suse/kernel-source&distro=SUSE Manager Server 4.3

Vulnerabilities (1,907)

• CVE-2024-53061Nov 19, 2024
  affected < 5.14.21-150400.24.144.1fixed 5.14.21-150400.24.144.1

  In the Linux kernel, the following vulnerability has been resolved: media: s5p-jpeg: prevent buffer overflows The current logic allows word to be less than 2. If this happens, there will be buffer overflows, as reported by smatch. Add extra checks to prevent it. While here, re

• CVE-2024-50302MedKEVNov 19, 2024
  affected < 5.14.21-150400.24.144.1fixed 5.14.21-150400.24.144.1

  In the Linux kernel, the following vulnerability has been resolved: HID: core: zero-initialize the report buffer Since the report buffer is used by all kinds of drivers in various ways, let's zero-initialize it during allocation to make sure that it can't be ever used to leak k

• CVE-2024-50301HigNov 19, 2024
  affected < 5.14.21-150400.24.144.1fixed 5.14.21-150400.24.144.1

  In the Linux kernel, the following vulnerability has been resolved: security/keys: fix slab-out-of-bounds in key_task_permission KASAN reports an out of bounds read: BUG: KASAN: slab-out-of-bounds in __kuid_val include/linux/uidgid.h:36 BUG: KASAN: slab-out-of-bounds in uid_eq

• CVE-2024-50290Nov 19, 2024
  affected < 5.14.21-150400.24.144.1fixed 5.14.21-150400.24.144.1

  In the Linux kernel, the following vulnerability has been resolved: media: cx24116: prevent overflows on SNR calculus as reported by Coverity, if reading SNR registers fail, a negative number will be returned, causing an underflow when reading SNR registers. Prevent that.

• CVE-2024-50279Nov 19, 2024
  affected < 5.14.21-150400.24.144.1fixed 5.14.21-150400.24.144.1

  In the Linux kernel, the following vulnerability has been resolved: dm cache: fix out-of-bounds access to the dirty bitset when resizing dm-cache checks the dirty bits of the cache blocks to be dropped when shrinking the fast device, but an index bug in bitset iteration causes

• CVE-2024-50274Nov 19, 2024
  affected < 5.14.21-150400.24.144.1fixed 5.14.21-150400.24.144.1

  In the Linux kernel, the following vulnerability has been resolved: idpf: avoid vport access in idpf_get_link_ksettings When the device control plane is removed or the platform running device control plane is rebooted, a reset is detected on the driver. On driver reset, it rele

• CVE-2024-50267Nov 19, 2024
  affected < 5.14.21-150400.24.144.1fixed 5.14.21-150400.24.144.1

  In the Linux kernel, the following vulnerability has been resolved: USB: serial: io_edgeport: fix use after free in debug printk The "dev_dbg(&urb->dev->dev, ..." which happens after usb_free_urb(urb) is a use after free of the "urb" pointer. Store the "dev" pointer at the sta

• CVE-2024-50264Nov 19, 2024
  affected < 5.14.21-150400.24.144.1fixed 5.14.21-150400.24.144.1

  In the Linux kernel, the following vulnerability has been resolved: vsock/virtio: Initialization of the dangling pointer occurring in vsk->trans During loopback communication, a dangling pointer can be created in vsk->trans, potentially leading to a Use-After-Free condition. T

• CVE-2024-50259Nov 9, 2024
  affected < 5.14.21-150400.24.144.1fixed 5.14.21-150400.24.144.1

  In the Linux kernel, the following vulnerability has been resolved: netdevsim: Add trailing zero to terminate the string in nsim_nexthop_bucket_activity_write() This was found by a static analyzer. We should not forget the trailing zero after copy_from_user() if we will further

• CVE-2024-50205MedNov 8, 2024
  affected < 5.14.21-150400.24.144.1fixed 5.14.21-150400.24.144.1

  In the Linux kernel, the following vulnerability has been resolved: ALSA: firewire-lib: Avoid division by zero in apply_constraint_to_size() The step variable is initialized to zero. It is changed in the loop, but if it's not changed it will remain zero. Add a variable check be

• CVE-2024-50208Nov 8, 2024
  affected < 5.14.21-150400.24.141.1fixed 5.14.21-150400.24.141.1

  In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxt_re: Fix a bug while setting up Level-2 PBL pages Avoid memory corruption while setting up Level-2 PBL pages for the non MR resources when num_pages > 256K. There will be a single PDE page address (co

• CVE-2024-50199Nov 8, 2024
  affected < 5.14.21-150400.24.150.1fixed 5.14.21-150400.24.150.1

  In the Linux kernel, the following vulnerability has been resolved: mm/swapfile: skip HugeTLB pages for unuse_vma I got a bad pud error and lost a 1GB HugeTLB when calling swapoff. The problem can be reproduced by the following steps: 1. Allocate an anonymous 1GB HugeTLB and

• CVE-2024-50154Nov 7, 2024
  affected < 5.14.21-150400.24.144.1fixed 5.14.21-150400.24.144.1

  In the Linux kernel, the following vulnerability has been resolved: tcp/dccp: Don't use timer_pending() in reqsk_queue_unlink(). Martin KaFai Lau reported use-after-free [0] in reqsk_timer_handler(). """ We are seeing a use-after-free from a bpf prog attached to trace_tc

• CVE-2024-50127HigNov 5, 2024
  affected < 5.14.21-150400.24.144.1fixed 5.14.21-150400.24.144.1

  In the Linux kernel, the following vulnerability has been resolved: net: sched: fix use-after-free in taprio_change() In 'taprio_change()', 'admin' pointer may become dangling due to sched switch / removal caused by 'advance_sched()', and critical section protected by 'q->curre

• CVE-2024-50128Nov 5, 2024
  affected < 5.14.21-150400.24.153.1fixed 5.14.21-150400.24.153.1

  In the Linux kernel, the following vulnerability has been resolved: net: wwan: fix global oob in wwan_rtnl_policy The variable wwan_rtnl_link_ops assign a *bigger* maxtype which leads to a global out-of-bounds read when parsing the netlink attributes. Exactly same bug cause as

• CVE-2024-50125Nov 5, 2024
  affected < 5.14.21-150400.24.144.1fixed 5.14.21-150400.24.144.1

  In the Linux kernel, the following vulnerability has been resolved: Bluetooth: SCO: Fix UAF on sco_sock_timeout conn->sk maybe have been unlinked/freed while waiting for sco_conn_lock so this checks if the conn->sk is still valid by checking if it part of sco_sk_list.

• CVE-2024-50115Nov 5, 2024
  affected < 5.14.21-150400.24.144.1fixed 5.14.21-150400.24.144.1

  In the Linux kernel, the following vulnerability has been resolved: KVM: nSVM: Ignore nCR3[4:0] when loading PDPTEs from memory Ignore nCR3[4:0] when loading PDPTEs from memory for nested SVM, as bits 4:0 of CR3 are ignored when PAE paging is used, and thus VMRUN doesn't enforc

• CVE-2023-52919Oct 22, 2024
  affected < 5.14.21-150400.24.141.1fixed 5.14.21-150400.24.141.1

  In the Linux kernel, the following vulnerability has been resolved: nfc: nci: fix possible NULL pointer dereference in send_acknowledge() Handle memory allocation failure from nci_skb_alloc() (calling alloc_skb()) to avoid possible NULL pointer dereference.

• CVE-2022-49032Oct 21, 2024
  affected < 5.14.21-150400.24.141.1fixed 5.14.21-150400.24.141.1

  In the Linux kernel, the following vulnerability has been resolved: iio: health: afe4404: Fix oob read in afe4404_[read|write]_raw KASAN report out-of-bounds read as follows: BUG: KASAN: global-out-of-bounds in afe4404_read_raw+0x2ce/0x380 Read of size 4 at addr ffffffffc00e46

• CVE-2022-49031Oct 21, 2024
  affected < 5.14.21-150400.24.141.1fixed 5.14.21-150400.24.141.1

  In the Linux kernel, the following vulnerability has been resolved: iio: health: afe4403: Fix oob read in afe4403_read_raw KASAN report out-of-bounds read as follows: BUG: KASAN: global-out-of-bounds in afe4403_read_raw+0x42e/0x4c0 Read of size 4 at addr ffffffffc02ac638 by ta