VYPR

rpm package

suse/kernel-default-base&distro=SUSE Linux Enterprise Module for Basesystem 15 SP6

pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP6

Vulnerabilities (3,752)

  • CVE-2025-39756MedSep 11, 2025
    affected < 6.4.0-150600.23.78.1.150600.12.34.2fixed 6.4.0-150600.23.78.1.150600.12.34.2

    In the Linux kernel, the following vulnerability has been resolved: fs: Prevent file descriptor table allocations exceeding INT_MAX When sysctl_nr_open is set to a very high value (for example, 1073741816 as set by systemd), processes attempting to use file descriptors near the

  • CVE-2025-39749HigSep 11, 2025
    affected < 6.4.0-150600.23.73.1.150600.12.32.1fixed 6.4.0-150600.23.73.1.150600.12.32.1

    In the Linux kernel, the following vulnerability has been resolved: rcu: Protect ->defer_qs_iw_pending from data race On kernels built with CONFIG_IRQ_WORK=y, when rcu_read_unlock() is invoked within an interrupts-disabled region of code [1], it will invoke rcu_read_unlock_spec

  • CVE-2025-39743HigSep 11, 2025
    affected < 6.4.0-150600.23.73.1.150600.12.32.1fixed 6.4.0-150600.23.73.1.150600.12.32.1

    In the Linux kernel, the following vulnerability has been resolved: jfs: truncate good inode pages when hard link is 0 The fileset value of the inode copy from the disk by the reproducer is AGGR_RESERVED_I. When executing evict, its hard link number is 0, so its inode pages are

  • CVE-2025-39742MedSep 11, 2025
    affected < 6.4.0-150600.23.73.1.150600.12.32.1fixed 6.4.0-150600.23.73.1.150600.12.32.1

    In the Linux kernel, the following vulnerability has been resolved: RDMA: hfi1: fix possible divide-by-zero in find_hw_thread_mask() The function divides number of online CPUs by num_core_siblings, and later checks the divider by zero. This implies a possibility to get and divi

  • CVE-2025-39738HigSep 11, 2025
    affected < 6.4.0-150600.23.73.1.150600.12.32.1fixed 6.4.0-150600.23.73.1.150600.12.32.1

    In the Linux kernel, the following vulnerability has been resolved: btrfs: do not allow relocation of partially dropped subvolumes [BUG] There is an internal report that balance triggered transaction abort, with the following call trace: item 85 key (594509824 169 0) itemoff

  • CVE-2025-39763Sep 11, 2025
    affected < 6.4.0-150600.23.73.1.150600.12.32.1fixed 6.4.0-150600.23.73.1.150600.12.32.1

    In the Linux kernel, the following vulnerability has been resolved: ACPI: APEI: send SIGBUS to current task if synchronous memory error not recovered If a synchronous error is detected as a result of user-space process triggering a 2-bit uncorrected error, the CPU will take a s

  • CVE-2025-39761Sep 11, 2025
    affected < 6.4.0-150600.23.73.1.150600.12.32.1fixed 6.4.0-150600.23.73.1.150600.12.32.1

    In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: Decrement TID on RX peer frag setup error handling Currently, TID is not decremented before peer cleanup, during error handling path of ath12k_dp_rx_peer_frag_setup(). This could lead to out-of-bo

  • CVE-2025-39758Sep 11, 2025
    affected < 6.4.0-150600.23.73.1.150600.12.32.1fixed 6.4.0-150600.23.73.1.150600.12.32.1

    In the Linux kernel, the following vulnerability has been resolved: RDMA/siw: Fix the sendmsg byte count in siw_tcp_sendpages Ever since commit c2ff29e99a76 ("siw: Inline do_tcp_sendpages()"), we have been doing this: static int siw_tcp_sendpages(struct socket *s, struct page

  • CVE-2025-39754Sep 11, 2025
    affected < 6.4.0-150600.23.73.1.150600.12.32.1fixed 6.4.0-150600.23.73.1.150600.12.32.1

    In the Linux kernel, the following vulnerability has been resolved: mm/smaps: fix race between smaps_hugetlb_range and migration smaps_hugetlb_range() handles the pte without holdling ptl, and may be concurrenct with migration, leaing to BUG_ON in pfn_swap_entry_to_page(). The

  • CVE-2025-39750Sep 11, 2025
    affected < 6.4.0-150600.23.73.1.150600.12.32.1fixed 6.4.0-150600.23.73.1.150600.12.32.1

    In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: Correct tid cleanup when tid setup fails Currently, if any error occurs during ath12k_dp_rx_peer_tid_setup(), the tid value is already incremented, even though the corresponding TID is not actuall

  • CVE-2025-39746Sep 11, 2025
    affected < 6.4.0-150600.23.73.1.150600.12.32.1fixed 6.4.0-150600.23.73.1.150600.12.32.1

    In the Linux kernel, the following vulnerability has been resolved: wifi: ath10k: shutdown driver when hardware is unreliable In rare cases, ath10k may lose connection with the PCIe bus due to some unknown reasons, which could further lead to system crashes during resuming due

  • CVE-2025-39744Sep 11, 2025
    affected < 6.4.0-150600.23.73.1.150600.12.32.1fixed 6.4.0-150600.23.73.1.150600.12.32.1

    In the Linux kernel, the following vulnerability has been resolved: rcu: Fix rcu_read_unlock() deadloop due to IRQ work During rcu_read_unlock_special(), if this happens during irq_exit(), we can lockup if an IPI is issued. This is because the IPI itself triggers the irq_exit()

  • CVE-2025-39739Sep 11, 2025
    affected < 6.4.0-150600.23.73.1.150600.12.32.1fixed 6.4.0-150600.23.73.1.150600.12.32.1

    In the Linux kernel, the following vulnerability has been resolved: iommu/arm-smmu-qcom: Add SM6115 MDSS compatible Add the SM6115 MDSS compatible to clients compatible list, as it also needs that workaround. Without this workaround, for example, QRB4210 RB2 which is based on S

  • CVE-2025-39732Sep 7, 2025
    affected < 6.4.0-150600.23.73.1.150600.12.32.1fixed 6.4.0-150600.23.73.1.150600.12.32.1

    In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: fix sleeping-in-atomic in ath11k_mac_op_set_bitrate_mask() ath11k_mac_disable_peer_fixed_rate() is passed as the iterator to ieee80211_iterate_stations_atomic(). Note in this case the iterator is

  • CVE-2025-39730Sep 7, 2025
    affected < 6.4.0-150600.23.73.1.150600.12.32.1fixed 6.4.0-150600.23.73.1.150600.12.32.1

    In the Linux kernel, the following vulnerability has been resolved: NFS: Fix filehandle bounds checking in nfs_fh_to_dentry() The function needs to check the minimal filehandle length before it can access the embedded filehandle.

  • CVE-2025-39724MedSep 5, 2025
    affected < 6.4.0-150600.23.73.1.150600.12.32.1fixed 6.4.0-150600.23.73.1.150600.12.32.1

    In the Linux kernel, the following vulnerability has been resolved: serial: 8250: fix panic due to PSLVERR When the PSLVERR_RESP_EN parameter is set to 1, the device generates an error response if an attempt is made to read an empty RBR (Receive Buffer Register) while the FIFO

  • CVE-2025-39719HigSep 5, 2025
    affected < 6.4.0-150600.23.73.1.150600.12.32.1fixed 6.4.0-150600.23.73.1.150600.12.32.1

    In the Linux kernel, the following vulnerability has been resolved: iio: imu: bno055: fix OOB access of hw_xlate array Fix a potential out-of-bounds array access of the hw_xlate array in bno055.c. In bno055_get_regmask(), hw_xlate was iterated over the length of the vals array

  • CVE-2025-39718MedSep 5, 2025
    affected < 6.4.0-150600.23.73.1.150600.12.32.1fixed 6.4.0-150600.23.73.1.150600.12.32.1

    In the Linux kernel, the following vulnerability has been resolved: vsock/virtio: Validate length in packet header before skb_put() When receiving a vsock packet in the guest, only the virtqueue buffer size is validated prior to virtio_vsock_skb_rx_put(). Unfortunately, virtio_

  • CVE-2025-39714MedSep 5, 2025
    affected < 6.4.0-150600.23.73.1.150600.12.32.1fixed 6.4.0-150600.23.73.1.150600.12.32.1

    In the Linux kernel, the following vulnerability has been resolved: media: usbtv: Lock resolution while streaming When an program is streaming (ffplay) and another program (qv4l2) changes the TV standard from NTSC to PAL, the kernel crashes due to trying to copy to unmapped mem

  • CVE-2025-39713MedSep 5, 2025
    affected < 6.4.0-150600.23.73.1.150600.12.32.1fixed 6.4.0-150600.23.73.1.150600.12.32.1

    In the Linux kernel, the following vulnerability has been resolved: media: rainshadow-cec: fix TOCTOU race condition in rain_interrupt() In the interrupt handler rain_interrupt(), the buffer full check on rain->buf_len is performed before acquiring rain->buf_lock. This creates

Page 24 of 188