suse/kernel-docs&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP4

Vulnerabilities (2,843)

• CVE-2022-50367Sep 17, 2025
  affected < 5.14.21-150400.24.179.1fixed 5.14.21-150400.24.179.1

  In the Linux kernel, the following vulnerability has been resolved: fs: fix UAF/GPF bug in nilfs_mdt_destroy In alloc_inode, inode_init_always() could return -ENOMEM if security_inode_alloc() fails, which causes inode->i_private uninitialized. Then nilfs_is_metadata_file_inode(

• CVE-2022-50364Sep 17, 2025
  affected < 5.14.21-150400.24.179.1fixed 5.14.21-150400.24.179.1

  In the Linux kernel, the following vulnerability has been resolved: i2c: mux: reg: check return value after calling platform_get_resource() It will cause null-ptr-deref in resource_size(), if platform_get_resource() returns NULL, move calling resource_size() after devm_ioremap_

• CVE-2022-50362Sep 17, 2025
  affected < 5.14.21-150400.24.179.1fixed 5.14.21-150400.24.179.1

  In the Linux kernel, the following vulnerability has been resolved: dmaengine: hisilicon: Add multi-thread support for a DMA channel When we get a DMA channel and try to use it in multiple threads it will cause oops and hanging the system. % echo 100 > /sys/module/dmatest/para

• CVE-2022-50359Sep 17, 2025
  affected < 5.14.21-150400.24.179.1fixed 5.14.21-150400.24.179.1

  In the Linux kernel, the following vulnerability has been resolved: media: cx88: Fix a null-ptr-deref bug in buffer_prepare() When the driver calls cx88_risc_buffer() to prepare the buffer, the function call may fail, resulting in a empty buffer and null-ptr-deref later in buff

• CVE-2022-50358Sep 17, 2025
  affected < 5.14.21-150400.24.179.1fixed 5.14.21-150400.24.179.1

  In the Linux kernel, the following vulnerability has been resolved: brcmfmac: return error when getting invalid max_flowrings from dongle When firmware hit trap at initialization, host will read abnormal max_flowrings number from dongle, and it will cause kernel panic when doin

• CVE-2022-50355Sep 17, 2025
  affected < 5.14.21-150400.24.179.1fixed 5.14.21-150400.24.179.1

  In the Linux kernel, the following vulnerability has been resolved: staging: vt6655: fix some erroneous memory clean-up loops In some initialization functions of this driver, memory is allocated with 'i' acting as an index variable and increasing from 0. The commit in "Fixes" i

• CVE-2022-50353Sep 17, 2025
  affected < 5.14.21-150400.24.179.1fixed 5.14.21-150400.24.179.1

  In the Linux kernel, the following vulnerability has been resolved: mmc: wmt-sdmmc: fix return value check of mmc_add_host() mmc_add_host() may return error, if we ignore its return value, the memory that allocated in mmc_alloc_host() will be leaked and it will lead a kernel cr

• CVE-2023-53334Sep 16, 2025
  affected < 5.14.21-150400.24.179.1fixed 5.14.21-150400.24.179.1

  In the Linux kernel, the following vulnerability has been resolved: USB: chipidea: fix memory leak with using debugfs_lookup() When calling debugfs_lookup() the result must have dput() called on it, otherwise the memory will leak over time. To make things simpler, just call de

• CVE-2023-53333Sep 16, 2025
  affected < 5.14.21-150400.24.179.1fixed 5.14.21-150400.24.179.1

  In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrack: dccp: copy entire header to stack buffer, not just basic one Eric Dumazet says: nf_conntrack_dccp_packet() has an unique: dh = skb_header_pointer(skb, dataoff, sizeof(_dh), &_dh);

• CVE-2023-53331Sep 16, 2025
  affected < 5.14.21-150400.24.179.1fixed 5.14.21-150400.24.179.1

  In the Linux kernel, the following vulnerability has been resolved: pstore/ram: Check start of empty przs during init After commit 30696378f68a ("pstore/ram: Do not treat empty buffers as valid"), initialization would assume a prz was valid after seeing that the buffer_size is

• CVE-2023-53330Sep 16, 2025
  affected < 5.14.21-150400.24.179.1fixed 5.14.21-150400.24.179.1

  In the Linux kernel, the following vulnerability has been resolved: caif: fix memory leak in cfctrl_linkup_request() When linktype is unknown or kzalloc failed in cfctrl_linkup_request(), pkt is not released. Add release process to error path.

• CVE-2023-53326Sep 16, 2025
  affected < 5.14.21-150400.24.179.1fixed 5.14.21-150400.24.179.1

  In the Linux kernel, the following vulnerability has been resolved: powerpc: Don't try to copy PPR for task with NULL pt_regs powerpc sets up PF_KTHREAD and PF_IO_WORKER with a NULL pt_regs, which from my (arguably very short) checking is not commonly done for other archs. This

• CVE-2023-53324Sep 16, 2025
  affected < 5.14.21-150400.24.179.1fixed 5.14.21-150400.24.179.1

  In the Linux kernel, the following vulnerability has been resolved: drm/msm/mdp5: Don't leak some plane state Apparently no one noticed that mdp5 plane states leak like a sieve ever since we introduced plane_state->commit refcount a few years ago in 21a01abbe32a ("drm/atomic: F

• CVE-2023-53322Sep 16, 2025
  affected < 5.14.21-150400.24.179.1fixed 5.14.21-150400.24.179.1

  In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Wait for io return on terminate rport System crash due to use after free. Current code allows terminate_rport_io to exit before making sure all IOs has returned. For FCP-2 device, IO's can hang o

• CVE-2023-53321Sep 16, 2025
  affected < 5.14.21-150400.24.179.1fixed 5.14.21-150400.24.179.1

  In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211_hwsim: drop short frames While technically some control frames like ACK are shorter and end after Address 1, such frames shouldn't be forwarded through wmediumd or similar userspace, so require t

• CVE-2023-53317Sep 16, 2025
  affected < 5.14.21-150400.24.179.1fixed 5.14.21-150400.24.179.1

  In the Linux kernel, the following vulnerability has been resolved: ext4: fix WARNING in mb_find_extent Syzbot found the following issue: EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! EXT4-fs (loop0)

• CVE-2023-53316Sep 16, 2025
  affected < 5.14.21-150400.24.179.1fixed 5.14.21-150400.24.179.1

  In the Linux kernel, the following vulnerability has been resolved: drm/msm/dp: Free resources after unregistering them The DP component's unbind operation walks through the submodules to unregister and clean things up. But if the unbind happens because the DP controller itself

• CVE-2023-53315Sep 16, 2025
  affected < 5.14.21-150400.24.179.1fixed 5.14.21-150400.24.179.1

  In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: Fix SKB corruption in REO destination ring While running traffics for a long time, randomly an RX descriptor filled with value "0" from REO destination ring is received. This descriptor which is i

• CVE-2023-53314Sep 16, 2025
  affected < 5.14.21-150400.24.179.1fixed 5.14.21-150400.24.179.1

  In the Linux kernel, the following vulnerability has been resolved: fbdev/ep93xx-fb: Do not assign to struct fb_info.dev Do not assing the Linux device to struct fb_info.dev. The call to register_framebuffer() initializes the field to the fbdev device. Drivers should not overri

• CVE-2023-53313Sep 16, 2025
  affected < 5.14.21-150400.24.179.1fixed 5.14.21-150400.24.179.1

  In the Linux kernel, the following vulnerability has been resolved: md/raid10: fix wrong setting of max_corr_read_errors There is no input check when echo md/max_read_errors and overflow might occur. Add check of input number.