VYPR

rpm package

suse/kernel-livepatch-SLE15-SP6_Update_13&distro=SUSE Linux Enterprise Live Patching 15 SP6

pkg:rpm/suse/kernel-livepatch-SLE15-SP6_Update_13&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP6

Vulnerabilities (141)

  • CVE-2025-22120Apr 16, 2025
    affected < 1-150600.13.6.4fixed 1-150600.13.6.4

    In the Linux kernel, the following vulnerability has been resolved: ext4: goto right label 'out_mmap_sem' in ext4_setattr() Otherwise, if ext4_inode_attach_jinode() fails, a hung task will happen because filemap_invalidate_unlock() isn't called to unlock mapping->invalidate_loc

  • CVE-2025-22113Apr 16, 2025
    affected < 1-150600.13.6.4fixed 1-150600.13.6.4

    In the Linux kernel, the following vulnerability has been resolved: ext4: avoid journaling sb update on error if journal is destroying Presently we always BUG_ON if trying to start a transaction on a journal marked with JBD2_UNMOUNT, since this should never happen. However, whi

  • CVE-2025-22111Apr 16, 2025
    affected < 1-150600.13.6.4fixed 1-150600.13.6.4

    In the Linux kernel, the following vulnerability has been resolved: net: Remove RTNL dance for SIOCBRADDIF and SIOCBRDELIF. SIOCBRDELIF is passed to dev_ioctl() first and later forwarded to br_ioctl_call(), which causes unnecessary RTNL dance and the splat below [0] under RTNL

  • CVE-2025-22035Apr 16, 2025
    affected < 1-150600.13.6.4fixed 1-150600.13.6.4

    In the Linux kernel, the following vulnerability has been resolved: tracing: Fix use-after-free in print_graph_function_flags during tracer switching Kairui reported a UAF issue in print_graph_function_flags() during ftrace stress testing [1]. This issue can be reproduced if pu

  • CVE-2025-21997Apr 3, 2025
    affected < 1-150600.13.6.4fixed 1-150600.13.6.4

    In the Linux kernel, the following vulnerability has been resolved: xsk: fix an integer overflow in xp_create_and_assign_umem() Since the i and pool->chunk_size variables are of type 'u32', their product can wrap around and then be cast to 'u64'. This can lead to two different

  • CVE-2025-21959Apr 1, 2025
    affected < 1-150600.13.6.4fixed 1-150600.13.6.4

    In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_conncount: Fully initialize struct nf_conncount_tuple in insert_tree() Since commit b36e4523d4d5 ("netfilter: nf_conncount: fix garbage collection confirm race"), `cpu` and `jiffies32` were introd

  • CVE-2025-21938Apr 1, 2025
    affected < 1-150600.13.6.4fixed 1-150600.13.6.4

    In the Linux kernel, the following vulnerability has been resolved: mptcp: fix 'scheduling while atomic' in mptcp_pm_nl_append_new_local_addr If multiple connection requests attempt to create an implicit mptcp endpoint in parallel, more than one caller may end up in mptcp_pm_nl

  • CVE-2025-21920Apr 1, 2025
    affected < 1-150600.13.6.4fixed 1-150600.13.6.4

    In the Linux kernel, the following vulnerability has been resolved: vlan: enforce underlying device type Currently, VLAN devices can be created on top of non-ethernet devices. Besides the fact that it doesn't make much sense, this also causes a bug which leaks the address of a

  • CVE-2025-21899Apr 1, 2025
    affected < 1-150600.13.6.4fixed 1-150600.13.6.4

    In the Linux kernel, the following vulnerability has been resolved: tracing: Fix bad hist from corrupting named_triggers list The following commands causes a crash: ~# cd /sys/kernel/tracing/events/rcu/rcu_callback ~# echo 'hist:name=bad:keys=common_pid:onmax(bogus).save(com

  • CVE-2025-21898Apr 1, 2025
    affected < 1-150600.13.6.4fixed 1-150600.13.6.4

    In the Linux kernel, the following vulnerability has been resolved: ftrace: Avoid potential division by zero in function_stat_show() Check whether denominator expression x * (x - 1) * 1000 mod {2^32, 2^64} produce zero and skip stddev computation in that case. For now don't ca

  • CVE-2025-21868Mar 27, 2025
    affected < 1-150600.13.6.4fixed 1-150600.13.6.4

    In the Linux kernel, the following vulnerability has been resolved: net: allow small head cache usage with large MAX_SKB_FRAGS values Sabrina reported the following splat: WARNING: CPU: 0 PID: 1 at net/core/dev.c:6935 netif_napi_add_weight_locked+0x8f2/0xba0 Modules li

  • CVE-2024-58053Mar 6, 2025
    affected < 1-150600.13.6.4fixed 1-150600.13.6.4

    In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix handling of received connection abort Fix the handling of a connection abort that we've received. Though the abort is at the connection level, it needs propagating to the calls on that connection.

  • CVE-2025-21720Feb 27, 2025
    affected < 1-150600.13.6.4fixed 1-150600.13.6.4

    In the Linux kernel, the following vulnerability has been resolved: xfrm: delete intermediate secpath entry in packet offload mode Packets handled by hardware have added secpath as a way to inform XFRM core code that this path was already handled. That secpath is not needed at

  • CVE-2024-57982Feb 27, 2025
    affected < 1-150600.13.6.4fixed 1-150600.13.6.4

    In the Linux kernel, the following vulnerability has been resolved: xfrm: state: fix out-of-bounds read during lookup lookup and resize can run in parallel. The xfrm_state_hash_generation seqlock ensures a retry, but the hash functions can observe a hmask value that is too lar

  • CVE-2025-21658Jan 21, 2025
    affected < 1-150600.13.6.4fixed 1-150600.13.6.4

    In the Linux kernel, the following vulnerability has been resolved: btrfs: avoid NULL pointer dereference if no valid extent tree [BUG] Syzbot reported a crash with the following call trace: BTRFS info (device loop0): scrub: started on devid 1 BUG: kernel NULL pointer dere

  • CVE-2024-49568Jan 11, 2025
    affected < 1-150600.13.6.4fixed 1-150600.13.6.4

    In the Linux kernel, the following vulnerability has been resolved: net/smc: check v2_ext_offset/eid_cnt/ism_gid_cnt when receiving proposal msg When receiving proposal msg in server, the fields v2_ext_offset/ eid_cnt/ism_gid_cnt in proposal msg are from the remote client and c

  • CVE-2024-56699Dec 28, 2024
    affected < 1-150600.13.6.4fixed 1-150600.13.6.4

    In the Linux kernel, the following vulnerability has been resolved: s390/pci: Fix potential double remove of hotplug slot In commit 6ee600bfbe0f ("s390/pci: remove hotplug slot when releasing the device") the zpci_exit_slot() was moved from zpci_device_reserved() to zpci_releas

  • CVE-2024-56613Dec 27, 2024
    affected < 1-150600.13.6.4fixed 1-150600.13.6.4

    In the Linux kernel, the following vulnerability has been resolved: sched/numa: fix memory leak due to the overwritten vma->numab_state [Problem Description] When running the hackbench program of LTP, the following memory leak is reported by kmemleak. # /opt/ltp/testcases/bi

  • CVE-2024-50106Nov 5, 2024
    affected < 1-150600.13.6.4fixed 1-150600.13.6.4

    In the Linux kernel, the following vulnerability has been resolved: nfsd: fix race between laundromat and free_stateid There is a race between laundromat handling of revoked delegations and a client sending free_stateid operation. Laundromat thread finds that delegation has exp

  • CVE-2023-52888Jul 30, 2024
    affected < 1-150600.13.6.4fixed 1-150600.13.6.4

    In the Linux kernel, the following vulnerability has been resolved: media: mediatek: vcodec: Only free buffer VA that is not NULL In the MediaTek vcodec driver, while mtk_vcodec_mem_free() is mostly called only when the buffer to free exists, there are some instances that didn'

Page 7 of 8