suse/kernel-docs&distro=SUSE Linux Enterprise High Performance Computing 15 SP5-LTSS

Vulnerabilities (2,318)

• CVE-2023-53524HigOct 1, 2025
  affected < 5.14.21-150500.55.124.1fixed 5.14.21-150500.55.124.1

  In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: pcie: Fix integer overflow in iwl_write_to_user_buf An integer overflow occurs in the iwl_write_to_user_buf() function, which is called by the iwl_dbgfs_monitor_data_read() function. static bool

• CVE-2023-53521HigOct 1, 2025
  affected < 5.14.21-150500.55.124.1fixed 5.14.21-150500.55.124.1

  In the Linux kernel, the following vulnerability has been resolved: scsi: ses: Fix slab-out-of-bounds in ses_intf_remove() A fix for: BUG: KASAN: slab-out-of-bounds in ses_intf_remove+0x23f/0x270 [ses] Read of size 8 at addr ffff88a10d32e5d8 by task rmmod/12013 When edev->com

• CVE-2023-53519MedOct 1, 2025
  affected < 5.14.21-150500.55.124.1fixed 5.14.21-150500.55.124.1

  In the Linux kernel, the following vulnerability has been resolved: media: v4l2-mem2mem: add lock to protect parameter num_rdy Getting below error when using KCSAN to check the driver. Adding lock to protect parameter num_rdy when getting the value with function: v4l2_m2m_num_s

• CVE-2023-53515HigOct 1, 2025
  affected < 5.14.21-150500.55.124.1fixed 5.14.21-150500.55.124.1

  In the Linux kernel, the following vulnerability has been resolved: virtio-mmio: don't break lifecycle of vm_dev vm_dev has a separate lifecycle because it has a 'struct device' embedded. Thus, having a release callback for it is correct. Allocating the vm_dev struct with devr

• CVE-2023-53511MedOct 1, 2025
  affected < 5.14.21-150500.55.124.1fixed 5.14.21-150500.55.124.1

  In the Linux kernel, the following vulnerability has been resolved: io_uring: fix fget leak when fs don't support nowait buffered read Heming reported a BUG when using io_uring doing link-cp on ocfs2. [1] Do the following steps can reproduce this BUG: mount -t ocfs2 /dev/vdc /

• CVE-2023-53532Oct 1, 2025
  affected < 5.14.21-150500.55.124.1fixed 5.14.21-150500.55.124.1

  In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: fix deinitialization of firmware resources Currently, in ath11k_ahb_fw_resources_init(), iommu domain mapping is done only for the chipsets having fixed firmware memory. Also, for such chipsets, m

• CVE-2023-53531Oct 1, 2025
  affected < 5.14.21-150500.55.124.1fixed 5.14.21-150500.55.124.1

  In the Linux kernel, the following vulnerability has been resolved: null_blk: fix poll request timeout handling When doing io_uring benchmark on /dev/nullb0, it's easy to crash the kernel if poll requests timeout triggered, as reported by David. [1] BUG: kernel NULL pointer de

• CVE-2023-53530Oct 1, 2025
  affected < 5.14.21-150500.55.124.1fixed 5.14.21-150500.55.124.1

  In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Use raw_smp_processor_id() instead of smp_processor_id() The following call trace was observed: localhost kernel: nvme nvme0: NVME-FC{0}: controller connect complete localhost kernel: BUG: using

• CVE-2023-53518Oct 1, 2025
  affected < 5.14.21-150500.55.124.1fixed 5.14.21-150500.55.124.1

  In the Linux kernel, the following vulnerability has been resolved: PM / devfreq: Fix leak in devfreq_dev_release() srcu_init_notifier_head() allocates resources that need to be released with a srcu_cleanup_notifier_head() call. Reported by kmemleak.

• CVE-2023-53512Oct 1, 2025
  affected < 5.14.21-150500.55.124.1fixed 5.14.21-150500.55.124.1

  In the Linux kernel, the following vulnerability has been resolved: scsi: mpt3sas: Fix a memory leak Add a forgotten kfree().

• CVE-2023-53509Oct 1, 2025
  affected < 5.14.21-150500.55.124.1fixed 5.14.21-150500.55.124.1

  In the Linux kernel, the following vulnerability has been resolved: qed: allow sleep in qed_mcp_trace_dump() By default, qed_mcp_cmd_and_union() delays 10us at a time in a loop that can run 500K times, so calls to qed_mcp_nvm_rd_cmd() may block the current thread for over 5s. W

• CVE-2023-53506Oct 1, 2025
  affected < 5.14.21-150500.55.124.1fixed 5.14.21-150500.55.124.1

  In the Linux kernel, the following vulnerability has been resolved: udf: Do not bother merging very long extents When merging very long extents we try to push as much length as possible to the first extent. However this is unnecessarily complicated and not really worth the trou

• CVE-2023-53505Oct 1, 2025
  affected < 5.14.21-150500.55.124.1fixed 5.14.21-150500.55.124.1

  In the Linux kernel, the following vulnerability has been resolved: clk: tegra: tegra124-emc: Fix potential memory leak The tegra and tegra needs to be freed in the error handling path, otherwise it will be leaked.

• CVE-2023-53500Oct 1, 2025
  affected < 5.14.21-150500.55.127.1fixed 5.14.21-150500.55.127.1

  In the Linux kernel, the following vulnerability has been resolved: xfrm: fix slab-use-after-free in decode_session6 When the xfrm device is set to the qdisc of the sfb type, the cb field of the sent skb may be modified during enqueuing. Then, slab-use-after-free may occur when

• CVE-2023-53499Oct 1, 2025
  affected < 5.14.21-150500.55.124.1fixed 5.14.21-150500.55.124.1

  In the Linux kernel, the following vulnerability has been resolved: virtio_net: Fix error unwinding of XDP initialization When initializing XDP in virtnet_open(), some rq xdp initialization may hit an error causing net device open failed. However, previous rqs have already init

• CVE-2023-53498Oct 1, 2025
  affected < 5.14.21-150500.55.124.1fixed 5.14.21-150500.55.124.1

  In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix potential null dereference The adev->dm.dc pointer can be NULL and dereferenced in amdgpu_dm_fini() without checking. Add a NULL pointer check before calling dc_dmub_srv_destroy(). Found

• CVE-2023-53496Oct 1, 2025
  affected < 5.14.21-150500.55.124.1fixed 5.14.21-150500.55.124.1

  In the Linux kernel, the following vulnerability has been resolved: x86/platform/uv: Use alternate source for socket to node data The UV code attempts to build a set of tables to allow it to do bidirectional socket<=>node lookups. But when nr_cpus is set to a smaller number th

• CVE-2023-53494Oct 1, 2025
  affected < 5.14.21-150500.55.124.1fixed 5.14.21-150500.55.124.1

  In the Linux kernel, the following vulnerability has been resolved: crypto: xts - Handle EBUSY correctly As it is xts only handles the special return value of EINPROGRESS, which means that in all other cases it will free data related to the request. However, as the caller of x

• CVE-2023-53492Oct 1, 2025
  affected < 5.14.21-150500.55.124.1fixed 5.14.21-150500.55.124.1

  In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: do not ignore genmask when looking up chain by id When adding a rule to a chain referring to its ID, if that chain had been deleted on the same batch, the rule might end up referring to a

• CVE-2023-53489Oct 1, 2025
  affected < 5.14.21-150500.55.124.1fixed 5.14.21-150500.55.124.1

  In the Linux kernel, the following vulnerability has been resolved: tcp/udp: Fix memleaks of sk and zerocopy skbs with TX timestamp. syzkaller reported [0] memory leaks of an UDP socket and ZEROCOPY skbs. We can reproduce the problem with these sequences: sk = socket(AF_INE