suse/kernel-source-rt&distro=SUSE Linux Enterprise Micro 5.3

Vulnerabilities (2,793)

• CVE-2023-54098Dec 24, 2025
  affected < 5.14.21-150400.15.142.1fixed 5.14.21-150400.15.142.1

  In the Linux kernel, the following vulnerability has been resolved: drm/i915/gvt: fix gvt debugfs destroy When gvt debug fs is destroyed, need to have a sane check if drm minor's debugfs root is still available or not, otherwise in case like device remove through unbinding, drm

• CVE-2023-54097Dec 24, 2025
  affected < 5.14.21-150400.15.142.1fixed 5.14.21-150400.15.142.1

  In the Linux kernel, the following vulnerability has been resolved: regulator: stm32-pwr: fix of_iomap leak Smatch reports: drivers/regulator/stm32-pwr.c:166 stm32_pwr_regulator_probe() warn: 'base' from of_iomap() not released on lines: 151,166. In stm32_pwr_regulator_probe()

• CVE-2023-54096Dec 24, 2025
  affected < 5.14.21-150400.15.142.1fixed 5.14.21-150400.15.142.1

  In the Linux kernel, the following vulnerability has been resolved: soundwire: fix enumeration completion The soundwire subsystem uses two completion structures that allow drivers to wait for soundwire device to become enumerated on the bus and initialised by their drivers, res

• CVE-2023-54095Dec 24, 2025
  affected < 5.14.21-150400.15.142.1fixed 5.14.21-150400.15.142.1

  In the Linux kernel, the following vulnerability has been resolved: powerpc/iommu: Fix notifiers being shared by PCI and VIO buses fail_iommu_setup() registers the fail_iommu_bus_notifier struct to both PCI and VIO buses. struct notifier_block is a linked list node, so this ca

• CVE-2023-54092Dec 24, 2025
  affected < 5.14.21-150400.15.142.1fixed 5.14.21-150400.15.142.1

  In the Linux kernel, the following vulnerability has been resolved: KVM: s390: pv: fix index value of replaced ASCE The index field of the struct page corresponding to a guest ASCE should be 0. When replacing the ASCE in s390_replace_asce(), the index of the new ASCE should als

• CVE-2023-54091Dec 24, 2025
  affected < 5.14.21-150400.15.142.1fixed 5.14.21-150400.15.142.1

  In the Linux kernel, the following vulnerability has been resolved: drm/client: Fix memory leak in drm_client_target_cloned dmt_mode is allocated and never freed in this function. It was found with the ast driver, but most drivers using generic fbdev setup are probably affected

• CVE-2023-54090Dec 24, 2025
  affected < 5.14.21-150400.15.142.1fixed 5.14.21-150400.15.142.1

  In the Linux kernel, the following vulnerability has been resolved: ixgbe: Fix panic during XDP_TX with > 64 CPUs Commit 4fe815850bdc ("ixgbe: let the xdpdrv work with more than 64 cpus") adds support to allow XDP programs to run on systems with more than 64 CPUs by locking the

• CVE-2023-54084Dec 24, 2025
  affected < 5.14.21-150400.15.142.1fixed 5.14.21-150400.15.142.1

  In the Linux kernel, the following vulnerability has been resolved: ALSA: firewire-digi00x: prevent potential use after free This code was supposed to return an error code if init_stream() failed, but it instead freed dg00x->rx_stream and returned success. This potentially lead

• CVE-2023-54083Dec 24, 2025
  affected < 5.14.21-150400.15.142.1fixed 5.14.21-150400.15.142.1

  In the Linux kernel, the following vulnerability has been resolved: phy: tegra: xusb: Clear the driver reference in usb-phy dev For the dual-role port, it will assign the phy dev to usb-phy dev and use the port dev driver as the dev driver of usb-phy. When we try to destroy th

• CVE-2023-54079Dec 24, 2025
  affected < 5.14.21-150400.15.142.1fixed 5.14.21-150400.15.142.1

  In the Linux kernel, the following vulnerability has been resolved: power: supply: bq27xxx: Fix poll_interval handling and races on remove Before this patch bq27xxx_battery_teardown() was setting poll_interval = 0 to avoid bq27xxx_battery_update() requeuing the delayed_work ite

• CVE-2023-54078Dec 24, 2025
  affected < 5.14.21-150400.15.142.1fixed 5.14.21-150400.15.142.1

  In the Linux kernel, the following vulnerability has been resolved: media: max9286: Free control handler The control handler is leaked in some probe-time error paths, as well as in the remove path. Fix it.

• CVE-2023-54076Dec 24, 2025
  affected < 5.14.21-150400.15.142.1fixed 5.14.21-150400.15.142.1

  In the Linux kernel, the following vulnerability has been resolved: smb: client: fix missed ses refcounting Use new cifs_smb_ses_inc_refcount() helper to get an active reference of @ses and @ses->dfs_root_ses (if set). This will prevent @ses->dfs_root_ses of being put in the n

• CVE-2023-54072Dec 24, 2025
  affected < 5.14.21-150400.15.142.1fixed 5.14.21-150400.15.142.1

  In the Linux kernel, the following vulnerability has been resolved: ALSA: pcm: Fix potential data race at PCM memory allocation helpers The PCM memory allocation helpers have a sanity check against too many buffer allocations. However, the check is performed without a proper l

• CVE-2023-54064Dec 24, 2025
  affected < 5.14.21-150400.15.142.1fixed 5.14.21-150400.15.142.1

  In the Linux kernel, the following vulnerability has been resolved: ipmi:ssif: Fix a memory leak when scanning for an adapter The adapter scan ssif_info_find() sets info->adapter_name if the adapter info came from SMBIOS, as it's not set in that case. However, this function ca

• CVE-2023-54058Dec 24, 2025
  affected < 5.14.21-150400.15.142.1fixed 5.14.21-150400.15.142.1

  In the Linux kernel, the following vulnerability has been resolved: firmware: arm_ffa: Check if ffa_driver remove is present before executing Currently ffa_drv->remove() is called unconditionally from ffa_device_remove(). Since the driver registration doesn't check for it and a

• CVE-2023-54055Dec 24, 2025
  affected < 5.14.21-150400.15.142.1fixed 5.14.21-150400.15.142.1

  In the Linux kernel, the following vulnerability has been resolved: RDMA/irdma: Fix memory leak of PBLE objects On rmmod of irdma, the PBLE object memory is not being freed. PBLE object memory are not statically pre-allocated at function initialization time unlike other HMC obj

• CVE-2023-54053Dec 24, 2025
  affected < 5.14.21-150400.15.142.1fixed 5.14.21-150400.15.142.1

  In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: pcie: fix possible NULL pointer dereference It is possible that iwl_pci_probe() will fail and free the trans, then afterwards iwl_pci_remove() will be called and crash by trying to access trans w

• CVE-2023-54051Dec 24, 2025
  affected < 5.14.21-150400.15.142.1fixed 5.14.21-150400.15.142.1

  In the Linux kernel, the following vulnerability has been resolved: net: do not allow gso_size to be set to GSO_BY_FRAGS One missing check in virtio_net_hdr_to_skb() allowed syzbot to crash kernels again [1] Do not allow gso_size to be set to GSO_BY_FRAGS (0xffff), because thi

• CVE-2023-54050Dec 24, 2025
  affected < 5.14.21-150400.15.142.1fixed 5.14.21-150400.15.142.1

  In the Linux kernel, the following vulnerability has been resolved: ubifs: Fix memleak when insert_old_idx() failed Following process will cause a memleak for copied up znode: dirty_cow_znode zn = copy_znode(c, znode); err = insert_old_idx(c, zbr->lnum, zbr->offs); if (u

• CVE-2023-54049Dec 24, 2025
  affected < 5.14.21-150400.15.142.1fixed 5.14.21-150400.15.142.1

  In the Linux kernel, the following vulnerability has been resolved: rpmsg: glink: Add check for kstrdup Add check for the return value of kstrdup() and return the error if it fails in order to avoid NULL pointer dereference.