VYPR

rpm package

suse/kernel-rt&distro=SUSE Real Time Module 15 SP6

pkg:rpm/suse/kernel-rt&distro=SUSE%20Real%20Time%20Module%2015%20SP6

Vulnerabilities (3,740)

  • CVE-2023-52652May 1, 2024
    affected < 6.4.0-150600.10.5.1fixed 6.4.0-150600.10.5.1

    In the Linux kernel, the following vulnerability has been resolved: NTB: fix possible name leak in ntb_register_device() If device_register() fails in ntb_register_device(), the device name allocated by dev_set_name() should be freed. As per the comment in device_register(), ca

  • CVE-2024-27062May 1, 2024
    affected < 6.4.0-150600.10.5.1fixed 6.4.0-150600.10.5.1

    In the Linux kernel, the following vulnerability has been resolved: nouveau: lock the client object tree. It appears the client object tree has no locking unless I've missed something else. Fix races around adding/removing client objects, mostly vram bar mappings. 4562.099306

  • CVE-2024-27057May 1, 2024
    affected < 6.4.0-150600.10.5.1fixed 6.4.0-150600.10.5.1

    In the Linux kernel, the following vulnerability has been resolved: ASoC: SOF: ipc4-pcm: Workaround for crashed firmware on system suspend When the system is suspended while audio is active, the sof_ipc4_pcm_hw_free() is invoked to reset the pipelines since during suspend the D

  • CVE-2024-27056May 1, 2024
    affected < 6.4.0-150600.10.5.1fixed 6.4.0-150600.10.5.1

    In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: ensure offloading TID queue exists The resume code path assumes that the TX queue for the offloading TID has been configured. At resume time it then tries to sync the write pointer as it may

  • CVE-2024-27050May 1, 2024
    affected < 6.4.0-150600.10.8.3fixed 6.4.0-150600.10.8.3

    In the Linux kernel, the following vulnerability has been resolved: libbpf: Use OPTS_SET() macro in bpf_xdp_query() When the feature_flags and xdp_zc_max_segs fields were added to the libbpf bpf_xdp_query_opts, the code writing them did not use the OPTS_SET() macro. This causes

  • CVE-2024-27049May 1, 2024
    affected < 6.4.0-150600.10.8.3fixed 6.4.0-150600.10.8.3

    In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7925e: fix use-after-free in free_irq() From commit a304e1b82808 ("[PATCH] Debug shared irqs"), there is a test to make sure the shared irq handler should be able to handle the unexpected event af

  • CVE-2024-27046May 1, 2024
    affected < 6.4.0-150600.10.5.1fixed 6.4.0-150600.10.5.1

    In the Linux kernel, the following vulnerability has been resolved: nfp: flower: handle acti_netdevs allocation failure The kmalloc_array() in nfp_fl_lag_do_work() will return null, if the physical memory has run out. As a result, if we dereference the acti_netdevs, the null po

  • CVE-2024-27043May 1, 2024
    affected < 6.4.0-150600.10.17.1fixed 6.4.0-150600.10.17.1

    In the Linux kernel, the following vulnerability has been resolved: media: edia: dvbdev: fix a use-after-free In dvb_register_device, *pdvbdev is set equal to dvbdev, which is freed in several error-handling paths. However, *pdvbdev is not set to NULL after dvbdev's deallocatio

  • CVE-2024-27031May 1, 2024
    affected < 6.4.0-150600.10.5.1fixed 6.4.0-150600.10.5.1

    In the Linux kernel, the following vulnerability has been resolved: NFS: Fix nfs_netfs_issue_read() xarray locking for writeback interrupt The loop inside nfs_netfs_issue_read() currently does not disable interrupts while iterating through pages in the xarray to submit for NFS

  • CVE-2024-27030May 1, 2024
    affected < 6.4.0-150600.10.5.1fixed 6.4.0-150600.10.5.1

    In the Linux kernel, the following vulnerability has been resolved: octeontx2-af: Use separate handlers for interrupts For PF to AF interrupt vector and VF to AF vector same interrupt handler is registered which is causing race condition. When two interrupts are raised to two C

  • CVE-2024-27028May 1, 2024
    affected < 6.4.0-150600.10.5.1fixed 6.4.0-150600.10.5.1

    In the Linux kernel, the following vulnerability has been resolved: spi: spi-mt65xx: Fix NULL pointer access in interrupt handler The TX buffer in spi_transfer can be a NULL pointer, so the interrupt handler may end up writing to the invalid memory and cause crashes. Add a che

  • CVE-2024-27027May 1, 2024
    affected < 6.4.0-150600.10.5.1fixed 6.4.0-150600.10.5.1

    In the Linux kernel, the following vulnerability has been resolved: dpll: fix dpll_xa_ref_*_del() for multiple registrations Currently, if there are multiple registrations of the same pin on the same dpll device, following warnings are observed: WARNING: CPU: 5 PID: 2212 at dri

  • CVE-2024-27026May 1, 2024
    affected < 6.4.0-150600.10.17.1fixed 6.4.0-150600.10.17.1

    In the Linux kernel, the following vulnerability has been resolved: vmxnet3: Fix missing reserved tailroom Use rbi->len instead of rcd->len for non-dataring packet. Found issue: XDP_WARN: xdp_update_frame_from_buff(line:278): Driver BUG: missing reserved tailroom WARNING:

  • CVE-2024-27022HigMay 1, 2024
    affected < 6.4.0-150600.10.5.1fixed 6.4.0-150600.10.5.1

    In the Linux kernel, the following vulnerability has been resolved: fork: defer linking file vma until vma is fully initialized Thorvald reported a WARNING [1]. And the root cause is below race: CPU 1 CPU 2 fork hugetlbfs_fallocate dup_mmap hugetlbfs_punch_hole

  • CVE-2024-27020HigMay 1, 2024
    affected < 6.4.0-150600.10.5.1fixed 6.4.0-150600.10.5.1

    In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: Fix potential data-race in __nft_expr_type_get() nft_unregister_expr() can concurrent with __nft_expr_type_get(), and there is not any protection when iterate over nf_tables_expressions li

  • CVE-2024-27013MedMay 1, 2024
    affected < 6.4.0-150600.10.5.1fixed 6.4.0-150600.10.5.1

    In the Linux kernel, the following vulnerability has been resolved: tun: limit printing rate when illegal packet received by tun dev vhost_worker will call tun call backs to receive packets. If too many illegal packets arrives, tun_do_read will keep dumping packet contents. Whe

  • CVE-2024-27004MedMay 1, 2024
    affected < 6.4.0-150600.10.5.1fixed 6.4.0-150600.10.5.1

    In the Linux kernel, the following vulnerability has been resolved: clk: Get runtime PM before walking tree during disable_unused Doug reported [1] the following hung task: INFO: task swapper/0:1 blocked for more than 122 seconds. Not tainted 5.15.149-21875-gf795ebc40e

  • CVE-2024-26993MedMay 1, 2024
    affected < 6.4.0-150600.10.5.1fixed 6.4.0-150600.10.5.1

    In the Linux kernel, the following vulnerability has been resolved: fs: sysfs: Fix reference leak in sysfs_break_active_protection() The sysfs_break_active_protection() routine has an obvious reference leak in its error path. If the call to kernfs_find_and_get() fails then kn

  • CVE-2024-26988HigMay 1, 2024
    affected < 6.4.0-150600.10.5.1fixed 6.4.0-150600.10.5.1

    In the Linux kernel, the following vulnerability has been resolved: init/main.c: Fix potential static_command_line memory overflow We allocate memory of size 'xlen + strlen(boot_command_line) + 1' for static_command_line, but the strings copied into static_command_line are extr

  • CVE-2024-26982HigMay 1, 2024
    affected < 6.4.0-150600.10.5.1fixed 6.4.0-150600.10.5.1

    In the Linux kernel, the following vulnerability has been resolved: Squashfs: check the inode number is not the invalid value of zero Syskiller has produced an out of bounds access in fill_meta_index(). That out of bounds access is ultimately caused because the inode has an in

Page 176 of 187