VYPR

rpm package

suse/kernel-source-rt&distro=SUSE Linux Enterprise Micro 5.2

pkg:rpm/suse/kernel-source-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.2

Vulnerabilities (1,394)

  • CVE-2021-47538May 24, 2024
    affected < 5.3.18-150300.172.1fixed 5.3.18-150300.172.1

    In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix rxrpc_local leak in rxrpc_lookup_peer() Need to call rxrpc_put_local() for peer candidate before kfree() as it holds a ref to rxrpc_local. [DH: v2: Changed to abstract the peer freeing code out into

  • CVE-2021-47536May 24, 2024
    affected < 5.3.18-150300.172.1fixed 5.3.18-150300.172.1

    In the Linux kernel, the following vulnerability has been resolved: net/smc: fix wrong list_del in smc_lgr_cleanup_early smc_lgr_cleanup_early() meant to delete the link group from the link group list, but it deleted the list head by mistake. This may cause memory corruption s

  • CVE-2021-47535May 24, 2024
    affected < 5.3.18-150300.172.1fixed 5.3.18-150300.172.1

    In the Linux kernel, the following vulnerability has been resolved: drm/msm/a6xx: Allocate enough space for GMU registers In commit 142639a52a01 ("drm/msm/a6xx: fix crashstate capture for A650") we changed a6xx_get_gmu_registers() to read 3 sets of registers. Unfortunately, we

  • CVE-2021-47523May 24, 2024
    affected < 5.3.18-150300.172.1fixed 5.3.18-150300.172.1

    In the Linux kernel, the following vulnerability has been resolved: IB/hfi1: Fix leak of rcvhdrtail_dummy_kvaddr This buffer is currently allocated in hfi1_init(): if (reinit) ret = init_after_reset(dd); else ret = loadtime_init(dd); if (ret) goto done; /* allocate

  • CVE-2021-47522May 24, 2024
    affected < 5.3.18-150300.172.1fixed 5.3.18-150300.172.1

    In the Linux kernel, the following vulnerability has been resolved: HID: bigbenff: prevent null pointer dereference When emulating the device through uhid, there is a chance we don't have output reports and so report_field is null.

  • CVE-2021-47521May 24, 2024
    affected < 5.3.18-150300.172.1fixed 5.3.18-150300.172.1

    In the Linux kernel, the following vulnerability has been resolved: can: sja1000: fix use after free in ems_pcmcia_add_card() If the last channel is not available then "dev" is freed. Fortunately, we can just use "pdev->irq" instead. Also we should check if at least one chann

  • CVE-2021-47520May 24, 2024
    affected < 5.3.18-150300.178.1fixed 5.3.18-150300.178.1

    In the Linux kernel, the following vulnerability has been resolved: can: pch_can: pch_can_rx_normal: fix use after free After calling netif_receive_skb(skb), dereferencing skb is unsafe. Especially, the can_frame cf which aliases skb memory is dereferenced just after the call n

  • CVE-2021-47518May 24, 2024
    affected < 5.3.18-150300.172.1fixed 5.3.18-150300.172.1

    In the Linux kernel, the following vulnerability has been resolved: nfc: fix potential NULL pointer deref in nfc_genl_dump_ses_done The done() netlink callback nfc_genl_dump_ses_done() should check if received argument is non-NULL, because its allocation could fail earlier in d

  • CVE-2021-47516May 24, 2024
    affected < 5.3.18-150300.172.1fixed 5.3.18-150300.172.1

    In the Linux kernel, the following vulnerability has been resolved: nfp: Fix memory leak in nfp_cpp_area_cache_add() In line 800 (#1), nfp_cpp_area_alloc() allocates and initializes a CPP area structure. But in line 807 (#2), when the cache is allocated failed, this CPP area st

  • CVE-2021-47512May 24, 2024
    affected < 5.3.18-150300.172.1fixed 5.3.18-150300.172.1

    In the Linux kernel, the following vulnerability has been resolved: net/sched: fq_pie: prevent dismantle issue For some reason, fq_pie_destroy() did not copy working code from pie_destroy() and other qdiscs, thus causing elusive bug. Before calling del_timer_sync(&q->adapt_tim

  • CVE-2021-47511May 24, 2024
    affected < 5.3.18-150300.172.1fixed 5.3.18-150300.172.1

    In the Linux kernel, the following vulnerability has been resolved: ALSA: pcm: oss: Fix negative period/buffer sizes The period size calculation in OSS layer may receive a negative value as an error, but the code there assumes only the positive values and handle them with size_

  • CVE-2021-47509May 24, 2024
    affected < 5.3.18-150300.172.1fixed 5.3.18-150300.172.1

    In the Linux kernel, the following vulnerability has been resolved: ALSA: pcm: oss: Limit the period size to 16MB Set the practical limit to the period size (the fragment shift in OSS) instead of a full 31bit; a too large value could lead to the exhaust of memory as we allocate

  • CVE-2021-47507May 24, 2024
    affected < 5.3.18-150300.172.1fixed 5.3.18-150300.172.1

    In the Linux kernel, the following vulnerability has been resolved: nfsd: Fix nsfd startup race (again) Commit bd5ae9288d64 ("nfsd: register pernet ops last, unregister first") has re-opened rpc_pipefs_event() race against nfsd_net_id registration (register_pernet_subsys()) whi

  • CVE-2021-47506May 24, 2024
    affected < 5.3.18-150300.172.1fixed 5.3.18-150300.172.1

    In the Linux kernel, the following vulnerability has been resolved: nfsd: fix use-after-free due to delegation race A delegation break could arrive as soon as we've called vfs_setlease. A delegation break runs a callback which immediately (in nfsd4_cb_recall_prepare) adds the

  • CVE-2021-47505May 24, 2024
    affected < 5.3.18-150300.172.1fixed 5.3.18-150300.172.1

    In the Linux kernel, the following vulnerability has been resolved: aio: fix use-after-free due to missing POLLFREE handling signalfd_poll() and binder_poll() are special in that they use a waitqueue whose lifetime is the current task, rather than the struct file as is normally

  • CVE-2021-47503May 24, 2024
    affected < 5.3.18-150300.172.1fixed 5.3.18-150300.172.1

    In the Linux kernel, the following vulnerability has been resolved: scsi: pm80xx: Do not call scsi_remove_host() in pm8001_alloc() Calling scsi_remove_host() before scsi_add_host() results in a crash: BUG: kernel NULL pointer dereference, address: 0000000000000108 RIP: 0010:

  • CVE-2021-47502May 24, 2024
    affected < 5.3.18-150300.172.1fixed 5.3.18-150300.172.1

    In the Linux kernel, the following vulnerability has been resolved: ASoC: codecs: wcd934x: handle channel mappping list correctly Currently each channel is added as list to dai channel list, however there is danger of adding same channel to multiple dai channel list which endup

  • CVE-2021-47501May 24, 2024
    affected < 5.3.18-150300.172.1fixed 5.3.18-150300.172.1

    In the Linux kernel, the following vulnerability has been resolved: i40e: Fix NULL pointer dereference in i40e_dbg_dump_desc When trying to dump VFs VSI RX/TX descriptors using debugfs there was a crash due to NULL pointer dereference in i40e_dbg_dump_desc. Added a check to i40

  • CVE-2021-47500May 24, 2024
    affected < 5.3.18-150300.172.1fixed 5.3.18-150300.172.1

    In the Linux kernel, the following vulnerability has been resolved: iio: mma8452: Fix trigger reference couting The mma8452 driver directly assigns a trigger to the struct iio_dev. The IIO core when done using this trigger will call `iio_trigger_put()` to drop the reference cou

  • CVE-2021-47499May 24, 2024
    affected < 5.3.18-150300.172.1fixed 5.3.18-150300.172.1

    In the Linux kernel, the following vulnerability has been resolved: iio: accel: kxcjk-1013: Fix possible memory leak in probe and remove When ACPI type is ACPI_SMO8500, the data->dready_trig will not be set, the memory allocated by iio_triggered_buffer_setup() will not be freed

Page 46 of 70