VYPR

rpm package

suse/kernel-docs&distro=SUSE Linux Enterprise Software Development Kit 12 SP4

pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP4

Vulnerabilities (224)

  • CVE-2019-19965Dec 25, 2019
    affected < 4.12.14-95.48.1fixed 4.12.14-95.48.1

    In the Linux kernel through 5.4.6, there is a NULL pointer dereference in drivers/scsi/libsas/sas_discover.c because of mishandling of port disconnection during discovery, related to a PHY down race condition, aka CID-f70267f379b5.

  • CVE-2019-19966Dec 25, 2019
    affected < 4.12.14-95.48.1fixed 4.12.14-95.48.1

    In the Linux kernel before 5.1.6, there is a use-after-free in cpia2_exit() in drivers/media/usb/cpia2/cpia2_v4l.c that will cause denial of service, aka CID-dea37a972655.

  • CVE-2019-19767Dec 12, 2019
    affected < 4.12.14-95.48.1fixed 4.12.14-95.48.1

    The Linux kernel before 5.4.2 mishandles ext4_expand_extra_isize, as demonstrated by use-after-free errors in __ext4_expand_extra_isize and ext4_xattr_set_entry, related to fs/ext4/inode.c and fs/ext4/super.c, aka CID-4ea99936a163.

  • CVE-2019-19770Dec 12, 2019
    affected < 4.12.14-95.51.1fixed 4.12.14-95.51.1

    In the Linux kernel 4.19.83, there is a use-after-free (read) in the debugfs_remove function in fs/debugfs/inode.c (which is used to remove a file or directory in debugfs that was previously created with a call to another debugfs function such as debugfs_create_file). NOTE: Linux

  • CVE-2019-19768Dec 12, 2019
    affected < 4.12.14-95.51.1fixed 4.12.14-95.51.1

    In the Linux kernel 5.4.0-rc2, there is a use-after-free (read) in the __blk_add_trace function in kernel/trace/blktrace.c (which is used to fill out a blk_io_trace structure and place it in a per-cpu sub-buffer).

  • CVE-2019-19447Dec 8, 2019
    affected < 4.12.14-95.48.1fixed 4.12.14-95.48.1

    In the Linux kernel 5.0.21, mounting a crafted ext4 filesystem image, performing some operations, and unmounting can lead to a use-after-free in ext4_put_super in fs/ext4/super.c, related to dump_orphan_list in fs/ext4/super.c.

  • CVE-2019-19543Dec 3, 2019
    affected < 4.12.14-95.48.1fixed 4.12.14-95.48.1

    In the Linux kernel before 5.1.6, there is a use-after-free in serial_ir_init_module() in drivers/media/rc/serial_ir.c.

  • CVE-2019-19523Dec 3, 2019
    affected < 4.12.14-95.48.1fixed 4.12.14-95.48.1

    In the Linux kernel before 5.3.7, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/usb/misc/adutux.c driver, aka CID-44efc269db79.

  • CVE-2019-19524Dec 3, 2019
    affected < 4.12.14-95.48.1fixed 4.12.14-95.48.1

    In the Linux kernel before 5.3.12, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/input/ff-memless.c driver, aka CID-fa3a5a1880c9.

  • CVE-2019-19525Dec 3, 2019
    affected < 4.12.14-95.48.1fixed 4.12.14-95.48.1

    In the Linux kernel before 5.3.6, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/net/ieee802154/atusb.c driver, aka CID-7fd25e6fc035.

  • CVE-2019-19526Dec 3, 2019
    affected < 4.12.14-95.48.1fixed 4.12.14-95.48.1

    In the Linux kernel before 5.3.9, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/nfc/pn533/usb.c driver, aka CID-6af3aa57a098.

  • CVE-2019-19527Dec 3, 2019
    affected < 4.12.14-95.48.1fixed 4.12.14-95.48.1

    In the Linux kernel before 5.2.10, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/hid/usbhid/hiddev.c driver, aka CID-9c09b214f30e.

  • CVE-2019-19528Dec 3, 2019
    affected < 4.12.14-95.48.1fixed 4.12.14-95.48.1

    In the Linux kernel before 5.3.7, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/usb/misc/iowarrior.c driver, aka CID-edc4746f253d.

  • CVE-2019-19529Dec 3, 2019
    affected < 4.12.14-95.48.1fixed 4.12.14-95.48.1

    In the Linux kernel before 5.3.11, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/net/can/usb/mcba_usb.c driver, aka CID-4d6636498c41.

  • CVE-2019-19530Dec 3, 2019
    affected < 4.12.14-95.48.1fixed 4.12.14-95.48.1

    In the Linux kernel before 5.2.10, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/usb/class/cdc-acm.c driver, aka CID-c52873e5a1ef.

  • CVE-2019-19531Dec 3, 2019
    affected < 4.12.14-95.48.1fixed 4.12.14-95.48.1

    In the Linux kernel before 5.2.9, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/usb/misc/yurex.c driver, aka CID-fc05481b2fca.

  • CVE-2019-19532Dec 3, 2019
    affected < 4.12.14-95.48.1fixed 4.12.14-95.48.1

    In the Linux kernel before 5.3.9, there are multiple out-of-bounds write bugs that can be caused by a malicious USB device in the Linux kernel HID drivers, aka CID-d9d4b1e46d95. This affects drivers/hid/hid-axff.c, drivers/hid/hid-dr.c, drivers/hid/hid-emsff.c, drivers/hid/hid-ga

  • CVE-2019-19533Dec 3, 2019
    affected < 4.12.14-95.48.1fixed 4.12.14-95.48.1

    In the Linux kernel before 5.3.4, there is an info-leak bug that can be caused by a malicious USB device in the drivers/media/usb/ttusb-dec/ttusb_dec.c driver, aka CID-a10feaf8c464.

  • CVE-2019-19534Dec 3, 2019
    affected < 4.12.14-95.48.1fixed 4.12.14-95.48.1

    In the Linux kernel before 5.3.11, there is an info-leak bug that can be caused by a malicious USB device in the drivers/net/can/usb/peak_usb/pcan_usb_core.c driver, aka CID-f7a1337f0d29.

  • CVE-2019-19535Dec 3, 2019
    affected < 4.12.14-95.48.1fixed 4.12.14-95.48.1

    In the Linux kernel before 5.2.9, there is an info-leak bug that can be caused by a malicious USB device in the drivers/net/can/usb/peak_usb/pcan_usb_fd.c driver, aka CID-30a8beeb3042.

Page 3 of 12