rpm package

suse/kernel-livepatch-SLE15-SP4-RT_Update_1&distro=SUSE Linux Enterprise Live Patching 15 SP4

pkg:rpm/suse/kernel-livepatch-SLE15-SP4-RT_Update_1&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP4

Vulnerabilities (130)

CVE	Sev	CVSS	KEV	Affected versions	Fixed in	Published	Description
CVE-2022-28693	Med	4.7		< 1-150400.1.3.1	1-150400.1.3.1	Feb 14, 2025	Unprotected alternative channel of return branch target prediction in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.
CVE-2022-2602		—		< 1-150400.1.3.1	1-150400.1.3.1	Jan 8, 2024	io_uring UAF, Unix SCM garbage collection
CVE-2022-2588		—		< 1-150400.1.3.1	1-150400.1.3.1	Jan 8, 2024	It was discovered that the cls_route filter implementation in the Linux kernel would not remove an old filter from the hashtable before freeing it if its handle had the value 0.
CVE-2022-2586		—	KEV	< 1-150400.1.3.1	1-150400.1.3.1	Jan 8, 2024	It was discovered that a nft object or expression could reference a nft set on a different nft table, leading to a use-after-free once that table was deleted.
CVE-2023-5345		—		< 12-150400.2.2	12-150400.2.2	Oct 3, 2023	A use-after-free vulnerability in the Linux kernel's fs/smb/client component can be exploited to achieve local privilege escalation. In case of an error in smb3_fs_context_parse_param, ctx->password was freed but the field was not set to NULL which could lead to double free. We
CVE-2023-2163		—		< 12-150400.2.2	12-150400.2.2	Sep 20, 2023	Incorrect verifier pruning in BPF in Linux Kernel >=5.4 leads to unsafe code paths being incorrectly marked as safe, resulting in arbitrary read/write in kernel memory, lateral privilege escalation, and container escape.
CVE-2023-4623		—		< 11-150400.2.3	11-150400.2.3	Sep 6, 2023	A use-after-free vulnerability in the Linux kernel's net/sched: sch_hfsc (HFSC qdisc traffic control) component can be exploited to achieve local privilege escalation. If a class with a link-sharing curve (i.e. with the HFSC_FSC flag set) has a parent without a link-sharing curv
CVE-2023-4622		—		< 12-150400.2.2	12-150400.2.2	Sep 6, 2023	A use-after-free vulnerability in the Linux kernel's af_unix component can be exploited to achieve local privilege escalation. The unix_stream_sendpage() function tries to add data to the last skb in the peer's recv queue without locking the queue. Thus there is a race where uni
CVE-2023-3777		—		< 12-150400.2.2	12-150400.2.2	Sep 6, 2023	A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. When nf_tables_delrule() is flushing table rules, it is not checked whether the chain is bound and the chain's owner rule can also release
CVE-2023-4273		—		< 10-150400.2.2	10-150400.2.2	Aug 9, 2023	A flaw was found in the exFAT driver of the Linux kernel. The vulnerability exists in the implementation of the file name reconstruction function, which is responsible for reading file name entries from a directory index and merging file name parts belonging to one file into a si
CVE-2023-4147		—		< 11-150400.2.3	11-150400.2.3	Aug 7, 2023	A use-after-free flaw was found in the Linux kernel’s Netfilter functionality when adding a rule with NFTA_RULE_CHAIN_ID. This flaw allows a local user to crash or escalate their privileges on the system.
CVE-2023-4004		—		< 11-150400.2.3	11-150400.2.3	Jul 31, 2023	A use-after-free flaw was found in the Linux kernel's netfilter in the way a user triggers the nft_pipapo_remove function with the element, without a NFT_SET_EXT_KEY_END. This issue could allow a local user to crash the system or potentially escalate their privileges on the syste
CVE-2023-3812		—		< 10-150400.2.2	10-150400.2.2	Jul 24, 2023	An out-of-bounds memory access flaw was found in the Linux kernel’s TUN/TAP device driver functionality in how a user generates a malicious (too big) networking packet when napi frags is enabled. This flaw allows a local user to crash or potentially escalate their privileges on t
CVE-2023-3567		—		< 9-150400.2.2	9-150400.2.2	Jul 24, 2023	A use-after-free flaw was found in vcs_read in drivers/tty/vt/vc_screen.c in vc_screen in the Linux Kernel. This issue may allow an attacker with local user access to cause a system crash or leak internal kernel information.
CVE-2023-3776		—		< 10-150400.2.2	10-150400.2.2	Jul 21, 2023	A use-after-free vulnerability in the Linux kernel's net/sched: cls_fw component can be exploited to achieve local privilege escalation. If tcf_change_indev() fails, fw_set_parms() will immediately return an error after incrementing or decrementing the reference counter in tcf_b
CVE-2023-3610		—		< 12-150400.2.2	12-150400.2.2	Jul 21, 2023	A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. Flaw in the error handling of bound chains causes a use-after-free in the abort path of NFT_MSG_NEWRULE. The vulnerability requires CAP_NET
CVE-2023-3609		—		< 10-150400.2.2	10-150400.2.2	Jul 21, 2023	A use-after-free vulnerability in the Linux kernel's net/sched: cls_u32 component can be exploited to achieve local privilege escalation. If tcf_change_indev() fails, u32_set_parms() will immediately return an error after incrementing or decrementing the reference counter in tcf
CVE-2023-35001		—		< 9-150400.2.2	9-150400.2.2	Jul 5, 2023	Linux Kernel nftables Out-Of-Bounds Read/Write Vulnerability; nft_byteorder poorly handled vm register contents when CAP_NET_ADMIN is in any user or network namespace
CVE-2023-31248		—		< 10-150400.2.2	10-150400.2.2	Jul 5, 2023	Linux Kernel nftables Use-After-Free Local Privilege Escalation Vulnerability; `nft_chain_lookup_byid()` failed to check whether a chain was active and CAP_NET_ADMIN is in any user or network namespace
CVE-2023-3390		—		< 11-150400.2.3	11-150400.2.3	Jun 28, 2023	A use-after-free vulnerability was found in the Linux kernel's netfilter subsystem in net/netfilter/nf_tables_api.c. Mishandled error handling with NFT_MSG_NEWRULE makes it possible to use a dangling pointer in the same transaction causing a use-after-free vulnerability. This fl

CVE-2022-28693MedFeb 14, 2025
affected < 1-150400.1.3.1fixed 1-150400.1.3.1
Unprotected alternative channel of return branch target prediction in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.
CVE-2022-2602Jan 8, 2024
affected < 1-150400.1.3.1fixed 1-150400.1.3.1
io_uring UAF, Unix SCM garbage collection
CVE-2022-2588Jan 8, 2024
affected < 1-150400.1.3.1fixed 1-150400.1.3.1
It was discovered that the cls_route filter implementation in the Linux kernel would not remove an old filter from the hashtable before freeing it if its handle had the value 0.
CVE-2022-2586KEVJan 8, 2024
affected < 1-150400.1.3.1fixed 1-150400.1.3.1
It was discovered that a nft object or expression could reference a nft set on a different nft table, leading to a use-after-free once that table was deleted.
CVE-2023-5345Oct 3, 2023
affected < 12-150400.2.2fixed 12-150400.2.2
A use-after-free vulnerability in the Linux kernel's fs/smb/client component can be exploited to achieve local privilege escalation. In case of an error in smb3_fs_context_parse_param, ctx->password was freed but the field was not set to NULL which could lead to double free. We
CVE-2023-2163Sep 20, 2023
affected < 12-150400.2.2fixed 12-150400.2.2
Incorrect verifier pruning in BPF in Linux Kernel >=5.4 leads to unsafe code paths being incorrectly marked as safe, resulting in arbitrary read/write in kernel memory, lateral privilege escalation, and container escape.
CVE-2023-4623Sep 6, 2023
affected < 11-150400.2.3fixed 11-150400.2.3
A use-after-free vulnerability in the Linux kernel's net/sched: sch_hfsc (HFSC qdisc traffic control) component can be exploited to achieve local privilege escalation. If a class with a link-sharing curve (i.e. with the HFSC_FSC flag set) has a parent without a link-sharing curv
CVE-2023-4622Sep 6, 2023
affected < 12-150400.2.2fixed 12-150400.2.2
A use-after-free vulnerability in the Linux kernel's af_unix component can be exploited to achieve local privilege escalation. The unix_stream_sendpage() function tries to add data to the last skb in the peer's recv queue without locking the queue. Thus there is a race where uni
CVE-2023-3777Sep 6, 2023
affected < 12-150400.2.2fixed 12-150400.2.2
A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. When nf_tables_delrule() is flushing table rules, it is not checked whether the chain is bound and the chain's owner rule can also release
CVE-2023-4273Aug 9, 2023
affected < 10-150400.2.2fixed 10-150400.2.2
A flaw was found in the exFAT driver of the Linux kernel. The vulnerability exists in the implementation of the file name reconstruction function, which is responsible for reading file name entries from a directory index and merging file name parts belonging to one file into a si
CVE-2023-4147Aug 7, 2023
affected < 11-150400.2.3fixed 11-150400.2.3
A use-after-free flaw was found in the Linux kernel’s Netfilter functionality when adding a rule with NFTA_RULE_CHAIN_ID. This flaw allows a local user to crash or escalate their privileges on the system.
CVE-2023-4004Jul 31, 2023
affected < 11-150400.2.3fixed 11-150400.2.3
A use-after-free flaw was found in the Linux kernel's netfilter in the way a user triggers the nft_pipapo_remove function with the element, without a NFT_SET_EXT_KEY_END. This issue could allow a local user to crash the system or potentially escalate their privileges on the syste
CVE-2023-3812Jul 24, 2023
affected < 10-150400.2.2fixed 10-150400.2.2
An out-of-bounds memory access flaw was found in the Linux kernel’s TUN/TAP device driver functionality in how a user generates a malicious (too big) networking packet when napi frags is enabled. This flaw allows a local user to crash or potentially escalate their privileges on t
CVE-2023-3567Jul 24, 2023
affected < 9-150400.2.2fixed 9-150400.2.2
A use-after-free flaw was found in vcs_read in drivers/tty/vt/vc_screen.c in vc_screen in the Linux Kernel. This issue may allow an attacker with local user access to cause a system crash or leak internal kernel information.
CVE-2023-3776Jul 21, 2023
affected < 10-150400.2.2fixed 10-150400.2.2
A use-after-free vulnerability in the Linux kernel's net/sched: cls_fw component can be exploited to achieve local privilege escalation. If tcf_change_indev() fails, fw_set_parms() will immediately return an error after incrementing or decrementing the reference counter in tcf_b
CVE-2023-3610Jul 21, 2023
affected < 12-150400.2.2fixed 12-150400.2.2
A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. Flaw in the error handling of bound chains causes a use-after-free in the abort path of NFT_MSG_NEWRULE. The vulnerability requires CAP_NET
CVE-2023-3609Jul 21, 2023
affected < 10-150400.2.2fixed 10-150400.2.2
A use-after-free vulnerability in the Linux kernel's net/sched: cls_u32 component can be exploited to achieve local privilege escalation. If tcf_change_indev() fails, u32_set_parms() will immediately return an error after incrementing or decrementing the reference counter in tcf
CVE-2023-35001Jul 5, 2023
affected < 9-150400.2.2fixed 9-150400.2.2
Linux Kernel nftables Out-Of-Bounds Read/Write Vulnerability; nft_byteorder poorly handled vm register contents when CAP_NET_ADMIN is in any user or network namespace
CVE-2023-31248Jul 5, 2023
affected < 10-150400.2.2fixed 10-150400.2.2
Linux Kernel nftables Use-After-Free Local Privilege Escalation Vulnerability; `nft_chain_lookup_byid()` failed to check whether a chain was active and CAP_NET_ADMIN is in any user or network namespace
CVE-2023-3390Jun 28, 2023
affected < 11-150400.2.3fixed 11-150400.2.3
A use-after-free vulnerability was found in the Linux kernel's netfilter subsystem in net/netfilter/nf_tables_api.c. Mishandled error handling with NFT_MSG_NEWRULE makes it possible to use a dangling pointer in the same transaction causing a use-after-free vulnerability. This fl

Page 1 of 7