VYPR

rpm package

suse/kernel-source-rt&distro=SUSE Linux Enterprise Micro 5.2

pkg:rpm/suse/kernel-source-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.2

Vulnerabilities (1,394)

  • CVE-2023-54142Dec 24, 2025
    affected < 5.3.18-150300.232.1fixed 5.3.18-150300.232.1

    In the Linux kernel, the following vulnerability has been resolved: gtp: Fix use-after-free in __gtp_encap_destroy(). syzkaller reported use-after-free in __gtp_encap_destroy(). [0] It shows the same process freed sk and touched it illegally. Commit e198987e7dd7 ("gtp: fix su

  • CVE-2023-54110Dec 24, 2025
    affected < 5.3.18-150300.232.1fixed 5.3.18-150300.232.1

    In the Linux kernel, the following vulnerability has been resolved: usb: rndis_host: Secure rndis_query check against int overflow Variables off and len typed as uint32 in rndis_query function are controlled by incoming RNDIS response message thus their value may be manipulated

  • CVE-2022-50767Dec 24, 2025
    affected < 5.3.18-150300.232.1fixed 5.3.18-150300.232.1

    In the Linux kernel, the following vulnerability has been resolved: fbdev: smscufx: Fix several use-after-free bugs Several types of UAFs can occur when physically removing a USB device. Adds ufx_ops_destroy() function to .fb_destroy of fb_ops, and in this function, there is k

  • CVE-2022-50758Dec 24, 2025
    affected < 5.3.18-150300.232.1fixed 5.3.18-150300.232.1

    In the Linux kernel, the following vulnerability has been resolved: staging: vt6655: fix potential memory leak In function device_init_td0_ring, memory is allocated for member td_info of priv->apTD0Rings[i], with i increasing from 0. In case of allocation failure, the memory is

  • CVE-2022-50756Dec 24, 2025
    affected < 5.3.18-150300.232.1fixed 5.3.18-150300.232.1

    In the Linux kernel, the following vulnerability has been resolved: nvme-pci: fix mempool alloc size Convert the max size to bytes to match the units of the divisor that calculates the worst-case number of PRP entries. The result is used to determine how many PRP Lists are req

  • CVE-2022-50744Dec 24, 2025
    affected < 5.3.18-150300.232.1fixed 5.3.18-150300.232.1

    In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix hard lockup when reading the rx_monitor from debugfs During I/O and simultaneous cat of /sys/kernel/debug/lpfc/fnX/rx_monitor, a hard lockup similar to the call trace below may occur. The spin_

  • CVE-2022-50742Dec 24, 2025
    affected < 5.3.18-150300.232.1fixed 5.3.18-150300.232.1

    In the Linux kernel, the following vulnerability has been resolved: misc: ocxl: fix possible refcount leak in afu_ioctl() eventfd_ctx_put need to be called to put the refcount that gotten by eventfd_ctx_fdget when ocxl_irq_set_handler fails.

  • CVE-2022-50736Dec 24, 2025
    affected < 5.3.18-150300.232.1fixed 5.3.18-150300.232.1

    In the Linux kernel, the following vulnerability has been resolved: RDMA/siw: Fix immediate work request flush to completion queue Correctly set send queue element opcode during immediate work request flushing in post sendqueue operation, if the QP is in ERROR state. An undefin

  • CVE-2022-50733Dec 24, 2025
    affected < 5.3.18-150300.232.1fixed 5.3.18-150300.232.1

    In the Linux kernel, the following vulnerability has been resolved: usb: idmouse: fix an uninit-value in idmouse_open In idmouse_create_image, if any ftip_command fails, it will go to the reset label. However, this leads to the data in bulk_in_buffer[HEADER..IMGSIZE] uninitiali

  • CVE-2022-50731Dec 24, 2025
    affected < 5.3.18-150300.232.1fixed 5.3.18-150300.232.1

    In the Linux kernel, the following vulnerability has been resolved: crypto: akcipher - default implementation for setting a private key Changes from v1: * removed the default implementation from set_pub_key: it is assumed that an implementation must always have this callb

  • CVE-2022-50730Dec 24, 2025
    affected < 5.3.18-150300.232.1fixed 5.3.18-150300.232.1

    In the Linux kernel, the following vulnerability has been resolved: ext4: silence the warning when evicting inode with dioread_nolock When evicting an inode with default dioread_nolock, it could be raced by the unwritten extents converting kworker after writeback some new alloc

  • CVE-2022-50726Dec 24, 2025
    affected < 5.3.18-150300.232.1fixed 5.3.18-150300.232.1

    In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix possible use-after-free in async command interface mlx5_cmd_cleanup_async_ctx should return only after all its callback handlers were completed. Before this patch, the below race between mlx5_cmd_

  • CVE-2022-50717Dec 24, 2025
    affected < 5.3.18-150300.232.1fixed 5.3.18-150300.232.1

    In the Linux kernel, the following vulnerability has been resolved: nvmet-tcp: add bounds check on Transfer Tag ttag is used as an index to get cmd in nvmet_tcp_handle_h2c_data_pdu(), add a bounds check to avoid out-of-bounds access.

  • CVE-2023-54024Dec 24, 2025
    affected < 5.3.18-150300.232.1fixed 5.3.18-150300.232.1

    In the Linux kernel, the following vulnerability has been resolved: KVM: Destroy target device if coalesced MMIO unregistration fails Destroy and free the target coalesced MMIO device if unregistering said device fails. As clearly noted in the code, kvm_io_bus_unregister_dev()

  • CVE-2023-54019Dec 24, 2025
    affected < 5.3.18-150300.232.1fixed 5.3.18-150300.232.1

    In the Linux kernel, the following vulnerability has been resolved: sched/psi: use kernfs polling functions for PSI trigger polling Destroying psi trigger in cgroup_file_release causes UAF issues when a cgroup is removed from under a polling process. This is happening because c

  • CVE-2022-50709Dec 24, 2025
    affected < 5.3.18-150300.232.1fixed 5.3.18-150300.232.1

    In the Linux kernel, the following vulnerability has been resolved: wifi: ath9k: avoid uninit memory read in ath9k_htc_rx_msg() syzbot is reporting uninit value at ath9k_htc_rx_msg() [1], for ioctl(USB_RAW_IOCTL_EP_WRITE) can call ath9k_hif_usb_rx_stream() with pkt_len = 0 but

  • CVE-2022-50703Dec 24, 2025
    affected < 5.3.18-150300.232.1fixed 5.3.18-150300.232.1

    In the Linux kernel, the following vulnerability has been resolved: soc: qcom: smsm: Fix refcount leak bugs in qcom_smsm_probe() There are two refcount leak bugs in qcom_smsm_probe(): (1) The 'local_node' is escaped out from for_each_child_of_node() as the break of iteration,

  • CVE-2022-50700Dec 24, 2025
    affected < 5.3.18-150300.232.1fixed 5.3.18-150300.232.1

    In the Linux kernel, the following vulnerability has been resolved: wifi: ath10k: Delay the unmapping of the buffer On WCN3990, we are seeing a rare scenario where copy engine hardware is sending a copy complete interrupt to the host driver while still processing the buffer tha

  • CVE-2022-50697Dec 24, 2025
    affected < 5.3.18-150300.235.1fixed 5.3.18-150300.235.1

    In the Linux kernel, the following vulnerability has been resolved: mrp: introduce active flags to prevent UAF when applicant uninit The caller of del_timer_sync must prevent restarting of the timer, If we have no this synchronization, there is a small probability that the canc

  • CVE-2025-68312Dec 16, 2025
    affected < 5.3.18-150300.235.1fixed 5.3.18-150300.235.1

    In the Linux kernel, the following vulnerability has been resolved: usbnet: Prevents free active kevent The root cause of this issue are: 1. When probing the usbnet device, executing usbnet_link_change(dev, 0, 0); put the kevent work in global workqueue. However, the kevent has

Page 3 of 70