500.55.124.1

  In the Linux kernel, the following vulnerability has been resolved: ext4: improve error handling from ext4_dirhash() The ext4_dirhash() will *almost* never fail, especially when the hash tree feature was first introduced. However, with the addition of support of encrypted, cas

• CVE-2023-53472Oct 1, 2025
  affected < 5.14.21-150500.55.124.1fixed 5.14.21-150500.55.124.1

  In the Linux kernel, the following vulnerability has been resolved: pwm: lpc32xx: Remove handling of PWM channels Because LPC32xx PWM controllers have only a single output which is registered as the only PWM device/channel per controller, it is known in advance that pwm->hwpwm

• CVE-2023-53471Oct 1, 2025
  affected < 5.14.21-150500.55.124.1fixed 5.14.21-150500.55.124.1

  In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/gfx: disable gfx9 cp_ecc_error_irq only when enabling legacy gfx ras gfx9 cp_ecc_error_irq is only enabled when legacy gfx ras is assert. So in gfx_v9_0_hw_fini, interrupt disablement for cp_ecc_erro

• CVE-2023-53468Oct 1, 2025
  affected < 5.14.21-150500.55.124.1fixed 5.14.21-150500.55.124.1

  In the Linux kernel, the following vulnerability has been resolved: ubifs: Fix memory leak in alloc_wbufs() kmemleak reported a sequence of memory leaks, and show them as following: unreferenced object 0xffff8881575f8400 (size 1024): comm "mount", pid 19625, jiffies 4297

• CVE-2023-53466Oct 1, 2025
  affected < 5.14.21-150500.55.124.1fixed 5.14.21-150500.55.124.1

  In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7915: fix memory leak in mt7915_mcu_exit Always purge mcu skb queues in mt7915_mcu_exit routine even if mt7915_firmware_state fails.