VYPR

rpm package

suse/kernel-livepatch-SLE15-SP7_Update_3&distro=SUSE Linux Enterprise Live Patching 15 SP7

pkg:rpm/suse/kernel-livepatch-SLE15-SP7_Update_3&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP7

Vulnerabilities (274)

  • CVE-2025-38088Jun 30, 2025
    affected < 1-150700.15.3.4fixed 1-150700.15.3.4

    In the Linux kernel, the following vulnerability has been resolved: powerpc/powernv/memtrace: Fix out of bounds issue in memtrace mmap memtrace mmap issue has an out of bounds issue. This patch fixes the by checking that the requested mapping region size should stay within the

  • CVE-2025-38087Jun 30, 2025
    affected < 1-150700.15.3.4fixed 1-150700.15.3.4

    In the Linux kernel, the following vulnerability has been resolved: net/sched: fix use-after-free in taprio_dev_notifier Since taprio’s taprio_dev_notifier() isn’t protected by an RCU read-side critical section, a race with advance_sched() can lead to a use-after-free. Adding

  • CVE-2025-38085Jun 28, 2025
    affected < 1-150700.15.3.4fixed 1-150700.15.3.4

    In the Linux kernel, the following vulnerability has been resolved: mm/hugetlb: fix huge_pmd_unshare() vs GUP-fast race huge_pmd_unshare() drops a reference on a page table that may have previously been shared across processes, potentially turning it into a normal page table us

  • CVE-2025-38084Jun 28, 2025
    affected < 1-150700.15.3.4fixed 1-150700.15.3.4

    In the Linux kernel, the following vulnerability has been resolved: mm/hugetlb: unshare page tables during VMA split, not before Currently, __split_vma() triggers hugetlb page table unsharing through vm_ops->may_split(). This happens before the VMA lock and rmap locks are take

  • CVE-2025-38063MedJun 18, 2025
    affected < 1-150700.15.3.4fixed 1-150700.15.3.4

    In the Linux kernel, the following vulnerability has been resolved: dm: fix unconditional IO throttle caused by REQ_PREFLUSH When a bio with REQ_PREFLUSH is submitted to dm, __send_empty_flush() generates a flush_bio with REQ_OP_WRITE | REQ_PREFLUSH | REQ_SYNC, which causes the

  • CVE-2025-38058MedJun 18, 2025
    affected < 1-150700.15.3.4fixed 1-150700.15.3.4

    In the Linux kernel, the following vulnerability has been resolved: __legitimize_mnt(): check for MNT_SYNC_UMOUNT should be under mount_lock ... or we risk stealing final mntput from sync umount - raising mnt_count after umount(2) has verified that victim is not busy, but befor

  • CVE-2025-38074Jun 18, 2025
    affected < 1-150700.15.3.4fixed 1-150700.15.3.4

    In the Linux kernel, the following vulnerability has been resolved: vhost-scsi: protect vq->log_used with vq->mutex The vhost-scsi completion path may access vq->log_base when vq->log_used is already set to false. vhost-thread QEMU-thread vhost_scsi_

  • CVE-2025-38064Jun 18, 2025
    affected < 1-150700.15.3.4fixed 1-150700.15.3.4

    In the Linux kernel, the following vulnerability has been resolved: virtio: break and reset virtio devices on device_shutdown() Hongyu reported a hang on kexec in a VM. QEMU reported invalid memory accesses during the hang. Invalid read at addr 0x102877002, size 2, region '(n

  • CVE-2025-38062Jun 18, 2025
    affected < 1-150700.15.3.4fixed 1-150700.15.3.4

    In the Linux kernel, the following vulnerability has been resolved: genirq/msi: Store the IOMMU IOVA directly in msi_desc instead of iommu_cookie The IOMMU translation for MSI message addresses has been a 2-step process, separated in time: 1) iommu_dma_prepare_msi(): A cookie

  • CVE-2025-38061Jun 18, 2025
    affected < 1-150700.15.3.4fixed 1-150700.15.3.4

    In the Linux kernel, the following vulnerability has been resolved: net: pktgen: fix access outside of user given buffer in pktgen_thread_write() Honour the user given buffer size for the strn_len() calls (otherwise strn_len() will access memory outside of the user given buffer

  • CVE-2025-38052Jun 18, 2025
    affected < 1-150700.15.3.4fixed 1-150700.15.3.4

    In the Linux kernel, the following vulnerability has been resolved: net/tipc: fix slab-use-after-free Read in tipc_aead_encrypt_done Syzbot reported a slab-use-after-free with the following call trace: ================================================================== BUG:

  • CVE-2025-38051Jun 18, 2025
    affected < 1-150700.15.3.4fixed 1-150700.15.3.4

    In the Linux kernel, the following vulnerability has been resolved: smb: client: Fix use-after-free in cifs_fill_dirent There is a race condition in the readdir concurrency process, which may access the rsp buffer after it has been released, triggering the following KASAN warni

  • CVE-2025-38047Jun 18, 2025
    affected < 1-150700.15.3.4fixed 1-150700.15.3.4

    In the Linux kernel, the following vulnerability has been resolved: x86/fred: Fix system hang during S4 resume with FRED enabled Upon a wakeup from S4, the restore kernel starts and initializes the FRED MSRs as needed from its perspective. It then loads a hibernation image, in

  • CVE-2025-38035Jun 18, 2025
    affected < 1-150700.15.3.4fixed 1-150700.15.3.4

    In the Linux kernel, the following vulnerability has been resolved: nvmet-tcp: don't restore null sk_state_change queue->state_change is set as part of nvmet_tcp_set_queue_sock(), but if the TCP connection isn't established when nvmet_tcp_set_queue_sock() is called then queue->

  • CVE-2025-38034Jun 18, 2025
    affected < 1-150700.15.3.4fixed 1-150700.15.3.4

    In the Linux kernel, the following vulnerability has been resolved: btrfs: correct the order of prelim_ref arguments in btrfs__prelim_ref btrfs_prelim_ref() calls the old and new reference variables in the incorrect order. This causes a NULL pointer dereference because oldref i

  • CVE-2025-37984May 20, 2025
    affected < 1-150700.15.3.4fixed 1-150700.15.3.4

    In the Linux kernel, the following vulnerability has been resolved: crypto: ecdsa - Harden against integer overflows in DIV_ROUND_UP() Herbert notes that DIV_ROUND_UP() may overflow unnecessarily if an ecdsa implementation's ->key_size() callback returns an unusually large valu

  • CVE-2025-37920May 20, 2025
    affected < 1-150700.15.3.4fixed 1-150700.15.3.4

    In the Linux kernel, the following vulnerability has been resolved: xsk: Fix race condition in AF_XDP generic RX path Move rx_lock from xsk_socket to xsk_buff_pool. Fix synchronization for shared umem mode in generic RX path where multiple sockets share single xsk_buff_pool. R

  • CVE-2025-37864MedMay 9, 2025
    affected < 1-150700.15.3.4fixed 1-150700.15.3.4

    In the Linux kernel, the following vulnerability has been resolved: net: dsa: clean up FDB, MDB, VLAN entries on unbind As explained in many places such as commit b117e1e8a86d ("net: dsa: delete dsa_legacy_fdb_add and dsa_legacy_fdb_del"), DSA is written given the assumption th

  • CVE-2025-37885May 9, 2025
    affected < 1-150700.15.3.4fixed 1-150700.15.3.4

    In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Reset IRTE to host control if *new* route isn't postable Restore an IRTE back to host control (remapped or posted MSI mode) if the *new* GSI route prevents posting the IRQ directly to a vCPU, regardle

  • CVE-2025-37856May 9, 2025
    affected < 1-150700.15.3.4fixed 1-150700.15.3.4

    In the Linux kernel, the following vulnerability has been resolved: btrfs: harden block_group::bg_list against list_del() races As far as I can tell, these calls of list_del_init() on bg_list cannot run concurrently with btrfs_mark_bg_unused() or btrfs_mark_bg_to_reclaim(), as

Page 13 of 14