suse/kernel-docs&distro=SUSE Linux Enterprise Server 15 SP5-LTSS

Vulnerabilities (2,310)

• CVE-2022-49901May 1, 2025
  affected < 5.14.21-150500.55.110.1fixed 5.14.21-150500.55.110.1

  In the Linux kernel, the following vulnerability has been resolved: blk-mq: Fix kmemleak in blk_mq_init_allocated_queue There is a kmemleak caused by modprobe null_blk.ko unreferenced object 0xffff8881acb1f000 (size 1024): comm "modprobe", pid 836, jiffies 4294971190 (age 27

• CVE-2022-49900May 1, 2025
  affected < 5.14.21-150500.55.110.1fixed 5.14.21-150500.55.110.1

  In the Linux kernel, the following vulnerability has been resolved: i2c: piix4: Fix adapter not be removed in piix4_remove() In piix4_probe(), the piix4 adapter will be registered in: piix4_probe() piix4_add_adapters_sb800() / piix4_add_adapter() i2c_add_adapter

• CVE-2022-49892May 1, 2025
  affected < 5.14.21-150500.55.110.1fixed 5.14.21-150500.55.110.1

  In the Linux kernel, the following vulnerability has been resolved: ftrace: Fix use-after-free for dynamic ftrace_ops KASAN reported a use-after-free with ftrace ops [1]. It was found from vmcore that perf had registered two ops with the same content successively, both dynamic.

• CVE-2022-49891May 1, 2025
  affected < 5.14.21-150500.55.110.1fixed 5.14.21-150500.55.110.1

  In the Linux kernel, the following vulnerability has been resolved: tracing: kprobe: Fix memory leak in test_gen_kprobe/kretprobe_cmd() test_gen_kprobe_cmd() only free buf in fail path, hence buf will leak when there is no failure. Move kfree(buf) from fail path to common path

• CVE-2022-49890May 1, 2025
  affected < 5.14.21-150500.55.110.1fixed 5.14.21-150500.55.110.1

  In the Linux kernel, the following vulnerability has been resolved: capabilities: fix potential memleak on error path from vfs_getxattr_alloc() In cap_inode_getsecurity(), we will use vfs_getxattr_alloc() to complete the memory allocation of tmpbuf, if we have completed the mem

• CVE-2022-49889May 1, 2025
  affected < 5.14.21-150500.55.110.1fixed 5.14.21-150500.55.110.1

  In the Linux kernel, the following vulnerability has been resolved: ring-buffer: Check for NULL cpu_buffer in ring_buffer_wake_waiters() On some machines the number of listed CPUs may be bigger than the actual CPUs that exist. The tracing subsystem allocates a per_cpu directory

• CVE-2022-49888May 1, 2025
  affected < 5.14.21-150500.55.110.1fixed 5.14.21-150500.55.110.1

  In the Linux kernel, the following vulnerability has been resolved: arm64: entry: avoid kprobe recursion The cortex_a76_erratum_1463225_debug_handler() function is called when handling debug exceptions (and synchronous exceptions from BRK instructions), and so is called when a

• CVE-2022-49887May 1, 2025
  affected < 5.14.21-150500.55.110.1fixed 5.14.21-150500.55.110.1

  In the Linux kernel, the following vulnerability has been resolved: media: meson: vdec: fix possible refcount leak in vdec_probe() v4l2_device_unregister need to be called to put the refcount got by v4l2_device_register when vdec_probe fails or vdec_remove is called.

• CVE-2022-49886May 1, 2025
  affected < 5.14.21-150500.55.110.1fixed 5.14.21-150500.55.110.1

  In the Linux kernel, the following vulnerability has been resolved: x86/tdx: Panic on bad configs that #VE on "private" memory access All normal kernel memory is "TDX private memory". This includes everything from kernel stacks to kernel text. Handling exceptions on arbitrary

• CVE-2022-49885May 1, 2025
  affected < 5.14.21-150500.55.110.1fixed 5.14.21-150500.55.110.1

  In the Linux kernel, the following vulnerability has been resolved: ACPI: APEI: Fix integer overflow in ghes_estatus_pool_init() Change num_ghes from int to unsigned int, preventing an overflow and causing subsequent vmalloc() to fail. The overflow happens in ghes_estatus_pool

• CVE-2022-49881May 1, 2025
  affected < 5.14.21-150500.55.110.1fixed 5.14.21-150500.55.110.1

  In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: fix memory leak in query_regdb_file() In the function query_regdb_file() the alpha2 parameter is duplicated using kmemdup() and subsequently freed in regdb_fw_cb(). However, request_firmware_now

• CVE-2022-49880May 1, 2025
  affected < 5.14.21-150500.55.110.1fixed 5.14.21-150500.55.110.1

  In the Linux kernel, the following vulnerability has been resolved: ext4: fix warning in 'ext4_da_release_space' Syzkaller report issue as follows: EXT4-fs (loop0): Free/Dirty block details EXT4-fs (loop0): free_blocks=0 EXT4-fs (loop0): dirty_blocks=0 EXT4-fs (loop0): Block re

• CVE-2022-49879May 1, 2025
  affected < 5.14.21-150500.55.110.1fixed 5.14.21-150500.55.110.1

  In the Linux kernel, the following vulnerability has been resolved: ext4: fix BUG_ON() when directory entry has invalid rec_len The rec_len field in the directory entry has to be a multiple of 4. A corrupted filesystem image can be used to hit a BUG() in ext4_rec_len_to_disk()

• CVE-2022-49874May 1, 2025
  affected < 5.14.21-150500.55.110.1fixed 5.14.21-150500.55.110.1

  In the Linux kernel, the following vulnerability has been resolved: HID: hyperv: fix possible memory leak in mousevsc_probe() If hid_add_device() returns error, it should call hid_destroy_device() to free hid_dev which is allocated in hid_allocate_device().

• CVE-2022-49871May 1, 2025
  affected < 5.14.21-150500.55.110.1fixed 5.14.21-150500.55.110.1

  In the Linux kernel, the following vulnerability has been resolved: net: tun: Fix memory leaks of napi_get_frags kmemleak reports after running test_progs: unreferenced object 0xffff8881b1672dc0 (size 232): comm "test_progs", pid 394388, jiffies 4354712116 (age 841.975s) h

• CVE-2022-49870May 1, 2025
  affected < 5.14.21-150500.55.110.1fixed 5.14.21-150500.55.110.1

  In the Linux kernel, the following vulnerability has been resolved: capabilities: fix undefined behavior in bit shift for CAP_TO_MASK Shifting signed 32-bit value by 31 bits is undefined, so changing significant bit to unsigned. The UBSAN warning calltrace like below: UBSAN: s

• CVE-2022-49869May 1, 2025
  affected < 5.14.21-150500.55.110.1fixed 5.14.21-150500.55.110.1

  In the Linux kernel, the following vulnerability has been resolved: bnxt_en: Fix possible crash in bnxt_hwrm_set_coal() During the error recovery sequence, the rtnl_lock is not held for the entire duration and some datastructures may be freed during the sequence. Check for the

• CVE-2022-49868May 1, 2025
  affected < 5.14.21-150500.55.110.1fixed 5.14.21-150500.55.110.1

  In the Linux kernel, the following vulnerability has been resolved: phy: ralink: mt7621-pci: add sentinel to quirks table With mt7621 soc_dev_attr fixed to register the soc as a device, kernel will experience an oops in soc_device_match_attr This quirk test was introduced in t

• CVE-2022-49865May 1, 2025
  affected < 5.14.21-150500.55.110.1fixed 5.14.21-150500.55.110.1

  In the Linux kernel, the following vulnerability has been resolved: ipv6: addrlabel: fix infoleak when sending struct ifaddrlblmsg to network When copying a `struct ifaddrlblmsg` to the network, __ifal_reserved remained uninitialized, resulting in a 1-byte infoleak: BUG: KMS

• CVE-2022-49864May 1, 2025
  affected < 5.14.21-150500.55.110.1fixed 5.14.21-150500.55.110.1

  In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix NULL pointer dereference in svm_migrate_to_ram() ./drivers/gpu/drm/amd/amdkfd/kfd_migrate.c:985:58-62: ERROR: p is NULL but dereferenced.