rpm package
suse/kernel-default-base&distro=SUSE Linux Enterprise Micro 5.0
pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Micro%205.0
Vulnerabilities (174)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2021-28038 | — | < 5.3.18-24.61.1.9.26.4 | 5.3.18-24.61.1.9.26.4 | Mar 5, 2021 | An issue was discovered in the Linux kernel through 5.11.3, as used with Xen PV. A certain part of the netback driver lacks necessary treatment of errors such as failed memory allocations (as a result of changes to the handling of grant mapping errors). A host OS denial of servic | ||
| CVE-2020-12373 | — | < 5.3.18-24.52.1.9.24.1 | 5.3.18-24.52.1.9.24.1 | Feb 17, 2021 | Expired pointer dereference in some Intel(R) Graphics Drivers before version 26.20.100.8141 may allow a privileged user to potentially enable a denial of service via local access. | ||
| CVE-2021-26932 | — | < 5.3.18-24.52.1.9.24.1 | 5.3.18-24.52.1.9.24.1 | Feb 17, 2021 | An issue was discovered in the Linux kernel 3.2 through 5.10.16, as used by Xen. Grant mapping operations often occur in batch hypercalls, where a number of operations are done in a single hypercall, the success or failure of each one is reported to the backend driver, and the ba | ||
| CVE-2021-26931 | — | < 5.3.18-24.52.1.9.24.1 | 5.3.18-24.52.1.9.24.1 | Feb 17, 2021 | An issue was discovered in the Linux kernel 2.6.39 through 5.10.16, as used in Xen. Block, net, and SCSI backends consider certain errors a plain bug, deliberately causing a kernel crash. For errors potentially being at least under the influence of guests (such as out of memory c | ||
| CVE-2021-26930 | — | < 5.3.18-24.52.1.9.24.1 | 5.3.18-24.52.1.9.24.1 | Feb 17, 2021 | An issue was discovered in the Linux kernel 3.11 through 5.10.16, as used by Xen. To service requests to the PV backend, the driver maps grant references provided by the frontend. In this process, errors may be encountered. In one case, an error encountered earlier might be disca | ||
| CVE-2020-12364 | — | < 5.3.18-24.52.1.9.24.1 | 5.3.18-24.52.1.9.24.1 | Feb 17, 2021 | Null pointer reference in some Intel(R) Graphics Drivers for Windows* before version 26.20.100.7212 and before version Linux kernel version 5.5 may allow a privileged user to potentially enable a denial of service via local access. | ||
| CVE-2020-12363 | — | < 5.3.18-24.52.1.9.24.1 | 5.3.18-24.52.1.9.24.1 | Feb 17, 2021 | Improper input validation in some Intel(R) Graphics Drivers for Windows* before version 26.20.100.7212 and before Linux kernel version 5.5 may allow a privileged user to potentially enable a denial of service via local access. | ||
| CVE-2020-12362 | — | < 5.3.18-24.52.1.9.24.1 | 5.3.18-24.52.1.9.24.1 | Feb 17, 2021 | Integer overflow in the firmware for some Intel(R) Graphics Drivers for Windows * before version 26.20.100.7212 and before Linux kernel version 5.5 may allow a privileged user to potentially enable an escalation of privilege via local access. | ||
| CVE-2020-27825 | — | < 5.3.18-24.99.1.9.46.1 | 5.3.18-24.99.1.9.46.1 | Dec 11, 2020 | A use-after-free flaw was found in kernel/trace/ring_buffer.c in Linux kernel (before 5.10-rc1). There was a race problem in trace_open and resize of cpu buffer running parallely on different cpus, may cause a denial of service problem (DOS). This flaw could even allow a local at | ||
| CVE-2020-29368 | — | < 5.3.18-24.52.1.9.24.1 | 5.3.18-24.52.1.9.24.1 | Nov 28, 2020 | An issue was discovered in __split_huge_pmd in mm/huge_memory.c in the Linux kernel before 5.7.5. The copy-on-write implementation can grant unintended write access because of a race condition in a THP mapcount check, aka CID-c444eb564fb1. | ||
| CVE-2020-29374 | — | < 5.3.18-24.52.1.9.24.1 | 5.3.18-24.52.1.9.24.1 | Nov 28, 2020 | An issue was discovered in the Linux kernel before 5.7.3, related to mm/gup.c and mm/huge_memory.c. The get_user_pages (aka gup) implementation, when used for a copy-on-write page, does not properly consider the semantics of read operations and therefore can grant unintended writ | ||
| CVE-2020-3702 | — | < 5.3.18-24.86.2.9.40.2 | 5.3.18-24.86.2.9.40.2 | Sep 8, 2020 | u'Specifically timed and handcrafted traffic can cause internal errors in a WLAN device that lead to improper layer 2 Wi-Fi encryption with a consequent possibility of information disclosure over the air for a discrete set of traffic' in Snapdragon Auto, Snapdragon Compute, Snapd | ||
| CVE-2019-19769 | — | < 5.3.18-24.61.1.9.26.4 | 5.3.18-24.61.1.9.26.4 | Dec 12, 2019 | In the Linux kernel 5.3.10, there is a use-after-free (read) in the perf_trace_lock_acquire function (related to include/trace/events/lock.h). | ||
| CVE-2019-18814 | — | < 5.3.18-24.61.1.9.26.4 | 5.3.18-24.61.1.9.26.4 | Nov 7, 2019 | An issue was discovered in the Linux kernel through 5.3.9. There is a use-after-free when aa_label_parse() fails in aa_audit_rule_init() in security/apparmor/audit.c. |
- CVE-2021-28038Mar 5, 2021affected < 5.3.18-24.61.1.9.26.4fixed 5.3.18-24.61.1.9.26.4
An issue was discovered in the Linux kernel through 5.11.3, as used with Xen PV. A certain part of the netback driver lacks necessary treatment of errors such as failed memory allocations (as a result of changes to the handling of grant mapping errors). A host OS denial of servic
- CVE-2020-12373Feb 17, 2021affected < 5.3.18-24.52.1.9.24.1fixed 5.3.18-24.52.1.9.24.1
Expired pointer dereference in some Intel(R) Graphics Drivers before version 26.20.100.8141 may allow a privileged user to potentially enable a denial of service via local access.
- CVE-2021-26932Feb 17, 2021affected < 5.3.18-24.52.1.9.24.1fixed 5.3.18-24.52.1.9.24.1
An issue was discovered in the Linux kernel 3.2 through 5.10.16, as used by Xen. Grant mapping operations often occur in batch hypercalls, where a number of operations are done in a single hypercall, the success or failure of each one is reported to the backend driver, and the ba
- CVE-2021-26931Feb 17, 2021affected < 5.3.18-24.52.1.9.24.1fixed 5.3.18-24.52.1.9.24.1
An issue was discovered in the Linux kernel 2.6.39 through 5.10.16, as used in Xen. Block, net, and SCSI backends consider certain errors a plain bug, deliberately causing a kernel crash. For errors potentially being at least under the influence of guests (such as out of memory c
- CVE-2021-26930Feb 17, 2021affected < 5.3.18-24.52.1.9.24.1fixed 5.3.18-24.52.1.9.24.1
An issue was discovered in the Linux kernel 3.11 through 5.10.16, as used by Xen. To service requests to the PV backend, the driver maps grant references provided by the frontend. In this process, errors may be encountered. In one case, an error encountered earlier might be disca
- CVE-2020-12364Feb 17, 2021affected < 5.3.18-24.52.1.9.24.1fixed 5.3.18-24.52.1.9.24.1
Null pointer reference in some Intel(R) Graphics Drivers for Windows* before version 26.20.100.7212 and before version Linux kernel version 5.5 may allow a privileged user to potentially enable a denial of service via local access.
- CVE-2020-12363Feb 17, 2021affected < 5.3.18-24.52.1.9.24.1fixed 5.3.18-24.52.1.9.24.1
Improper input validation in some Intel(R) Graphics Drivers for Windows* before version 26.20.100.7212 and before Linux kernel version 5.5 may allow a privileged user to potentially enable a denial of service via local access.
- CVE-2020-12362Feb 17, 2021affected < 5.3.18-24.52.1.9.24.1fixed 5.3.18-24.52.1.9.24.1
Integer overflow in the firmware for some Intel(R) Graphics Drivers for Windows * before version 26.20.100.7212 and before Linux kernel version 5.5 may allow a privileged user to potentially enable an escalation of privilege via local access.
- CVE-2020-27825Dec 11, 2020affected < 5.3.18-24.99.1.9.46.1fixed 5.3.18-24.99.1.9.46.1
A use-after-free flaw was found in kernel/trace/ring_buffer.c in Linux kernel (before 5.10-rc1). There was a race problem in trace_open and resize of cpu buffer running parallely on different cpus, may cause a denial of service problem (DOS). This flaw could even allow a local at
- CVE-2020-29368Nov 28, 2020affected < 5.3.18-24.52.1.9.24.1fixed 5.3.18-24.52.1.9.24.1
An issue was discovered in __split_huge_pmd in mm/huge_memory.c in the Linux kernel before 5.7.5. The copy-on-write implementation can grant unintended write access because of a race condition in a THP mapcount check, aka CID-c444eb564fb1.
- CVE-2020-29374Nov 28, 2020affected < 5.3.18-24.52.1.9.24.1fixed 5.3.18-24.52.1.9.24.1
An issue was discovered in the Linux kernel before 5.7.3, related to mm/gup.c and mm/huge_memory.c. The get_user_pages (aka gup) implementation, when used for a copy-on-write page, does not properly consider the semantics of read operations and therefore can grant unintended writ
- CVE-2020-3702Sep 8, 2020affected < 5.3.18-24.86.2.9.40.2fixed 5.3.18-24.86.2.9.40.2
u'Specifically timed and handcrafted traffic can cause internal errors in a WLAN device that lead to improper layer 2 Wi-Fi encryption with a consequent possibility of information disclosure over the air for a discrete set of traffic' in Snapdragon Auto, Snapdragon Compute, Snapd
- CVE-2019-19769Dec 12, 2019affected < 5.3.18-24.61.1.9.26.4fixed 5.3.18-24.61.1.9.26.4
In the Linux kernel 5.3.10, there is a use-after-free (read) in the perf_trace_lock_acquire function (related to include/trace/events/lock.h).
- CVE-2019-18814Nov 7, 2019affected < 5.3.18-24.61.1.9.26.4fixed 5.3.18-24.61.1.9.26.4
An issue was discovered in the Linux kernel through 5.3.9. There is a use-after-free when aa_label_parse() fails in aa_audit_rule_init() in security/apparmor/audit.c.
Page 9 of 9