suse/kernel-docs&distro=SUSE Linux Enterprise High Performance Computing 15 SP4-ESPOS

Vulnerabilities (2,830)

• CVE-2023-52502Mar 2, 2024
  affected < 5.14.21-150400.24.116.1fixed 5.14.21-150400.24.116.1

  In the Linux kernel, the following vulnerability has been resolved: net: nfc: fix races in nfc_llcp_sock_get() and nfc_llcp_sock_get_sn() Sili Luo reported a race in nfc_llcp_sock_get(), leading to UAF. Getting a reference on the socket found in a lookup while holding a lock s

• CVE-2023-52501Mar 2, 2024
  affected < 5.14.21-150400.24.116.1fixed 5.14.21-150400.24.116.1

  In the Linux kernel, the following vulnerability has been resolved: ring-buffer: Do not attempt to read past "commit" When iterating over the ring buffer while the ring buffer is active, the writer can corrupt the reader. There's barriers to help detect this and handle it, but

• CVE-2023-52500Mar 2, 2024
  affected < 5.14.21-150400.24.119.1fixed 5.14.21-150400.24.119.1

  In the Linux kernel, the following vulnerability has been resolved: scsi: pm80xx: Avoid leaking tags when processing OPC_INB_SET_CONTROLLER_CONFIG command Tags allocated for OPC_INB_SET_CONTROLLER_CONFIG command need to be freed when we receive the response.

• CVE-2022-48627Mar 2, 2024
  affected < 5.14.21-150400.24.111.2fixed 5.14.21-150400.24.111.2

  In the Linux kernel, the following vulnerability has been resolved: vt: fix memory overlapping when deleting chars in the buffer A memory overlapping copy occurs when deleting a long line. This memory overlapping copy can cause data corruption when scr_memcpyw is optimized to m

• CVE-2024-26614Feb 29, 2024
  affected < 5.14.21-150400.24.119.1fixed 5.14.21-150400.24.119.1

  In the Linux kernel, the following vulnerability has been resolved: tcp: make sure init the accept_queue's spinlocks once When I run syz's reproduction C program locally, it causes the following issue: pvqspinlock: lock 0xffff9d181cd5c660 has corrupted value 0x0! WARNING: CPU:

• CVE-2024-26610Feb 29, 2024
  affected < 5.14.21-150400.24.119.1fixed 5.14.21-150400.24.119.1

  In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: fix a memory corruption iwl_fw_ini_trigger_tlv::data is a pointer to a __le32, which means that if we copy to iwl_fw_ini_trigger_tlv::data + offset while offset is in bytes, we'll write past the

• CVE-2023-52497Feb 29, 2024
  affected < 5.14.21-150400.24.116.1fixed 5.14.21-150400.24.116.1

  In the Linux kernel, the following vulnerability has been resolved: erofs: fix lz4 inplace decompression Currently EROFS can map another compressed buffer for inplace decompression, that was used to handle the cases that some pages of compressed data are actually not in-place I

• CVE-2023-52492Feb 29, 2024
  affected < 5.14.21-150400.24.116.1fixed 5.14.21-150400.24.116.1

  In the Linux kernel, the following vulnerability has been resolved: dmaengine: fix NULL pointer in channel unregistration function __dma_async_device_channel_register() can fail. In case of failure, chan->local is freed (with free_percpu()), and chan->local is nullified. When d

• CVE-2023-52489Feb 29, 2024
  affected < 5.14.21-150400.24.133.1fixed 5.14.21-150400.24.133.1

  In the Linux kernel, the following vulnerability has been resolved: mm/sparsemem: fix race in accessing memory_section->usage The below race is observed on a PFN which falls into the device memory region with the system memory configuration where PFN's are such that [ZONE_NORMA

• CVE-2024-26607Feb 29, 2024
  affected < 5.14.21-150400.24.111.2fixed 5.14.21-150400.24.111.2

  In the Linux kernel, the following vulnerability has been resolved: drm/bridge: sii902x: Fix probing race issue A null pointer dereference crash has been observed rarely on TI platforms using sii9022 bridge: [ 53.271356] sii902x_get_edid+0x34/0x70 [sii902x] [ 53.276066]

• CVE-2023-52484Feb 29, 2024
  affected < 5.14.21-150400.24.111.2fixed 5.14.21-150400.24.111.2

  In the Linux kernel, the following vulnerability has been resolved: iommu/arm-smmu-v3: Fix soft lockup triggered by arm_smmu_mm_invalidate_range When running an SVA case, the following soft lockup is triggered: -------------------------------------------------------------------

• CVE-2023-52482Feb 29, 2024
  affected < 5.14.21-150400.24.111.2fixed 5.14.21-150400.24.111.2

  In the Linux kernel, the following vulnerability has been resolved: x86/srso: Add SRSO mitigation for Hygon processors Add mitigation for the speculative return stack overflow vulnerability which exists on Hygon processors too.

• CVE-2023-52478Feb 29, 2024
  affected < 5.14.21-150400.24.111.2fixed 5.14.21-150400.24.111.2

  In the Linux kernel, the following vulnerability has been resolved: HID: logitech-hidpp: Fix kernel crash on receiver USB disconnect hidpp_connect_event() has *four* time-of-check vs time-of-use (TOCTOU) races when it races with itself. hidpp_connect_event() primarily runs fro

• CVE-2023-52477Feb 29, 2024
  affected < 5.14.21-150400.24.116.1fixed 5.14.21-150400.24.116.1

  In the Linux kernel, the following vulnerability has been resolved: usb: hub: Guard against accesses to uninitialized BOS descriptors Many functions in drivers/usb/core/hub.c and drivers/usb/core/hub.h access fields inside udev->bos without checking if it was allocated and init

• CVE-2023-52476Feb 29, 2024
  affected < 5.14.21-150400.24.119.1fixed 5.14.21-150400.24.119.1

  In the Linux kernel, the following vulnerability has been resolved: perf/x86/lbr: Filter vsyscall addresses We found that a panic can occur when a vsyscall is made while LBR sampling is active. If the vsyscall is interrupted (NMI) for perf sampling, this call sequence can occur

• CVE-2023-52475Feb 29, 2024
  affected < 5.14.21-150400.24.111.2fixed 5.14.21-150400.24.111.2

  In the Linux kernel, the following vulnerability has been resolved: Input: powermate - fix use-after-free in powermate_config_complete syzbot has found a use-after-free bug [1] in the powermate driver. This happens when the device is disconnected, which leads to a memory free f

• CVE-2023-51779HigFeb 29, 2024
  affected < 5.14.21-150400.24.103.1fixed 5.14.21-150400.24.103.1

  bt_sock_recvmsg in net/bluetooth/af_bluetooth.c in the Linux kernel through 6.6.8 has a use-after-free because of a bt_sock_ioctl race condition.

• CVE-2021-47047Feb 28, 2024
  affected < 5.14.21-150400.24.119.1fixed 5.14.21-150400.24.119.1

  In the Linux kernel, the following vulnerability has been resolved: spi: spi-zynqmp-gqspi: return -ENOMEM if dma_map_single fails The spi controller supports 44-bit address space on AXI in DMA mode, so set dma_addr_t width to 44-bit to avoid using a swiotlb mapping. In addition

• CVE-2021-46936Feb 27, 2024
  affected < 5.14.21-150400.24.116.1fixed 5.14.21-150400.24.116.1

  In the Linux kernel, the following vulnerability has been resolved: net: fix use-after-free in tw_timer_handler A real world panic issue was found as follow in Linux 5.4. BUG: unable to handle page fault for address: ffffde49a863de28 PGD 7e6fe62067 P4D 7e6fe62067 PUD 7

• CVE-2021-46934Feb 27, 2024
  affected < 5.14.21-150400.24.111.2fixed 5.14.21-150400.24.111.2

  In the Linux kernel, the following vulnerability has been resolved: i2c: validate user data in compat ioctl Wrong user data may cause warning in i2c_transfer(), ex: zero msgs. Userspace should not be able to trigger warnings, so this patch adds validation checks for user data i