suse/kernel-source-rt&distro=SUSE Linux Enterprise Micro 5.5

Vulnerabilities (4,559)

• CVE-2024-50148MedNov 7, 2024
  affected < 5.14.21-150500.13.79.1fixed 5.14.21-150500.13.79.1

  In the Linux kernel, the following vulnerability has been resolved: Bluetooth: bnep: fix wild-memory-access in proto_unregister There's issue as follows: KASAN: maybe wild-memory-access in range [0xdead...108-0xdead...10f] CPU: 3 UID: 0 PID: 2805 Comm: rmmod Tainted: G

• CVE-2024-50142MedNov 7, 2024
  affected < 5.14.21-150500.13.85.1fixed 5.14.21-150500.13.85.1

  In the Linux kernel, the following vulnerability has been resolved: xfrm: validate new SA's prefixlen using SA family when sel.family is unset This expands the validation introduced in commit 07bf7908950a ("xfrm: Validate address prefix lengths in the xfrm selector.") syzbot c

• CVE-2024-50171Nov 7, 2024
  affected < 5.14.21-150500.13.79.1fixed 5.14.21-150500.13.79.1

  In the Linux kernel, the following vulnerability has been resolved: net: systemport: fix potential memory leak in bcm_sysport_xmit() The bcm_sysport_xmit() returns NETDEV_TX_OK without freeing skb in case of dma_map_single() fails, add dev_kfree_skb() to fix it.

• CVE-2024-50167Nov 7, 2024
  affected < 5.14.21-150500.13.79.1fixed 5.14.21-150500.13.79.1

  In the Linux kernel, the following vulnerability has been resolved: be2net: fix potential memory leak in be_xmit() The be_xmit() returns NETDEV_TX_OK without freeing skb in case of be_xmit_enqueue() fails, add dev_kfree_skb_any() to fix it.

• CVE-2024-50166Nov 7, 2024
  affected < 5.14.21-150500.13.82.1fixed 5.14.21-150500.13.82.1

  In the Linux kernel, the following vulnerability has been resolved: fsl/fman: Fix refcount handling of fman-related devices In mac_probe() there are multiple calls to of_find_device_by_node(), fman_bind() and fman_port_bind() which takes references to of_dev->dev. Not all refer

• CVE-2024-50160Nov 7, 2024
  affected < 5.14.21-150500.13.79.1fixed 5.14.21-150500.13.79.1

  In the Linux kernel, the following vulnerability has been resolved: ALSA: hda/cs8409: Fix possible NULL dereference If snd_hda_gen_add_kctl fails to allocate memory and returns NULL, then NULL pointer dereference will occur in the next line. Since dolphin_fixups function is a

• CVE-2024-50156Nov 7, 2024
  affected < 5.14.21-150500.13.79.1fixed 5.14.21-150500.13.79.1

  In the Linux kernel, the following vulnerability has been resolved: drm/msm: Avoid NULL dereference in msm_disp_state_print_regs() If the allocation in msm_disp_state_dump_regs() failed then `block->state` can be NULL. The msm_disp_state_print_regs() function _does_ have code t

• CVE-2024-50155Nov 7, 2024
  affected < 5.14.21-150500.13.79.1fixed 5.14.21-150500.13.79.1

  In the Linux kernel, the following vulnerability has been resolved: netdevsim: use cond_resched() in nsim_dev_trap_report_work() I am still seeing many syzbot reports hinting that syzbot might fool nsim_dev_trap_report_work() with hundreds of ports [1] Lets use cond_resched(),

• CVE-2024-50154Nov 7, 2024
  affected < 5.14.21-150500.13.79.1fixed 5.14.21-150500.13.79.1

  In the Linux kernel, the following vulnerability has been resolved: tcp/dccp: Don't use timer_pending() in reqsk_queue_unlink(). Martin KaFai Lau reported use-after-free [0] in reqsk_timer_handler(). """ We are seeing a use-after-free from a bpf prog attached to trace_tc

• CVE-2024-50147Nov 7, 2024
  affected < 5.14.21-150500.13.79.1fixed 5.14.21-150500.13.79.1

  In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix command bitmask initialization Command bitmask have a dedicated bit for MANAGE_PAGES command, this bit isn't Initialize during command bitmask Initialization, only during MANAGE_PAGES. In additio

• CVE-2024-50146Nov 7, 2024
  affected < 5.14.21-150500.13.79.1fixed 5.14.21-150500.13.79.1

  In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Don't call cleanup on profile rollback failure When profile rollback fails in mlx5e_netdev_change_profile, the netdev profile var is left set to NULL. Avoid a crash when unloading the driver by not c

• CVE-2024-50143Nov 7, 2024
  affected < 5.14.21-150500.13.82.1fixed 5.14.21-150500.13.82.1

  In the Linux kernel, the following vulnerability has been resolved: udf: fix uninit-value use in udf_get_fileshortad Check for overflow when computing alen in udf_current_aext to mitigate later uninit-value use in udf_get_fileshortad KMSAN bug[1]. After applying the patch repro

• CVE-2024-50141Nov 7, 2024
  affected < 5.14.21-150500.13.79.1fixed 5.14.21-150500.13.79.1

  In the Linux kernel, the following vulnerability has been resolved: ACPI: PRM: Find EFI_MEMORY_RUNTIME block for PRM handler and context PRMT needs to find the correct type of block to translate the PA-VA mapping for EFI runtime services. The issue arises because the PRMT is f

• CVE-2024-50134MedNov 5, 2024
  affected < 5.14.21-150500.13.79.1fixed 5.14.21-150500.13.79.1

  In the Linux kernel, the following vulnerability has been resolved: drm/vboxvideo: Replace fake VLA at end of vbva_mouse_pointer_shape with real VLA Replace the fake VLA at end of the vbva_mouse_pointer_shape shape with a real VLA to fix a "memcpy: detected field-spanning write

• CVE-2024-50131HigNov 5, 2024
  affected < 5.14.21-150500.13.79.1fixed 5.14.21-150500.13.79.1

  In the Linux kernel, the following vulnerability has been resolved: tracing: Consider the NULL character when validating the event length strlen() returns a string length excluding the null byte. If the string length equals to the maximum buffer length, the buffer will have no

• CVE-2024-50127HigNov 5, 2024
  affected < 5.14.21-150500.13.79.1fixed 5.14.21-150500.13.79.1

  In the Linux kernel, the following vulnerability has been resolved: net: sched: fix use-after-free in taprio_change() In 'taprio_change()', 'admin' pointer may become dangling due to sched switch / removal caused by 'advance_sched()', and critical section protected by 'q->curre

• CVE-2024-50095MedNov 5, 2024
  affected < 5.14.21-150500.13.79.1fixed 5.14.21-150500.13.79.1

  In the Linux kernel, the following vulnerability has been resolved: RDMA/mad: Improve handling of timed out WRs of mad agent Current timeout handler of mad agent acquires/releases mad_agent_priv lock for every timed out WRs. This causes heavy locking contention when higher no.

• CVE-2024-50138Nov 5, 2024
  affected < 5.14.21-150500.13.79.1fixed 5.14.21-150500.13.79.1

  In the Linux kernel, the following vulnerability has been resolved: bpf: Use raw_spinlock_t in ringbuf The function __bpf_ringbuf_reserve is invoked from a tracepoint, which disables preemption. Using spinlock_t in this context can lead to a "sleep in atomic" warning in the RT

• CVE-2024-50136Nov 5, 2024
  affected < 5.14.21-150500.13.85.1fixed 5.14.21-150500.13.85.1

  In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Unregister notifier on eswitch init failure It otherwise remains registered and a subsequent attempt at eswitch enabling might trigger warnings of the sort: [ 682.589148] ------------[ cut here ]---

• CVE-2024-50135Nov 5, 2024
  affected < 5.14.21-150500.13.79.1fixed 5.14.21-150500.13.79.1

  In the Linux kernel, the following vulnerability has been resolved: nvme-pci: fix race condition between reset and nvme_dev_disable() nvme_dev_disable() modifies the dev->online_queues field, therefore nvme_pci_update_nr_queues() should avoid racing against it, otherwise we cou