suse/kernel-rt&distro=SUSE Linux Enterprise Micro 5.2

Vulnerabilities (1,678)

• CVE-2024-53144Dec 17, 2024
  affected < 5.3.18-150300.197.1fixed 5.3.18-150300.197.1

  In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_event: Align BR/EDR JUST_WORKS paring with LE This aligned BR/EDR JUST_WORKS method with LE which since 92516cd97fd4 ("Bluetooth: Always request for user confirmation for Just Works") always requ

• CVE-2024-53142Dec 6, 2024
  affected < 5.3.18-150300.197.1fixed 5.3.18-150300.197.1

  In the Linux kernel, the following vulnerability has been resolved: initramfs: avoid filename buffer overrun The initramfs filename field is defined in Documentation/driver-api/early-userspace/buffer-format.rst as: 37 cpio_file := ALGN(4) + cpio_header + filename + "\0" + ALG

• CVE-2024-53141Dec 6, 2024
  affected < 5.3.18-150300.214.1fixed 5.3.18-150300.214.1

  In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: add missing range check in bitmap_ip_uadt When tb[IPSET_ATTR_IP_TO] is not present but tb[IPSET_ATTR_CIDR] exists, the values of ip and ip_to are slightly swapped. Therefore, the range check f

• CVE-2024-53104KEVDec 2, 2024
  affected < 5.3.18-150300.202.1fixed 5.3.18-150300.202.1

  In the Linux kernel, the following vulnerability has been resolved: media: uvcvideo: Skip parsing frames of type UVC_VS_UNDEFINED in uvc_parse_format This can lead to out of bounds writes since frames of this type were not taken into account when calculating the size of the fra

• CVE-2024-8805Nov 22, 2024
  affected < 5.3.18-150300.197.1fixed 5.3.18-150300.197.1

  BlueZ HID over GATT Profile Improper Access Control Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of BlueZ. Authentication is not required to exploit this vulnerability. The specific

• CVE-2024-53057HigNov 19, 2024
  affected < 5.3.18-150300.217.1fixed 5.3.18-150300.217.1

  In the Linux kernel, the following vulnerability has been resolved: net/sched: stop qdisc_tree_reduce_backlog on TC_H_ROOT In qdisc_tree_reduce_backlog, Qdiscs with major handle ffff: are assumed to be either root or ingress. This assumption is bogus since it's valid to create

• CVE-2024-53063Nov 19, 2024
  affected < 5.3.18-150300.194.1fixed 5.3.18-150300.194.1

  In the Linux kernel, the following vulnerability has been resolved: media: dvbdev: prevent the risk of out of memory access The dvbdev contains a static variable used to store dvb minors. The behavior of it depends if CONFIG_DVB_DYNAMIC_MINORS is set or not. When not set, dvb_

• CVE-2024-53061Nov 19, 2024
  affected < 5.3.18-150300.194.1fixed 5.3.18-150300.194.1

  In the Linux kernel, the following vulnerability has been resolved: media: s5p-jpeg: prevent buffer overflows The current logic allows word to be less than 2. If this happens, there will be buffer overflows, as reported by smatch. Add extra checks to prevent it. While here, re

• CVE-2024-50302MedKEVNov 19, 2024
  affected < 5.3.18-150300.194.1fixed 5.3.18-150300.194.1

  In the Linux kernel, the following vulnerability has been resolved: HID: core: zero-initialize the report buffer Since the report buffer is used by all kinds of drivers in various ways, let's zero-initialize it during allocation to make sure that it can't be ever used to leak k

• CVE-2024-50301HigNov 19, 2024
  affected < 5.3.18-150300.194.1fixed 5.3.18-150300.194.1

  In the Linux kernel, the following vulnerability has been resolved: security/keys: fix slab-out-of-bounds in key_task_permission KASAN reports an out of bounds read: BUG: KASAN: slab-out-of-bounds in __kuid_val include/linux/uidgid.h:36 BUG: KASAN: slab-out-of-bounds in uid_eq

• CVE-2024-50290Nov 19, 2024
  affected < 5.3.18-150300.194.1fixed 5.3.18-150300.194.1

  In the Linux kernel, the following vulnerability has been resolved: media: cx24116: prevent overflows on SNR calculus as reported by Coverity, if reading SNR registers fail, a negative number will be returned, causing an underflow when reading SNR registers. Prevent that.

• CVE-2024-50279Nov 19, 2024
  affected < 5.3.18-150300.194.1fixed 5.3.18-150300.194.1

  In the Linux kernel, the following vulnerability has been resolved: dm cache: fix out-of-bounds access to the dirty bitset when resizing dm-cache checks the dirty bits of the cache blocks to be dropped when shrinking the fast device, but an index bug in bitset iteration causes

• CVE-2024-50267Nov 19, 2024
  affected < 5.3.18-150300.194.1fixed 5.3.18-150300.194.1

  In the Linux kernel, the following vulnerability has been resolved: USB: serial: io_edgeport: fix use after free in debug printk The "dev_dbg(&urb->dev->dev, ..." which happens after usb_free_urb(urb) is a use after free of the "urb" pointer. Store the "dev" pointer at the sta

• CVE-2024-50264Nov 19, 2024
  affected < 5.3.18-150300.194.1fixed 5.3.18-150300.194.1

  In the Linux kernel, the following vulnerability has been resolved: vsock/virtio: Initialization of the dangling pointer occurring in vsk->trans During loopback communication, a dangling pointer can be created in vsk->trans, potentially leading to a Use-After-Free condition. T

• CVE-2023-4134Nov 14, 2024
  affected < 5.3.18-150300.141.1fixed 5.3.18-150300.141.1

  A use-after-free vulnerability was found in the cyttsp4_core driver in the Linux kernel. This issue occurs in the device cleanup routine due to a possible rearming of the watchdog_timer from the workqueue. This could allow a local user to crash the system, causing a denial of ser

• CVE-2024-50205MedNov 8, 2024
  affected < 5.3.18-150300.194.1fixed 5.3.18-150300.194.1

  In the Linux kernel, the following vulnerability has been resolved: ALSA: firewire-lib: Avoid division by zero in apply_constraint_to_size() The step variable is initialized to zero. It is changed in the loop, but if it's not changed it will remain zero. Add a variable check be

• CVE-2024-50208Nov 8, 2024
  affected < 5.3.18-150300.194.1fixed 5.3.18-150300.194.1

  In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxt_re: Fix a bug while setting up Level-2 PBL pages Avoid memory corruption while setting up Level-2 PBL pages for the non MR resources when num_pages > 256K. There will be a single PDE page address (co

• CVE-2024-50199Nov 8, 2024
  affected < 5.3.18-150300.202.1fixed 5.3.18-150300.202.1

  In the Linux kernel, the following vulnerability has been resolved: mm/swapfile: skip HugeTLB pages for unuse_vma I got a bad pud error and lost a 1GB HugeTLB when calling swapoff. The problem can be reproduced by the following steps: 1. Allocate an anonymous 1GB HugeTLB and

• CVE-2024-50154Nov 7, 2024
  affected < 5.3.18-150300.194.1fixed 5.3.18-150300.194.1

  In the Linux kernel, the following vulnerability has been resolved: tcp/dccp: Don't use timer_pending() in reqsk_queue_unlink(). Martin KaFai Lau reported use-after-free [0] in reqsk_timer_handler(). """ We are seeing a use-after-free from a bpf prog attached to trace_tc

• CVE-2024-50127HigNov 5, 2024
  affected < 5.3.18-150300.194.1fixed 5.3.18-150300.194.1

  In the Linux kernel, the following vulnerability has been resolved: net: sched: fix use-after-free in taprio_change() In 'taprio_change()', 'admin' pointer may become dangling due to sched switch / removal caused by 'advance_sched()', and critical section protected by 'q->curre