suse/kernel-docs&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP3

Vulnerabilities (1,468)

• CVE-2023-52881May 29, 2024
  affected < 5.3.18-150300.59.167.1fixed 5.3.18-150300.59.167.1

  In the Linux kernel, the following vulnerability has been resolved: tcp: do not accept ACK of bytes we never sent This patch is based on a detailed report and ideas from Yepeng Pan and Christian Rossow. ACK seq validation is currently following RFC 5961 5.2 guidelines: The

• CVE-2023-52880May 24, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: tty: n_gsm: require CAP_NET_ADMIN to attach N_GSM0710 ldisc Any unprivileged user can attach N_GSM0710 ldisc, but it requires CAP_NET_ADMIN to create a GSM network anyway. Require initial namespace CAP_NET_ADM

• CVE-2021-47571May 24, 2024
  affected < 5.3.18-150300.59.167.1fixed 5.3.18-150300.59.167.1

  In the Linux kernel, the following vulnerability has been resolved: staging: rtl8192e: Fix use after free in _rtl92e_pci_disconnect() The free_rtllib() function frees the "dev" pointer so there is use after free on the next line. Re-arrange things to avoid that.

• CVE-2021-47565May 24, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: scsi: mpt3sas: Fix kernel panic during drive powercycle test While looping over shost's sdev list it is possible that one of the drives is getting removed and its sas_target object is freed but its sdev object

• CVE-2021-47563May 24, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: ice: avoid bpf_prog refcount underflow Ice driver has the routines for managing XDP resources that are shared between ndo_bpf op and VSI rebuild flow. The latter takes place for example when user changes queue

• CVE-2021-47562May 24, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: ice: fix vsi->txq_map sizing The approach of having XDP queue per CPU regardless of user's setting exposed a hidden bug that could occur in case when Rx queue count differ from Tx queue count. Currently vsi->tx

• CVE-2021-47557May 24, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: net/sched: sch_ets: don't peek at classes beyond 'nbands' when the number of DRR classes decreases, the round-robin active list can contain elements that have already been freed in ets_qdisc_change(). As a cons

• CVE-2021-47549May 24, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: sata_fsl: fix UAF in sata_fsl_port_stop when rmmod sata_fsl When the `rmmod sata_fsl.ko` command is executed in the PPC64 GNU/Linux, a bug is reported: =========================================================

• CVE-2021-47542May 24, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: net: qlogic: qlcnic: Fix a NULL pointer dereference in qlcnic_83xx_add_rings() In qlcnic_83xx_add_rings(), the indirect function of ahw->hw_ops->alloc_mbx_args will be called to allocate memory for cmd.req.arg,

• CVE-2021-47541May 24, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: net/mlx4_en: Fix an use-after-free bug in mlx4_en_try_alloc_resources() In mlx4_en_try_alloc_resources(), mlx4_en_copy_priv() is called and tmp->tx_cq will be freed on the error path of mlx4_en_copy_priv(). Aft

• CVE-2021-47540May 24, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: mt76: mt7915: fix NULL pointer dereference in mt7915_get_phy_mode Fix the following NULL pointer dereference in mt7915_get_phy_mode routine adding an ibss interface to the mt7915 driver. [ 101.137097] wlan0:

• CVE-2021-47538May 24, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix rxrpc_local leak in rxrpc_lookup_peer() Need to call rxrpc_put_local() for peer candidate before kfree() as it holds a ref to rxrpc_local. [DH: v2: Changed to abstract the peer freeing code out into

• CVE-2021-47536May 24, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: net/smc: fix wrong list_del in smc_lgr_cleanup_early smc_lgr_cleanup_early() meant to delete the link group from the link group list, but it deleted the list head by mistake. This may cause memory corruption s

• CVE-2021-47535May 24, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: drm/msm/a6xx: Allocate enough space for GMU registers In commit 142639a52a01 ("drm/msm/a6xx: fix crashstate capture for A650") we changed a6xx_get_gmu_registers() to read 3 sets of registers. Unfortunately, we

• CVE-2021-47523May 24, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: IB/hfi1: Fix leak of rcvhdrtail_dummy_kvaddr This buffer is currently allocated in hfi1_init(): if (reinit) ret = init_after_reset(dd); else ret = loadtime_init(dd); if (ret) goto done; /* allocate

• CVE-2021-47522May 24, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: HID: bigbenff: prevent null pointer dereference When emulating the device through uhid, there is a chance we don't have output reports and so report_field is null.

• CVE-2021-47521May 24, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: can: sja1000: fix use after free in ems_pcmcia_add_card() If the last channel is not available then "dev" is freed. Fortunately, we can just use "pdev->irq" instead. Also we should check if at least one chann

• CVE-2021-47520May 24, 2024
  affected < 5.3.18-150300.59.170.2fixed 5.3.18-150300.59.170.2

  In the Linux kernel, the following vulnerability has been resolved: can: pch_can: pch_can_rx_normal: fix use after free After calling netif_receive_skb(skb), dereferencing skb is unsafe. Especially, the can_frame cf which aliases skb memory is dereferenced just after the call n

• CVE-2021-47518May 24, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: nfc: fix potential NULL pointer deref in nfc_genl_dump_ses_done The done() netlink callback nfc_genl_dump_ses_done() should check if received argument is non-NULL, because its allocation could fail earlier in d

• CVE-2021-47516May 24, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: nfp: Fix memory leak in nfp_cpp_area_cache_add() In line 800 (#1), nfp_cpp_area_alloc() allocates and initializes a CPP area structure. But in line 807 (#2), when the cache is allocated failed, this CPP area st