suse/kernel-source&distro=SUSE Linux Enterprise Server 15 SP3-LTSS

Vulnerabilities (1,483)

• CVE-2022-48686May 3, 2024
  affected < 5.3.18-150300.59.161.1fixed 5.3.18-150300.59.161.1

  In the Linux kernel, the following vulnerability has been resolved: nvme-tcp: fix UAF when detecting digest errors We should also bail from the io_work loop when we set rd_enabled to true, so we don't attempt to read data from the socket when the TCP stream is already out-of-sy

• CVE-2022-48673May 3, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: net/smc: Fix possible access to freed memory in link clear After modifying the QP to the Error state, all RX WR would be completed with WC in IB_WC_WR_FLUSH_ERR status. Current implementation does not wait for

• CVE-2022-48672May 3, 2024
  affected < 5.3.18-150300.59.161.1fixed 5.3.18-150300.59.161.1

  In the Linux kernel, the following vulnerability has been resolved: of: fdt: fix off-by-one error in unflatten_dt_nodes() Commit 78c44d910d3e ("drivers/of: Fix depth when unflattening devicetree") forgot to fix up the depth check in the loop body in unflatten_dt_nodes() which m

• CVE-2024-27043May 1, 2024
  affected < 5.3.18-150300.59.161.1fixed 5.3.18-150300.59.161.1

  In the Linux kernel, the following vulnerability has been resolved: media: edia: dvbdev: fix a use-after-free In dvb_register_device, *pdvbdev is set equal to dvbdev, which is freed in several error-handling paths. However, *pdvbdev is not set to NULL after dvbdev's deallocatio

• CVE-2024-26930May 1, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix double free of the ha->vp_map pointer Coverity scan reported potential risk of double free of the pointer ha->vp_map. ha->vp_map was freed in qla2x00_mem_alloc(), and again freed in function

• CVE-2022-48664Apr 28, 2024
  affected < 5.3.18-150300.59.182.1fixed 5.3.18-150300.59.182.1

  In the Linux kernel, the following vulnerability has been resolved: btrfs: fix hang during unmount when stopping a space reclaim worker Often when running generic/562 from fstests we can hang during unmount, resulting in a trace like this: Sep 07 11:52:00 debian9 unknown: ru

• CVE-2022-48654Apr 28, 2024
  affected < 5.3.18-150300.59.161.1fixed 5.3.18-150300.59.161.1

  In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlink_osf: fix possible bogus match in nf_osf_find() nf_osf_find() incorrectly returns true on mismatch, this leads to copying uninitialized memory area in nft_osf which can be used to leak stale

• CVE-2022-48651Apr 28, 2024
  affected < 5.3.18-150300.59.161.1fixed 5.3.18-150300.59.161.1

  In the Linux kernel, the following vulnerability has been resolved: ipvlan: Fix out-of-bound bugs caused by unset skb->mac_header If an AF_PACKET socket is used to send packets through ipvlan and the default xmit function of the AF_PACKET socket is changed from dev_queue_xmit()

• CVE-2022-48650Apr 28, 2024
  affected < 5.3.18-150300.59.161.1fixed 5.3.18-150300.59.161.1

  In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix memory leak in __qlt_24xx_handle_abts() Commit 8f394da36a36 ("scsi: qla2xxx: Drop TARGET_SCF_LOOKUP_LUN_FROM_TAG") made the __qlt_24xx_handle_abts() function return early if tcm_qla2xxx_find_

• CVE-2022-48638Apr 28, 2024
  affected < 5.3.18-150300.59.161.1fixed 5.3.18-150300.59.161.1

  In the Linux kernel, the following vulnerability has been resolved: cgroup: cgroup_get_from_id() must check the looked-up kn is a directory cgroup has to be one kernfs dir, otherwise kernel panic is caused, especially cgroup id is provide from userspace.

• CVE-2022-48636Apr 28, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: s390/dasd: fix Oops in dasd_alias_get_start_dev due to missing pavgroup Fix Oops in dasd_alias_get_start_dev() function caused by the pavgroup pointer being NULL. The pavgroup pointer is checked on the entranc

• CVE-2022-48631Apr 28, 2024
  affected < 5.3.18-150300.59.161.1fixed 5.3.18-150300.59.161.1

  In the Linux kernel, the following vulnerability has been resolved: ext4: fix bug in extents parsing when eh_entries == 0 and eh_depth > 0 When walking through an inode extents, the ext4_ext_binsearch_idx() function assumes that the extent header has been previously validated.

• CVE-2024-26925MedApr 25, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: release mutex after nft_gc_seq_end from abort path The commit mutex should not be released during the critical section between nft_gc_seq_begin() and nft_gc_seq_end(), otherwise, async GC

• CVE-2024-26923MedApr 25, 2024
  affected < 5.3.18-150300.59.167.1fixed 5.3.18-150300.59.167.1

  In the Linux kernel, the following vulnerability has been resolved: af_unix: Fix garbage collector racing against connect() Garbage collector does not take into account the risk of embryo getting enqueued during the garbage collection. If such embryo has a peer that carries SCM

• CVE-2024-26924Apr 24, 2024
  affected < 5.3.18-150300.59.211.1fixed 5.3.18-150300.59.211.1

  In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_pipapo: do not free live element Pablo reports a crash with large batches of elements with a back-to-back add/remove pattern. Quoting Pablo: add_elem("00000000") timeout 100 ms ... ad

• CVE-2024-26921Apr 18, 2024
  affected < 5.3.18-150300.59.164.1fixed 5.3.18-150300.59.164.1

  In the Linux kernel, the following vulnerability has been resolved: inet: inet_defrag: prevent sk release while still in use ip_local_out() and other functions can pass skb->sk as function argument. If the skb is a fragment and reassembly happens before such function call retu

• CVE-2024-26906MedApr 17, 2024
  affected < 5.3.18-150300.59.161.1fixed 5.3.18-150300.59.161.1

  In the Linux kernel, the following vulnerability has been resolved: x86/mm: Disallow vsyscall page read for copy_from_kernel_nofault() When trying to use copy_from_kernel_nofault() to read vsyscall page through a bpf program, the following oops was reported: BUG: unable to h

• CVE-2024-26903MedApr 17, 2024
  affected < 5.3.18-150300.59.161.1fixed 5.3.18-150300.59.161.1

  In the Linux kernel, the following vulnerability has been resolved: Bluetooth: rfcomm: Fix null-ptr-deref in rfcomm_check_security During our fuzz testing of the connection and disconnection process at the RFCOMM layer, we discovered this bug. By comparing the packets from a no

• CVE-2024-26898HigApr 17, 2024
  affected < 5.3.18-150300.59.161.1fixed 5.3.18-150300.59.161.1

  In the Linux kernel, the following vulnerability has been resolved: aoe: fix the potential use-after-free problem in aoecmd_cfg_pkts This patch is against CVE-2023-6270. The description of cve is: A flaw was found in the ATA over Ethernet (AoE) driver in the Linux kernel.

• CVE-2024-26852HigApr 17, 2024
  affected < 5.3.18-150300.59.161.1fixed 5.3.18-150300.59.161.1

  In the Linux kernel, the following vulnerability has been resolved: net/ipv6: avoid possible UAF in ip6_route_mpath_notify() syzbot found another use-after-free in ip6_route_mpath_notify() [1] Commit f7225172f25a ("net/ipv6: prevent use after free in ip6_route_mpath_notify") w