rpm package

suse/kernel-rt&distro=SUSE Linux Enterprise Micro 5.1

pkg:rpm/suse/kernel-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.1

Vulnerabilities (1,613)

CVE	CVSS	Affected versions	Fixed in	Published	Description
CVE-2021-43976	—	< 5.3.18-68.1	5.3.18-68.1	Nov 17, 2021	In the Linux kernel through 5.15.2, mwifiex_usb_recv in drivers/net/wireless/marvell/mwifiex/usb.c allows an attacker (who can connect a crafted USB device) to cause a denial of service (skb_over_panic).
CVE-2021-43389	—	< 5.3.18-150300.175.1	5.3.18-150300.175.1	Nov 4, 2021	An issue was discovered in the Linux kernel before 5.14.15. There is an array-index-out-of-bounds flaw in the detach_capi_ctr function in drivers/isdn/capi/kcapi.c.
CVE-2020-27820	—	< 5.3.18-68.1	5.3.18-68.1	Nov 2, 2021	A vulnerability was found in Linux kernel, where a use-after-frees in nouveau's postclose() handler could happen if removing device (that is not common to remove video card physically without power-off, but same happens if "unbind" the driver).
CVE-2021-43056	—	< 5.3.18-60.1	5.3.18-60.1	Oct 28, 2021	An issue was discovered in the Linux kernel for powerpc before 5.14.15. It allows a malicious KVM guest to crash the host, when the host is running on Power8, due to an arch/powerpc/kvm/book3s_hv_rmhandlers.S implementation bug in the handling of the SRR1 register values.
CVE-2021-0941	—	< 5.3.18-65.2	5.3.18-65.2	Oct 25, 2021	In bpf_skb_change_head of filter.c, there is a possible out of bounds read due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAn
CVE-2021-42739	—	< 5.3.18-60.1	5.3.18-60.1	Oct 20, 2021	The firewire subsystem in the Linux kernel through 5.14.13 has a buffer overflow related to drivers/media/firewire/firedtv-avc.c and drivers/media/firewire/firedtv-ci.c, because avc_ca_pmt mishandles bounds checking.
CVE-2021-42252	—	< 5.3.18-60.1	5.3.18-60.1	Oct 11, 2021	An issue was discovered in aspeed_lpc_ctrl_mmap in drivers/soc/aspeed/aspeed-lpc-ctrl.c in the Linux kernel before 5.14.6. Local attackers able to access the Aspeed LPC control interface could overwrite memory in the kernel and potentially execute privileges, aka CID-b49a0e69a7b1
CVE-2021-42008	—	< 5.3.18-60.1	5.3.18-60.1	Oct 4, 2021	The decode_data function in drivers/net/hamradio/6pack.c in the Linux kernel before 5.13.13 has a slab out-of-bounds write. Input from a process that has the CAP_NET_ADMIN capability can lead to root access.
CVE-2021-41864	—	< 5.3.18-60.1	5.3.18-60.1	Oct 1, 2021	prealloc_elems_and_freelist in kernel/bpf/stackmap.c in the Linux kernel before 5.14.12 allows unprivileged users to trigger an eBPF multiplication integer overflow with a resultant out-of-bounds write.
CVE-2021-3653	—	< 5.3.18-57.1	5.3.18-57.1	Sep 29, 2021	A flaw was found in the KVM's AMD code for supporting SVM nested virtualization. The flaw occurs when processing the VMCB (virtual machine control block) provided by the L1 guest to spawn/handle a nested guest (L2). Due to improper validation of the "int_ctl" field, this issue co
CVE-2021-40490	—	< 5.3.18-57.1	5.3.18-57.1	Sep 3, 2021	A race condition was discovered in ext4_write_inline_data_end in fs/ext4/inline.c in the ext4 subsystem in the Linux kernel through 5.13.13.
CVE-2021-38198	—	< 5.3.18-57.1	5.3.18-57.1	Aug 8, 2021	arch/x86/kvm/mmu/paging_tmpl.h in the Linux kernel before 5.12.11 incorrectly computes the access permissions of a shadow page, leading to a missing guest protection page fault.
CVE-2021-38208	—	< 5.3.18-150300.88.2	5.3.18-150300.88.2	Aug 8, 2021	net/nfc/llcp_sock.c in the Linux kernel before 5.12.10 allows local unprivileged users to cause a denial of service (NULL pointer dereference and BUG) by making a getsockname call after a certain type of failure of a bind call.
CVE-2021-38160	—	< 5.3.18-57.1	5.3.18-57.1	Aug 7, 2021	In drivers/char/virtio_console.c in the Linux kernel before 5.13.4, data corruption or loss can be triggered by an untrusted device that supplies a buf->len value exceeding the buffer size. NOTE: the vendor indicates that the cited data corruption is not a vulnerability in any ex
CVE-2021-3655	—	< 5.3.18-60.1	5.3.18-60.1	Aug 5, 2021	A vulnerability was found in the Linux kernel in versions prior to v5.14-rc1. Missing size validations on inbound SCTP packets may allow the kernel to read uninitialized memory.
CVE-2021-34556	—	< 5.3.18-57.1	5.3.18-57.1	Aug 2, 2021	In the Linux kernel through 5.13.7, an unprivileged BPF program can obtain sensitive information from kernel memory via a Speculative Store Bypass side-channel attack because the protection mechanism neglects the possibility of uninitialized memory locations on the BPF stack.
CVE-2021-35477	—	< 5.3.18-57.1	5.3.18-57.1	Aug 2, 2021	In the Linux kernel through 5.13.7, an unprivileged BPF program can obtain sensitive information from kernel memory via a Speculative Store Bypass side-channel attack because a certain preempting store operation does not necessarily occur before a store operation that has an atta
CVE-2020-28097	—	< 5.3.18-150300.76.1	5.3.18-150300.76.1	Jun 24, 2021	The vgacon subsystem in the Linux kernel before 5.8.10 mishandles software scrollback. There is a vgacon_scrolldelta out-of-bounds read, aka CID-973c096f6a85.
CVE-2021-20292	—	< 5.3.18-150300.88.2	5.3.18-150300.88.2	May 28, 2021	There is a flaw reported in the Linux kernel in versions before 5.9 in drivers/gpu/drm/nouveau/nouveau_sgdma.c in nouveau_sgdma_create_ttm in Nouveau DRM subsystem. The issue results from the lack of validating the existence of an object prior to performing operations on the obje
CVE-2020-26555	—	< 5.3.18-150300.155.1	5.3.18-150300.155.1	May 24, 2021	Bluetooth legacy BR/EDR PIN code pairing in Bluetooth Core Specification 1.0B through 5.2 may permit an unauthenticated nearby device to spoof the BD_ADDR of the peer device to complete pairing without knowledge of the PIN.

CVE-2021-43976Nov 17, 2021
affected < 5.3.18-68.1fixed 5.3.18-68.1
In the Linux kernel through 5.15.2, mwifiex_usb_recv in drivers/net/wireless/marvell/mwifiex/usb.c allows an attacker (who can connect a crafted USB device) to cause a denial of service (skb_over_panic).
CVE-2021-43389Nov 4, 2021
affected < 5.3.18-150300.175.1fixed 5.3.18-150300.175.1
An issue was discovered in the Linux kernel before 5.14.15. There is an array-index-out-of-bounds flaw in the detach_capi_ctr function in drivers/isdn/capi/kcapi.c.
CVE-2020-27820Nov 2, 2021
affected < 5.3.18-68.1fixed 5.3.18-68.1
A vulnerability was found in Linux kernel, where a use-after-frees in nouveau's postclose() handler could happen if removing device (that is not common to remove video card physically without power-off, but same happens if "unbind" the driver).
CVE-2021-43056Oct 28, 2021
affected < 5.3.18-60.1fixed 5.3.18-60.1
An issue was discovered in the Linux kernel for powerpc before 5.14.15. It allows a malicious KVM guest to crash the host, when the host is running on Power8, due to an arch/powerpc/kvm/book3s_hv_rmhandlers.S implementation bug in the handling of the SRR1 register values.
CVE-2021-0941Oct 25, 2021
affected < 5.3.18-65.2fixed 5.3.18-65.2
In bpf_skb_change_head of filter.c, there is a possible out of bounds read due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAn
CVE-2021-42739Oct 20, 2021
affected < 5.3.18-60.1fixed 5.3.18-60.1
The firewire subsystem in the Linux kernel through 5.14.13 has a buffer overflow related to drivers/media/firewire/firedtv-avc.c and drivers/media/firewire/firedtv-ci.c, because avc_ca_pmt mishandles bounds checking.
CVE-2021-42252Oct 11, 2021
affected < 5.3.18-60.1fixed 5.3.18-60.1
An issue was discovered in aspeed_lpc_ctrl_mmap in drivers/soc/aspeed/aspeed-lpc-ctrl.c in the Linux kernel before 5.14.6. Local attackers able to access the Aspeed LPC control interface could overwrite memory in the kernel and potentially execute privileges, aka CID-b49a0e69a7b1
CVE-2021-42008Oct 4, 2021
affected < 5.3.18-60.1fixed 5.3.18-60.1
The decode_data function in drivers/net/hamradio/6pack.c in the Linux kernel before 5.13.13 has a slab out-of-bounds write. Input from a process that has the CAP_NET_ADMIN capability can lead to root access.
CVE-2021-41864Oct 1, 2021
affected < 5.3.18-60.1fixed 5.3.18-60.1
prealloc_elems_and_freelist in kernel/bpf/stackmap.c in the Linux kernel before 5.14.12 allows unprivileged users to trigger an eBPF multiplication integer overflow with a resultant out-of-bounds write.
CVE-2021-3653Sep 29, 2021
affected < 5.3.18-57.1fixed 5.3.18-57.1
A flaw was found in the KVM's AMD code for supporting SVM nested virtualization. The flaw occurs when processing the VMCB (virtual machine control block) provided by the L1 guest to spawn/handle a nested guest (L2). Due to improper validation of the "int_ctl" field, this issue co
CVE-2021-40490Sep 3, 2021
affected < 5.3.18-57.1fixed 5.3.18-57.1
A race condition was discovered in ext4_write_inline_data_end in fs/ext4/inline.c in the ext4 subsystem in the Linux kernel through 5.13.13.
CVE-2021-38198Aug 8, 2021
affected < 5.3.18-57.1fixed 5.3.18-57.1
arch/x86/kvm/mmu/paging_tmpl.h in the Linux kernel before 5.12.11 incorrectly computes the access permissions of a shadow page, leading to a missing guest protection page fault.
CVE-2021-38208Aug 8, 2021
affected < 5.3.18-150300.88.2fixed 5.3.18-150300.88.2
net/nfc/llcp_sock.c in the Linux kernel before 5.12.10 allows local unprivileged users to cause a denial of service (NULL pointer dereference and BUG) by making a getsockname call after a certain type of failure of a bind call.
CVE-2021-38160Aug 7, 2021
affected < 5.3.18-57.1fixed 5.3.18-57.1
In drivers/char/virtio_console.c in the Linux kernel before 5.13.4, data corruption or loss can be triggered by an untrusted device that supplies a buf->len value exceeding the buffer size. NOTE: the vendor indicates that the cited data corruption is not a vulnerability in any ex
CVE-2021-3655Aug 5, 2021
affected < 5.3.18-60.1fixed 5.3.18-60.1
A vulnerability was found in the Linux kernel in versions prior to v5.14-rc1. Missing size validations on inbound SCTP packets may allow the kernel to read uninitialized memory.
CVE-2021-34556Aug 2, 2021
affected < 5.3.18-57.1fixed 5.3.18-57.1
In the Linux kernel through 5.13.7, an unprivileged BPF program can obtain sensitive information from kernel memory via a Speculative Store Bypass side-channel attack because the protection mechanism neglects the possibility of uninitialized memory locations on the BPF stack.
CVE-2021-35477Aug 2, 2021
affected < 5.3.18-57.1fixed 5.3.18-57.1
In the Linux kernel through 5.13.7, an unprivileged BPF program can obtain sensitive information from kernel memory via a Speculative Store Bypass side-channel attack because a certain preempting store operation does not necessarily occur before a store operation that has an atta
CVE-2020-28097Jun 24, 2021
affected < 5.3.18-150300.76.1fixed 5.3.18-150300.76.1
The vgacon subsystem in the Linux kernel before 5.8.10 mishandles software scrollback. There is a vgacon_scrolldelta out-of-bounds read, aka CID-973c096f6a85.
CVE-2021-20292May 28, 2021
affected < 5.3.18-150300.88.2fixed 5.3.18-150300.88.2
There is a flaw reported in the Linux kernel in versions before 5.9 in drivers/gpu/drm/nouveau/nouveau_sgdma.c in nouveau_sgdma_create_ttm in Nouveau DRM subsystem. The issue results from the lack of validating the existence of an object prior to performing operations on the obje
CVE-2020-26555May 24, 2021
affected < 5.3.18-150300.155.1fixed 5.3.18-150300.155.1
Bluetooth legacy BR/EDR PIN code pairing in Bluetooth Core Specification 1.0B through 5.2 may permit an unauthenticated nearby device to spoof the BD_ADDR of the peer device to complete pairing without knowledge of the PIN.

Page 80 of 81