VYPR

rpm package

suse/kernel-docs&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP3

pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP3

Vulnerabilities (1,468)

  • CVE-2021-47480May 22, 2024
    affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

    In the Linux kernel, the following vulnerability has been resolved: scsi: core: Put LLD module refcnt after SCSI device is released SCSI host release is triggered when SCSI device is freed. We have to make sure that the low-level device driver module won't be unloaded before SC

  • CVE-2021-47478May 22, 2024
    affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

    In the Linux kernel, the following vulnerability has been resolved: isofs: Fix out of bound access for corrupted isofs image When isofs image is suitably corrupted isofs_read_inode() can read data beyond the end of buffer. Sanity-check the directory entry length before using it

  • CVE-2021-47473May 22, 2024
    affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

    In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix a memory leak in an error path of qla2x00_process_els() Commit 8c0eb596baa5 ("[SCSI] qla2xxx: Fix a memory leak in an error path of qla2x00_process_els()"), intended to change: bsg_j

  • CVE-2021-47468May 22, 2024
    affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

    In the Linux kernel, the following vulnerability has been resolved: isdn: mISDN: Fix sleeping function called from invalid context The driver can call card->isac.release() function from an atomic context. Fix this by calling this function after releasing the lock. The followi

  • CVE-2021-47465May 22, 2024
    affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

    In the Linux kernel, the following vulnerability has been resolved: KVM: PPC: Book3S HV: Fix stack handling in idle_kvm_start_guest() In commit 10d91611f426 ("powerpc/64s: Reimplement book3s idle code in C") kvm_start_guest() became idle_kvm_start_guest(). The old code allocate

  • CVE-2021-47464May 22, 2024
    affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

    In the Linux kernel, the following vulnerability has been resolved: audit: fix possible null-pointer dereference in audit_filter_rules Fix possible null-pointer dereference in audit_filter_rules. audit_filter_rules() error: we previously assumed 'ctx' could be null

  • CVE-2021-47460May 22, 2024
    affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

    In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix data corruption after conversion from inline format Commit 6dbf7bb55598 ("fs: Don't invalidate page buffers in block_write_full_page()") uncovered a latent bug in ocfs2 conversion from inline inode f

  • CVE-2021-47458May 22, 2024
    affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

    In the Linux kernel, the following vulnerability has been resolved: ocfs2: mount fails with buffer overflow in strlen Starting with kernel 5.11 built with CONFIG_FORTIFY_SOURCE mouting an ocfs2 filesystem with either o2cb or pcmk cluster stack fails with the trace below. Probl

  • CVE-2021-47456May 22, 2024
    affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

    In the Linux kernel, the following vulnerability has been resolved: can: peak_pci: peak_pci_remove(): fix UAF When remove the module peek_pci, referencing 'chan' again after releasing 'dev' will cause UAF. Fix this by releasing 'dev' later. The following log reveals it: [

  • CVE-2021-47451May 22, 2024
    affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

    In the Linux kernel, the following vulnerability has been resolved: netfilter: xt_IDLETIMER: fix panic that occurs when timer_type has garbage value Currently, when the rule related to IDLETIMER is added, idletimer_tg timer structure is initialized by kmalloc on executing idlet

  • CVE-2021-47445May 22, 2024
    affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

    In the Linux kernel, the following vulnerability has been resolved: drm/msm: Fix null pointer dereference on pointer edp The initialization of pointer dev dereferences pointer edp before edp is null checked, so there is a potential null pointer deference issue. Fix this by only

  • CVE-2021-47444May 22, 2024
    affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

    In the Linux kernel, the following vulnerability has been resolved: drm/edid: In connector_bad_edid() cap num_of_ext by num_blocks read In commit e11f5bd8228f ("drm: Add support for DP 1.4 Compliance edid corruption test") the function connector_bad_edid() started assuming that

  • CVE-2021-47443May 22, 2024
    affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

    In the Linux kernel, the following vulnerability has been resolved: NFC: digital: fix possible memory leak in digital_tg_listen_mdaa() 'params' is allocated in digital_tg_listen_mdaa(), but not free when digital_send_cmd() failed, which will cause memory leak. Fix it by freeing

  • CVE-2021-47442May 22, 2024
    affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

    In the Linux kernel, the following vulnerability has been resolved: NFC: digital: fix possible memory leak in digital_in_send_sdd_req() 'skb' is allocated in digital_in_send_sdd_req(), but not free when digital_in_send_cmd() failed, which will cause memory leak. Fix it by freei

  • CVE-2021-47441May 22, 2024
    affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

    In the Linux kernel, the following vulnerability has been resolved: mlxsw: thermal: Fix out-of-bounds memory accesses Currently, mlxsw allows cooling states to be set above the maximum cooling state supported by the driver: # cat /sys/class/thermal/thermal_zone2/cdev0/type m

  • CVE-2021-47436May 22, 2024
    affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

    In the Linux kernel, the following vulnerability has been resolved: usb: musb: dsps: Fix the probe error path Commit 7c75bde329d7 ("usb: musb: musb_dsps: request_irq() after initializing musb") has inverted the calls to dsps_setup_optional_vbus_irq() and dsps_create_musb_pdev()

  • CVE-2021-47435May 22, 2024
    affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

    In the Linux kernel, the following vulnerability has been resolved: dm: fix mempool NULL pointer race when completing IO dm_io_dec_pending() calls end_io_acct() first and will then dec md in-flight pending count. But if a task is swapping DM table at same time this can result i

  • CVE-2021-47434May 22, 2024
    affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

    In the Linux kernel, the following vulnerability has been resolved: xhci: Fix command ring pointer corruption while aborting a command The command ring pointer is located at [6:63] bits of the command ring control register (CRCR). All the control bits like command stop, abort a

  • CVE-2023-52871May 21, 2024
    affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

    In the Linux kernel, the following vulnerability has been resolved: soc: qcom: llcc: Handle a second device without data corruption Usually there is only one llcc device. But if there were a second, even a failed probe call would modify the global drv_data pointer. So check if

  • CVE-2023-52854May 21, 2024
    affected < 5.3.18-150300.59.174.1fixed 5.3.18-150300.59.174.1

    In the Linux kernel, the following vulnerability has been resolved: padata: Fix refcnt handling in padata_free_shell() In a high-load arm64 environment, the pcrypt_aead01 test in LTP can lead to system UAF (Use-After-Free) issues. Due to the lengthy analysis of the pcrypt_aead0

Page 42 of 74