rpm package

suse/kernel-source&distro=SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE

pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4%20LTSS%20EXTREME%20CORE

Vulnerabilities (253)

CVE	Sev	CVSS	Affected versions	Fixed in	Published	Description
CVE-2024-26733		—	< 3.0.101-108.153.1	3.0.101-108.153.1	Apr 3, 2024	In the Linux kernel, the following vulnerability has been resolved: arp: Prevent overflow in arp_req_get(). syzkaller reported an overflown write in arp_req_get(). [0] When ioctl(SIOCGARP) is issued, arp_req_get() looks up an neighbour entry and copies neigh->ha to struct arpr
CVE-2021-47110		—	< 3.0.101-108.204.1	3.0.101-108.204.1	Mar 15, 2024	In the Linux kernel, the following vulnerability has been resolved: x86/kvm: Disable kvmclock on all CPUs on shutdown Currenly, we disable kvmclock from machine_shutdown() hook and this only happens for boot CPU. We need to disable it for all CPUs to guard against memory corrup
CVE-2023-28746	Med	6.5	< 3.0.101-108.153.1	3.0.101-108.153.1	Mar 14, 2024	Information exposure through microarchitectural state after transient execution from some register files for some Intel(R) Atom(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
CVE-2023-52591		—	< 3.0.101-108.153.1	3.0.101-108.153.1	Mar 6, 2024	In the Linux kernel, the following vulnerability has been resolved: reiserfs: Avoid touching renamed directory if parent does not change The VFS will not be locking moved directory if its parent does not change. Change reiserfs rename code to avoid touching renamed directory if
CVE-2023-52590		—	< 3.0.101-108.153.1	3.0.101-108.153.1	Mar 6, 2024	In the Linux kernel, the following vulnerability has been resolved: ocfs2: Avoid touching renamed directory if parent does not change The VFS will not be locking moved directory if its parent does not change. Change ocfs2 rename code to avoid touching renamed directory if its p
CVE-2021-47104		—	< 3.0.101-108.156.1	3.0.101-108.156.1	Mar 4, 2024	In the Linux kernel, the following vulnerability has been resolved: IB/qib: Fix memory leak in qib_user_sdma_queue_pkts() The wrong goto label was used for the error case and missed cleanup of the pkt allocation. Addresses-Coverity-ID: 1493352 ("Resource leak")
CVE-2023-52475		—	< 3.0.101-108.153.1	3.0.101-108.153.1	Feb 29, 2024	In the Linux kernel, the following vulnerability has been resolved: Input: powermate - fix use-after-free in powermate_config_complete syzbot has found a use-after-free bug [1] in the powermate driver. This happens when the device is disconnected, which leads to a memory free f
CVE-2023-51779	Hig	7.0	< 3.0.101-108.150.1	3.0.101-108.150.1	Feb 29, 2024	bt_sock_recvmsg in net/bluetooth/af_bluetooth.c in the Linux kernel through 6.6.8 has a use-after-free because of a bt_sock_ioctl race condition.
CVE-2021-46932		—	< 3.0.101-108.153.1	3.0.101-108.153.1	Feb 27, 2024	In the Linux kernel, the following vulnerability has been resolved: Input: appletouch - initialize work before device registration Syzbot has reported warning in __flush_work(). This warning is caused by work->func == NULL, which means missing work initialization. This may hap
CVE-2021-46905		—	< 3.0.101-108.153.1	3.0.101-108.153.1	Feb 25, 2024	In the Linux kernel, the following vulnerability has been resolved: net: hso: fix NULL-deref on disconnect regression Commit 8a12f8836145 ("net: hso: fix null-ptr-deref during tty device unregistration") fixed the racy minor allocation reported by syzbot, but introduced an unco
CVE-2021-46904		—	< 3.0.101-108.153.1	3.0.101-108.153.1	Feb 25, 2024	In the Linux kernel, the following vulnerability has been resolved: net: hso: fix null-ptr-deref during tty device unregistration Multiple ttys try to claim the same the minor number causing a double unregistration of the same device. The first unregistration succeeds but the n
CVE-2023-52449		—	< 3.0.101-108.153.1	3.0.101-108.153.1	Feb 22, 2024	In the Linux kernel, the following vulnerability has been resolved: mtd: Fix gluebi NULL pointer dereference caused by ftl notifier If both ftl.ko and gluebi.ko are loaded, the notifier of ftl triggers NULL pointer dereference when trying to access ‘gluebi->desc’ in gluebi_read
CVE-2023-52445		—	< 3.0.101-108.153.1	3.0.101-108.153.1	Feb 22, 2024	In the Linux kernel, the following vulnerability has been resolved: media: pvrusb2: fix use after free on context disconnection Upon module load, a kthread is created targeting the pvr2_context_thread_func function, which may call pvr2_context_destroy and thus call kfree() on t
CVE-2023-52429		—	< 3.0.101-108.153.1	3.0.101-108.153.1	Feb 12, 2024	dm_table_create in drivers/md/dm-table.c in the Linux kernel through 6.7.4 can attempt to (in alloc_targets) allocate more than INT_MAX bytes, and crash, because of a missing check for struct dm_ioctl.target_count.
CVE-2023-39197		—	< 3.0.101-108.150.1	3.0.101-108.150.1	Jan 23, 2024	An out-of-bounds read vulnerability was found in Netfilter Connection Tracking (conntrack) in the Linux kernel. This flaw allows a remote user to disclose sensitive information via the DCCP protocol.
CVE-2024-23851		—	< 3.0.101-108.153.1	3.0.101-108.153.1	Jan 23, 2024	copy_params in drivers/md/dm-ioctl.c in the Linux kernel through 6.7.1 can attempt to allocate more than INT_MAX bytes, and crash, because of a missing param_kernel->data_size check. This is related to ctl_ioctl.
CVE-2022-48619		—	< 3.0.101-108.153.1	3.0.101-108.153.1	Jan 12, 2024	An issue was discovered in drivers/input/input.c in the Linux kernel before 5.17.10. An attacker can cause a denial of service (panic) because input_set_capability mishandles the situation in which an event code falls outside of a bitmap.
CVE-2023-6270		—	< 3.0.101-108.153.1	3.0.101-108.153.1	Jan 4, 2024	A flaw was found in the ATA over Ethernet (AoE) driver in the Linux kernel. The aoecmd_cfg_pkts() function improperly updates the refcnt on `struct net_device`, and a use-after-free can be triggered by racing between the free on the struct and the access through the `skbtxq` glob
CVE-2023-51782		—	< 3.0.101-108.153.1	3.0.101-108.153.1	Dec 25, 2023	An issue was discovered in the Linux kernel before 6.6.8. rose_ioctl in net/rose/af_rose.c has a use-after-free because of a rose_accept race condition.
CVE-2023-51780		—	< 3.0.101-108.153.1	3.0.101-108.153.1	Dec 25, 2023	An issue was discovered in the Linux kernel before 6.6.8. do_vcc_ioctl in net/atm/ioctl.c has a use-after-free because of a vcc_recvmsg race condition.

CVE-2024-26733Apr 3, 2024
affected < 3.0.101-108.153.1fixed 3.0.101-108.153.1
In the Linux kernel, the following vulnerability has been resolved: arp: Prevent overflow in arp_req_get(). syzkaller reported an overflown write in arp_req_get(). [0] When ioctl(SIOCGARP) is issued, arp_req_get() looks up an neighbour entry and copies neigh->ha to struct arpr
CVE-2021-47110Mar 15, 2024
affected < 3.0.101-108.204.1fixed 3.0.101-108.204.1
In the Linux kernel, the following vulnerability has been resolved: x86/kvm: Disable kvmclock on all CPUs on shutdown Currenly, we disable kvmclock from machine_shutdown() hook and this only happens for boot CPU. We need to disable it for all CPUs to guard against memory corrup
CVE-2023-28746MedMar 14, 2024
affected < 3.0.101-108.153.1fixed 3.0.101-108.153.1
Information exposure through microarchitectural state after transient execution from some register files for some Intel(R) Atom(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.
CVE-2023-52591Mar 6, 2024
affected < 3.0.101-108.153.1fixed 3.0.101-108.153.1
In the Linux kernel, the following vulnerability has been resolved: reiserfs: Avoid touching renamed directory if parent does not change The VFS will not be locking moved directory if its parent does not change. Change reiserfs rename code to avoid touching renamed directory if
CVE-2023-52590Mar 6, 2024
affected < 3.0.101-108.153.1fixed 3.0.101-108.153.1
In the Linux kernel, the following vulnerability has been resolved: ocfs2: Avoid touching renamed directory if parent does not change The VFS will not be locking moved directory if its parent does not change. Change ocfs2 rename code to avoid touching renamed directory if its p
CVE-2021-47104Mar 4, 2024
affected < 3.0.101-108.156.1fixed 3.0.101-108.156.1
In the Linux kernel, the following vulnerability has been resolved: IB/qib: Fix memory leak in qib_user_sdma_queue_pkts() The wrong goto label was used for the error case and missed cleanup of the pkt allocation. Addresses-Coverity-ID: 1493352 ("Resource leak")
CVE-2023-52475Feb 29, 2024
affected < 3.0.101-108.153.1fixed 3.0.101-108.153.1
In the Linux kernel, the following vulnerability has been resolved: Input: powermate - fix use-after-free in powermate_config_complete syzbot has found a use-after-free bug [1] in the powermate driver. This happens when the device is disconnected, which leads to a memory free f
CVE-2023-51779HigFeb 29, 2024
affected < 3.0.101-108.150.1fixed 3.0.101-108.150.1
bt_sock_recvmsg in net/bluetooth/af_bluetooth.c in the Linux kernel through 6.6.8 has a use-after-free because of a bt_sock_ioctl race condition.
CVE-2021-46932Feb 27, 2024
affected < 3.0.101-108.153.1fixed 3.0.101-108.153.1
In the Linux kernel, the following vulnerability has been resolved: Input: appletouch - initialize work before device registration Syzbot has reported warning in __flush_work(). This warning is caused by work->func == NULL, which means missing work initialization. This may hap
CVE-2021-46905Feb 25, 2024
affected < 3.0.101-108.153.1fixed 3.0.101-108.153.1
In the Linux kernel, the following vulnerability has been resolved: net: hso: fix NULL-deref on disconnect regression Commit 8a12f8836145 ("net: hso: fix null-ptr-deref during tty device unregistration") fixed the racy minor allocation reported by syzbot, but introduced an unco
CVE-2021-46904Feb 25, 2024
affected < 3.0.101-108.153.1fixed 3.0.101-108.153.1
In the Linux kernel, the following vulnerability has been resolved: net: hso: fix null-ptr-deref during tty device unregistration Multiple ttys try to claim the same the minor number causing a double unregistration of the same device. The first unregistration succeeds but the n
CVE-2023-52449Feb 22, 2024
affected < 3.0.101-108.153.1fixed 3.0.101-108.153.1
In the Linux kernel, the following vulnerability has been resolved: mtd: Fix gluebi NULL pointer dereference caused by ftl notifier If both ftl.ko and gluebi.ko are loaded, the notifier of ftl triggers NULL pointer dereference when trying to access ‘gluebi->desc’ in gluebi_read
CVE-2023-52445Feb 22, 2024
affected < 3.0.101-108.153.1fixed 3.0.101-108.153.1
In the Linux kernel, the following vulnerability has been resolved: media: pvrusb2: fix use after free on context disconnection Upon module load, a kthread is created targeting the pvr2_context_thread_func function, which may call pvr2_context_destroy and thus call kfree() on t
CVE-2023-52429Feb 12, 2024
affected < 3.0.101-108.153.1fixed 3.0.101-108.153.1
dm_table_create in drivers/md/dm-table.c in the Linux kernel through 6.7.4 can attempt to (in alloc_targets) allocate more than INT_MAX bytes, and crash, because of a missing check for struct dm_ioctl.target_count.
CVE-2023-39197Jan 23, 2024
affected < 3.0.101-108.150.1fixed 3.0.101-108.150.1
An out-of-bounds read vulnerability was found in Netfilter Connection Tracking (conntrack) in the Linux kernel. This flaw allows a remote user to disclose sensitive information via the DCCP protocol.
CVE-2024-23851Jan 23, 2024
affected < 3.0.101-108.153.1fixed 3.0.101-108.153.1
copy_params in drivers/md/dm-ioctl.c in the Linux kernel through 6.7.1 can attempt to allocate more than INT_MAX bytes, and crash, because of a missing param_kernel->data_size check. This is related to ctl_ioctl.
CVE-2022-48619Jan 12, 2024
affected < 3.0.101-108.153.1fixed 3.0.101-108.153.1
An issue was discovered in drivers/input/input.c in the Linux kernel before 5.17.10. An attacker can cause a denial of service (panic) because input_set_capability mishandles the situation in which an event code falls outside of a bitmap.
CVE-2023-6270Jan 4, 2024
affected < 3.0.101-108.153.1fixed 3.0.101-108.153.1
A flaw was found in the ATA over Ethernet (AoE) driver in the Linux kernel. The aoecmd_cfg_pkts() function improperly updates the refcnt on `struct net_device`, and a use-after-free can be triggered by racing between the free on the struct and the access through the `skbtxq` glob
CVE-2023-51782Dec 25, 2023
affected < 3.0.101-108.153.1fixed 3.0.101-108.153.1
An issue was discovered in the Linux kernel before 6.6.8. rose_ioctl in net/rose/af_rose.c has a use-after-free because of a rose_accept race condition.
CVE-2023-51780Dec 25, 2023
affected < 3.0.101-108.153.1fixed 3.0.101-108.153.1
An issue was discovered in the Linux kernel before 6.6.8. do_vcc_ioctl in net/atm/ioctl.c has a use-after-free because of a vcc_recvmsg race condition.

Page 7 of 13