rpm package

suse/kernel-rt&distro=SUSE Linux Enterprise Micro 5.3

pkg:rpm/suse/kernel-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.3

Vulnerabilities (2,973)

CVE	CVSS	Affected versions	Fixed in	Published	Description
CVE-2023-23559	—	< 5.14.21-150400.15.18.1	5.14.21-150400.15.18.1	Jan 13, 2023	In rndis_query_oid in drivers/net/wireless/rndis_wlan.c in the Linux kernel through 6.1.5, there is an integer overflow in an addition.
CVE-2023-23455	—	< 5.14.21-150400.15.11.1	5.14.21-150400.15.11.1	Jan 12, 2023	atm_tc_enqueue in net/sched/sch_atm.c in the Linux kernel through 6.1.4 allows attackers to cause a denial of service because of type confusion (non-negative numbers can sometimes indicate a TC_ACT_SHOT condition rather than valid classification results).
CVE-2023-23454	—	< 5.14.21-150400.15.11.1	5.14.21-150400.15.11.1	Jan 12, 2023	cbq_classify in net/sched/sch_cbq.c in the Linux kernel through 6.1.4 allows attackers to cause a denial of service (slab-out-of-bounds read) because of type confusion (non-negative numbers can sometimes indicate a TC_ACT_SHOT condition rather than valid classification results).
CVE-2022-4382	—	< 5.14.21-150400.15.11.1	5.14.21-150400.15.11.1	Jan 10, 2023	A use-after-free flaw caused by a race among the superblock operations in the gadgetfs Linux driver was found. It could be triggered by yanking out a device that is running the gadgetfs side.
CVE-2022-4379	—	< 5.14.21-150400.15.8.1	5.14.21-150400.15.8.1	Jan 10, 2023	A use-after-free vulnerability was found in __nfs42_ssc_open() in fs/nfs/nfs4file.c in the Linux kernel. This flaw allows an attacker to conduct a remote denial
CVE-2022-2196	—	< 5.14.21-150400.15.28.2	5.14.21-150400.15.28.2	Jan 9, 2023	A regression exists in the Linux Kernel within KVM: nVMX that allowed for speculative execution attacks. L2 can carry out Spectre v2 attacks on L1 due to L1 thinking it doesn't need retpolines or IBPB after running L2 due to KVM (L0) advertising eIBRS support to L1. An attacker a
CVE-2022-4662	—	< 5.14.21-150400.15.8.1	5.14.21-150400.15.8.1	Dec 22, 2022	A flaw incorrect access control in the Linux kernel USB core subsystem was found in the way user attaches usb device. A local user could use this flaw to crash the system.
CVE-2022-47520	—	< 5.14.21-150400.15.8.1	5.14.21-150400.15.8.1	Dec 18, 2022	An issue was discovered in the Linux kernel before 6.0.11. Missing offset validation in drivers/net/wireless/microchip/wilc1000/hif.c in the WILC1000 wireless driver can trigger an out-of-bounds read when parsing a Robust Security Network (RSN) information element from a Netlink
CVE-2022-3115	—	< 5.14.21-150400.15.8.1	5.14.21-150400.15.8.1	Dec 14, 2022	An issue was discovered in the Linux kernel through 5.16-rc6. malidp_crtc_reset in drivers/gpu/drm/arm/malidp_crtc.c lacks check of the return value of kzalloc() and will cause the null pointer dereference.
CVE-2022-3113	—	< 5.14.21-150400.15.8.1	5.14.21-150400.15.8.1	Dec 14, 2022	An issue was discovered in the Linux kernel through 5.16-rc6. mtk_vcodec_fw_vpu_init in drivers/media/platform/mtk-vcodec/mtk_vcodec_fw_vpu.c lacks check of the return value of devm_kzalloc() and will cause the null pointer dereference.
CVE-2022-3112	—	< 5.14.21-150400.15.8.1	5.14.21-150400.15.8.1	Dec 14, 2022	An issue was discovered in the Linux kernel through 5.16-rc6. amvdec_set_canvases in drivers/staging/media/meson/vdec/vdec_helpers.c lacks check of the return value of kzalloc() and will cause the null pointer dereference.
CVE-2022-3111	—	< 5.14.21-150400.15.8.1	5.14.21-150400.15.8.1	Dec 14, 2022	An issue was discovered in the Linux kernel through 5.16-rc6. free_charger_irq() in drivers/power/supply/wm8350_power.c lacks free of WM8350_IRQ_CHG_FAST_RDY, which is registered in wm8350_init_charger().
CVE-2022-3108	—	< 5.14.21-150400.15.8.1	5.14.21-150400.15.8.1	Dec 14, 2022	An issue was discovered in the Linux kernel through 5.16-rc6. kfd_parse_subtype_iolink in drivers/gpu/drm/amd/amdkfd/kfd_crat.c lacks check of the return value of kmemdup().
CVE-2022-3107	—	< 5.14.21-150400.15.8.1	5.14.21-150400.15.8.1	Dec 14, 2022	An issue was discovered in the Linux kernel through 5.16-rc6. netvsc_get_ethtool_stats in drivers/net/hyperv/netvsc_drv.c lacks check of the return value of kvmalloc_array() and will cause the null pointer dereference.
CVE-2022-3106	—	< 5.14.21-150400.15.8.1	5.14.21-150400.15.8.1	Dec 14, 2022	An issue was discovered in the Linux kernel through 5.16-rc6. ef100_update_stats in drivers/net/ethernet/sfc/ef100_nic.c lacks check of the return value of kmalloc().
CVE-2022-3105	—	< 5.14.21-150400.15.8.1	5.14.21-150400.15.8.1	Dec 14, 2022	An issue was discovered in the Linux kernel through 5.16-rc6. uapi_finalize in drivers/infiniband/core/uverbs_uapi.c lacks check of kmalloc_array().
CVE-2022-3104	—	< 5.14.21-150400.15.8.1	5.14.21-150400.15.8.1	Dec 14, 2022	An issue was discovered in the Linux kernel through 5.16-rc6. lkdtm_ARRAY_BOUNDS in drivers/misc/lkdtm/bugs.c lacks check of the return value of kmalloc() and will cause the null pointer dereference.
CVE-2022-4269	—	< 5.14.21-150400.15.37.2	5.14.21-150400.15.37.2	Dec 5, 2022	A flaw was found in the Linux kernel Traffic Control (TC) subsystem. Using a specific networking configuration (redirecting egress packets to ingress using TC action "mirred") a local unprivileged user could trigger a CPU soft lockup (ABBA deadlock) when the transport protocol in
CVE-2022-45934	—	< 5.14.21-150400.15.100.1	5.14.21-150400.15.100.1	Nov 27, 2022	An issue was discovered in the Linux kernel through 6.0.10. l2cap_config_req in net/bluetooth/l2cap_core.c has an integer wraparound via L2CAP_CONF_REQ packets.
CVE-2022-45919	—	< 5.14.21-150400.15.37.2	5.14.21-150400.15.37.2	Nov 27, 2022	An issue was discovered in the Linux kernel through 6.0.10. In drivers/media/dvb-core/dvb_ca_en50221.c, a use-after-free can occur is there is a disconnect after an open, because of the lack of a wait_event.

CVE-2023-23559Jan 13, 2023
affected < 5.14.21-150400.15.18.1fixed 5.14.21-150400.15.18.1
In rndis_query_oid in drivers/net/wireless/rndis_wlan.c in the Linux kernel through 6.1.5, there is an integer overflow in an addition.
CVE-2023-23455Jan 12, 2023
affected < 5.14.21-150400.15.11.1fixed 5.14.21-150400.15.11.1
atm_tc_enqueue in net/sched/sch_atm.c in the Linux kernel through 6.1.4 allows attackers to cause a denial of service because of type confusion (non-negative numbers can sometimes indicate a TC_ACT_SHOT condition rather than valid classification results).
CVE-2023-23454Jan 12, 2023
affected < 5.14.21-150400.15.11.1fixed 5.14.21-150400.15.11.1
cbq_classify in net/sched/sch_cbq.c in the Linux kernel through 6.1.4 allows attackers to cause a denial of service (slab-out-of-bounds read) because of type confusion (non-negative numbers can sometimes indicate a TC_ACT_SHOT condition rather than valid classification results).
CVE-2022-4382Jan 10, 2023
affected < 5.14.21-150400.15.11.1fixed 5.14.21-150400.15.11.1
A use-after-free flaw caused by a race among the superblock operations in the gadgetfs Linux driver was found. It could be triggered by yanking out a device that is running the gadgetfs side.
CVE-2022-4379Jan 10, 2023
affected < 5.14.21-150400.15.8.1fixed 5.14.21-150400.15.8.1
A use-after-free vulnerability was found in __nfs42_ssc_open() in fs/nfs/nfs4file.c in the Linux kernel. This flaw allows an attacker to conduct a remote denial
CVE-2022-2196Jan 9, 2023
affected < 5.14.21-150400.15.28.2fixed 5.14.21-150400.15.28.2
A regression exists in the Linux Kernel within KVM: nVMX that allowed for speculative execution attacks. L2 can carry out Spectre v2 attacks on L1 due to L1 thinking it doesn't need retpolines or IBPB after running L2 due to KVM (L0) advertising eIBRS support to L1. An attacker a
CVE-2022-4662Dec 22, 2022
affected < 5.14.21-150400.15.8.1fixed 5.14.21-150400.15.8.1
A flaw incorrect access control in the Linux kernel USB core subsystem was found in the way user attaches usb device. A local user could use this flaw to crash the system.
CVE-2022-47520Dec 18, 2022
affected < 5.14.21-150400.15.8.1fixed 5.14.21-150400.15.8.1
An issue was discovered in the Linux kernel before 6.0.11. Missing offset validation in drivers/net/wireless/microchip/wilc1000/hif.c in the WILC1000 wireless driver can trigger an out-of-bounds read when parsing a Robust Security Network (RSN) information element from a Netlink
CVE-2022-3115Dec 14, 2022
affected < 5.14.21-150400.15.8.1fixed 5.14.21-150400.15.8.1
An issue was discovered in the Linux kernel through 5.16-rc6. malidp_crtc_reset in drivers/gpu/drm/arm/malidp_crtc.c lacks check of the return value of kzalloc() and will cause the null pointer dereference.
CVE-2022-3113Dec 14, 2022
affected < 5.14.21-150400.15.8.1fixed 5.14.21-150400.15.8.1
An issue was discovered in the Linux kernel through 5.16-rc6. mtk_vcodec_fw_vpu_init in drivers/media/platform/mtk-vcodec/mtk_vcodec_fw_vpu.c lacks check of the return value of devm_kzalloc() and will cause the null pointer dereference.
CVE-2022-3112Dec 14, 2022
affected < 5.14.21-150400.15.8.1fixed 5.14.21-150400.15.8.1
An issue was discovered in the Linux kernel through 5.16-rc6. amvdec_set_canvases in drivers/staging/media/meson/vdec/vdec_helpers.c lacks check of the return value of kzalloc() and will cause the null pointer dereference.
CVE-2022-3111Dec 14, 2022
affected < 5.14.21-150400.15.8.1fixed 5.14.21-150400.15.8.1
An issue was discovered in the Linux kernel through 5.16-rc6. free_charger_irq() in drivers/power/supply/wm8350_power.c lacks free of WM8350_IRQ_CHG_FAST_RDY, which is registered in wm8350_init_charger().
CVE-2022-3108Dec 14, 2022
affected < 5.14.21-150400.15.8.1fixed 5.14.21-150400.15.8.1
An issue was discovered in the Linux kernel through 5.16-rc6. kfd_parse_subtype_iolink in drivers/gpu/drm/amd/amdkfd/kfd_crat.c lacks check of the return value of kmemdup().
CVE-2022-3107Dec 14, 2022
affected < 5.14.21-150400.15.8.1fixed 5.14.21-150400.15.8.1
An issue was discovered in the Linux kernel through 5.16-rc6. netvsc_get_ethtool_stats in drivers/net/hyperv/netvsc_drv.c lacks check of the return value of kvmalloc_array() and will cause the null pointer dereference.
CVE-2022-3106Dec 14, 2022
affected < 5.14.21-150400.15.8.1fixed 5.14.21-150400.15.8.1
An issue was discovered in the Linux kernel through 5.16-rc6. ef100_update_stats in drivers/net/ethernet/sfc/ef100_nic.c lacks check of the return value of kmalloc().
CVE-2022-3105Dec 14, 2022
affected < 5.14.21-150400.15.8.1fixed 5.14.21-150400.15.8.1
An issue was discovered in the Linux kernel through 5.16-rc6. uapi_finalize in drivers/infiniband/core/uverbs_uapi.c lacks check of kmalloc_array().
CVE-2022-3104Dec 14, 2022
affected < 5.14.21-150400.15.8.1fixed 5.14.21-150400.15.8.1
An issue was discovered in the Linux kernel through 5.16-rc6. lkdtm_ARRAY_BOUNDS in drivers/misc/lkdtm/bugs.c lacks check of the return value of kmalloc() and will cause the null pointer dereference.
CVE-2022-4269Dec 5, 2022
affected < 5.14.21-150400.15.37.2fixed 5.14.21-150400.15.37.2
A flaw was found in the Linux kernel Traffic Control (TC) subsystem. Using a specific networking configuration (redirecting egress packets to ingress using TC action "mirred") a local unprivileged user could trigger a CPU soft lockup (ABBA deadlock) when the transport protocol in
CVE-2022-45934Nov 27, 2022
affected < 5.14.21-150400.15.100.1fixed 5.14.21-150400.15.100.1
An issue was discovered in the Linux kernel through 6.0.10. l2cap_config_req in net/bluetooth/l2cap_core.c has an integer wraparound via L2CAP_CONF_REQ packets.
CVE-2022-45919Nov 27, 2022
affected < 5.14.21-150400.15.37.2fixed 5.14.21-150400.15.37.2
An issue was discovered in the Linux kernel through 6.0.10. In drivers/media/dvb-core/dvb_ca_en50221.c, a use-after-free can occur is there is a disconnect after an open, because of the lack of a wait_event.

Page 147 of 149