VYPR

rpm package

suse/kernel-source-rt&distro=SUSE Linux Enterprise Micro 5.5

pkg:rpm/suse/kernel-source-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.5

Vulnerabilities (4,559)

  • CVE-2024-49959Oct 21, 2024
    affected < 5.14.21-150500.13.76.1fixed 5.14.21-150500.13.76.1

    In the Linux kernel, the following vulnerability has been resolved: jbd2: stop waiting for space when jbd2_cleanup_journal_tail() returns error In __jbd2_log_wait_for_space(), we might call jbd2_cleanup_journal_tail() to recover some journal space. But if an error occurs while

  • CVE-2024-49958Oct 21, 2024
    affected < 5.14.21-150500.13.76.1fixed 5.14.21-150500.13.76.1

    In the Linux kernel, the following vulnerability has been resolved: ocfs2: reserve space for inline xattr before attaching reflink tree One of our customers reported a crash and a corrupted ocfs2 filesystem. The crash was due to the detection of corruption. Upon troubleshooti

  • CVE-2024-49957Oct 21, 2024
    affected < 5.14.21-150500.13.79.1fixed 5.14.21-150500.13.79.1

    In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix null-ptr-deref when journal load failed. During the mounting process, if journal_reset() fails because of too short journal, then lead to jbd2_journal_load() fails with NULL j_sb_buffer. Subsequentl

  • CVE-2024-49954Oct 21, 2024
    affected < 5.14.21-150500.13.76.1fixed 5.14.21-150500.13.76.1

    In the Linux kernel, the following vulnerability has been resolved: static_call: Replace pointless WARN_ON() in static_call_module_notify() static_call_module_notify() triggers a WARN_ON(), when memory allocation fails in __static_call_add_module(). That's not really justified

  • CVE-2024-49947Oct 21, 2024
    affected < 5.14.21-150500.13.79.1fixed 5.14.21-150500.13.79.1

    In the Linux kernel, the following vulnerability has been resolved: net: test for not too small csum_start in virtio_net_hdr_to_skb() syzbot was able to trigger this warning [1], after injecting a malicious packet through af_packet, setting skb->csum_start and thus the transpor

  • CVE-2024-49946Oct 21, 2024
    affected < 5.14.21-150500.13.76.1fixed 5.14.21-150500.13.76.1

    In the Linux kernel, the following vulnerability has been resolved: ppp: do not assume bh is held in ppp_channel_bridge_input() Networking receive path is usually handled from BH handler. However, some protocols need to acquire the socket lock, and packets might be stored in th

  • CVE-2024-49945Oct 21, 2024
    affected < 5.14.21-150500.13.79.1fixed 5.14.21-150500.13.79.1

    In the Linux kernel, the following vulnerability has been resolved: net/ncsi: Disable the ncsi work before freeing the associated structure The work function can run after the ncsi device is freed, resulting in use-after-free bugs or kernel panic.

  • CVE-2024-49939Oct 21, 2024
    affected < 5.14.21-150500.13.76.1fixed 5.14.21-150500.13.76.1

    In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: avoid to add interface to list twice when SER If SER L2 occurs during the WoWLAN resume flow, the add interface flow is triggered by ieee80211_reconfig(). However, due to rtw89_wow_resume() return

  • CVE-2024-49936Oct 21, 2024
    affected < 5.14.21-150500.13.76.1fixed 5.14.21-150500.13.76.1

    In the Linux kernel, the following vulnerability has been resolved: net/xen-netback: prevent UAF in xenvif_flush_hash() During the list_for_each_entry_rcu iteration call of xenvif_flush_hash, kfree_rcu does not exist inside the rcu read critical section, so if kfree_rcu is call

  • CVE-2024-49935Oct 21, 2024
    affected < 5.14.21-150500.13.79.1fixed 5.14.21-150500.13.79.1

    In the Linux kernel, the following vulnerability has been resolved: ACPI: PAD: fix crash in exit_round_robin() The kernel occasionally crashes in cpumask_clear_cpu(), which is called within exit_round_robin(), because when executing clear_bit(nr, addr) with nr set to 0xffffffff

  • CVE-2024-49934Oct 21, 2024
    affected < 5.14.21-150500.13.79.1fixed 5.14.21-150500.13.79.1

    In the Linux kernel, the following vulnerability has been resolved: fs/inode: Prevent dump_mapping() accessing invalid dentry.d_name.name It's observed that a crash occurs during hot-remove a memory device, in which user is accessing the hugetlb. See calltrace as following: --

  • CVE-2024-49933Oct 21, 2024
    affected < 5.14.21-150500.13.76.1fixed 5.14.21-150500.13.76.1

    In the Linux kernel, the following vulnerability has been resolved: blk_iocost: fix more out of bound shifts Recently running UBSAN caught few out of bound shifts in the ioc_forgive_debts() function: UBSAN: shift-out-of-bounds in block/blk-iocost.c:2142:38 shift exponent 80 is

  • CVE-2024-49929Oct 21, 2024
    affected < 5.14.21-150500.13.76.1fixed 5.14.21-150500.13.76.1

    In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: avoid NULL pointer dereference iwl_mvm_tx_skb_sta() and iwl_mvm_tx_mpdu() verify that the mvmvsta pointer is not NULL. It retrieves this pointer using iwl_mvm_sta_from_mac80211, which is der

  • CVE-2024-49923Oct 21, 2024
    affected < 5.14.21-150500.13.76.1fixed 5.14.21-150500.13.76.1

    In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Pass non-null to dcn20_validate_apply_pipe_split_flags [WHAT & HOW] "dcn20_validate_apply_pipe_split_flags" dereferences merge, and thus it cannot be a null pointer. Let's pass a valid pointer

  • CVE-2024-49922Oct 21, 2024
    affected < 5.14.21-150500.13.76.1fixed 5.14.21-150500.13.76.1

    In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check null pointers before using them [WHAT & HOW] These pointers are null checked previously in the same function, indicating they might be null as reported by Coverity. As a result, they need

  • CVE-2024-49921Oct 21, 2024
    affected < 5.14.21-150500.13.79.1fixed 5.14.21-150500.13.79.1

    In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check null pointers before used [WHAT & HOW] Poniters, such as dc->clk_mgr, are null checked previously in the same function, so Coverity warns "implies that "dc->clk_mgr" might be null". As a

  • CVE-2024-49920Oct 21, 2024
    affected < 5.14.21-150500.13.76.1fixed 5.14.21-150500.13.76.1

    In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check null pointers before multiple uses [WHAT & HOW] Poniters, such as stream_enc and dc->bw_vbios, are null checked previously in the same function, so Coverity warns "implies that stream_enc

  • CVE-2024-49919Oct 21, 2024
    affected < 5.14.21-150500.13.76.1fixed 5.14.21-150500.13.76.1

    In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add null check for head_pipe in dcn201_acquire_free_pipe_for_layer This commit addresses a potential null pointer dereference issue in the `dcn201_acquire_free_pipe_for_layer` function. The iss

  • CVE-2024-49918Oct 21, 2024
    affected < 5.14.21-150500.13.76.1fixed 5.14.21-150500.13.76.1

    In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add null check for head_pipe in dcn32_acquire_idle_pipe_for_head_pipe_in_layer This commit addresses a potential null pointer dereference issue in the `dcn32_acquire_idle_pipe_for_head_pipe_in_

  • CVE-2024-49917Oct 21, 2024
    affected < 5.14.21-150500.13.76.1fixed 5.14.21-150500.13.76.1

    In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add NULL check for clk_mgr and clk_mgr->funcs in dcn30_init_hw This commit addresses a potential null pointer dereference issue in the `dcn30_init_hw` function. The issue could occur when `dc->

Page 124 of 228