VYPR

rpm package

suse/kernel-livepatch-SLE15-SP7_Update_16&distro=SUSE Linux Enterprise Live Patching 15 SP7

pkg:rpm/suse/kernel-livepatch-SLE15-SP7_Update_16&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP7

Vulnerabilities (103)

  • CVE-2026-43406CriMay 8, 2026
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: libceph: prevent potential out-of-bounds reads in process_message_header() If the message frame is (maliciously) corrupted in a way that the length of the control segment ends up being less than the size of the

  • CVE-2026-43362HigMay 8, 2026
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: smb: client: fix in-place encryption corruption in SMB2_write() SMB2_write() places write payload in iov[1..n] as part of rq_iov. smb3_init_transform_rq() pointer-shares rq_iov, so crypt_message() encrypts iov[

  • CVE-2026-43361MedMay 8, 2026
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: btrfs: fix transaction abort when snapshotting received subvolumes Currently a user can trigger a transaction abort by snapshotting a previously received snapshot a bunch of times until we reach a BTRFS_UUID_KE

  • CVE-2026-43360MedMay 8, 2026
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: btrfs: fix transaction abort on file creation due to name hash collision If we attempt to create several files with names that result in the same hash, we have to pack them in same dir item and that has a limit

  • CVE-2026-43359MedMay 8, 2026
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: btrfs: fix transaction abort on set received ioctl due to item overflow If the set received ioctl fails due to an item overflow when attempting to add the BTRFS_UUID_KEY_RECEIVED_SUBVOL we have to abort the tra

  • CVE-2026-43341CriMay 8, 2026
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: net/ipv6: ioam6: prevent schema length wraparound in trace fill ioam6_fill_trace_data() stores the schema contribution to the trace length in a u8. With bit 22 enabled and the largest schema payload, sclen beco

  • CVE-2026-43338MedMay 8, 2026
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: btrfs: reserve enough transaction items for qgroup ioctls Currently our qgroup ioctls don't reserve any space, they just do a transaction join, which does not reserve any space, neither for the quota tree updat

  • CVE-2026-43333MedMay 8, 2026
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: bpf: reject direct access to nullable PTR_TO_BUF pointers check_mem_access() matches PTR_TO_BUF via base_type() which strips PTR_MAYBE_NULL, allowing direct dereference without a null check. Map iterator ctx->

  • CVE-2026-43325MedMay 8, 2026
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: don't send a 6E related command when not supported MCC_ALLOWED_AP_TYPE_CMD is related to 6E support. Do not send it if the device doesn't support 6E. Apparently, the firmware is mistakenly a

  • CVE-2026-43296HigMay 8, 2026
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: octeontx2-af: Workaround SQM/PSE stalls by disabling sticky NIX SQ manager sticky mode is known to cause stalls when multiple SQs share an SMQ and transmit concurrently. Additionally, PSE may deadlock on transi

  • CVE-2026-43284HigMay 8, 2026
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: xfrm: esp: avoid in-place decrypt on shared skb frags MSG_SPLICE_PAGES can attach pages from a pipe directly to an skb. TCP marks such skbs with SKBFL_SHARED_FRAG after skb_splice_from_iter(), so later paths th

  • CVE-2026-43261MedMay 6, 2026
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: arm64: Add support for TSV110 Spectre-BHB mitigation The TSV110 processor is vulnerable to the Spectre-BHB (Branch History Buffer) attack, which can be exploited to leak information through branch prediction si

  • CVE-2026-43252MedMay 6, 2026
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: mptcp: pm: in-kernel: always set ID as avail when rm endp Syzkaller managed to find a combination of actions that was generating this warning: WARNING: net/mptcp/pm_kernel.c:1074 at __mark_subflow_endp_avail

  • CVE-2026-43249HigMay 6, 2026
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: 9p/xen: protect xen_9pfs_front_free against concurrent calls The xenwatch thread can race with other back-end change notifications and call xen_9pfs_front_free() twice, hitting the observed general protection f

  • CVE-2026-43234MedMay 6, 2026
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: team: avoid NETDEV_CHANGEMTU event when unregistering slave syzbot is reporting unregister_netdevice: waiting for netdevsim0 to become free. Usage count = 3 ref_tracker: netdev@ffff88807dcf8618 has 1/2 use

  • CVE-2026-43206HigMay 6, 2026
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix out-of-bounds write in kfd_event_page_set() The kfd_event_page_set() function writes KFD_SIGNAL_EVENT_LIMIT * 8 bytes via memset without checking the buffer size parameter. This allows unprivile

  • CVE-2026-43150HigMay 6, 2026
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: perf/arm-cmn: Reject unsupported hardware configurations So far we've been fairly lax about accepting both unknown CMN models (at least with a warning), and unknown revisions of those which we do know, as altho

  • CVE-2026-43109MedMay 6, 2026
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: x86: shadow stacks: proper error handling for mmap lock 김영민 reports that shstk_pop_sigframe() doesn't check for errors from mmap_read_lock_killable(), which is a silly oversight, and also shows that we haven't

  • CVE-2026-43068MedMay 5, 2026
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: ext4: avoid allocate block from corrupted group in ext4_mb_find_by_goal() There's issue as follows: ... EXT4-fs (mmcblk0p1): Delayed block allocation failed for inode 206 at logical offset 0 with max blocks 1 w

  • CVE-2026-43066MedMay 5, 2026
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: ext4: fix iloc.bh leak in ext4_fc_replay_inode() error paths During code review, Joseph found that ext4_fc_replay_inode() calls ext4_get_fc_inode_loc() to get the inode location, which holds a reference to iloc

Page 3 of 6