rpm package
suse/kernel-default-base&distro=SUSE Linux Enterprise Server 15 SP3-LTSS
pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSS
Vulnerabilities (1,483)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2023-1206 | — | < 5.3.18-150300.59.138.1.150300.18.80.2 | 5.3.18-150300.59.138.1.150300.18.80.2 | Jun 30, 2023 | A hash collision flaw was found in the IPv6 connection lookup table in the Linux kernel’s IPv6 functionality when a user makes a new kind of SYN flood attack. A user located in the local network or with a high bandwidth connection can increase the CPU usage of the server that acc | ||
| CVE-2023-3390 | — | < 5.3.18-150300.59.130.1.150300.18.76.1 | 5.3.18-150300.59.130.1.150300.18.76.1 | Jun 28, 2023 | A use-after-free vulnerability was found in the Linux kernel's netfilter subsystem in net/netfilter/nf_tables_api.c. Mishandled error handling with NFT_MSG_NEWRULE makes it possible to use a dangling pointer in the same transaction causing a use-after-free vulnerability. This fl | ||
| CVE-2023-3090 | — | < 5.3.18-150300.59.127.1.150300.18.74.1 | 5.3.18-150300.59.127.1.150300.18.74.1 | Jun 28, 2023 | A heap out-of-bounds write vulnerability in the Linux Kernel ipvlan network driver can be exploited to achieve local privilege escalation. The out-of-bounds write is caused by missing skb->cb initialization in the ipvlan network driver. The vulnerability is reachable if CONFIG_ | ||
| CVE-2023-3358 | — | < 5.3.18-150300.59.127.1.150300.18.74.1 | 5.3.18-150300.59.127.1.150300.18.74.1 | Jun 28, 2023 | A null pointer dereference was found in the Linux kernel's Integrated Sensor Hub (ISH) driver. This issue could allow a local user to crash the system. | ||
| CVE-2023-35828 | — | < 5.3.18-150300.59.127.1.150300.18.74.1 | 5.3.18-150300.59.127.1.150300.18.74.1 | Jun 18, 2023 | An issue was discovered in the Linux kernel before 6.3.2. A use-after-free was found in renesas_usb3_remove in drivers/usb/gadget/udc/renesas_usb3.c. | ||
| CVE-2023-35827 | — | < 5.3.18-150300.59.153.2.150300.18.90.2 | 5.3.18-150300.59.153.2.150300.18.90.2 | Jun 18, 2023 | An issue was discovered in the Linux kernel through 6.3.8. A use-after-free was found in ravb_remove in drivers/net/ethernet/renesas/ravb_main.c. | ||
| CVE-2023-35824 | — | < 5.3.18-150300.59.127.1.150300.18.74.1 | 5.3.18-150300.59.127.1.150300.18.74.1 | Jun 18, 2023 | An issue was discovered in the Linux kernel before 6.3.2. A use-after-free was found in dm1105_remove in drivers/media/pci/dm1105/dm1105.c. | ||
| CVE-2023-35823 | — | < 5.3.18-150300.59.127.1.150300.18.74.1 | 5.3.18-150300.59.127.1.150300.18.74.1 | Jun 18, 2023 | An issue was discovered in the Linux kernel before 6.3.2. A use-after-free was found in saa7134_finidev in drivers/media/pci/saa7134/saa7134-core.c. | ||
| CVE-2023-35788 | — | < 5.3.18-150300.59.127.1.150300.18.74.1 | 5.3.18-150300.59.127.1.150300.18.74.1 | Jun 16, 2023 | An issue was discovered in fl_set_geneve_opt in net/sched/cls_flower.c in the Linux kernel before 6.3.7. It allows an out-of-bounds write in the flower classifier code via TCA_FLOWER_KEY_ENC_OPTS_GENEVE packets. This may result in denial of service or privilege escalation. | ||
| CVE-2023-3268 | — | < 5.3.18-150300.59.127.1.150300.18.74.1 | 5.3.18-150300.59.127.1.150300.18.74.1 | Jun 16, 2023 | An out of bounds (OOB) memory access flaw was found in the Linux kernel in relay_file_read_start_pos in kernel/relay.c in the relayfs. This flaw could allow a local attacker to crash the system or leak kernel internal information. | ||
| CVE-2023-3161 | — | < 5.3.18-150300.59.127.1.150300.18.74.1 | 5.3.18-150300.59.127.1.150300.18.74.1 | Jun 12, 2023 | A flaw was found in the Framebuffer Console (fbcon) in the Linux Kernel. When providing font->width and font->height greater than 32 to fbcon_set_font, since there are no checks in place, a shift-out-of-bounds occurs leading to undefined behavior and possible denial of service. | ||
| CVE-2023-3159 | — | < 5.3.18-150300.59.127.1.150300.18.74.1 | 5.3.18-150300.59.127.1.150300.18.74.1 | Jun 12, 2023 | A use after free issue was discovered in driver/firewire in outbound_phy_packet_callback in the Linux Kernel. In this flaw a local attacker with special privilege may cause a use after free problem when queue_event() fails. | ||
| CVE-2023-3141 | — | < 5.3.18-150300.59.127.1.150300.18.74.1 | 5.3.18-150300.59.127.1.150300.18.74.1 | Jun 9, 2023 | A use-after-free flaw was found in r592_remove in drivers/memstick/host/r592.c in media access in the Linux Kernel. This flaw allows a local attacker to crash the system at device disconnect, possibly leading to a kernel information leak. | ||
| CVE-2023-3111 | — | < 5.3.18-150300.59.141.2.150300.18.82.2 | 5.3.18-150300.59.141.2.150300.18.82.2 | Jun 5, 2023 | A use after free vulnerability was found in prepare_to_relocate in fs/btrfs/relocation.c in btrfs in the Linux Kernel. This possible flaw can be triggered by calling btrfs_ioctl_balance() before calling btrfs_ioctl_defrag(). | ||
| CVE-2023-2985 | — | < 5.3.18-150300.59.130.1.150300.18.76.1 | 5.3.18-150300.59.130.1.150300.18.76.1 | Jun 1, 2023 | A use after free flaw was found in hfsplus_put_super in fs/hfsplus/super.c in the Linux Kernel. This flaw could allow a local user to cause a denial of service problem. | ||
| CVE-2023-2002 | — | < 5.3.18-150300.59.127.1.150300.18.74.1 | 5.3.18-150300.59.127.1.150300.18.74.1 | May 26, 2023 | A vulnerability was found in the HCI sockets implementation due to a missing capability check in net/bluetooth/hci_sock.c in the Linux Kernel. This flaw allows an attacker to unauthorized execution of management commands, compromising the confidentiality, integrity, and availabil | ||
| CVE-2023-0459 | — | < 5.3.18-150300.59.130.1.150300.18.76.1 | 5.3.18-150300.59.130.1.150300.18.76.1 | May 25, 2023 | Copy_from_user on 64-bit versions of the Linux kernel does not implement the __uaccess_begin_nospec allowing a user to bypass the "access_ok" check and pass a kernel pointer to copy_from_user(). This would allow an attacker to leak information. We recommend upgrading beyond commi | ||
| CVE-2023-33288 | — | < 5.3.18-150300.59.124.1.150300.18.72.1 | 5.3.18-150300.59.124.1.150300.18.72.1 | May 22, 2023 | An issue was discovered in the Linux kernel before 6.2.9. A use-after-free was found in bq24190_remove in drivers/power/supply/bq24190_charger.c. It could allow a local attacker to crash the system due to a race condition. | ||
| CVE-2020-36694 | — | < 5.3.18-150300.59.124.1.150300.18.72.1 | 5.3.18-150300.59.124.1.150300.18.72.1 | May 21, 2023 | An issue was discovered in netfilter in the Linux kernel before 5.10. There can be a use-after-free in the packet processing context, because the per-CPU sequence count is mishandled during concurrent iptables rules replacement. This could be exploited with the CAP_NET_ADMIN capa | ||
| CVE-2023-1859 | — | < 5.3.18-150300.59.138.1.150300.18.80.2 | 5.3.18-150300.59.138.1.150300.18.80.2 | May 17, 2023 | A use-after-free flaw was found in xen_9pfs_front_removet in net/9p/trans_xen.c in Xen transport for 9pfs in the Linux Kernel. This flaw could allow a local attacker to crash the system due to a race problem, possibly leading to a kernel information leak. |
- CVE-2023-1206Jun 30, 2023affected < 5.3.18-150300.59.138.1.150300.18.80.2fixed 5.3.18-150300.59.138.1.150300.18.80.2
A hash collision flaw was found in the IPv6 connection lookup table in the Linux kernel’s IPv6 functionality when a user makes a new kind of SYN flood attack. A user located in the local network or with a high bandwidth connection can increase the CPU usage of the server that acc
- CVE-2023-3390Jun 28, 2023affected < 5.3.18-150300.59.130.1.150300.18.76.1fixed 5.3.18-150300.59.130.1.150300.18.76.1
A use-after-free vulnerability was found in the Linux kernel's netfilter subsystem in net/netfilter/nf_tables_api.c. Mishandled error handling with NFT_MSG_NEWRULE makes it possible to use a dangling pointer in the same transaction causing a use-after-free vulnerability. This fl
- CVE-2023-3090Jun 28, 2023affected < 5.3.18-150300.59.127.1.150300.18.74.1fixed 5.3.18-150300.59.127.1.150300.18.74.1
A heap out-of-bounds write vulnerability in the Linux Kernel ipvlan network driver can be exploited to achieve local privilege escalation. The out-of-bounds write is caused by missing skb->cb initialization in the ipvlan network driver. The vulnerability is reachable if CONFIG_
- CVE-2023-3358Jun 28, 2023affected < 5.3.18-150300.59.127.1.150300.18.74.1fixed 5.3.18-150300.59.127.1.150300.18.74.1
A null pointer dereference was found in the Linux kernel's Integrated Sensor Hub (ISH) driver. This issue could allow a local user to crash the system.
- CVE-2023-35828Jun 18, 2023affected < 5.3.18-150300.59.127.1.150300.18.74.1fixed 5.3.18-150300.59.127.1.150300.18.74.1
An issue was discovered in the Linux kernel before 6.3.2. A use-after-free was found in renesas_usb3_remove in drivers/usb/gadget/udc/renesas_usb3.c.
- CVE-2023-35827Jun 18, 2023affected < 5.3.18-150300.59.153.2.150300.18.90.2fixed 5.3.18-150300.59.153.2.150300.18.90.2
An issue was discovered in the Linux kernel through 6.3.8. A use-after-free was found in ravb_remove in drivers/net/ethernet/renesas/ravb_main.c.
- CVE-2023-35824Jun 18, 2023affected < 5.3.18-150300.59.127.1.150300.18.74.1fixed 5.3.18-150300.59.127.1.150300.18.74.1
An issue was discovered in the Linux kernel before 6.3.2. A use-after-free was found in dm1105_remove in drivers/media/pci/dm1105/dm1105.c.
- CVE-2023-35823Jun 18, 2023affected < 5.3.18-150300.59.127.1.150300.18.74.1fixed 5.3.18-150300.59.127.1.150300.18.74.1
An issue was discovered in the Linux kernel before 6.3.2. A use-after-free was found in saa7134_finidev in drivers/media/pci/saa7134/saa7134-core.c.
- CVE-2023-35788Jun 16, 2023affected < 5.3.18-150300.59.127.1.150300.18.74.1fixed 5.3.18-150300.59.127.1.150300.18.74.1
An issue was discovered in fl_set_geneve_opt in net/sched/cls_flower.c in the Linux kernel before 6.3.7. It allows an out-of-bounds write in the flower classifier code via TCA_FLOWER_KEY_ENC_OPTS_GENEVE packets. This may result in denial of service or privilege escalation.
- CVE-2023-3268Jun 16, 2023affected < 5.3.18-150300.59.127.1.150300.18.74.1fixed 5.3.18-150300.59.127.1.150300.18.74.1
An out of bounds (OOB) memory access flaw was found in the Linux kernel in relay_file_read_start_pos in kernel/relay.c in the relayfs. This flaw could allow a local attacker to crash the system or leak kernel internal information.
- CVE-2023-3161Jun 12, 2023affected < 5.3.18-150300.59.127.1.150300.18.74.1fixed 5.3.18-150300.59.127.1.150300.18.74.1
A flaw was found in the Framebuffer Console (fbcon) in the Linux Kernel. When providing font->width and font->height greater than 32 to fbcon_set_font, since there are no checks in place, a shift-out-of-bounds occurs leading to undefined behavior and possible denial of service.
- CVE-2023-3159Jun 12, 2023affected < 5.3.18-150300.59.127.1.150300.18.74.1fixed 5.3.18-150300.59.127.1.150300.18.74.1
A use after free issue was discovered in driver/firewire in outbound_phy_packet_callback in the Linux Kernel. In this flaw a local attacker with special privilege may cause a use after free problem when queue_event() fails.
- CVE-2023-3141Jun 9, 2023affected < 5.3.18-150300.59.127.1.150300.18.74.1fixed 5.3.18-150300.59.127.1.150300.18.74.1
A use-after-free flaw was found in r592_remove in drivers/memstick/host/r592.c in media access in the Linux Kernel. This flaw allows a local attacker to crash the system at device disconnect, possibly leading to a kernel information leak.
- CVE-2023-3111Jun 5, 2023affected < 5.3.18-150300.59.141.2.150300.18.82.2fixed 5.3.18-150300.59.141.2.150300.18.82.2
A use after free vulnerability was found in prepare_to_relocate in fs/btrfs/relocation.c in btrfs in the Linux Kernel. This possible flaw can be triggered by calling btrfs_ioctl_balance() before calling btrfs_ioctl_defrag().
- CVE-2023-2985Jun 1, 2023affected < 5.3.18-150300.59.130.1.150300.18.76.1fixed 5.3.18-150300.59.130.1.150300.18.76.1
A use after free flaw was found in hfsplus_put_super in fs/hfsplus/super.c in the Linux Kernel. This flaw could allow a local user to cause a denial of service problem.
- CVE-2023-2002May 26, 2023affected < 5.3.18-150300.59.127.1.150300.18.74.1fixed 5.3.18-150300.59.127.1.150300.18.74.1
A vulnerability was found in the HCI sockets implementation due to a missing capability check in net/bluetooth/hci_sock.c in the Linux Kernel. This flaw allows an attacker to unauthorized execution of management commands, compromising the confidentiality, integrity, and availabil
- CVE-2023-0459May 25, 2023affected < 5.3.18-150300.59.130.1.150300.18.76.1fixed 5.3.18-150300.59.130.1.150300.18.76.1
Copy_from_user on 64-bit versions of the Linux kernel does not implement the __uaccess_begin_nospec allowing a user to bypass the "access_ok" check and pass a kernel pointer to copy_from_user(). This would allow an attacker to leak information. We recommend upgrading beyond commi
- CVE-2023-33288May 22, 2023affected < 5.3.18-150300.59.124.1.150300.18.72.1fixed 5.3.18-150300.59.124.1.150300.18.72.1
An issue was discovered in the Linux kernel before 6.2.9. A use-after-free was found in bq24190_remove in drivers/power/supply/bq24190_charger.c. It could allow a local attacker to crash the system due to a race condition.
- CVE-2020-36694May 21, 2023affected < 5.3.18-150300.59.124.1.150300.18.72.1fixed 5.3.18-150300.59.124.1.150300.18.72.1
An issue was discovered in netfilter in the Linux kernel before 5.10. There can be a use-after-free in the packet processing context, because the per-CPU sequence count is mishandled during concurrent iptables rules replacement. This could be exploited with the CAP_NET_ADMIN capa
- CVE-2023-1859May 17, 2023affected < 5.3.18-150300.59.138.1.150300.18.80.2fixed 5.3.18-150300.59.138.1.150300.18.80.2
A use-after-free flaw was found in xen_9pfs_front_removet in net/9p/trans_xen.c in Xen transport for 9pfs in the Linux Kernel. This flaw could allow a local attacker to crash the system due to a race problem, possibly leading to a kernel information leak.
Page 67 of 75