VYPR

rpm package

suse/kernel-docs&distro=SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS

pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-LTSS

Vulnerabilities (1,350)

  • CVE-2021-47324May 21, 2024
    affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

    In the Linux kernel, the following vulnerability has been resolved: watchdog: Fix possible use-after-free in wdt_startup() This module's remove path calls del_timer(). However, that function does not wait until the timer handler finishes. This means that the timer handler may s

  • CVE-2021-47323May 21, 2024
    affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

    In the Linux kernel, the following vulnerability has been resolved: watchdog: sc520_wdt: Fix possible use-after-free in wdt_turnoff() This module's remove path calls del_timer(). However, that function does not wait until the timer handler finishes. This means that the timer ha

  • CVE-2021-47321May 21, 2024
    affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

    In the Linux kernel, the following vulnerability has been resolved: watchdog: Fix possible use-after-free by calling del_timer_sync() This driver's remove path calls del_timer(). However, that function does not wait until the timer handler finishes. This means that the timer ha

  • CVE-2021-47320May 21, 2024
    affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

    In the Linux kernel, the following vulnerability has been resolved: nfs: fix acl memory leak of posix_acl_create() When looking into another nfs xfstests report, I found acl and default_acl in nfs3_proc_create() and nfs3_proc_mknod() error paths are possibly leaked. Fix them in

  • CVE-2021-47315May 21, 2024
    affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

    In the Linux kernel, the following vulnerability has been resolved: memory: fsl_ifc: fix leak of IO mapping on probe failure On probe error the driver should unmap the IO memory. Smatch reports: drivers/memory/fsl_ifc.c:298 fsl_ifc_ctrl_probe() warn: 'fsl_ifc_ctrl_dev->greg

  • CVE-2021-47314May 21, 2024
    affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

    In the Linux kernel, the following vulnerability has been resolved: memory: fsl_ifc: fix leak of private memory on probe failure On probe error the driver should free the memory allocated for private structure. Fix this by using resource-managed allocation.

  • CVE-2021-47311May 21, 2024
    affected < 5.3.18-150300.59.167.1fixed 5.3.18-150300.59.167.1

    In the Linux kernel, the following vulnerability has been resolved: net: qcom/emac: fix UAF in emac_remove adpt is netdev private data and it cannot be used after free_netdev() call. Using adpt after free_netdev() can cause UAF bug. Fix it by moving free_netdev() at the end of

  • CVE-2021-47308May 21, 2024
    affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

    In the Linux kernel, the following vulnerability has been resolved: scsi: libfc: Fix array index out of bound exception Fix array index out of bound exception in fc_rport_prli_resp().

  • CVE-2021-47307May 21, 2024
    affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

    In the Linux kernel, the following vulnerability has been resolved: cifs: prevent NULL deref in cifs_compose_mount_options() The optional @ref parameter might contain an NULL node_name, so prevent dereferencing it in cifs_compose_mount_options(). Addresses-Coverity: 1476408 ("

  • CVE-2021-47305May 21, 2024
    affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

    In the Linux kernel, the following vulnerability has been resolved: dma-buf/sync_file: Don't leak fences on merge failure Each add_fence() call does a dma_fence_get() on the relevant fence. In the error path, we weren't calling dma_fence_put() so all those fences got leaked.

  • CVE-2021-47302May 21, 2024
    affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

    In the Linux kernel, the following vulnerability has been resolved: igc: Fix use-after-free error during reset Cleans the next descriptor to watch (next_to_watch) when cleaning the TX ring. Failure to do so can cause invalid memory accesses. If igc_poll() runs while the contro

  • CVE-2021-47301May 21, 2024
    affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

    In the Linux kernel, the following vulnerability has been resolved: igb: Fix use-after-free error during reset Cleans the next descriptor to watch (next_to_watch) when cleaning the TX ring. Failure to do so can cause invalid memory accesses. If igb_poll() runs while the contro

  • CVE-2021-47296May 21, 2024
    affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

    In the Linux kernel, the following vulnerability has been resolved: KVM: PPC: Fix kvm_arch_vcpu_ioctl vcpu_load leak vcpu_put is not called if the user copy fails. This can result in preempt notifier corruption and crashes, among other issues.

  • CVE-2021-47291May 21, 2024
    affected < 5.3.18-150300.59.170.2fixed 5.3.18-150300.59.170.2

    In the Linux kernel, the following vulnerability has been resolved: ipv6: fix another slab-out-of-bounds in fib6_nh_flush_exceptions While running the self-tests on a KASAN enabled kernel, I observed a slab-out-of-bounds splat very similar to the one reported in commit 821bbf79

  • CVE-2021-47289May 21, 2024
    affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

    In the Linux kernel, the following vulnerability has been resolved: ACPI: fix NULL pointer dereference Commit 71f642833284 ("ACPI: utils: Fix reference counting in for_each_acpi_dev_match()") started doing "acpi_dev_put()" on a pointer that was possibly NULL. That fails misera

  • CVE-2021-47288May 21, 2024
    affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

    In the Linux kernel, the following vulnerability has been resolved: media: ngene: Fix out-of-bounds bug in ngene_command_config_free_buf() Fix an 11-year old bug in ngene_command_config_free_buf() while addressing the following warnings caught with -Warray-bounds: arch/alpha/i

  • CVE-2021-47284May 21, 2024
    affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

    In the Linux kernel, the following vulnerability has been resolved: isdn: mISDN: netjet: Fix crash in nj_probe: 'nj_setup' in netjet.c might fail with -EIO and in this case 'card->irq' is initialized and is bigger than zero. A subsequent call to 'nj_release' will free the irq t

  • CVE-2021-47281May 21, 2024
    affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

    In the Linux kernel, the following vulnerability has been resolved: ALSA: seq: Fix race of snd_seq_timer_open() The timer instance per queue is exclusive, and snd_seq_timer_open() should have managed the concurrent accesses. It looks as if it's checking the already existing ti

  • CVE-2021-47280May 21, 2024
    affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

    In the Linux kernel, the following vulnerability has been resolved: drm: Fix use-after-free read in drm_getunique() There is a time-of-check-to-time-of-use error in drm_getunique() due to retrieving file_priv->master prior to locking the device's master mutex. An example can b

  • CVE-2021-47276May 21, 2024
    affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

    In the Linux kernel, the following vulnerability has been resolved: ftrace: Do not blindly read the ip address in ftrace_bug() It was reported that a bug on arm64 caused a bad ip address to be used for updating into a nop in ftrace_init(), but the error path (rightfully) return

Page 40 of 68