VYPR

rpm package

suse/kernel-default&distro=SUSE Linux Enterprise Module for Basesystem 15 SP6

pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP6

Vulnerabilities (3,752)

  • CVE-2025-38480Jul 28, 2025
    affected < 6.4.0-150600.23.65.1fixed 6.4.0-150600.23.65.1

    In the Linux kernel, the following vulnerability has been resolved: comedi: Fix use of uninitialized data in insn_rw_emulate_bits() For Comedi `INSN_READ` and `INSN_WRITE` instructions on "digital" subdevices (subdevice types `COMEDI_SUBD_DI`, `COMEDI_SUBD_DO`, and `COMEDI_SUBD

  • CVE-2025-38478Jul 28, 2025
    affected < 6.4.0-150600.23.65.1fixed 6.4.0-150600.23.65.1

    In the Linux kernel, the following vulnerability has been resolved: comedi: Fix initialization of data for instructions that write to subdevice Some Comedi subdevice instruction handlers are known to access instruction data elements beyond the first `insn->n` elements in some c

  • CVE-2025-38476Jul 28, 2025
    affected < 6.4.0-150600.23.65.1fixed 6.4.0-150600.23.65.1

    In the Linux kernel, the following vulnerability has been resolved: rpl: Fix use-after-free in rpl_do_srh_inline(). Running lwt_dst_cache_ref_loop.sh in selftest with KASAN triggers the splat below [0]. rpl_do_srh_inline() fetches ipv6_hdr(skb) and accesses it after skb_cow_he

  • CVE-2025-38474Jul 28, 2025
    affected < 6.4.0-150600.23.65.1fixed 6.4.0-150600.23.65.1

    In the Linux kernel, the following vulnerability has been resolved: usb: net: sierra: check for no status endpoint The driver checks for having three endpoints and having bulk in and out endpoints, but not that the third endpoint is interrupt input. Rectify the omission.

  • CVE-2025-38473Jul 28, 2025
    affected < 6.4.0-150600.23.65.1fixed 6.4.0-150600.23.65.1

    In the Linux kernel, the following vulnerability has been resolved: Bluetooth: Fix null-ptr-deref in l2cap_sock_resume_cb() syzbot reported null-ptr-deref in l2cap_sock_resume_cb(). [0] l2cap_sock_resume_cb() has a similar problem that was fixed by commit 1bff51ea59a9 ("Blueto

  • CVE-2025-38472Jul 28, 2025
    affected < 6.4.0-150600.23.70.1fixed 6.4.0-150600.23.70.1

    In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_conntrack: fix crash due to removal of uninitialised entry A crash in conntrack was reported while trying to unlink the conntrack entry from the hash bucket list: [exception RIP: __nf_ct_delet

  • CVE-2025-38466MedJul 25, 2025
    affected < 6.4.0-150600.23.73.1fixed 6.4.0-150600.23.73.1

    In the Linux kernel, the following vulnerability has been resolved: perf: Revert to requiring CAP_SYS_ADMIN for uprobes Jann reports that uprobes can be used destructively when used in the middle of an instruction. The kernel only verifies there is a valid instruction at the re

  • CVE-2025-38465MedJul 25, 2025
    affected < 6.4.0-150600.23.65.1fixed 6.4.0-150600.23.65.1

    In the Linux kernel, the following vulnerability has been resolved: netlink: Fix wraparounds of sk->sk_rmem_alloc. Netlink has this pattern in some places if (atomic_read(&sk->sk_rmem_alloc) > sk->sk_rcvbuf) atomic_add(skb->truesize, &sk->sk_rmem_alloc); , which has the

  • CVE-2025-38457MedJul 25, 2025
    affected < 6.4.0-150600.23.65.1fixed 6.4.0-150600.23.65.1

    In the Linux kernel, the following vulnerability has been resolved: net/sched: Abort __tc_modify_qdisc if parent class does not exist Lion's patch [1] revealed an ancient bug in the qdisc API. Whenever a user creates/modifies a qdisc specifying as a parent another qdisc, the qd

  • CVE-2025-38467Jul 25, 2025
    affected < 6.4.0-150600.23.65.1fixed 6.4.0-150600.23.65.1

    In the Linux kernel, the following vulnerability has been resolved: drm/exynos: exynos7_drm_decon: add vblank check in IRQ handling If there's support for another console device (such as a TTY serial), the kernel occasionally panics during boot. The panic message and a relevant

  • CVE-2025-38464Jul 25, 2025
    affected < 6.4.0-150600.23.70.1fixed 6.4.0-150600.23.70.1

    In the Linux kernel, the following vulnerability has been resolved: tipc: Fix use-after-free in tipc_conn_close(). syzbot reported a null-ptr-deref in tipc_conn_close() during netns dismantle. [0] tipc_topsrv_stop() iterates tipc_net(net)->topsrv->conn_idr and calls tipc_conn_

  • CVE-2025-38463Jul 25, 2025
    affected < 6.4.0-150600.23.65.1fixed 6.4.0-150600.23.65.1

    In the Linux kernel, the following vulnerability has been resolved: tcp: Correct signedness in skb remaining space calculation Syzkaller reported a bug [1] where sk->sk_forward_alloc can overflow. When we send data, if an skb exists at the tail of the write queue, the kernel w

  • CVE-2025-38462Jul 25, 2025
    affected < 6.4.0-150600.23.65.1fixed 6.4.0-150600.23.65.1

    In the Linux kernel, the following vulnerability has been resolved: vsock: Fix transport_{g2h,h2g} TOCTOU vsock_find_cid() and vsock_dev_do_ioctl() may race with module unload. transport_{g2h,h2g} may become NULL after the NULL check. Introduce vsock_transport_local_cid() to p

  • CVE-2025-38461Jul 25, 2025
    affected < 6.4.0-150600.23.65.1fixed 6.4.0-150600.23.65.1

    In the Linux kernel, the following vulnerability has been resolved: vsock: Fix transport_* TOCTOU Transport assignment may race with module unload. Protect new_transport from becoming a stale pointer. This also takes care of an insecure call in vsock_use_local_transport(); add

  • CVE-2025-38460Jul 25, 2025
    affected < 6.4.0-150600.23.65.1fixed 6.4.0-150600.23.65.1

    In the Linux kernel, the following vulnerability has been resolved: atm: clip: Fix potential null-ptr-deref in to_atmarpd(). atmarpd is protected by RTNL since commit f3a0592b37b8 ("[ATM]: clip causes unregister hang"). However, it is not enough because to_atmarpd() is called

  • CVE-2025-38459Jul 25, 2025
    affected < 6.4.0-150600.23.70.1fixed 6.4.0-150600.23.70.1

    In the Linux kernel, the following vulnerability has been resolved: atm: clip: Fix infinite recursive call of clip_push(). syzbot reported the splat below. [0] This happens if we call ioctl(ATMARP_MKIP) more than once. During the first call, clip_mkip() sets clip_push() to vc

  • CVE-2025-38458Jul 25, 2025
    affected < 6.4.0-150600.23.70.1fixed 6.4.0-150600.23.70.1

    In the Linux kernel, the following vulnerability has been resolved: atm: clip: Fix NULL pointer dereference in vcc_sendmsg() atmarpd_dev_ops does not implement the send method, which may cause crash as bellow. BUG: kernel NULL pointer dereference, address: 0000000000000000 PGD

  • CVE-2025-38456Jul 25, 2025
    affected < 6.4.0-150600.23.73.1fixed 6.4.0-150600.23.73.1

    In the Linux kernel, the following vulnerability has been resolved: ipmi:msghandler: Fix potential memory corruption in ipmi_create_user() The "intf" list iterator is an invalid pointer if the correct "intf->intf_num" is not found. Calling atomic_dec(&intf->nr_users) on and in

  • CVE-2025-38455Jul 25, 2025
    affected < 6.4.0-150600.23.65.1fixed 6.4.0-150600.23.65.1

    In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Reject SEV{-ES} intra host migration if vCPU creation is in-flight Reject migration of SEV{-ES} state if either the source or destination VM is actively creating a vCPU, i.e. if kvm_vm_ioctl_create_vc

  • CVE-2025-38449Jul 25, 2025
    affected < 6.4.0-150600.23.65.1fixed 6.4.0-150600.23.65.1

    In the Linux kernel, the following vulnerability has been resolved: drm/gem: Acquire references on GEM handles for framebuffers A GEM handle can be released while the GEM buffer object is attached to a DRM framebuffer. This leads to the release of the dma-buf backing the buffer

Page 34 of 188