VYPR

rpm package

suse/kernel-default-base&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP2

pkg:rpm/suse/kernel-default-base&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP2

Vulnerabilities (812)

  • CVE-2024-35950MedMay 20, 2024
    affected < 5.3.18-150200.24.197.1.150200.9.101.1fixed 5.3.18-150200.24.197.1.150200.9.101.1

    In the Linux kernel, the following vulnerability has been resolved: drm/client: Fully protect modes[] with dev->mode_config.mutex The modes[] array contains pointers to modes on the connectors' mode lists, which are protected by dev->mode_config.mutex. Thus we need to extend mo

  • CVE-2024-35895MedMay 19, 2024
    affected < 5.3.18-150200.24.194.1.150200.9.99.1fixed 5.3.18-150200.24.194.1.150200.9.99.1

    In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Prevent lock inversion deadlock in map delete elem syzkaller started using corpuses where a BPF tracing program deletes elements from a sockmap/sockhash map. Because BPF tracing programs can be in

  • CVE-2024-35914May 19, 2024
    affected < 5.3.18-150200.24.194.1.150200.9.99.1fixed 5.3.18-150200.24.194.1.150200.9.99.1

    In the Linux kernel, the following vulnerability has been resolved: nfsd: Fix error cleanup path in nfsd_rename() Commit a8b0026847b8 ("rename(): avoid a deadlock in the case of parents having no common ancestor") added an error bail out path. However this path does not drop th

  • CVE-2024-35878May 19, 2024
    affected < 5.3.18-150200.24.197.1.150200.9.101.1fixed 5.3.18-150200.24.197.1.150200.9.101.1

    In the Linux kernel, the following vulnerability has been resolved: of: module: prevent NULL pointer dereference in vsnprintf() In of_modalias(), we can get passed the str and len parameters which would cause a kernel oops in vsnprintf() since it only allows passing a NULL ptr

  • CVE-2024-35864May 19, 2024
    affected < 5.3.18-150200.24.197.1.150200.9.101.1fixed 5.3.18-150200.24.197.1.150200.9.101.1

    In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF in smb2_is_valid_lease_break() Skip sessions that are being teared down (status == SES_EXITING) to avoid UAF.

  • CVE-2024-35862May 19, 2024
    affected < 5.3.18-150200.24.197.1.150200.9.101.1fixed 5.3.18-150200.24.197.1.150200.9.101.1

    In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF in smb2_is_network_name_deleted() Skip sessions that are being teared down (status == SES_EXITING) to avoid UAF.

  • CVE-2024-35861May 19, 2024
    affected < 5.3.18-150200.24.197.1.150200.9.101.1fixed 5.3.18-150200.24.197.1.150200.9.101.1

    In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF in cifs_signal_cifsd_for_reconnect() Skip sessions that are being teared down (status == SES_EXITING) to avoid UAF.

  • CVE-2023-52686May 17, 2024
    affected < 5.3.18-150200.24.194.1.150200.9.99.1fixed 5.3.18-150200.24.194.1.150200.9.99.1

    In the Linux kernel, the following vulnerability has been resolved: powerpc/powernv: Add a null pointer check in opal_event_init() kasprintf() returns a pointer to dynamically allocated memory which can be NULL upon failure.

  • CVE-2024-35811MedMay 17, 2024
    affected < 5.3.18-150200.24.194.1.150200.9.99.1fixed 5.3.18-150200.24.194.1.150200.9.99.1

    In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: Fix use-after-free bug in brcmf_cfg80211_detach This is the candidate patch of CVE-2023-47233 : https://nvd.nist.gov/vuln/detail/CVE-2023-47233 In brcm80211 driver,it starts with the following

  • CVE-2024-35789HigMay 17, 2024
    affected < 5.3.18-150200.24.197.1.150200.9.101.1fixed 5.3.18-150200.24.197.1.150200.9.101.1

    In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: check/clear fast rx for non-4addr sta VLAN changes When moving a station out of a VLAN and deleting the VLAN afterwards, the fast_rx entry still holds a pointer to the VLAN's netdev, which can c

  • CVE-2024-27413May 17, 2024
    affected < 5.3.18-150200.24.194.1.150200.9.99.1fixed 5.3.18-150200.24.194.1.150200.9.99.1

    In the Linux kernel, the following vulnerability has been resolved: efi/capsule-loader: fix incorrect allocation size gcc-14 notices that the allocation with sizeof(void) on 32-bit architectures is not enough for a 64-bit phys_addr_t: drivers/firmware/efi/capsule-loader.c: In

  • CVE-2024-27398May 13, 2024
    affected < 5.3.18-150200.24.194.1.150200.9.99.1fixed 5.3.18-150200.24.194.1.150200.9.99.1

    In the Linux kernel, the following vulnerability has been resolved: Bluetooth: Fix use-after-free bugs caused by sco_sock_timeout When the sco connection is established and then, the sco socket is releasing, timeout_work will be scheduled to judge whether the sco disconnection

  • CVE-2023-52655May 13, 2024
    affected < 5.3.18-150200.24.194.1.150200.9.99.1fixed 5.3.18-150200.24.194.1.150200.9.99.1

    In the Linux kernel, the following vulnerability has been resolved: usb: aqc111: check packet for fixup for true limit If a device sends a packet that is inbetween 0 and sizeof(u64) the value passed to skb_trim() as length will wrap around ending up as some very large value. T

  • CVE-2023-52654May 9, 2024
    affected < 5.3.18-150200.24.194.1.150200.9.99.1fixed 5.3.18-150200.24.194.1.150200.9.99.1

    In the Linux kernel, the following vulnerability has been resolved: io_uring/af_unix: disable sending io_uring over sockets File reference cycles have caused lots of problems for io_uring in the past, and it still doesn't work exactly right and races with unix_stream_read_gener

  • CVE-2022-48687May 3, 2024
    affected < 5.3.18-150200.24.191.1.150200.9.97.1fixed 5.3.18-150200.24.191.1.150200.9.97.1

    In the Linux kernel, the following vulnerability has been resolved: ipv6: sr: fix out-of-bounds read when setting HMAC data. The SRv6 layer allows defining HMAC data that can later be used to sign IPv6 Segment Routing Headers. This configuration is realised via netlink through

  • CVE-2022-48686May 3, 2024
    affected < 5.3.18-150200.24.203.1.150200.9.105.1fixed 5.3.18-150200.24.203.1.150200.9.105.1

    In the Linux kernel, the following vulnerability has been resolved: nvme-tcp: fix UAF when detecting digest errors We should also bail from the io_work loop when we set rd_enabled to true, so we don't attempt to read data from the socket when the TCP stream is already out-of-sy

  • CVE-2022-48673May 3, 2024
    affected < 5.3.18-150200.24.194.1.150200.9.99.1fixed 5.3.18-150200.24.194.1.150200.9.99.1

    In the Linux kernel, the following vulnerability has been resolved: net/smc: Fix possible access to freed memory in link clear After modifying the QP to the Error state, all RX WR would be completed with WC in IB_WC_WR_FLUSH_ERR status. Current implementation does not wait for

  • CVE-2024-27043May 1, 2024
    affected < 5.3.18-150200.24.191.1.150200.9.97.1fixed 5.3.18-150200.24.191.1.150200.9.97.1

    In the Linux kernel, the following vulnerability has been resolved: media: edia: dvbdev: fix a use-after-free In dvb_register_device, *pdvbdev is set equal to dvbdev, which is freed in several error-handling paths. However, *pdvbdev is not set to NULL after dvbdev's deallocatio

  • CVE-2024-26930May 1, 2024
    affected < 5.3.18-150200.24.194.1.150200.9.99.1fixed 5.3.18-150200.24.194.1.150200.9.99.1

    In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix double free of the ha->vp_map pointer Coverity scan reported potential risk of double free of the pointer ha->vp_map. ha->vp_map was freed in qla2x00_mem_alloc(), and again freed in function

  • CVE-2022-48664Apr 28, 2024
    affected < 5.3.18-150200.24.209.1.150200.9.109.1fixed 5.3.18-150200.24.209.1.150200.9.109.1

    In the Linux kernel, the following vulnerability has been resolved: btrfs: fix hang during unmount when stopping a space reclaim worker Often when running generic/562 from fstests we can hang during unmount, resulting in a trace like this: Sep 07 11:52:00 debian9 unknown: ru

Page 12 of 41