suse/kernel-docs&distro=SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS

Vulnerabilities (1,350)

• CVE-2021-47275May 21, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: bcache: avoid oversized read request in cache missing code path In the cache missing code path of cached device, if a proper location from the internal B+ tree is matched for a cache miss range, function cached

• CVE-2021-47274May 21, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: tracing: Correct the length check which causes memory corruption We've suffered from severe kernel crashes due to memory corruption on our production environment, like, Call Trace: [1640542.554277] general pro

• CVE-2021-47270May 21, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: usb: fix various gadgets null ptr deref on 10gbps cabling. This avoids a null pointer dereference in f_{ecm,eem,hid,loopback,printer,rndis,serial,sourcesink,subset,tcm} by simply reusing the 5gbps config for 10

• CVE-2021-47269May 21, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: ep0: fix NULL pointer exception There is no validation of the index from dwc3_wIndex_to_dep() and we might be referring a non-existing ep and trigger a NULL pointer exception. In certain configuratio

• CVE-2021-47267May 21, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: usb: fix various gadget panics on 10gbps cabling usb_assign_descriptors() is called with 5 parameters, the last 4 of which are the usb_descriptor_header for: full-speed (USB1.1 - 12Mbps [including USB1.0 low-

• CVE-2021-47265May 21, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: RDMA: Verify port when creating flow rule Validate port value provided by the user and with that remove no longer needed validation by the driver. The missing check in the mlx5_ib driver could cause to the bel

• CVE-2021-47263May 21, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: gpio: wcd934x: Fix shift-out-of-bounds error bit-mask for pins 0 to 4 is BIT(0) to BIT(4) however we ended up with BIT(n - 1) which is not right, and this was caught by below usban check UBSAN: shift-out-of-bo

• CVE-2021-47261May 21, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: IB/mlx5: Fix initializing CQ fragments buffer The function init_cq_frag_buf() can be called to initialize the current CQ fragments buffer cq->buf, or the temporary cq->resize_buf that is filled during CQ resize

• CVE-2021-47260May 21, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: NFS: Fix a potential NULL dereference in nfs_get_client() None of the callers are expecting NULL returns from nfs_get_client() so this code will lead to an Oops. It's better to return an error pointer. I expe

• CVE-2021-47259May 21, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: NFS: Fix use-after-free in nfs4_init_client() KASAN reports a use-after-free when attempting to mount two different exports through two different NICs that belong to the same server. Olga was able to hit this

• CVE-2021-47258May 21, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: scsi: core: Fix error handling of scsi_host_alloc() After device is initialized via device_initialize(), or its name is set via dev_set_name(), the device has to be freed via put_device(). Otherwise device nam

• CVE-2021-47255May 21, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: kvm: LAPIC: Restore guard to prevent illegal APIC register access Per the SDM, "any access that touches bytes 4 through 15 of an APIC register may cause undefined behavior and must not be executed." Worse, such

• CVE-2021-47254May 21, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: gfs2: Fix use-after-free in gfs2_glock_shrink_scan The GLF_LRU flag is checked under lru_lock in gfs2_glock_remove_from_lru() to remove the glock from the lru list in __gfs2_glock_put(). On the shrink scan pat

• CVE-2021-47253May 21, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix potential memory leak in DMUB hw_init [Why] On resume we perform DMUB hw_init which allocates memory: dm_resume->dm_dmub_hw_init->dc_dmub_srv_create->kzalloc That results in memory leak in

• CVE-2021-47252May 21, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: batman-adv: Avoid WARN_ON timing related checks The soft/batadv interface for a queued OGM can be changed during the time the OGM was queued for transmission and when the OGM is actually transmitted by the work

• CVE-2021-47248May 21, 2024
  affected < 5.3.18-150300.59.201.1fixed 5.3.18-150300.59.201.1

  In the Linux kernel, the following vulnerability has been resolved: udp: fix race between close() and udp_abort() Kaustubh reported and diagnosed a panic in udp_lib_lookup(). The root cause is udp_abort() racing with close(). Both racing functions acquire the socket lock, but u

• CVE-2021-47247May 21, 2024
  affected < 5.3.18-150300.59.167.1fixed 5.3.18-150300.59.167.1

  In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix use-after-free of encap entry in neigh update handler Function mlx5e_rep_neigh_update() wasn't updated to accommodate rtnl lock removal from TC filter update path and properly handle concurrent e

• CVE-2021-47246May 21, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix page reclaim for dead peer hairpin When adding a hairpin flow, a firmware-side send queue is created for the peer net device, which claims some host memory pages for its internal ring buffer. If

• CVE-2021-47241May 21, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: ethtool: strset: fix message length calculation Outer nest for ETHTOOL_A_STRSET_STRINGSETS is not accounted for. This may result in ETHTOOL_MSG_STRSET_GET producing a warning like: calculated message paylo

• CVE-2021-47240May 21, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: net: qrtr: fix OOB Read in qrtr_endpoint_post Syzbot reported slab-out-of-bounds Read in qrtr_endpoint_post. The problem was in wrong _size_ type: if (len != ALIGN(size, 4) + hdrlen) goto err; If size from