rpm package
suse/kernel-default-base&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-LTSS
pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSS
Vulnerabilities (2,843)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2023-53000 | — | < 5.14.21-150400.24.161.1.150400.24.80.1 | 5.14.21-150400.24.161.1.150400.24.80.1 | Mar 27, 2025 | In the Linux kernel, the following vulnerability has been resolved: netlink: prevent potential spectre v1 gadgets Most netlink attributes are parsed and validated from __nla_validate_parse() or validate_nla() u16 type = nla_type(nla); if (type == 0 || type > maxtype) | ||
| CVE-2023-52993 | — | < 5.14.21-150400.24.161.1.150400.24.80.1 | 5.14.21-150400.24.161.1.150400.24.80.1 | Mar 27, 2025 | In the Linux kernel, the following vulnerability has been resolved: x86/i8259: Mark legacy PIC interrupts with IRQ_LEVEL Baoquan reported that after triggering a crash the subsequent crash-kernel fails to boot about half of the time. It triggers a NULL pointer dereference in th | ||
| CVE-2023-52992 | — | < 5.14.21-150400.24.161.1.150400.24.80.1 | 5.14.21-150400.24.161.1.150400.24.80.1 | Mar 27, 2025 | In the Linux kernel, the following vulnerability has been resolved: bpf: Skip task with pid=1 in send_signal_common() The following kernel panic can be triggered when a task with pid=1 attaches a prog that attempts to send killing signal to itself, also see [1] for more details | ||
| CVE-2023-52989 | — | < 5.14.21-150400.24.161.1.150400.24.80.1 | 5.14.21-150400.24.161.1.150400.24.80.1 | Mar 27, 2025 | In the Linux kernel, the following vulnerability has been resolved: firewire: fix memory leak for payload of request subaction to IEC 61883-1 FCP region This patch is fix for Linux kernel v2.6.33 or later. For request subaction to IEC 61883-1 FCP region, Linux FireWire subsyst | ||
| CVE-2023-52988 | — | < 5.14.21-150400.24.161.1.150400.24.80.1 | 5.14.21-150400.24.161.1.150400.24.80.1 | Mar 27, 2025 | In the Linux kernel, the following vulnerability has been resolved: ALSA: hda/via: Avoid potential array out-of-bound in add_secret_dac_path() snd_hda_get_connections() can return a negative error code. It may lead to accessing 'conn' array at a negative index. Found by Linux | ||
| CVE-2023-52984 | — | < 5.14.21-150400.24.161.1.150400.24.80.1 | 5.14.21-150400.24.161.1.150400.24.80.1 | Mar 27, 2025 | In the Linux kernel, the following vulnerability has been resolved: net: phy: dp83822: Fix null pointer access on DP83825/DP83826 devices The probe() function is only used for the DP83822 PHY, leaving the private data pointer uninitialized for the smaller DP83825/26 models. Whi | ||
| CVE-2023-52983 | — | < 5.14.21-150400.24.161.1.150400.24.80.1 | 5.14.21-150400.24.161.1.150400.24.80.1 | Mar 27, 2025 | In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix uaf for bfqq in bic_set_bfqq() After commit 64dc8c732f5c ("block, bfq: fix possible uaf for 'bfqq->bic'"), bic->bfqq will be accessed in bic_set_bfqq(), however, in some context bic->bfqq will b | ||
| CVE-2023-52976 | — | < 5.14.21-150400.24.161.1.150400.24.80.1 | 5.14.21-150400.24.161.1.150400.24.80.1 | Mar 27, 2025 | In the Linux kernel, the following vulnerability has been resolved: efi: fix potential NULL deref in efi_mem_reserve_persistent When iterating on a linked list, a result of memremap is dereferenced without checking it for NULL. This patch adds a check that falls back on alloca | ||
| CVE-2023-52974 | — | < 5.14.21-150400.24.161.1.150400.24.80.1 | 5.14.21-150400.24.161.1.150400.24.80.1 | Mar 27, 2025 | In the Linux kernel, the following vulnerability has been resolved: scsi: iscsi_tcp: Fix UAF during login when accessing the shost ipaddress If during iscsi_sw_tcp_session_create() iscsi_tcp_r2tpool_alloc() fails, userspace could be accessing the host's ipaddress attr. If we th | ||
| CVE-2023-52973 | — | < 5.14.21-150400.24.161.1.150400.24.80.1 | 5.14.21-150400.24.161.1.150400.24.80.1 | Mar 27, 2025 | In the Linux kernel, the following vulnerability has been resolved: vc_screen: move load of struct vc_data pointer in vcs_read() to avoid UAF After a call to console_unlock() in vcs_read() the vc_data struct can be freed by vc_deallocate(). Because of that, the struct vc_data p | ||
| CVE-2022-49759 | — | < 5.14.21-150400.24.161.1.150400.24.80.1 | 5.14.21-150400.24.161.1.150400.24.80.1 | Mar 27, 2025 | In the Linux kernel, the following vulnerability has been resolved: VMCI: Use threaded irqs instead of tasklets The vmci_dispatch_dgs() tasklet function calls vmci_read_data() which uses wait_event() resulting in invalid sleep in an atomic context (and therefore potentially in | ||
| CVE-2022-49755 | — | < 5.14.21-150400.24.161.1.150400.24.80.1 | 5.14.21-150400.24.161.1.150400.24.80.1 | Mar 27, 2025 | In the Linux kernel, the following vulnerability has been resolved: usb: gadget: f_fs: Prevent race during ffs_ep0_queue_wait While performing fast composition switch, there is a possibility that the process of ffs_ep0_write/ffs_ep0_read get into a race condition due to ep0req | ||
| CVE-2022-49753 | — | < 5.14.21-150400.24.161.1.150400.24.80.1 | 5.14.21-150400.24.161.1.150400.24.80.1 | Mar 27, 2025 | In the Linux kernel, the following vulnerability has been resolved: dmaengine: Fix double increment of client_count in dma_chan_get() The first time dma_chan_get() is called for a channel the channel client_count is incorrectly incremented twice for public channels, first in ba | ||
| CVE-2022-49751 | — | < 5.14.21-150400.24.161.1.150400.24.80.1 | 5.14.21-150400.24.161.1.150400.24.80.1 | Mar 27, 2025 | In the Linux kernel, the following vulnerability has been resolved: w1: fix WARNING after calling w1_process() I got the following WARNING message while removing driver(ds2482): ------------[ cut here ]------------ do not call blocking ops when !TASK_RUNNING; state=1 set at [< | ||
| CVE-2022-49748 | — | < 5.14.21-150400.24.161.1.150400.24.80.1 | 5.14.21-150400.24.161.1.150400.24.80.1 | Mar 27, 2025 | In the Linux kernel, the following vulnerability has been resolved: perf/x86/amd: fix potential integer overflow on shift of a int The left shift of int 32 bit integer constant 1 is evaluated using 32 bit arithmetic and then passed as a 64 bit function argument. In the case whe | ||
| CVE-2022-49746 | — | < 5.14.21-150400.24.161.1.150400.24.80.1 | 5.14.21-150400.24.161.1.150400.24.80.1 | Mar 27, 2025 | In the Linux kernel, the following vulnerability has been resolved: dmaengine: imx-sdma: Fix a possible memory leak in sdma_transfer_init If the function sdma_load_context() fails, the sdma_desc will be freed, but the allocated desc->bd is forgot to be freed. We already met th | ||
| CVE-2022-49741 | — | < 5.14.21-150400.24.164.1.150400.24.82.1 | 5.14.21-150400.24.164.1.150400.24.82.1 | Mar 27, 2025 | In the Linux kernel, the following vulnerability has been resolved: fbdev: smscufx: fix error handling code in ufx_usb_probe The current error handling code in ufx_usb_probe have many unmatching issues, e.g., missing ufx_free_usb_list, destroy_modedb label should only include f | ||
| CVE-2022-49739 | — | < 5.14.21-150400.24.161.1.150400.24.80.1 | 5.14.21-150400.24.161.1.150400.24.80.1 | Mar 27, 2025 | In the Linux kernel, the following vulnerability has been resolved: gfs2: Always check inode size of inline inodes Check if the inode size of stuffed (inline) inodes is within the allowed range when reading inodes from disk (gfs2_dinode_in()). This prevents us from on-disk cor | ||
| CVE-2023-52941 | — | < 5.14.21-150400.24.161.1.150400.24.80.1 | 5.14.21-150400.24.161.1.150400.24.80.1 | Mar 27, 2025 | In the Linux kernel, the following vulnerability has been resolved: can: isotp: split tx timer into transmission and timeout The timer for the transmission of isotp PDUs formerly had two functions: 1. send two consecutive frames with a given time gap 2. monitor the timeouts for | ||
| CVE-2023-52939 | — | < 5.14.21-150400.24.161.1.150400.24.80.1 | 5.14.21-150400.24.161.1.150400.24.80.1 | Mar 27, 2025 | In the Linux kernel, the following vulnerability has been resolved: mm: memcg: fix NULL pointer in mem_cgroup_track_foreign_dirty_slowpath() As commit 18365225f044 ("hwpoison, memcg: forcibly uncharge LRU pages"), hwpoison will forcibly uncharg a LRU hwpoisoned page, the folio_ |
- CVE-2023-53000Mar 27, 2025affected < 5.14.21-150400.24.161.1.150400.24.80.1fixed 5.14.21-150400.24.161.1.150400.24.80.1
In the Linux kernel, the following vulnerability has been resolved: netlink: prevent potential spectre v1 gadgets Most netlink attributes are parsed and validated from __nla_validate_parse() or validate_nla() u16 type = nla_type(nla); if (type == 0 || type > maxtype)
- CVE-2023-52993Mar 27, 2025affected < 5.14.21-150400.24.161.1.150400.24.80.1fixed 5.14.21-150400.24.161.1.150400.24.80.1
In the Linux kernel, the following vulnerability has been resolved: x86/i8259: Mark legacy PIC interrupts with IRQ_LEVEL Baoquan reported that after triggering a crash the subsequent crash-kernel fails to boot about half of the time. It triggers a NULL pointer dereference in th
- CVE-2023-52992Mar 27, 2025affected < 5.14.21-150400.24.161.1.150400.24.80.1fixed 5.14.21-150400.24.161.1.150400.24.80.1
In the Linux kernel, the following vulnerability has been resolved: bpf: Skip task with pid=1 in send_signal_common() The following kernel panic can be triggered when a task with pid=1 attaches a prog that attempts to send killing signal to itself, also see [1] for more details
- CVE-2023-52989Mar 27, 2025affected < 5.14.21-150400.24.161.1.150400.24.80.1fixed 5.14.21-150400.24.161.1.150400.24.80.1
In the Linux kernel, the following vulnerability has been resolved: firewire: fix memory leak for payload of request subaction to IEC 61883-1 FCP region This patch is fix for Linux kernel v2.6.33 or later. For request subaction to IEC 61883-1 FCP region, Linux FireWire subsyst
- CVE-2023-52988Mar 27, 2025affected < 5.14.21-150400.24.161.1.150400.24.80.1fixed 5.14.21-150400.24.161.1.150400.24.80.1
In the Linux kernel, the following vulnerability has been resolved: ALSA: hda/via: Avoid potential array out-of-bound in add_secret_dac_path() snd_hda_get_connections() can return a negative error code. It may lead to accessing 'conn' array at a negative index. Found by Linux
- CVE-2023-52984Mar 27, 2025affected < 5.14.21-150400.24.161.1.150400.24.80.1fixed 5.14.21-150400.24.161.1.150400.24.80.1
In the Linux kernel, the following vulnerability has been resolved: net: phy: dp83822: Fix null pointer access on DP83825/DP83826 devices The probe() function is only used for the DP83822 PHY, leaving the private data pointer uninitialized for the smaller DP83825/26 models. Whi
- CVE-2023-52983Mar 27, 2025affected < 5.14.21-150400.24.161.1.150400.24.80.1fixed 5.14.21-150400.24.161.1.150400.24.80.1
In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix uaf for bfqq in bic_set_bfqq() After commit 64dc8c732f5c ("block, bfq: fix possible uaf for 'bfqq->bic'"), bic->bfqq will be accessed in bic_set_bfqq(), however, in some context bic->bfqq will b
- CVE-2023-52976Mar 27, 2025affected < 5.14.21-150400.24.161.1.150400.24.80.1fixed 5.14.21-150400.24.161.1.150400.24.80.1
In the Linux kernel, the following vulnerability has been resolved: efi: fix potential NULL deref in efi_mem_reserve_persistent When iterating on a linked list, a result of memremap is dereferenced without checking it for NULL. This patch adds a check that falls back on alloca
- CVE-2023-52974Mar 27, 2025affected < 5.14.21-150400.24.161.1.150400.24.80.1fixed 5.14.21-150400.24.161.1.150400.24.80.1
In the Linux kernel, the following vulnerability has been resolved: scsi: iscsi_tcp: Fix UAF during login when accessing the shost ipaddress If during iscsi_sw_tcp_session_create() iscsi_tcp_r2tpool_alloc() fails, userspace could be accessing the host's ipaddress attr. If we th
- CVE-2023-52973Mar 27, 2025affected < 5.14.21-150400.24.161.1.150400.24.80.1fixed 5.14.21-150400.24.161.1.150400.24.80.1
In the Linux kernel, the following vulnerability has been resolved: vc_screen: move load of struct vc_data pointer in vcs_read() to avoid UAF After a call to console_unlock() in vcs_read() the vc_data struct can be freed by vc_deallocate(). Because of that, the struct vc_data p
- CVE-2022-49759Mar 27, 2025affected < 5.14.21-150400.24.161.1.150400.24.80.1fixed 5.14.21-150400.24.161.1.150400.24.80.1
In the Linux kernel, the following vulnerability has been resolved: VMCI: Use threaded irqs instead of tasklets The vmci_dispatch_dgs() tasklet function calls vmci_read_data() which uses wait_event() resulting in invalid sleep in an atomic context (and therefore potentially in
- CVE-2022-49755Mar 27, 2025affected < 5.14.21-150400.24.161.1.150400.24.80.1fixed 5.14.21-150400.24.161.1.150400.24.80.1
In the Linux kernel, the following vulnerability has been resolved: usb: gadget: f_fs: Prevent race during ffs_ep0_queue_wait While performing fast composition switch, there is a possibility that the process of ffs_ep0_write/ffs_ep0_read get into a race condition due to ep0req
- CVE-2022-49753Mar 27, 2025affected < 5.14.21-150400.24.161.1.150400.24.80.1fixed 5.14.21-150400.24.161.1.150400.24.80.1
In the Linux kernel, the following vulnerability has been resolved: dmaengine: Fix double increment of client_count in dma_chan_get() The first time dma_chan_get() is called for a channel the channel client_count is incorrectly incremented twice for public channels, first in ba
- CVE-2022-49751Mar 27, 2025affected < 5.14.21-150400.24.161.1.150400.24.80.1fixed 5.14.21-150400.24.161.1.150400.24.80.1
In the Linux kernel, the following vulnerability has been resolved: w1: fix WARNING after calling w1_process() I got the following WARNING message while removing driver(ds2482): ------------[ cut here ]------------ do not call blocking ops when !TASK_RUNNING; state=1 set at [<
- CVE-2022-49748Mar 27, 2025affected < 5.14.21-150400.24.161.1.150400.24.80.1fixed 5.14.21-150400.24.161.1.150400.24.80.1
In the Linux kernel, the following vulnerability has been resolved: perf/x86/amd: fix potential integer overflow on shift of a int The left shift of int 32 bit integer constant 1 is evaluated using 32 bit arithmetic and then passed as a 64 bit function argument. In the case whe
- CVE-2022-49746Mar 27, 2025affected < 5.14.21-150400.24.161.1.150400.24.80.1fixed 5.14.21-150400.24.161.1.150400.24.80.1
In the Linux kernel, the following vulnerability has been resolved: dmaengine: imx-sdma: Fix a possible memory leak in sdma_transfer_init If the function sdma_load_context() fails, the sdma_desc will be freed, but the allocated desc->bd is forgot to be freed. We already met th
- CVE-2022-49741Mar 27, 2025affected < 5.14.21-150400.24.164.1.150400.24.82.1fixed 5.14.21-150400.24.164.1.150400.24.82.1
In the Linux kernel, the following vulnerability has been resolved: fbdev: smscufx: fix error handling code in ufx_usb_probe The current error handling code in ufx_usb_probe have many unmatching issues, e.g., missing ufx_free_usb_list, destroy_modedb label should only include f
- CVE-2022-49739Mar 27, 2025affected < 5.14.21-150400.24.161.1.150400.24.80.1fixed 5.14.21-150400.24.161.1.150400.24.80.1
In the Linux kernel, the following vulnerability has been resolved: gfs2: Always check inode size of inline inodes Check if the inode size of stuffed (inline) inodes is within the allowed range when reading inodes from disk (gfs2_dinode_in()). This prevents us from on-disk cor
- CVE-2023-52941Mar 27, 2025affected < 5.14.21-150400.24.161.1.150400.24.80.1fixed 5.14.21-150400.24.161.1.150400.24.80.1
In the Linux kernel, the following vulnerability has been resolved: can: isotp: split tx timer into transmission and timeout The timer for the transmission of isotp PDUs formerly had two functions: 1. send two consecutive frames with a given time gap 2. monitor the timeouts for
- CVE-2023-52939Mar 27, 2025affected < 5.14.21-150400.24.161.1.150400.24.80.1fixed 5.14.21-150400.24.161.1.150400.24.80.1
In the Linux kernel, the following vulnerability has been resolved: mm: memcg: fix NULL pointer in mem_cgroup_track_foreign_dirty_slowpath() As commit 18365225f044 ("hwpoison, memcg: forcibly uncharge LRU pages"), hwpoison will forcibly uncharg a LRU hwpoisoned page, the folio_
Page 64 of 143