VYPR

rpm package

suse/kernel-livepatch-SLE15-SP7_Update_4&distro=SUSE Linux Enterprise Live Patching 15 SP7

pkg:rpm/suse/kernel-livepatch-SLE15-SP7_Update_4&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP7

Vulnerabilities (129)

  • CVE-2025-38535Aug 16, 2025
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: phy: tegra: xusb: Fix unbalanced regulator disable in UTMI PHY mode When transitioning from USB_ROLE_DEVICE to USB_ROLE_NONE, the code assumed that the regulator should be disabled. However, if the regulator is

  • CVE-2025-38530Aug 16, 2025
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: comedi: pcl812: Fix bit shift out of bounds When checking for a supported IRQ number, the following test is used: if ((1 << it->options[1]) & board->irq_bits) { However, `it->options[i]` is an unchecked `int

  • CVE-2025-38529Aug 16, 2025
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: comedi: aio_iiro_16: Fix bit shift out of bounds When checking for a supported IRQ number, the following test is used: if ((1 << it->options[1]) & 0xdcfc) { However, `it->options[i]` is an unchecked `int` va

  • CVE-2025-38528Aug 16, 2025
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: bpf: Reject %p% format string in bprintf-like helpers static const char fmt[] = "%p%"; bpf_trace_printk(fmt, sizeof(fmt)); The above BPF program isn't rejected and causes a kernel warning at runtime:

  • CVE-2025-38524Aug 16, 2025
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix recv-recv race of completed call If a call receives an event (such as incoming data), the call gets placed on the socket's queue and a thread in recvmsg can be awakened to go and process it. Once th

  • CVE-2025-38521Aug 16, 2025
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: drm/imagination: Fix kernel crash when hard resetting the GPU The GPU hard reset sequence calls pm_runtime_force_suspend() and pm_runtime_force_resume(), which according to their documentation should only be us

  • CVE-2025-38520Aug 16, 2025
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Don't call mmput from MMU notifier callback If the process is exiting, the mmput inside mmu notifier callback from compactd or fork or numa balancing could release the last reference of mm struct to

  • CVE-2025-38516Aug 16, 2025
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: pinctrl: qcom: msm: mark certain pins as invalid for interrupts On some platforms, the UFS-reset pin has no interrupt logic in TLMM but is nevertheless registered as a GPIO in the kernel. This enables the user-

  • CVE-2025-38515Aug 16, 2025
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: drm/sched: Increment job count before swapping tail spsc queue A small race exists between spsc_queue_push and the run-job worker, in which spsc_queue_push may return not-first while the run-job worker has alre

  • CVE-2025-38513Aug 16, 2025
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: wifi: zd1211rw: Fix potential NULL pointer dereference in zd_mac_tx_to_dev() There is a potential NULL pointer dereference in zd_mac_tx_to_dev(). For example, the following is possible: T0 T1 zd_m

  • CVE-2025-38512Aug 16, 2025
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: wifi: prevent A-MSDU attacks in mesh networks This patch is a mitigation to prevent the A-MSDU spoofing vulnerability for mesh networks. The initial update to the IEEE 802.11 standard, in response to the FragAt

  • CVE-2025-38511Aug 16, 2025
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: drm/xe/pf: Clear all LMTT pages on alloc Our LMEM buffer objects are not cleared by default on alloc and during VF provisioning we only setup LMTT PTEs for the actually provisioned LMEM range. But beyond that v

  • CVE-2025-38510Aug 16, 2025
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: kasan: remove kasan_find_vm_area() to prevent possible deadlock find_vm_area() couldn't be called in atomic_context. If find_vm_area() is called to reports vm area information, kasan can trigger deadlock like:

  • CVE-2025-38506Aug 16, 2025
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: KVM: Allow CPU to reschedule while setting per-page memory attributes When running an SEV-SNP guest with a sufficiently large amount of memory (1TB+), the host can experience CPU soft lockups when running an op

  • CVE-2025-38503Aug 16, 2025
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: btrfs: fix assertion when building free space tree When building the free space tree with the block group tree feature enabled, we can hit an assertion failure like this: BTRFS info (device loop0 state M): r

  • CVE-2025-38500Aug 12, 2025
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: xfrm: interface: fix use-after-free after changing collect_md xfrm interface collect_md property on xfrm interfaces can only be set on device creation, thus xfrmi_changelink() should fail when called on such in

  • CVE-2025-38499MedAug 11, 2025
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: clone_private_mnt(): make sure that caller has CAP_SYS_ADMIN in the right userns What we want is to verify there is that clone won't expose something hidden by a mount we wouldn't be able to undo. "Wouldn't be

  • CVE-2024-58238Aug 9, 2025
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btnxpuart: Resolve TX timeout error in power save stress test This fixes the tx timeout issue seen while running a stress test on btnxpuart for couple of hours, such that the interval between two HCI

  • CVE-2025-38491MedJul 28, 2025
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: mptcp: make fallback action and fallback decision atomic Syzkaller reported the following splat: WARNING: CPU: 1 PID: 7704 at net/mptcp/protocol.h:1223 __mptcp_do_fallback net/mptcp/protocol.h:1223 [inline]

  • CVE-2025-38490Jul 28, 2025
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: net: libwx: remove duplicate page_pool_put_full_page() page_pool_put_full_page() should only be invoked when freeing Rx buffers or building a skb if the size is too short. At other times, the pages need to be r

Page 5 of 7