VYPR

rpm package

suse/kernel-rt&distro=SUSE Real Time Module 15 SP6

pkg:rpm/suse/kernel-rt&distro=SUSE%20Real%20Time%20Module%2015%20SP6

Vulnerabilities (3,740)

  • CVE-2024-26673Apr 2, 2024
    affected < 6.4.0-150600.10.5.1fixed 6.4.0-150600.10.5.1

    In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_ct: sanitize layer 3 and 4 protocol number in custom expectations - Disallow families other than NFPROTO_{IPV4,IPV6,INET}. - Disallow layer 4 protocol with no ports, since destination port is a

  • CVE-2024-26671Apr 2, 2024
    affected < 6.4.0-150600.10.5.1fixed 6.4.0-150600.10.5.1

    In the Linux kernel, the following vulnerability has been resolved: blk-mq: fix IO hang from sbitmap wakeup race In blk_mq_mark_tag_wait(), __add_wait_queue() may be re-ordered with the following blk_mq_get_driver_tag() in case of getting driver tag failure. Then in __sbitmap_

  • CVE-2023-52635Apr 2, 2024
    affected < 6.4.0-150600.10.5.1fixed 6.4.0-150600.10.5.1

    In the Linux kernel, the following vulnerability has been resolved: PM / devfreq: Synchronize devfreq_monitor_[start/stop] There is a chance if a frequent switch of the governor done in a loop result in timer list corruption where timer cancel being done from two place one from

  • CVE-2024-26669Apr 2, 2024
    affected < 6.4.0-150600.10.8.3fixed 6.4.0-150600.10.8.3

    In the Linux kernel, the following vulnerability has been resolved: net/sched: flower: Fix chain template offload When a qdisc is deleted from a net device the stack instructs the underlying driver to remove its flow offload callback from the associated filter block using the '

  • CVE-2024-26668Apr 2, 2024
    affected < 6.4.0-150600.10.8.3fixed 6.4.0-150600.10.8.3

    In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_limit: reject configurations that cause integer overflow Reject bogus configs where internal token counter wraps around. This only occurs with very very large requests, such as 17gbyte/s. Its be

  • CVE-2024-26665Apr 2, 2024
    affected < 6.4.0-150600.10.5.1fixed 6.4.0-150600.10.5.1

    In the Linux kernel, the following vulnerability has been resolved: tunnels: fix out of bounds access when building IPv6 PMTU error If the ICMPv6 error is built from a non-linear skb we get the following splat, BUG: KASAN: slab-out-of-bounds in do_csum+0x220/0x240 Read of

  • CVE-2024-26663Apr 2, 2024
    affected < 6.4.0-150600.10.5.1fixed 6.4.0-150600.10.5.1

    In the Linux kernel, the following vulnerability has been resolved: tipc: Check the bearer type before calling tipc_udp_nl_bearer_add() syzbot reported the following general protection fault [1]: general protection fault, probably for non-canonical address 0xdffffc0000000010:

  • CVE-2024-26661Apr 2, 2024
    affected < 6.4.0-150600.10.52.1fixed 6.4.0-150600.10.52.1

    In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add NULL test for 'timing generator' in 'dcn21_set_pipe()' In "u32 otg_inst = pipe_ctx->stream_res.tg->inst;" pipe_ctx->stream_res.tg could be NULL, it is relying on the caller to ensure the tg

  • CVE-2023-52631Apr 2, 2024
    affected < 6.4.0-150600.10.5.1fixed 6.4.0-150600.10.5.1

    In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Fix an NULL dereference bug The issue here is when this is called from ntfs_load_attr_list(). The "size" comes from le32_to_cpu(attr->res.data_size) so it can't overflow on a 64bit systems but on 32b

  • CVE-2024-26657Apr 2, 2024
    affected < 6.4.0-150600.10.5.1fixed 6.4.0-150600.10.5.1

    In the Linux kernel, the following vulnerability has been resolved: drm/sched: fix null-ptr-deref in init entity The bug can be triggered by sending an amdgpu_cs_wait_ioctl to the AMDGPU DRM driver on any ASICs with valid context. The bug was reported by Joonkyo Jung <joonkyoj@

  • CVE-2024-26656Apr 2, 2024
    affected < 6.4.0-150600.10.5.1fixed 6.4.0-150600.10.5.1

    In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix use-after-free bug The bug can be triggered by sending a single amdgpu_gem_userptr_ioctl to the AMDGPU DRM driver on any ASICs with an invalid address and size. The bug was reported by Joonkyo J

  • CVE-2024-26654Apr 1, 2024
    affected < 6.4.0-150600.10.5.1fixed 6.4.0-150600.10.5.1

    In the Linux kernel, the following vulnerability has been resolved: ALSA: sh: aica: reorder cleanup operations to avoid UAF bugs The dreamcastcard->timer could schedule the spu_dma_work and the spu_dma_work could also arm the dreamcastcard->timer. When the snd_pcm_substream is

  • CVE-2024-26652Mar 27, 2024
    affected < 6.4.0-150600.10.5.1fixed 6.4.0-150600.10.5.1

    In the Linux kernel, the following vulnerability has been resolved: net: pds_core: Fix possible double free in error handling path When auxiliary_device_add() returns error and then calls auxiliary_device_uninit(), Callback function pdsc_auxbus_dev_release calls kfree(padev) to

  • CVE-2023-52622Mar 26, 2024
    affected < 6.4.0-150600.10.5.1fixed 6.4.0-150600.10.5.1

    In the Linux kernel, the following vulnerability has been resolved: ext4: avoid online resizing failures due to oversized flex bg When we online resize an ext4 filesystem with a oversized flexbg_size, mkfs.ext4 -F -G 67108864 $dev -b 4096 100M mount $dev $dir re

  • CVE-2024-26643MedMar 21, 2024
    affected < 6.4.0-150600.10.5.1fixed 6.4.0-150600.10.5.1

    In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: mark set as dead when unbinding anonymous set with timeout While the rhashtable set gc runs asynchronously, a race allows it to collect elements from anonymous sets with timeouts while it

  • CVE-2024-26642MedMar 21, 2024
    affected < 6.4.0-150600.10.5.1fixed 6.4.0-150600.10.5.1

    In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: disallow anonymous set with timeout flag Anonymous sets are never used with timeout from userspace, reject this. Exception to this rule is NFT_SET_EVAL to ensure legacy meters still work.

  • CVE-2024-26641Mar 18, 2024
    affected < 6.4.0-150600.10.5.1fixed 6.4.0-150600.10.5.1

    In the Linux kernel, the following vulnerability has been resolved: ip6_tunnel: make sure to pull inner header in __ip6_tnl_rcv() syzbot found __ip6_tnl_rcv() could access unitiliazed data [1]. Call pskb_inet_may_pull() to fix this, and initialize ipv6h variable after this cal

  • CVE-2024-26640Mar 18, 2024
    affected < 6.4.0-150600.10.14.1fixed 6.4.0-150600.10.14.1

    In the Linux kernel, the following vulnerability has been resolved: tcp: add sanity checks to rx zerocopy TCP rx zerocopy intent is to map pages initially allocated from NIC drivers, not pages owned by a fs. This patch adds to can_map_frag() these additional checks: - Page mu

  • CVE-2023-52618Mar 18, 2024
    affected < 6.4.0-150600.10.5.1fixed 6.4.0-150600.10.5.1

    In the Linux kernel, the following vulnerability has been resolved: block/rnbd-srv: Check for unlikely string overflow Since "dev_search_path" can technically be as large as PATH_MAX, there was a risk of truncation when copying it and a second string into "full_path" since it w

  • CVE-2024-26638Mar 18, 2024
    affected < 6.4.0-150600.10.5.1fixed 6.4.0-150600.10.5.1

    In the Linux kernel, the following vulnerability has been resolved: nbd: always initialize struct msghdr completely syzbot complains that msg->msg_get_inq value can be uninitialized [1] struct msghdr got many new fields recently, we should always make sure their values is zero

Page 185 of 187