rpm package
suse/kernel-rt&distro=SUSE Linux Enterprise Micro 5.4
pkg:rpm/suse/kernel-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.4
Vulnerabilities (2,965)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2023-53521 | Hig | 7.1 | < 5.14.21-150400.15.133.1 | 5.14.21-150400.15.133.1 | Oct 1, 2025 | In the Linux kernel, the following vulnerability has been resolved: scsi: ses: Fix slab-out-of-bounds in ses_intf_remove() A fix for: BUG: KASAN: slab-out-of-bounds in ses_intf_remove+0x23f/0x270 [ses] Read of size 8 at addr ffff88a10d32e5d8 by task rmmod/12013 When edev->com | |
| CVE-2023-53519 | Med | 5.5 | < 5.14.21-150400.15.133.1 | 5.14.21-150400.15.133.1 | Oct 1, 2025 | In the Linux kernel, the following vulnerability has been resolved: media: v4l2-mem2mem: add lock to protect parameter num_rdy Getting below error when using KCSAN to check the driver. Adding lock to protect parameter num_rdy when getting the value with function: v4l2_m2m_num_s | |
| CVE-2023-53515 | Hig | 7.8 | < 5.14.21-150400.15.133.1 | 5.14.21-150400.15.133.1 | Oct 1, 2025 | In the Linux kernel, the following vulnerability has been resolved: virtio-mmio: don't break lifecycle of vm_dev vm_dev has a separate lifecycle because it has a 'struct device' embedded. Thus, having a release callback for it is correct. Allocating the vm_dev struct with devr | |
| CVE-2023-53513 | Med | 5.5 | < 5.14.21-150400.15.133.1 | 5.14.21-150400.15.133.1 | Oct 1, 2025 | In the Linux kernel, the following vulnerability has been resolved: nbd: fix incomplete validation of ioctl arg We tested and found an alarm caused by nbd_ioctl arg without verification. The UBSAN warning calltrace like below: UBSAN: Undefined behaviour in fs/buffer.c:1709:35 | |
| CVE-2023-53530 | — | < 5.14.21-150400.15.133.1 | 5.14.21-150400.15.133.1 | Oct 1, 2025 | In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Use raw_smp_processor_id() instead of smp_processor_id() The following call trace was observed: localhost kernel: nvme nvme0: NVME-FC{0}: controller connect complete localhost kernel: BUG: using | ||
| CVE-2023-53518 | — | < 5.14.21-150400.15.133.1 | 5.14.21-150400.15.133.1 | Oct 1, 2025 | In the Linux kernel, the following vulnerability has been resolved: PM / devfreq: Fix leak in devfreq_dev_release() srcu_init_notifier_head() allocates resources that need to be released with a srcu_cleanup_notifier_head() call. Reported by kmemleak. | ||
| CVE-2023-53512 | — | < 5.14.21-150400.15.133.1 | 5.14.21-150400.15.133.1 | Oct 1, 2025 | In the Linux kernel, the following vulnerability has been resolved: scsi: mpt3sas: Fix a memory leak Add a forgotten kfree(). | ||
| CVE-2023-53509 | — | < 5.14.21-150400.15.133.1 | 5.14.21-150400.15.133.1 | Oct 1, 2025 | In the Linux kernel, the following vulnerability has been resolved: qed: allow sleep in qed_mcp_trace_dump() By default, qed_mcp_cmd_and_union() delays 10us at a time in a loop that can run 500K times, so calls to qed_mcp_nvm_rd_cmd() may block the current thread for over 5s. W | ||
| CVE-2023-53506 | — | < 5.14.21-150400.15.133.1 | 5.14.21-150400.15.133.1 | Oct 1, 2025 | In the Linux kernel, the following vulnerability has been resolved: udf: Do not bother merging very long extents When merging very long extents we try to push as much length as possible to the first extent. However this is unnecessarily complicated and not really worth the trou | ||
| CVE-2023-53505 | — | < 5.14.21-150400.15.133.1 | 5.14.21-150400.15.133.1 | Oct 1, 2025 | In the Linux kernel, the following vulnerability has been resolved: clk: tegra: tegra124-emc: Fix potential memory leak The tegra and tegra needs to be freed in the error handling path, otherwise it will be leaked. | ||
| CVE-2023-53500 | — | < 5.14.21-150400.15.136.1 | 5.14.21-150400.15.136.1 | Oct 1, 2025 | In the Linux kernel, the following vulnerability has been resolved: xfrm: fix slab-use-after-free in decode_session6 When the xfrm device is set to the qdisc of the sfb type, the cb field of the sent skb may be modified during enqueuing. Then, slab-use-after-free may occur when | ||
| CVE-2023-53499 | — | < 5.14.21-150400.15.133.1 | 5.14.21-150400.15.133.1 | Oct 1, 2025 | In the Linux kernel, the following vulnerability has been resolved: virtio_net: Fix error unwinding of XDP initialization When initializing XDP in virtnet_open(), some rq xdp initialization may hit an error causing net device open failed. However, previous rqs have already init | ||
| CVE-2023-53498 | — | < 5.14.21-150400.15.133.1 | 5.14.21-150400.15.133.1 | Oct 1, 2025 | In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix potential null dereference The adev->dm.dc pointer can be NULL and dereferenced in amdgpu_dm_fini() without checking. Add a NULL pointer check before calling dc_dmub_srv_destroy(). Found | ||
| CVE-2023-53496 | — | < 5.14.21-150400.15.133.1 | 5.14.21-150400.15.133.1 | Oct 1, 2025 | In the Linux kernel, the following vulnerability has been resolved: x86/platform/uv: Use alternate source for socket to node data The UV code attempts to build a set of tables to allow it to do bidirectional socket<=>node lookups. But when nr_cpus is set to a smaller number th | ||
| CVE-2023-53494 | — | < 5.14.21-150400.15.133.1 | 5.14.21-150400.15.133.1 | Oct 1, 2025 | In the Linux kernel, the following vulnerability has been resolved: crypto: xts - Handle EBUSY correctly As it is xts only handles the special return value of EINPROGRESS, which means that in all other cases it will free data related to the request. However, as the caller of x | ||
| CVE-2023-53492 | — | < 5.14.21-150400.15.133.1 | 5.14.21-150400.15.133.1 | Oct 1, 2025 | In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: do not ignore genmask when looking up chain by id When adding a rule to a chain referring to its ID, if that chain had been deleted on the same batch, the rule might end up referring to a | ||
| CVE-2023-53488 | — | < 5.14.21-150400.15.133.1 | 5.14.21-150400.15.133.1 | Oct 1, 2025 | In the Linux kernel, the following vulnerability has been resolved: IB/hfi1: Fix possible panic during hotplug remove During hotplug remove it is possible that the update counters work might be pending, and may run after memory has been freed. Cancel the update counters work be | ||
| CVE-2022-50469 | — | < 5.14.21-150400.15.133.1 | 5.14.21-150400.15.133.1 | Oct 1, 2025 | In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: fix potential memory leak in rtw_init_drv_sw() In rtw_init_drv_sw(), there are various init functions are called to populate the padapter structure and some checks for their return value. Ho | ||
| CVE-2022-50468 | — | < 5.14.21-150400.15.133.1 | 5.14.21-150400.15.133.1 | Oct 1, 2025 | In the Linux kernel, the following vulnerability has been resolved: platform/chrome: cros_usbpd_notify: Fix error handling in cros_usbpd_notify_init() The following WARNING message was given when rmmod cros_usbpd_notify: Unexpected driver unregister! WARNING: CPU: 0 PID: 253 | ||
| CVE-2022-50467 | — | < 5.14.21-150400.15.133.1 | 5.14.21-150400.15.133.1 | Oct 1, 2025 | In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix null ndlp ptr dereference in abnormal exit path for GFT_ID An error case exit from lpfc_cmpl_ct_cmd_gft_id() results in a call to lpfc_nlp_put() with a null pointer to a nodelist structure. Cha |
- affected < 5.14.21-150400.15.133.1fixed 5.14.21-150400.15.133.1
In the Linux kernel, the following vulnerability has been resolved: scsi: ses: Fix slab-out-of-bounds in ses_intf_remove() A fix for: BUG: KASAN: slab-out-of-bounds in ses_intf_remove+0x23f/0x270 [ses] Read of size 8 at addr ffff88a10d32e5d8 by task rmmod/12013 When edev->com
- affected < 5.14.21-150400.15.133.1fixed 5.14.21-150400.15.133.1
In the Linux kernel, the following vulnerability has been resolved: media: v4l2-mem2mem: add lock to protect parameter num_rdy Getting below error when using KCSAN to check the driver. Adding lock to protect parameter num_rdy when getting the value with function: v4l2_m2m_num_s
- affected < 5.14.21-150400.15.133.1fixed 5.14.21-150400.15.133.1
In the Linux kernel, the following vulnerability has been resolved: virtio-mmio: don't break lifecycle of vm_dev vm_dev has a separate lifecycle because it has a 'struct device' embedded. Thus, having a release callback for it is correct. Allocating the vm_dev struct with devr
- affected < 5.14.21-150400.15.133.1fixed 5.14.21-150400.15.133.1
In the Linux kernel, the following vulnerability has been resolved: nbd: fix incomplete validation of ioctl arg We tested and found an alarm caused by nbd_ioctl arg without verification. The UBSAN warning calltrace like below: UBSAN: Undefined behaviour in fs/buffer.c:1709:35
- CVE-2023-53530Oct 1, 2025affected < 5.14.21-150400.15.133.1fixed 5.14.21-150400.15.133.1
In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Use raw_smp_processor_id() instead of smp_processor_id() The following call trace was observed: localhost kernel: nvme nvme0: NVME-FC{0}: controller connect complete localhost kernel: BUG: using
- CVE-2023-53518Oct 1, 2025affected < 5.14.21-150400.15.133.1fixed 5.14.21-150400.15.133.1
In the Linux kernel, the following vulnerability has been resolved: PM / devfreq: Fix leak in devfreq_dev_release() srcu_init_notifier_head() allocates resources that need to be released with a srcu_cleanup_notifier_head() call. Reported by kmemleak.
- CVE-2023-53512Oct 1, 2025affected < 5.14.21-150400.15.133.1fixed 5.14.21-150400.15.133.1
In the Linux kernel, the following vulnerability has been resolved: scsi: mpt3sas: Fix a memory leak Add a forgotten kfree().
- CVE-2023-53509Oct 1, 2025affected < 5.14.21-150400.15.133.1fixed 5.14.21-150400.15.133.1
In the Linux kernel, the following vulnerability has been resolved: qed: allow sleep in qed_mcp_trace_dump() By default, qed_mcp_cmd_and_union() delays 10us at a time in a loop that can run 500K times, so calls to qed_mcp_nvm_rd_cmd() may block the current thread for over 5s. W
- CVE-2023-53506Oct 1, 2025affected < 5.14.21-150400.15.133.1fixed 5.14.21-150400.15.133.1
In the Linux kernel, the following vulnerability has been resolved: udf: Do not bother merging very long extents When merging very long extents we try to push as much length as possible to the first extent. However this is unnecessarily complicated and not really worth the trou
- CVE-2023-53505Oct 1, 2025affected < 5.14.21-150400.15.133.1fixed 5.14.21-150400.15.133.1
In the Linux kernel, the following vulnerability has been resolved: clk: tegra: tegra124-emc: Fix potential memory leak The tegra and tegra needs to be freed in the error handling path, otherwise it will be leaked.
- CVE-2023-53500Oct 1, 2025affected < 5.14.21-150400.15.136.1fixed 5.14.21-150400.15.136.1
In the Linux kernel, the following vulnerability has been resolved: xfrm: fix slab-use-after-free in decode_session6 When the xfrm device is set to the qdisc of the sfb type, the cb field of the sent skb may be modified during enqueuing. Then, slab-use-after-free may occur when
- CVE-2023-53499Oct 1, 2025affected < 5.14.21-150400.15.133.1fixed 5.14.21-150400.15.133.1
In the Linux kernel, the following vulnerability has been resolved: virtio_net: Fix error unwinding of XDP initialization When initializing XDP in virtnet_open(), some rq xdp initialization may hit an error causing net device open failed. However, previous rqs have already init
- CVE-2023-53498Oct 1, 2025affected < 5.14.21-150400.15.133.1fixed 5.14.21-150400.15.133.1
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix potential null dereference The adev->dm.dc pointer can be NULL and dereferenced in amdgpu_dm_fini() without checking. Add a NULL pointer check before calling dc_dmub_srv_destroy(). Found
- CVE-2023-53496Oct 1, 2025affected < 5.14.21-150400.15.133.1fixed 5.14.21-150400.15.133.1
In the Linux kernel, the following vulnerability has been resolved: x86/platform/uv: Use alternate source for socket to node data The UV code attempts to build a set of tables to allow it to do bidirectional socket<=>node lookups. But when nr_cpus is set to a smaller number th
- CVE-2023-53494Oct 1, 2025affected < 5.14.21-150400.15.133.1fixed 5.14.21-150400.15.133.1
In the Linux kernel, the following vulnerability has been resolved: crypto: xts - Handle EBUSY correctly As it is xts only handles the special return value of EINPROGRESS, which means that in all other cases it will free data related to the request. However, as the caller of x
- CVE-2023-53492Oct 1, 2025affected < 5.14.21-150400.15.133.1fixed 5.14.21-150400.15.133.1
In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: do not ignore genmask when looking up chain by id When adding a rule to a chain referring to its ID, if that chain had been deleted on the same batch, the rule might end up referring to a
- CVE-2023-53488Oct 1, 2025affected < 5.14.21-150400.15.133.1fixed 5.14.21-150400.15.133.1
In the Linux kernel, the following vulnerability has been resolved: IB/hfi1: Fix possible panic during hotplug remove During hotplug remove it is possible that the update counters work might be pending, and may run after memory has been freed. Cancel the update counters work be
- CVE-2022-50469Oct 1, 2025affected < 5.14.21-150400.15.133.1fixed 5.14.21-150400.15.133.1
In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: fix potential memory leak in rtw_init_drv_sw() In rtw_init_drv_sw(), there are various init functions are called to populate the padapter structure and some checks for their return value. Ho
- CVE-2022-50468Oct 1, 2025affected < 5.14.21-150400.15.133.1fixed 5.14.21-150400.15.133.1
In the Linux kernel, the following vulnerability has been resolved: platform/chrome: cros_usbpd_notify: Fix error handling in cros_usbpd_notify_init() The following WARNING message was given when rmmod cros_usbpd_notify: Unexpected driver unregister! WARNING: CPU: 0 PID: 253
- CVE-2022-50467Oct 1, 2025affected < 5.14.21-150400.15.133.1fixed 5.14.21-150400.15.133.1
In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix null ndlp ptr dereference in abnormal exit path for GFT_ID An error case exit from lpfc_cmpl_ct_cmd_gft_id() results in a call to lpfc_nlp_put() with a null pointer to a nodelist structure. Cha
Page 28 of 149