suse/kernel-obs-build&distro=SUSE Linux Enterprise Module for Development Tools 15 SP7

Vulnerabilities (2,262)

• CVE-2025-40253Dec 4, 2025
  affected < 6.4.0-150700.53.34.1fixed 6.4.0-150700.53.34.1

  In the Linux kernel, the following vulnerability has been resolved: s390/ctcm: Fix double-kfree The function 'mpc_rcvd_sweep_req(mpcginfo)' is called conditionally from function 'ctcmpc_unpack_skb'. It frees passed mpcginfo. After that a call to function 'kfree' in function 'ct

• CVE-2025-40252Dec 4, 2025
  affected < 6.4.0-150700.53.28.1fixed 6.4.0-150700.53.28.1

  In the Linux kernel, the following vulnerability has been resolved: net: qlogic/qede: fix potential out-of-bounds read in qede_tpa_cont() and qede_tpa_end() The loops in 'qede_tpa_cont()' and 'qede_tpa_end()', iterate over 'cqe->len_list[]' using only a zero-length terminator a

• CVE-2025-40250Dec 4, 2025
  affected < 6.4.0-150700.53.28.1fixed 6.4.0-150700.53.28.1

  In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Clean up only new IRQ glue on request_irq() failure The mlx5_irq_alloc() function can inadvertently free the entire rmap and end up in a crash[1] when the other threads tries to access this, when requ

• CVE-2025-40248Dec 4, 2025
  affected < 6.4.0-150700.53.28.1fixed 6.4.0-150700.53.28.1

  In the Linux kernel, the following vulnerability has been resolved: vsock: Ignore signal/timeout on connect() if already established During connect(), acting on a signal/timeout by disconnecting an already established socket leads to several issues: 1. connect() invoking vsock

• CVE-2025-40244Dec 4, 2025
  affected < 6.4.0-150700.53.28.1fixed 6.4.0-150700.53.28.1

  In the Linux kernel, the following vulnerability has been resolved: hfsplus: fix KMSAN uninit-value issue in __hfsplus_ext_cache_extent() The syzbot reported issue in __hfsplus_ext_cache_extent(): [ 70.194323][ T9350] BUG: KMSAN: uninit-value in __hfsplus_ext_cache_extent+0x

• CVE-2025-40242Dec 4, 2025
  affected < 6.4.0-150700.53.28.1fixed 6.4.0-150700.53.28.1

  In the Linux kernel, the following vulnerability has been resolved: gfs2: Fix unlikely race in gdlm_put_lock In gdlm_put_lock(), there is a small window of time in which the DFL_UNMOUNT flag has been set but the lockspace hasn't been released, yet. In that window, dlm may stil

• CVE-2025-40240Dec 4, 2025
  affected < 6.4.0-150700.53.28.1fixed 6.4.0-150700.53.28.1

  In the Linux kernel, the following vulnerability has been resolved: sctp: avoid NULL dereference when chunk data buffer is missing chunk->skb pointer is dereferenced in the if-block where it's supposed to be NULL only. chunk->skb can only be NULL if chunk->head_skb is not. Che

• CVE-2025-40238Dec 4, 2025
  affected < 6.4.0-150700.53.31.1fixed 6.4.0-150700.53.31.1

  In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix IPsec cleanup over MPV device When we do mlx5e_detach_netdev() we eventually disable blocking events notifier, among those events are IPsec MPV events from IB to core. So before disabling those b

• CVE-2025-40233Dec 4, 2025
  affected < 6.4.0-150700.53.28.1fixed 6.4.0-150700.53.28.1

  In the Linux kernel, the following vulnerability has been resolved: ocfs2: clear extent cache after moving/defragmenting extents The extent map cache can become stale when extents are moved or defragmented, causing subsequent operations to see outdated extent flags. This trigg

• CVE-2025-40231Dec 4, 2025
  affected < 6.4.0-150700.53.28.1fixed 6.4.0-150700.53.28.1

  In the Linux kernel, the following vulnerability has been resolved: vsock: fix lock inversion in vsock_assign_transport() Syzbot reported a potential lock inversion deadlock between vsock_register_mutex and sk_lock-AF_VSOCK when vsock_linger() is called. The issue was introduc

• CVE-2025-40225Dec 4, 2025
  affected < 6.4.0-150700.53.28.1fixed 6.4.0-150700.53.28.1

  In the Linux kernel, the following vulnerability has been resolved: drm/panthor: Fix kernel panic on partial unmap of a GPU VA region This commit address a kernel panic issue that can happen if Userspace tries to partially unmap a GPU virtual region (aka drm_gpuva). The VM_BIND

• CVE-2025-40223Dec 4, 2025
  affected < 6.4.0-150700.53.28.1fixed 6.4.0-150700.53.28.1

  In the Linux kernel, the following vulnerability has been resolved: most: usb: Fix use-after-free in hdm_disconnect hdm_disconnect() calls most_deregister_interface(), which eventually unregisters the MOST interface device with device_unregister(iface->dev). If that drops the l

• CVE-2025-40251Dec 4, 2025
  affected < 6.4.0-150700.53.28.1fixed 6.4.0-150700.53.28.1

  In the Linux kernel, the following vulnerability has been resolved: devlink: rate: Unset parent pointer in devl_rate_nodes_destroy The function devl_rate_nodes_destroy is documented to "Unset parent for all rate objects". However, it was only calling the driver-specific `rate_l

• CVE-2025-40220Dec 4, 2025
  affected < 6.4.0-150700.53.28.1fixed 6.4.0-150700.53.28.1

  In the Linux kernel, the following vulnerability has been resolved: fuse: fix livelock in synchronous file put from fuseblk workers I observed a hang when running generic/323 against a fuseblk server. This test opens a file, initiates a lot of AIO writes to that file descriptor

• CVE-2025-40219Dec 4, 2025
  affected < 6.4.0-150700.53.28.1fixed 6.4.0-150700.53.28.1

  In the Linux kernel, the following vulnerability has been resolved: PCI/IOV: Fix race between SR-IOV enable/disable and hotplug Commit 05703271c3cd ("PCI/IOV: Add PCI rescan-remove locking when enabling/disabling SR-IOV") tried to fix a race between the VF removal inside sriov_

• CVE-2025-40215Dec 4, 2025
  affected < 6.4.0-150700.53.28.1fixed 6.4.0-150700.53.28.1

  In the Linux kernel, the following vulnerability has been resolved: xfrm: delete x->tunnel as we delete x The ipcomp fallback tunnels currently get deleted (from the various lists and hashtables) as the last user state that needed that fallback is destroyed (not deleted). If a

• CVE-2025-40213Nov 24, 2025
  affected < 6.4.0-150700.53.28.1fixed 6.4.0-150700.53.28.1

  In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: fix crash in set_mesh_sync and set_mesh_complete There is a BUG: KASAN: stack-out-of-bounds in set_mesh_sync due to memcpy from badly declared on-stack flexible array. Another crash is in set_

• CVE-2025-40211Nov 21, 2025
  affected < 6.4.0-150700.53.28.1fixed 6.4.0-150700.53.28.1

  In the Linux kernel, the following vulnerability has been resolved: ACPI: video: Fix use-after-free in acpi_video_switch_brightness() The switch_brightness_work delayed work accesses device->brightness and device->backlight, freed by acpi_video_dev_unregister_backlight() during

• CVE-2025-40207Nov 12, 2025
  affected < 6.4.0-150700.53.25.1fixed 6.4.0-150700.53.25.1

  In the Linux kernel, the following vulnerability has been resolved: media: v4l2-subdev: Fix alloc failure check in v4l2_subdev_call_state_try() v4l2_subdev_call_state_try() macro allocates a subdev state with __v4l2_subdev_state_alloc(), but does not check the returned value. I

• CVE-2025-40206Nov 12, 2025
  affected < 6.4.0-150700.53.25.1fixed 6.4.0-150700.53.25.1

  In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_objref: validate objref and objrefmap expressions Referencing a synproxy stateful object from OUTPUT hook causes kernel crash due to infinite recursive calls: BUG: TASK stack guard page was hit