VYPR

rpm package

suse/kernel-livepatch-SLE15-SP7_Update_3&distro=SUSE Linux Enterprise Live Patching 15 SP7

pkg:rpm/suse/kernel-livepatch-SLE15-SP7_Update_3&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP7

Vulnerabilities (274)

  • CVE-2025-38376Jul 25, 2025
    affected < 1-150700.15.3.4fixed 1-150700.15.3.4

    In the Linux kernel, the following vulnerability has been resolved: usb: chipidea: udc: disconnect/reconnect from host when do suspend/resume Shawn and John reported a hang issue during system suspend as below: - USB gadget is enabled as Ethernet - There is data transfer ove

  • CVE-2025-38375Jul 25, 2025
    affected < 1-150700.15.3.4fixed 1-150700.15.3.4

    In the Linux kernel, the following vulnerability has been resolved: virtio-net: ensure the received length does not exceed allocated size In xdp_linearize_page, when reading the following buffers from the ring, we forget to check the received length with the true allocate size.

  • CVE-2025-38373Jul 25, 2025
    affected < 1-150700.15.3.4fixed 1-150700.15.3.4

    In the Linux kernel, the following vulnerability has been resolved: IB/mlx5: Fix potential deadlock in MR deregistration The issue arises when kzalloc() is invoked while holding umem_mutex or any other lock acquired under umem_mutex. This is problematic because kzalloc() can tr

  • CVE-2025-38371Jul 25, 2025
    affected < 1-150700.15.3.4fixed 1-150700.15.3.4

    In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Disable interrupts before resetting the GPU Currently, an interrupt can be triggered during a GPU reset, which can lead to GPU hangs and NULL pointer dereference in an interrupt context as shown in the

  • CVE-2025-38369Jul 25, 2025
    affected < 1-150700.15.3.4fixed 1-150700.15.3.4

    In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: Check availability of workqueue allocated by idxd wq driver before using Running IDXD workloads in a container with the /dev directory mounted can trigger a call trace or even a kernel panic wh

  • CVE-2025-38365Jul 25, 2025
    affected < 1-150700.15.3.4fixed 1-150700.15.3.4

    In the Linux kernel, the following vulnerability has been resolved: btrfs: fix a race between renames and directory logging We have a race between a rename and directory inode logging that if it happens and we crash/power fail before the rename completes, the next time the file

  • CVE-2025-38363Jul 25, 2025
    affected < 1-150700.15.3.4fixed 1-150700.15.3.4

    In the Linux kernel, the following vulnerability has been resolved: drm/tegra: Fix a possible null pointer dereference In tegra_crtc_reset(), new memory is allocated with kzalloc(), but no check is performed. Before calling __drm_atomic_helper_crtc_reset, state should be checke

  • CVE-2025-38362Jul 25, 2025
    affected < 1-150700.15.3.4fixed 1-150700.15.3.4

    In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add null pointer check for get_first_active_display() The function mod_hdcp_hdcp1_enable_encryption() calls the function get_first_active_display(), but does not check its return value. The ret

  • CVE-2025-38361Jul 25, 2025
    affected < 1-150700.15.3.4fixed 1-150700.15.3.4

    In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check dce_hwseq before dereferencing it [WHAT] hws was checked for null earlier in dce110_blank_stream, indicating hws can be null, and should be checked whenever it is used. (cherry picked f

  • CVE-2025-38356Jul 25, 2025
    affected < 1-150700.15.3.4fixed 1-150700.15.3.4

    In the Linux kernel, the following vulnerability has been resolved: drm/xe/guc: Explicitly exit CT safe mode on unwind During driver probe we might be briefly using CT safe mode, which is based on a delayed work, but usually we are able to stop this once we have IRQ fully opera

  • CVE-2025-38355Jul 25, 2025
    affected < 1-150700.15.3.4fixed 1-150700.15.3.4

    In the Linux kernel, the following vulnerability has been resolved: drm/xe: Process deferred GGTT node removals on device unwind While we are indirectly draining our dedicated workqueue ggtt->wq that we use to complete asynchronous removal of some GGTT nodes, this happends as p

  • CVE-2025-38354Jul 25, 2025
    affected < 1-150700.15.3.4fixed 1-150700.15.3.4

    In the Linux kernel, the following vulnerability has been resolved: drm/msm/gpu: Fix crash when throttling GPU immediately during boot There is a small chance that the GPU is already hot during boot. In that case, the call to of_devfreq_cooling_register() will immediately try t

  • CVE-2025-38353Jul 25, 2025
    affected < 1-150700.15.3.4fixed 1-150700.15.3.4

    In the Linux kernel, the following vulnerability has been resolved: drm/xe: Fix taking invalid lock on wedge If device wedges on e.g. GuC upload, the submission is not yet enabled and the state is not even initialized. Protect the wedge call so it does nothing in this case. It

  • CVE-2025-38352KEVJul 22, 2025
    affected < 1-150700.15.3.4fixed 1-150700.15.3.4

    In the Linux kernel, the following vulnerability has been resolved: posix-cpu-timers: fix race between handle_posix_cpu_timers() and posix_cpu_timer_del() If an exiting non-autoreaping task has already passed exit_notify() and calls handle_posix_cpu_timers() from IRQ, it can be

  • CVE-2025-38350HigJul 19, 2025
    affected < 1-150700.15.3.4fixed 1-150700.15.3.4

    In the Linux kernel, the following vulnerability has been resolved: net/sched: Always pass notifications when child class becomes empty Certain classful qdiscs may invoke their classes' dequeue handler on an enqueue operation. This may unexpectedly empty the child qdisc and thu

  • CVE-2025-38349Jul 18, 2025
    affected < 1-150700.15.3.4fixed 1-150700.15.3.4

    In the Linux kernel, the following vulnerability has been resolved: eventpoll: don't decrement ep refcount while still holding the ep mutex Jann Horn points out that epoll is decrementing the ep refcount and then doing a mutex_unlock(&ep->mtx); afterwards. That's very wro

  • CVE-2025-38342HigJul 10, 2025
    affected < 1-150700.15.3.4fixed 1-150700.15.3.4

    In the Linux kernel, the following vulnerability has been resolved: software node: Correct a OOB check in software_node_get_reference_args() software_node_get_reference_args() wants to get @index-th element, so the property value requires at least '(index + 1) * sizeof(*ref)' b

  • CVE-2025-38312MedJul 10, 2025
    affected < 1-150700.15.3.4fixed 1-150700.15.3.4

    In the Linux kernel, the following vulnerability has been resolved: fbdev: core: fbcvt: avoid division by 0 in fb_cvt_hperiod() In fb_find_mode_cvt(), iff mode->refresh somehow happens to be 0x80000000, cvt.f_refresh will become 0 when multiplying it by 2 due to overflow. It's

  • CVE-2025-38303MedJul 10, 2025
    affected < 1-150700.15.3.4fixed 1-150700.15.3.4

    In the Linux kernel, the following vulnerability has been resolved: Bluetooth: eir: Fix possible crashes on eir_create_adv_data eir_create_adv_data may attempt to add EIR_FLAGS and EIR_TX_POWER without checking if that would fit.

  • CVE-2025-38348Jul 10, 2025
    affected < 1-150700.15.3.4fixed 1-150700.15.3.4

    In the Linux kernel, the following vulnerability has been resolved: wifi: p54: prevent buffer-overflow in p54_rx_eeprom_readback() Robert Morris reported: |If a malicious USB device pretends to be an Intersil p54 wifi |interface and generates an eeprom_readback message with a

Page 5 of 14