VYPR

rpm package

suse/kernel-livepatch-SLE15-SP7_Update_4&distro=SUSE Linux Enterprise Live Patching 15 SP7

pkg:rpm/suse/kernel-livepatch-SLE15-SP7_Update_4&distro=SUSE%20Linux%20Enterprise%20Live%20Patching%2015%20SP7

Vulnerabilities (129)

  • CVE-2025-38488Jul 28, 2025
    affected < 7-150700.2.1fixed 7-150700.2.1

    In the Linux kernel, the following vulnerability has been resolved: smb: client: fix use-after-free in crypt_message when using async crypto The CVE-2024-50047 fix removed asynchronous crypto handling from crypt_message(), assuming all crypto operations are synchronous. However

  • CVE-2025-38472Jul 28, 2025
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_conntrack: fix crash due to removal of uninitialised entry A crash in conntrack was reported while trying to unlink the conntrack entry from the hash bucket list: [exception RIP: __nf_ct_delet

  • CVE-2025-38464Jul 25, 2025
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: tipc: Fix use-after-free in tipc_conn_close(). syzbot reported a null-ptr-deref in tipc_conn_close() during netns dismantle. [0] tipc_topsrv_stop() iterates tipc_net(net)->topsrv->conn_idr and calls tipc_conn_

  • CVE-2025-38459Jul 25, 2025
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: atm: clip: Fix infinite recursive call of clip_push(). syzbot reported the splat below. [0] This happens if we call ioctl(ATMARP_MKIP) more than once. During the first call, clip_mkip() sets clip_push() to vc

  • CVE-2025-38458Jul 25, 2025
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: atm: clip: Fix NULL pointer dereference in vcc_sendmsg() atmarpd_dev_ops does not implement the send method, which may cause crash as bellow. BUG: kernel NULL pointer dereference, address: 0000000000000000 PGD

  • CVE-2025-38445Jul 25, 2025
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: md/raid1: Fix stack memory use after return in raid1_reshape In the raid1_reshape function, newpool is allocated on the stack and assigned to conf->r1bio_pool. This results in conf->r1bio_pool.wait.head pointin

  • CVE-2025-38444Jul 25, 2025
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: raid10: cleanup memleak at raid10_make_request If raid10_read_request or raid10_write_request registers a new request and the REQ_NOWAIT flag is set, the code does not free the malloc from the mempool. unrefer

  • CVE-2025-38441Jul 25, 2025
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: netfilter: flowtable: account for Ethernet header in nf_flow_pppoe_proto() syzbot found a potential access to uninit-value in nf_flow_pppoe_proto() Blamed commit forgot the Ethernet header. BUG: KMSAN: uninit

  • CVE-2025-38440Jul 25, 2025
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix race between DIM disable and net_dim() There's a race between disabling DIM and NAPI callbacks using the dim pointer on the RQ or SQ. If NAPI checks the DIM state bit and sees it still set, it a

  • CVE-2025-38439Jul 25, 2025
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: bnxt_en: Set DMA unmap len correctly for XDP_REDIRECT When transmitting an XDP_REDIRECT packet, call dma_unmap_len_set() with the proper length instead of 0. This bug triggers this warning on a system with IOM

  • CVE-2025-38360Jul 25, 2025
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add more checks for DSC / HUBP ONO guarantees [WHY] For non-zero DSC instances it's possible that the HUBP domain required to drive it for sequential ONO ASICs isn't met, potentially causing th

  • CVE-2025-38251Jul 9, 2025
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: atm: clip: prevent NULL deref in clip_push() Blamed commit missed that vcc_destroy_socket() calls clip_push() with a NULL skb. If clip_devs is NULL, clip_push() then crashes when reading skb->truesize.

  • CVE-2025-38245Jul 9, 2025
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: atm: Release atm_dev_mutex after removing procfs in atm_dev_deregister(). syzbot reported a warning below during atm_dev_register(). [0] Before creating a new device and procfs/sysfs for it, atm_dev_register()

  • CVE-2025-38208Jul 4, 2025
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: smb: client: add NULL check in automount_fullpath page is checked for null in __build_path_from_dentry_optional_prefix when tcon->origin_fullpath is not set. However, the check is missing when it is set. Add a

  • CVE-2025-38205Jul 4, 2025
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Avoid divide by zero by initializing dummy pitch to 1 [Why] If the dummy values in `populate_dummy_dml_surface_cfg()` aren't updated then they can lead to a divide by zero in downstream callers

  • CVE-2025-38201Jul 4, 2025
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_pipapo: clamp maximum map bucket size to INT_MAX Otherwise, it is possible to hit WARN_ON_ONCE in __kvmalloc_node_noprof() when resizing hashtable because __GFP_NOWARN is unset. Similar to:

  • CVE-2025-38190Jul 4, 2025
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: atm: Revert atm_account_tx() if copy_from_iter_full() fails. In vcc_sendmsg(), we account skb->truesize to sk->sk_wmem_alloc by atm_account_tx(). It is expected to be reverted by atm_pop_raw() later called by

  • CVE-2025-38185Jul 4, 2025
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: atm: atmtcp: Free invalid length skb in atmtcp_c_send(). syzbot reported the splat below. [0] vcc_sendmsg() copies data passed from userspace to skb and passes it to vcc->dev->ops->send(). atmtcp_c_send() acc

  • CVE-2025-38184Jul 4, 2025
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: tipc: fix null-ptr-deref when acquiring remote ip of ethernet bearer The reproduction steps: 1. create a tun interface 2. enable l2 bearer 3. TIPC_NL_UDP_GET_REMOTEIP with media name set to tun tipc: Started i

  • CVE-2025-38160Jul 3, 2025
    affected < 1-150700.15.3.2fixed 1-150700.15.3.2

    In the Linux kernel, the following vulnerability has been resolved: clk: bcm: rpi: Add NULL check in raspberrypi_clk_register() devm_kasprintf() returns NULL when memory allocation fails. Currently, raspberrypi_clk_register() does not check for this case, which results in a NUL

Page 6 of 7