VYPR

rpm package

suse/kernel-docs&distro=SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS

pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-LTSS

Vulnerabilities (2,310)

  • CVE-2024-49944MedOct 21, 2024
    affected < 5.14.21-150500.55.91.1fixed 5.14.21-150500.55.91.1

    In the Linux kernel, the following vulnerability has been resolved: sctp: set sk_state back to CLOSED if autobind fails in sctp_listen_start In sctp_listen_start() invoked by sctp_inet_listen(), it should set the sk_state back to CLOSED if sctp_autobind() fails due to whatever

  • CVE-2024-47678Oct 21, 2024
    affected < 5.14.21-150500.55.91.1fixed 5.14.21-150500.55.91.1

    In the Linux kernel, the following vulnerability has been resolved: icmp: change the order of rate limits ICMP messages are ratelimited : After the blamed commits, the two rate limiters are applied in this order: 1) host wide ratelimit (icmp_global_allow()) 2) Per destinatio

  • CVE-2024-47666Oct 9, 2024
    affected < 5.14.21-150500.55.91.1fixed 5.14.21-150500.55.91.1

    In the Linux kernel, the following vulnerability has been resolved: scsi: pm80xx: Set phy->enable_completion only when we wait for it pm8001_phy_control() populates the enable_completion pointer with a stack address, sends a PHY_LINK_RESET / PHY_HARD_RESET, waits 300 ms, and re

  • CVE-2024-46865HigSep 27, 2024
    affected < 5.14.21-150500.55.103.1fixed 5.14.21-150500.55.103.1

    In the Linux kernel, the following vulnerability has been resolved: fou: fix initialization of grc The grc must be initialize first. There can be a condition where if fou is NULL, goto out will be executed and grc would be used uninitialized.

  • CVE-2024-46858Sep 27, 2024
    affected < 5.14.21-150500.55.94.1fixed 5.14.21-150500.55.94.1

    In the Linux kernel, the following vulnerability has been resolved: mptcp: pm: Fix uaf in __timer_delete_sync There are two paths to access mptcp_pm_del_add_timer, result in a race condition: CPU1 CPU2 ==== ==== net_rx_action

  • CVE-2024-46800Sep 18, 2024
    affected < 5.14.21-150500.55.113.1fixed 5.14.21-150500.55.113.1

    In the Linux kernel, the following vulnerability has been resolved: sch/netem: fix use after free in netem_dequeue If netem_dequeue() enqueues packet to inner qdisc and that qdisc returns __NET_XMIT_STOLEN. The packet is dropped but qdisc_tree_reduce_backlog() is not called to

  • CVE-2024-46763Sep 18, 2024
    affected < 5.14.21-150500.55.103.1fixed 5.14.21-150500.55.103.1

    In the Linux kernel, the following vulnerability has been resolved: fou: Fix null-ptr-deref in GRO. We observed a null-ptr-deref in fou_gro_receive() while shutting down a host. [0] The NULL pointer is sk->sk_user_data, and the offset 8 is of protocol in struct fou. When fou

  • CVE-2024-45019Sep 11, 2024
    affected < 5.14.21-150500.55.94.1fixed 5.14.21-150500.55.94.1

    In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Take state lock during tx timeout reporter mlx5e_safe_reopen_channels() requires the state lock taken. The referenced changed in the Fixes tag removed the lock to fix another issue. This patch adds i

  • CVE-2024-44934Aug 26, 2024
    affected < 5.14.21-150500.55.91.1fixed 5.14.21-150500.55.91.1

    In the Linux kernel, the following vulnerability has been resolved: net: bridge: mcast: wait for previous gc cycles when removing port syzbot hit a use-after-free[1] which is caused because the bridge doesn't make sure that all previous garbage has been collected when removing

  • CVE-2022-48933Aug 22, 2024
    affected < 5.14.21-150500.55.103.1fixed 5.14.21-150500.55.103.1

    In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: fix memory leak during stateful obj update stateful objects can be updated from the control plane. The transaction logic allocates a temporary object for this purpose. The ->init function

  • CVE-2024-42265MedAug 17, 2024
    affected < 5.14.21-150500.55.121.1fixed 5.14.21-150500.55.121.1

    In the Linux kernel, the following vulnerability has been resolved: protect the fetch of ->fd[fd] in do_dup2() from mispredictions both callers have verified that fd is not greater than ->max_fds; however, misprediction might end up with tofree = fdt->fd[fd]; being spec

  • CVE-2024-42307Aug 17, 2024
    affected < 5.14.21-150500.55.103.1fixed 5.14.21-150500.55.103.1

    In the Linux kernel, the following vulnerability has been resolved: cifs: fix potential null pointer use in destroy_workqueue in init_cifs error path Dan Carpenter reported a Smack static checker warning: fs/smb/client/cifsfs.c:1981 init_cifs() error: we previously assume

  • CVE-2024-42232Aug 7, 2024
    affected < 5.14.21-150500.55.91.1fixed 5.14.21-150500.55.91.1

    In the Linux kernel, the following vulnerability has been resolved: libceph: fix race between delayed_work() and ceph_monc_stop() The way the delayed work is handled in ceph_monc_stop() is prone to races with mon_fault() and possibly also finish_hunting(). Both of these can re

  • CVE-2024-41047Jul 29, 2024
    affected < 5.14.21-150500.55.94.1fixed 5.14.21-150500.55.94.1

    In the Linux kernel, the following vulnerability has been resolved: i40e: Fix XDP program unloading while removing the driver The commit 6533e558c650 ("i40e: Fix reset path while removing the driver") introduced a new PF state "__I40E_IN_REMOVE" to block modifying the XDP progr

  • CVE-2022-48853Jul 16, 2024
    affected < 5.14.21-150500.55.133.1fixed 5.14.21-150500.55.133.1

    In the Linux kernel, the following vulnerability has been resolved: swiotlb: fix info leak with DMA_FROM_DEVICE The problem I'm addressing was discovered by the LTP test covering cve-2018-1000204. A short description of what happens follows: 1) The test case issues a command c

  • CVE-2022-48742Jun 20, 2024
    affected < 5.14.21-150500.55.91.1fixed 5.14.21-150500.55.91.1

    In the Linux kernel, the following vulnerability has been resolved: rtnetlink: make sure to refresh master_dev/m_ops in __rtnl_newlink() While looking at one unrelated syzbot bug, I found the replay logic in __rtnl_newlink() to potentially trigger use-after-free. It is better

  • CVE-2021-47595Jun 19, 2024
    affected < 5.14.21-150500.55.113.1fixed 5.14.21-150500.55.113.1

    In the Linux kernel, the following vulnerability has been resolved: net/sched: sch_ets: don't remove idle classes from the round-robin list Shuang reported that the following script: 1) tc qdisc add dev ddd0 handle 10: parent 1: ets bands 8 strict 4 priomap 7 7 7 7 7 7 7 7 7

  • CVE-2024-38599HigJun 19, 2024
    affected < 5.14.21-150500.55.94.1fixed 5.14.21-150500.55.94.1

    In the Linux kernel, the following vulnerability has been resolved: jffs2: prevent xattr node from overflowing the eraseblock Add a check to make sure that the requested xattr node size is no larger than the eraseblock minus the cleanmarker. Unlike the usual inode nodes, the x

  • CVE-2024-36978HigJun 19, 2024
    affected < 5.14.21-150500.55.113.1fixed 5.14.21-150500.55.113.1

    In the Linux kernel, the following vulnerability has been resolved: net: sched: sch_multiq: fix possible OOB write in multiq_tune() q->bands will be assigned to qopt->bands to execute subsequent code logic after kmalloc. So the old q->bands should not be used in kmalloc. Otherw

  • CVE-2024-36898HigMay 30, 2024
    affected < 5.14.21-150500.55.94.1fixed 5.14.21-150500.55.94.1

    In the Linux kernel, the following vulnerability has been resolved: gpiolib: cdev: fix uninitialised kfifo If a line is requested with debounce, and that results in debouncing in software, and the line is subsequently reconfigured to enable edge detection then the allocation of

Page 112 of 116