rpm package

suse/kernel-source&distro=SUSE Linux Enterprise Server 12 SP2-BCL

pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2-BCL

Vulnerabilities (580)

CVE	CVSS	Affected versions	Fixed in	Published	Description
CVE-2023-1390	—	< 4.4.121-92.205.1	4.4.121-92.205.1	Mar 16, 2023	A remote denial of service vulnerability was found in the Linux kernel’s TIPC kernel module. The while loop in tipc_link_xmit() hits an unknown state while attempting to parse SKBs, which are not in the queue. Sending two small UDP packets to a system with a UDP bearer results in
CVE-2022-3424	—	< 4.4.121-92.196.2	4.4.121-92.196.2	Mar 6, 2023	A use-after-free flaw was found in the Linux kernel’s SGI GRU driver in the way the first gru_file_unlocked_ioctl function is called by the user, where a fail pass occurs in the gru_check_chiplet_assignment function. This flaw allows a local user to crash or potentially escalate
CVE-2023-1118	—	< 4.4.121-92.205.1	4.4.121-92.205.1	Mar 2, 2023	A flaw use after free in the Linux kernel integrated infrared receiver/transceiver driver was found in the way user detaching rc device. A local user could use this flaw to crash the system or potentially escalate their privileges on the system.
CVE-2023-1095	—	< 4.4.121-92.205.1	4.4.121-92.205.1	Feb 28, 2023	In nf_tables_updtable, if nf_tables_table_enable returns an error, nft_trans_destroy is called to free the transaction object. nft_trans_destroy() calls list_del(), but the transaction was never placed on a list -- the list head is all zeroes, this results in a NULL pointer deref
CVE-2023-26545	—	< 4.4.121-92.202.6	4.4.121-92.202.6	Feb 25, 2023	In the Linux kernel before 6.1.13, there is a double free in net/mpls/af_mpls.c upon an allocation failure (for registering the sysctl table under a new location) during the renaming of a device.
CVE-2022-47929	—	< 4.4.121-92.199.1	4.4.121-92.199.1	Jan 17, 2023	In the Linux kernel before 6.1.6, a NULL pointer dereference bug in the traffic control subsystem allows an unprivileged user to trigger a denial of service (system crash) via a crafted traffic control configuration that is set up with "tc qdisc" and "tc class" commands. This aff
CVE-2022-41858	—	< 4.4.121-92.196.2	4.4.121-92.196.2	Jan 17, 2023	A flaw was found in the Linux kernel. A NULL pointer dereference may occur while a slip driver is in progress to detach in sl_tx_timeout in drivers/net/slip/slip.c. This issue could allow an attacker to crash the system or leak internal kernel information.
CVE-2023-23559	—	< 4.4.121-92.202.6	4.4.121-92.202.6	Jan 13, 2023	In rndis_query_oid in drivers/net/wireless/rndis_wlan.c in the Linux kernel through 6.1.5, there is an integer overflow in an addition.
CVE-2023-23455	—	< 4.4.121-92.199.1	4.4.121-92.199.1	Jan 12, 2023	atm_tc_enqueue in net/sched/sch_atm.c in the Linux kernel through 6.1.4 allows attackers to cause a denial of service because of type confusion (non-negative numbers can sometimes indicate a TC_ACT_SHOT condition rather than valid classification results).
CVE-2023-23454	—	< 4.4.121-92.199.1	4.4.121-92.199.1	Jan 12, 2023	cbq_classify in net/sched/sch_cbq.c in the Linux kernel through 6.1.4 allows attackers to cause a denial of service (slab-out-of-bounds read) because of type confusion (non-negative numbers can sometimes indicate a TC_ACT_SHOT condition rather than valid classification results).
CVE-2022-3628	—	< 4.4.121-92.196.2	4.4.121-92.196.2	Jan 12, 2023	A buffer overflow flaw was found in the Linux kernel Broadcom Full MAC Wi-Fi driver. This issue occurs when a user connects to a malicious USB device. This can allow a local user to crash the system or escalate their privileges.
CVE-2022-4662	—	< 4.4.121-92.199.1	4.4.121-92.199.1	Dec 22, 2022	A flaw incorrect access control in the Linux kernel USB core subsystem was found in the way user attaches usb device. A local user could use this flaw to crash the system.
CVE-2022-3643	—	< 4.4.121-92.199.1	4.4.121-92.199.1	Dec 7, 2022	Guests can trigger NIC interface reset/abort/crash via netback It is possible for a guest to trigger a NIC interface reset/abort/crash in a Linux based network backend by sending certain kinds of packets. It appears to be an (unwritten?) assumption in the rest of the Linux networ
CVE-2022-45934	—	< 4.4.121-92.196.2	4.4.121-92.196.2	Nov 27, 2022	An issue was discovered in the Linux kernel through 6.0.10. l2cap_config_req in net/bluetooth/l2cap_core.c has an integer wraparound via L2CAP_CONF_REQ packets.
CVE-2022-45919	—	< 4.4.121-92.205.1	4.4.121-92.205.1	Nov 27, 2022	An issue was discovered in the Linux kernel through 6.0.10. In drivers/media/dvb-core/dvb_ca_en50221.c, a use-after-free can occur is there is a disconnect after an open, because of the lack of a wait_event.
CVE-2022-45887	—	< 4.4.121-92.205.1	4.4.121-92.205.1	Nov 25, 2022	An issue was discovered in the Linux kernel through 6.0.9. drivers/media/usb/ttusb-dec/ttusb_dec.c has a memory leak because of the lack of a dvb_frontend_detach call.
CVE-2022-45886	—	< 4.4.121-92.205.1	4.4.121-92.205.1	Nov 25, 2022	An issue was discovered in the Linux kernel through 6.0.9. drivers/media/dvb-core/dvb_net.c has a .disconnect versus dvb_device_open race condition that leads to a use-after-free.
CVE-2022-45885	—	< 4.4.121-92.205.1	4.4.121-92.205.1	Nov 25, 2022	An issue was discovered in the Linux kernel through 6.0.9. drivers/media/dvb-core/dvb_frontend.c has a race condition that can cause a use-after-free when a device is disconnected.
CVE-2022-45884	—	< 4.4.121-92.205.1	4.4.121-92.205.1	Nov 25, 2022	An issue was discovered in the Linux kernel through 6.0.9. drivers/media/dvb-core/dvbdev.c has a use-after-free, related to dvb_register_device dynamically allocating fops.
CVE-2022-42896	—	< 4.4.121-92.199.1	4.4.121-92.199.1	Nov 23, 2022	There are use-after-free vulnerabilities in the Linux kernel's net/bluetooth/l2cap_core.c's l2cap_connect and l2cap_le_connect_req functions which may allow code execution and leaking kernel memory (respectively) remotely via Bluetooth. A remote attacker could execute code leakin

CVE-2023-1390Mar 16, 2023
affected < 4.4.121-92.205.1fixed 4.4.121-92.205.1
A remote denial of service vulnerability was found in the Linux kernel’s TIPC kernel module. The while loop in tipc_link_xmit() hits an unknown state while attempting to parse SKBs, which are not in the queue. Sending two small UDP packets to a system with a UDP bearer results in
CVE-2022-3424Mar 6, 2023
affected < 4.4.121-92.196.2fixed 4.4.121-92.196.2
A use-after-free flaw was found in the Linux kernel’s SGI GRU driver in the way the first gru_file_unlocked_ioctl function is called by the user, where a fail pass occurs in the gru_check_chiplet_assignment function. This flaw allows a local user to crash or potentially escalate
CVE-2023-1118Mar 2, 2023
affected < 4.4.121-92.205.1fixed 4.4.121-92.205.1
A flaw use after free in the Linux kernel integrated infrared receiver/transceiver driver was found in the way user detaching rc device. A local user could use this flaw to crash the system or potentially escalate their privileges on the system.
CVE-2023-1095Feb 28, 2023
affected < 4.4.121-92.205.1fixed 4.4.121-92.205.1
In nf_tables_updtable, if nf_tables_table_enable returns an error, nft_trans_destroy is called to free the transaction object. nft_trans_destroy() calls list_del(), but the transaction was never placed on a list -- the list head is all zeroes, this results in a NULL pointer deref
CVE-2023-26545Feb 25, 2023
affected < 4.4.121-92.202.6fixed 4.4.121-92.202.6
In the Linux kernel before 6.1.13, there is a double free in net/mpls/af_mpls.c upon an allocation failure (for registering the sysctl table under a new location) during the renaming of a device.
CVE-2022-47929Jan 17, 2023
affected < 4.4.121-92.199.1fixed 4.4.121-92.199.1
In the Linux kernel before 6.1.6, a NULL pointer dereference bug in the traffic control subsystem allows an unprivileged user to trigger a denial of service (system crash) via a crafted traffic control configuration that is set up with "tc qdisc" and "tc class" commands. This aff
CVE-2022-41858Jan 17, 2023
affected < 4.4.121-92.196.2fixed 4.4.121-92.196.2
A flaw was found in the Linux kernel. A NULL pointer dereference may occur while a slip driver is in progress to detach in sl_tx_timeout in drivers/net/slip/slip.c. This issue could allow an attacker to crash the system or leak internal kernel information.
CVE-2023-23559Jan 13, 2023
affected < 4.4.121-92.202.6fixed 4.4.121-92.202.6
In rndis_query_oid in drivers/net/wireless/rndis_wlan.c in the Linux kernel through 6.1.5, there is an integer overflow in an addition.
CVE-2023-23455Jan 12, 2023
affected < 4.4.121-92.199.1fixed 4.4.121-92.199.1
atm_tc_enqueue in net/sched/sch_atm.c in the Linux kernel through 6.1.4 allows attackers to cause a denial of service because of type confusion (non-negative numbers can sometimes indicate a TC_ACT_SHOT condition rather than valid classification results).
CVE-2023-23454Jan 12, 2023
affected < 4.4.121-92.199.1fixed 4.4.121-92.199.1
cbq_classify in net/sched/sch_cbq.c in the Linux kernel through 6.1.4 allows attackers to cause a denial of service (slab-out-of-bounds read) because of type confusion (non-negative numbers can sometimes indicate a TC_ACT_SHOT condition rather than valid classification results).
CVE-2022-3628Jan 12, 2023
affected < 4.4.121-92.196.2fixed 4.4.121-92.196.2
A buffer overflow flaw was found in the Linux kernel Broadcom Full MAC Wi-Fi driver. This issue occurs when a user connects to a malicious USB device. This can allow a local user to crash the system or escalate their privileges.
CVE-2022-4662Dec 22, 2022
affected < 4.4.121-92.199.1fixed 4.4.121-92.199.1
A flaw incorrect access control in the Linux kernel USB core subsystem was found in the way user attaches usb device. A local user could use this flaw to crash the system.
CVE-2022-3643Dec 7, 2022
affected < 4.4.121-92.199.1fixed 4.4.121-92.199.1
Guests can trigger NIC interface reset/abort/crash via netback It is possible for a guest to trigger a NIC interface reset/abort/crash in a Linux based network backend by sending certain kinds of packets. It appears to be an (unwritten?) assumption in the rest of the Linux networ
CVE-2022-45934Nov 27, 2022
affected < 4.4.121-92.196.2fixed 4.4.121-92.196.2
An issue was discovered in the Linux kernel through 6.0.10. l2cap_config_req in net/bluetooth/l2cap_core.c has an integer wraparound via L2CAP_CONF_REQ packets.
CVE-2022-45919Nov 27, 2022
affected < 4.4.121-92.205.1fixed 4.4.121-92.205.1
An issue was discovered in the Linux kernel through 6.0.10. In drivers/media/dvb-core/dvb_ca_en50221.c, a use-after-free can occur is there is a disconnect after an open, because of the lack of a wait_event.
CVE-2022-45887Nov 25, 2022
affected < 4.4.121-92.205.1fixed 4.4.121-92.205.1
An issue was discovered in the Linux kernel through 6.0.9. drivers/media/usb/ttusb-dec/ttusb_dec.c has a memory leak because of the lack of a dvb_frontend_detach call.
CVE-2022-45886Nov 25, 2022
affected < 4.4.121-92.205.1fixed 4.4.121-92.205.1
An issue was discovered in the Linux kernel through 6.0.9. drivers/media/dvb-core/dvb_net.c has a .disconnect versus dvb_device_open race condition that leads to a use-after-free.
CVE-2022-45885Nov 25, 2022
affected < 4.4.121-92.205.1fixed 4.4.121-92.205.1
An issue was discovered in the Linux kernel through 6.0.9. drivers/media/dvb-core/dvb_frontend.c has a race condition that can cause a use-after-free when a device is disconnected.
CVE-2022-45884Nov 25, 2022
affected < 4.4.121-92.205.1fixed 4.4.121-92.205.1
An issue was discovered in the Linux kernel through 6.0.9. drivers/media/dvb-core/dvbdev.c has a use-after-free, related to dvb_register_device dynamically allocating fops.
CVE-2022-42896Nov 23, 2022
affected < 4.4.121-92.199.1fixed 4.4.121-92.199.1
There are use-after-free vulnerabilities in the Linux kernel's net/bluetooth/l2cap_core.c's l2cap_connect and l2cap_le_connect_req functions which may allow code execution and leaking kernel memory (respectively) remotely via Bluetooth. A remote attacker could execute code leakin

Page 3 of 29