rpm package
suse/kernel-default-base&distro=SUSE Linux Enterprise Module for Basesystem 15 SP2
pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP2
Vulnerabilities (193)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2021-27364 | — | < 5.3.18-24.61.1.9.26.4 | 5.3.18-24.61.1.9.26.4 | Mar 7, 2021 | An issue was discovered in the Linux kernel through 5.11.3. drivers/scsi/scsi_transport_iscsi.c is adversely affected by the ability of an unprivileged user to craft Netlink messages. | ||
| CVE-2021-27363 | — | < 5.3.18-24.61.1.9.26.4 | 5.3.18-24.61.1.9.26.4 | Mar 7, 2021 | An issue was discovered in the Linux kernel through 5.11.3. A kernel pointer leak can be used to determine the address of the iscsi_transport structure. When an iSCSI transport is registered with the iSCSI subsystem, the transport's handle is available to unprivileged users via t | ||
| CVE-2021-28038 | — | < 5.3.18-24.61.1.9.26.4 | 5.3.18-24.61.1.9.26.4 | Mar 5, 2021 | An issue was discovered in the Linux kernel through 5.11.3, as used with Xen PV. A certain part of the netback driver lacks necessary treatment of errors such as failed memory allocations (as a result of changes to the handling of grant mapping errors). A host OS denial of servic | ||
| CVE-2020-25639 | — | < 5.3.18-24.49.2.9.21.2 | 5.3.18-24.49.2.9.21.2 | Mar 4, 2021 | A NULL pointer dereference flaw was found in the Linux kernel's GPU Nouveau driver functionality in versions prior to 5.12-rc1 in the way the user calls ioctl DRM_IOCTL_NOUVEAU_CHANNEL_ALLOC. This flaw allows a local user to crash the system. | ||
| CVE-2020-12373 | — | < 5.3.18-24.52.1.9.24.1 | 5.3.18-24.52.1.9.24.1 | Feb 17, 2021 | Expired pointer dereference in some Intel(R) Graphics Drivers before version 26.20.100.8141 may allow a privileged user to potentially enable a denial of service via local access. | ||
| CVE-2021-26932 | — | < 5.3.18-24.52.1.9.24.1 | 5.3.18-24.52.1.9.24.1 | Feb 17, 2021 | An issue was discovered in the Linux kernel 3.2 through 5.10.16, as used by Xen. Grant mapping operations often occur in batch hypercalls, where a number of operations are done in a single hypercall, the success or failure of each one is reported to the backend driver, and the ba | ||
| CVE-2021-26931 | — | < 5.3.18-24.52.1.9.24.1 | 5.3.18-24.52.1.9.24.1 | Feb 17, 2021 | An issue was discovered in the Linux kernel 2.6.39 through 5.10.16, as used in Xen. Block, net, and SCSI backends consider certain errors a plain bug, deliberately causing a kernel crash. For errors potentially being at least under the influence of guests (such as out of memory c | ||
| CVE-2021-26930 | — | < 5.3.18-24.52.1.9.24.1 | 5.3.18-24.52.1.9.24.1 | Feb 17, 2021 | An issue was discovered in the Linux kernel 3.11 through 5.10.16, as used by Xen. To service requests to the PV backend, the driver maps grant references provided by the frontend. In this process, errors may be encountered. In one case, an error encountered earlier might be disca | ||
| CVE-2020-12364 | — | < 5.3.18-24.52.1.9.24.1 | 5.3.18-24.52.1.9.24.1 | Feb 17, 2021 | Null pointer reference in some Intel(R) Graphics Drivers for Windows* before version 26.20.100.7212 and before version Linux kernel version 5.5 may allow a privileged user to potentially enable a denial of service via local access. | ||
| CVE-2020-12363 | — | < 5.3.18-24.52.1.9.24.1 | 5.3.18-24.52.1.9.24.1 | Feb 17, 2021 | Improper input validation in some Intel(R) Graphics Drivers for Windows* before version 26.20.100.7212 and before Linux kernel version 5.5 may allow a privileged user to potentially enable a denial of service via local access. | ||
| CVE-2020-12362 | — | < 5.3.18-24.52.1.9.24.1 | 5.3.18-24.52.1.9.24.1 | Feb 17, 2021 | Integer overflow in the firmware for some Intel(R) Graphics Drivers for Windows * before version 26.20.100.7212 and before Linux kernel version 5.5 may allow a privileged user to potentially enable an escalation of privilege via local access. | ||
| CVE-2020-16120 | — | < 5.3.18-24.34.1.9.11.2 | 5.3.18-24.34.1.9.11.2 | Feb 10, 2021 | Overlayfs did not properly perform permission checking when copying up files in an overlayfs and could be exploited from within a user namespace, if, for example, unprivileged user namespaces were allowed. It was possible to have a file not readable by an unprivileged user to be | ||
| CVE-2020-24490 | — | < 5.3.18-24.29.2.9.9.3 | 5.3.18-24.29.2.9.9.3 | Feb 2, 2021 | Improper buffer restrictions in BlueZ may allow an unauthenticated user to potentially enable denial of service via adjacent access. This affects all Linux kernel versions that support BlueZ. | ||
| CVE-2021-3348 | — | < 5.3.18-24.49.2.9.21.2 | 5.3.18-24.49.2.9.21.2 | Feb 1, 2021 | nbd_add_socket in drivers/block/nbd.c in the Linux kernel through 5.10.12 has an ndb_queue_rq use-after-free that could be triggered by local attackers (with access to the nbd device) via an I/O request at a certain point during device setup, aka CID-b98e762e3d71. | ||
| CVE-2021-3347 | — | < 5.3.18-24.49.2.9.21.2 | 5.3.18-24.49.2.9.21.2 | Jan 29, 2021 | An issue was discovered in the Linux kernel through 5.10.11. PI futexes have a kernel stack use-after-free during fault handling, allowing local users to execute code in the kernel, aka CID-34b1a1ce1458. | ||
| CVE-2020-28374 | — | < 5.3.18-24.46.1.9.19.1 | 5.3.18-24.46.1.9.19.1 | Jan 13, 2021 | In drivers/target/target_core_xcopy.c in the Linux kernel before 5.10.7, insufficient identifier checking in the LIO SCSI target code can be used by remote attackers to read or write files via directory traversal in an XCOPY request, aka CID-2896c93811e3. For example, an attack c | ||
| CVE-2021-0342 | — | < 5.3.18-24.49.2.9.21.2 | 5.3.18-24.49.2.9.21.2 | Jan 11, 2021 | In tun_get_user of tun.c, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges required. User interaction is not required for exploitation. Product: Android; Versions: Android kernel; Androi | ||
| CVE-2020-27835 | — | < 5.3.18-24.49.2.9.21.2 | 5.3.18-24.49.2.9.21.2 | Jan 7, 2021 | A use after free in the Linux kernel infiniband hfi1 driver in versions prior to 5.10-rc6 was found in the way user calls Ioctl after open dev file and fork. A local user could use this flaw to crash the system. | ||
| CVE-2020-36158 | — | < 5.3.18-24.46.1.9.19.1 | 5.3.18-24.46.1.9.19.1 | Jan 5, 2021 | mwifiex_cmd_802_11_ad_hoc_start in drivers/net/wireless/marvell/mwifiex/join.c in the Linux kernel through 5.10.4 might allow remote attackers to execute arbitrary code via a long SSID value, aka CID-5c455c5ab332. | ||
| CVE-2020-29569 | — | < 5.3.18-24.49.2.9.21.2 | 5.3.18-24.49.2.9.21.2 | Dec 15, 2020 | An issue was discovered in the Linux kernel through 5.10.1, as used with Xen through 4.14.x. The Linux kernel PV block backend expects the kernel thread handler to reset ring->xenblkd to NULL when stopped. However, the handler may not have time to run if the frontend quickly togg |
- CVE-2021-27364Mar 7, 2021affected < 5.3.18-24.61.1.9.26.4fixed 5.3.18-24.61.1.9.26.4
An issue was discovered in the Linux kernel through 5.11.3. drivers/scsi/scsi_transport_iscsi.c is adversely affected by the ability of an unprivileged user to craft Netlink messages.
- CVE-2021-27363Mar 7, 2021affected < 5.3.18-24.61.1.9.26.4fixed 5.3.18-24.61.1.9.26.4
An issue was discovered in the Linux kernel through 5.11.3. A kernel pointer leak can be used to determine the address of the iscsi_transport structure. When an iSCSI transport is registered with the iSCSI subsystem, the transport's handle is available to unprivileged users via t
- CVE-2021-28038Mar 5, 2021affected < 5.3.18-24.61.1.9.26.4fixed 5.3.18-24.61.1.9.26.4
An issue was discovered in the Linux kernel through 5.11.3, as used with Xen PV. A certain part of the netback driver lacks necessary treatment of errors such as failed memory allocations (as a result of changes to the handling of grant mapping errors). A host OS denial of servic
- CVE-2020-25639Mar 4, 2021affected < 5.3.18-24.49.2.9.21.2fixed 5.3.18-24.49.2.9.21.2
A NULL pointer dereference flaw was found in the Linux kernel's GPU Nouveau driver functionality in versions prior to 5.12-rc1 in the way the user calls ioctl DRM_IOCTL_NOUVEAU_CHANNEL_ALLOC. This flaw allows a local user to crash the system.
- CVE-2020-12373Feb 17, 2021affected < 5.3.18-24.52.1.9.24.1fixed 5.3.18-24.52.1.9.24.1
Expired pointer dereference in some Intel(R) Graphics Drivers before version 26.20.100.8141 may allow a privileged user to potentially enable a denial of service via local access.
- CVE-2021-26932Feb 17, 2021affected < 5.3.18-24.52.1.9.24.1fixed 5.3.18-24.52.1.9.24.1
An issue was discovered in the Linux kernel 3.2 through 5.10.16, as used by Xen. Grant mapping operations often occur in batch hypercalls, where a number of operations are done in a single hypercall, the success or failure of each one is reported to the backend driver, and the ba
- CVE-2021-26931Feb 17, 2021affected < 5.3.18-24.52.1.9.24.1fixed 5.3.18-24.52.1.9.24.1
An issue was discovered in the Linux kernel 2.6.39 through 5.10.16, as used in Xen. Block, net, and SCSI backends consider certain errors a plain bug, deliberately causing a kernel crash. For errors potentially being at least under the influence of guests (such as out of memory c
- CVE-2021-26930Feb 17, 2021affected < 5.3.18-24.52.1.9.24.1fixed 5.3.18-24.52.1.9.24.1
An issue was discovered in the Linux kernel 3.11 through 5.10.16, as used by Xen. To service requests to the PV backend, the driver maps grant references provided by the frontend. In this process, errors may be encountered. In one case, an error encountered earlier might be disca
- CVE-2020-12364Feb 17, 2021affected < 5.3.18-24.52.1.9.24.1fixed 5.3.18-24.52.1.9.24.1
Null pointer reference in some Intel(R) Graphics Drivers for Windows* before version 26.20.100.7212 and before version Linux kernel version 5.5 may allow a privileged user to potentially enable a denial of service via local access.
- CVE-2020-12363Feb 17, 2021affected < 5.3.18-24.52.1.9.24.1fixed 5.3.18-24.52.1.9.24.1
Improper input validation in some Intel(R) Graphics Drivers for Windows* before version 26.20.100.7212 and before Linux kernel version 5.5 may allow a privileged user to potentially enable a denial of service via local access.
- CVE-2020-12362Feb 17, 2021affected < 5.3.18-24.52.1.9.24.1fixed 5.3.18-24.52.1.9.24.1
Integer overflow in the firmware for some Intel(R) Graphics Drivers for Windows * before version 26.20.100.7212 and before Linux kernel version 5.5 may allow a privileged user to potentially enable an escalation of privilege via local access.
- CVE-2020-16120Feb 10, 2021affected < 5.3.18-24.34.1.9.11.2fixed 5.3.18-24.34.1.9.11.2
Overlayfs did not properly perform permission checking when copying up files in an overlayfs and could be exploited from within a user namespace, if, for example, unprivileged user namespaces were allowed. It was possible to have a file not readable by an unprivileged user to be
- CVE-2020-24490Feb 2, 2021affected < 5.3.18-24.29.2.9.9.3fixed 5.3.18-24.29.2.9.9.3
Improper buffer restrictions in BlueZ may allow an unauthenticated user to potentially enable denial of service via adjacent access. This affects all Linux kernel versions that support BlueZ.
- CVE-2021-3348Feb 1, 2021affected < 5.3.18-24.49.2.9.21.2fixed 5.3.18-24.49.2.9.21.2
nbd_add_socket in drivers/block/nbd.c in the Linux kernel through 5.10.12 has an ndb_queue_rq use-after-free that could be triggered by local attackers (with access to the nbd device) via an I/O request at a certain point during device setup, aka CID-b98e762e3d71.
- CVE-2021-3347Jan 29, 2021affected < 5.3.18-24.49.2.9.21.2fixed 5.3.18-24.49.2.9.21.2
An issue was discovered in the Linux kernel through 5.10.11. PI futexes have a kernel stack use-after-free during fault handling, allowing local users to execute code in the kernel, aka CID-34b1a1ce1458.
- CVE-2020-28374Jan 13, 2021affected < 5.3.18-24.46.1.9.19.1fixed 5.3.18-24.46.1.9.19.1
In drivers/target/target_core_xcopy.c in the Linux kernel before 5.10.7, insufficient identifier checking in the LIO SCSI target code can be used by remote attackers to read or write files via directory traversal in an XCOPY request, aka CID-2896c93811e3. For example, an attack c
- CVE-2021-0342Jan 11, 2021affected < 5.3.18-24.49.2.9.21.2fixed 5.3.18-24.49.2.9.21.2
In tun_get_user of tun.c, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges required. User interaction is not required for exploitation. Product: Android; Versions: Android kernel; Androi
- CVE-2020-27835Jan 7, 2021affected < 5.3.18-24.49.2.9.21.2fixed 5.3.18-24.49.2.9.21.2
A use after free in the Linux kernel infiniband hfi1 driver in versions prior to 5.10-rc6 was found in the way user calls Ioctl after open dev file and fork. A local user could use this flaw to crash the system.
- CVE-2020-36158Jan 5, 2021affected < 5.3.18-24.46.1.9.19.1fixed 5.3.18-24.46.1.9.19.1
mwifiex_cmd_802_11_ad_hoc_start in drivers/net/wireless/marvell/mwifiex/join.c in the Linux kernel through 5.10.4 might allow remote attackers to execute arbitrary code via a long SSID value, aka CID-5c455c5ab332.
- CVE-2020-29569Dec 15, 2020affected < 5.3.18-24.49.2.9.21.2fixed 5.3.18-24.49.2.9.21.2
An issue was discovered in the Linux kernel through 5.10.1, as used with Xen through 4.14.x. The Linux kernel PV block backend expects the kernel thread handler to reset ring->xenblkd to NULL when stopped. However, the handler may not have time to run if the frontend quickly togg
Page 6 of 10