suse/kernel-docs&distro=SUSE Linux Enterprise Server 15 SP3-LTSS

Vulnerabilities (1,483)

• CVE-2021-47254May 21, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: gfs2: Fix use-after-free in gfs2_glock_shrink_scan The GLF_LRU flag is checked under lru_lock in gfs2_glock_remove_from_lru() to remove the glock from the lru list in __gfs2_glock_put(). On the shrink scan pat

• CVE-2021-47253May 21, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix potential memory leak in DMUB hw_init [Why] On resume we perform DMUB hw_init which allocates memory: dm_resume->dm_dmub_hw_init->dc_dmub_srv_create->kzalloc That results in memory leak in

• CVE-2021-47252May 21, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: batman-adv: Avoid WARN_ON timing related checks The soft/batadv interface for a queued OGM can be changed during the time the OGM was queued for transmission and when the OGM is actually transmitted by the work

• CVE-2021-47248May 21, 2024
  affected < 5.3.18-150300.59.201.1fixed 5.3.18-150300.59.201.1

  In the Linux kernel, the following vulnerability has been resolved: udp: fix race between close() and udp_abort() Kaustubh reported and diagnosed a panic in udp_lib_lookup(). The root cause is udp_abort() racing with close(). Both racing functions acquire the socket lock, but u

• CVE-2021-47247May 21, 2024
  affected < 5.3.18-150300.59.167.1fixed 5.3.18-150300.59.167.1

  In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix use-after-free of encap entry in neigh update handler Function mlx5e_rep_neigh_update() wasn't updated to accommodate rtnl lock removal from TC filter update path and properly handle concurrent e

• CVE-2021-47246May 21, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix page reclaim for dead peer hairpin When adding a hairpin flow, a firmware-side send queue is created for the peer net device, which claims some host memory pages for its internal ring buffer. If

• CVE-2021-47241May 21, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: ethtool: strset: fix message length calculation Outer nest for ETHTOOL_A_STRSET_STRINGSETS is not accounted for. This may result in ETHTOOL_MSG_STRSET_GET producing a warning like: calculated message paylo

• CVE-2021-47240May 21, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: net: qrtr: fix OOB Read in qrtr_endpoint_post Syzbot reported slab-out-of-bounds Read in qrtr_endpoint_post. The problem was in wrong _size_ type: if (len != ALIGN(size, 4) + hdrlen) goto err; If size from

• CVE-2021-47239May 21, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: net: usb: fix possible use-after-free in smsc75xx_bind The commit 46a8b29c6306 ("net: usb: fix memory leak in smsc75xx_bind") fails to clean up the work scheduled in smsc75xx_reset-> smsc75xx_set_multicast, whi

• CVE-2021-47237May 21, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: net: hamradio: fix memory leak in mkiss_close My local syzbot instance hit memory leak in mkiss_open()[1]. The problem was in missing free_netdev() in mkiss_close(). In mkiss_open() netdevice is allocated and

• CVE-2021-47236May 21, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: net: cdc_eem: fix tx fixup skb leak when usbnet transmit a skb, eem fixup it in eem_tx_fixup(), if skb_copy_expand() failed, it return NULL, usbnet_start_xmit() will have no chance to free original skb. fix it

• CVE-2021-47235May 21, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: net: ethernet: fix potential use-after-free in ec_bhf_remove static void ec_bhf_remove(struct pci_dev *dev) { ... struct ec_bhf_priv *priv = netdev_priv(net_dev); unregister_netdev(net_dev); free_netdev(net

• CVE-2021-47231May 21, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: can: mcba_usb: fix memory leak in mcba_usb Syzbot reported memory leak in SocketCAN driver for Microchip CAN BUS Analyzer Tool. The problem was in unfreed usb_coherent. In mcba_usb_start() 20 coherent buffers

• CVE-2021-47230May 21, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Immediately reset the MMU context when the SMM flag is cleared Immediately reset the MMU context when the vCPU's SMM flag is cleared so that the SMM flag in the MMU role is always synchronized with th

• CVE-2021-47229May 21, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: PCI: aardvark: Fix kernel panic during PIO transfer Trying to start a new PIO transfer by writing value 0 in PIO_START register when previous transfer has not yet completed (which is indicated by value 1 in PIO

• CVE-2021-47228May 21, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: x86/ioremap: Map EFI-reserved memory as encrypted for SEV Some drivers require memory that is marked as EFI boot services data. In order for this memory to not be re-used by the kernel after ExitBootServices(),

• CVE-2021-47227May 21, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: x86/fpu: Prevent state corruption in __fpu__restore_sig() The non-compacted slowpath uses __copy_from_user() and copies the entire user buffer into the kernel buffer, verbatim. This means that the kernel buffe

• CVE-2024-35950MedMay 20, 2024
  affected < 5.3.18-150300.59.167.1fixed 5.3.18-150300.59.167.1

  In the Linux kernel, the following vulnerability has been resolved: drm/client: Fully protect modes[] with dev->mode_config.mutex The modes[] array contains pointers to modes on the connectors' mode lists, which are protected by dev->mode_config.mutex. Thus we need to extend mo

• CVE-2024-35949May 20, 2024
  affected < 5.3.18-150300.59.198.1fixed 5.3.18-150300.59.198.1

  In the Linux kernel, the following vulnerability has been resolved: btrfs: make sure that WRITTEN is set on all metadata blocks We previously would call btrfs_check_leaf() if we had the check integrity code enabled, which meant that we could only run the extended leaf checks if

• CVE-2024-35895MedMay 19, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Prevent lock inversion deadlock in map delete elem syzkaller started using corpuses where a BPF tracing program deletes elements from a sockmap/sockhash map. Because BPF tracing programs can be in