rpm package

suse/kernel-source-rt&distro=SUSE Linux Enterprise Micro 5.5

pkg:rpm/suse/kernel-source-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.5

Vulnerabilities (4,559)

CVE	Sev	CVSS	Affected versions	Fixed in	Published	Description
CVE-2023-52915		—	< 5.14.21-150500.13.79.1	5.14.21-150500.13.79.1	Sep 6, 2024	In the Linux kernel, the following vulnerability has been resolved: media: dvb-usb-v2: af9035: Fix null-ptr-deref in af9035_i2c_master_xfer In af9035_i2c_master_xfer, msg is controlled by user. When msg[i].buf is null and msg[i].len is zero, former checks on msg[i].buf would be
CVE-2024-44990	Med	5.5	< 5.14.21-150500.13.73.1	5.14.21-150500.13.73.1	Sep 4, 2024	In the Linux kernel, the following vulnerability has been resolved: bonding: fix null pointer deref in bond_ipsec_offload_ok We must check if there is an active slave before dereferencing the pointer.
CVE-2024-44989	Med	5.5	< 5.14.21-150500.13.73.1	5.14.21-150500.13.73.1	Sep 4, 2024	In the Linux kernel, the following vulnerability has been resolved: bonding: fix xfrm real_dev null pointer dereference We shouldn't set real_dev to NULL because packets can be in transit and xfrm might call xdo_dev_offload_ok() in parallel. All callbacks assume real_dev is set
CVE-2024-44987	Hig	7.8	< 5.14.21-150500.13.73.1	5.14.21-150500.13.73.1	Sep 4, 2024	In the Linux kernel, the following vulnerability has been resolved: ipv6: prevent UAF in ip6_send_skb() syzbot reported an UAF in ip6_send_skb() [1] After ip6_local_out() has returned, we no longer can safely dereference rt, unless we hold rcu_read_lock(). A similar issue has
CVE-2024-44986	Hig	7.8	< 5.14.21-150500.13.73.1	5.14.21-150500.13.73.1	Sep 4, 2024	In the Linux kernel, the following vulnerability has been resolved: ipv6: fix possible UAF in ip6_finish_output2() If skb_expand_head() returns NULL, skb has been freed and associated dst/idev could also have been freed. We need to hold rcu_read_lock() to make sure the dst and
CVE-2024-44977	Hig	7.8	< 5.14.21-150500.13.73.1	5.14.21-150500.13.73.1	Sep 4, 2024	In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Validate TA binary size Add TA binary size validation to avoid OOB write. (cherry picked from commit c0a04e3570d72aaf090962156ad085e37c62e442)
CVE-2024-45008		—	< 5.14.21-150500.13.73.1	5.14.21-150500.13.73.1	Sep 4, 2024	In the Linux kernel, the following vulnerability has been resolved: Input: MT - limit max slots syzbot is reporting too large allocation at input_mt_init_slots(), for num_slots is supplied from userspace using ioctl(UI_DEV_CREATE). Since nobody knows possible max slots, this p
CVE-2024-45007		—	< 5.14.21-150500.13.73.1	5.14.21-150500.13.73.1	Sep 4, 2024	In the Linux kernel, the following vulnerability has been resolved: char: xillybus: Don't destroy workqueue from work item running on it Triggered by a kref decrement, destroy_workqueue() may be called from within a work item for destroying its own workqueue. This illegal situa
CVE-2024-45006		—	< 5.14.21-150500.13.73.1	5.14.21-150500.13.73.1	Sep 4, 2024	In the Linux kernel, the following vulnerability has been resolved: xhci: Fix Panther point NULL pointer deref at full-speed re-enumeration re-enumerating full-speed devices after a failed address device command can trigger a NULL pointer dereference. Full-speed devices may ne
CVE-2024-45003		—	< 5.14.21-150500.13.73.1	5.14.21-150500.13.73.1	Sep 4, 2024	In the Linux kernel, the following vulnerability has been resolved: vfs: Don't evict inode under the inode lru traversing context The inode reclaiming process(See function prune_icache_sb) collects all reclaimable inodes and mark them with I_FREEING flag at first, at that time,
CVE-2024-45001		—	< 5.14.21-150500.13.73.1	5.14.21-150500.13.73.1	Sep 4, 2024	In the Linux kernel, the following vulnerability has been resolved: net: mana: Fix RX buf alloc_size alignment and atomic op panic The MANA driver's RX buffer alloc_size is passed into napi_build_skb() to create SKB. skb_shinfo(skb) is located at the end of skb, and its alignme
CVE-2024-45000		—	< 5.14.21-150500.13.73.1	5.14.21-150500.13.73.1	Sep 4, 2024	In the Linux kernel, the following vulnerability has been resolved: fs/netfs/fscache_cookie: add missing "n_accesses" check This fixes a NULL pointer dereference bug due to a data race which looks like this: BUG: kernel NULL pointer dereference, address: 0000000000000008 #
CVE-2024-44999		—	< 5.14.21-150500.13.73.1	5.14.21-150500.13.73.1	Sep 4, 2024	In the Linux kernel, the following vulnerability has been resolved: gtp: pull network headers in gtp_dev_xmit() syzbot/KMSAN reported use of uninit-value in get_dev_xmit() [1] We must make sure the IPv4 or Ipv6 header is pulled in skb->head before accessing fields in them. Us
CVE-2024-44998		—	< 5.14.21-150500.13.73.1	5.14.21-150500.13.73.1	Sep 4, 2024	In the Linux kernel, the following vulnerability has been resolved: atm: idt77252: prevent use after free in dequeue_rx() We can't dereference "skb" after calling vcc->push() because the skb is released.
CVE-2024-44995		—	< 5.14.21-150500.13.79.1	5.14.21-150500.13.79.1	Sep 4, 2024	In the Linux kernel, the following vulnerability has been resolved: net: hns3: fix a deadlock problem when config TC during resetting When config TC during the reset process, may cause a deadlock, the flow is as below: pf reset start
CVE-2024-44988		—	< 5.14.21-150500.13.73.1	5.14.21-150500.13.73.1	Sep 4, 2024	In the Linux kernel, the following vulnerability has been resolved: net: dsa: mv88e6xxx: Fix out-of-bound access If an ATU violation was caused by a CPU Load operation, the SPID could be larger than DSA_MAX_PORTS (the size of mv88e6xxx_chip.ports[] array).
CVE-2024-44982		—	< 5.14.21-150500.13.73.1	5.14.21-150500.13.73.1	Sep 4, 2024	In the Linux kernel, the following vulnerability has been resolved: drm/msm/dpu: cleanup FB if dpu_format_populate_layout fails If the dpu_format_populate_layout() fails, then FB is prepared, but not cleaned up. This ends up leaking the pin_count on the GEM object and causes a
CVE-2024-44948	Med	5.5	< 5.14.21-150500.13.73.1	5.14.21-150500.13.73.1	Sep 4, 2024	In the Linux kernel, the following vulnerability has been resolved: x86/mtrr: Check if fixed MTRRs exist before saving them MTRRs have an obsolete fixed variant for fine grained caching control of the 640K-1MB region that uses separate MSRs. This fixed variant has a separate ca
CVE-2024-44971		—	< 5.14.21-150500.13.73.1	5.14.21-150500.13.73.1	Sep 4, 2024	In the Linux kernel, the following vulnerability has been resolved: net: dsa: bcm_sf2: Fix a possible memory leak in bcm_sf2_mdio_register() bcm_sf2_mdio_register() calls of_phy_find_device() and then phy_device_remove() in a loop to remove existing PHY devices. of_phy_find_dev
CVE-2024-44970		—	< 5.14.21-150500.13.73.1	5.14.21-150500.13.73.1	Sep 4, 2024	In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: SHAMPO, Fix invalid WQ linked list unlink When all the strides in a WQE have been consumed, the WQE is unlinked from the WQ linked list (mlx5_wq_ll_pop()). For SHAMPO, it is possible to receive CQEs

CVE-2023-52915Sep 6, 2024
affected < 5.14.21-150500.13.79.1fixed 5.14.21-150500.13.79.1
In the Linux kernel, the following vulnerability has been resolved: media: dvb-usb-v2: af9035: Fix null-ptr-deref in af9035_i2c_master_xfer In af9035_i2c_master_xfer, msg is controlled by user. When msg[i].buf is null and msg[i].len is zero, former checks on msg[i].buf would be
CVE-2024-44990MedSep 4, 2024
affected < 5.14.21-150500.13.73.1fixed 5.14.21-150500.13.73.1
In the Linux kernel, the following vulnerability has been resolved: bonding: fix null pointer deref in bond_ipsec_offload_ok We must check if there is an active slave before dereferencing the pointer.
CVE-2024-44989MedSep 4, 2024
affected < 5.14.21-150500.13.73.1fixed 5.14.21-150500.13.73.1
In the Linux kernel, the following vulnerability has been resolved: bonding: fix xfrm real_dev null pointer dereference We shouldn't set real_dev to NULL because packets can be in transit and xfrm might call xdo_dev_offload_ok() in parallel. All callbacks assume real_dev is set
CVE-2024-44987HigSep 4, 2024
affected < 5.14.21-150500.13.73.1fixed 5.14.21-150500.13.73.1
In the Linux kernel, the following vulnerability has been resolved: ipv6: prevent UAF in ip6_send_skb() syzbot reported an UAF in ip6_send_skb() [1] After ip6_local_out() has returned, we no longer can safely dereference rt, unless we hold rcu_read_lock(). A similar issue has
CVE-2024-44986HigSep 4, 2024
affected < 5.14.21-150500.13.73.1fixed 5.14.21-150500.13.73.1
In the Linux kernel, the following vulnerability has been resolved: ipv6: fix possible UAF in ip6_finish_output2() If skb_expand_head() returns NULL, skb has been freed and associated dst/idev could also have been freed. We need to hold rcu_read_lock() to make sure the dst and
CVE-2024-44977HigSep 4, 2024
affected < 5.14.21-150500.13.73.1fixed 5.14.21-150500.13.73.1
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Validate TA binary size Add TA binary size validation to avoid OOB write. (cherry picked from commit c0a04e3570d72aaf090962156ad085e37c62e442)
CVE-2024-45008Sep 4, 2024
affected < 5.14.21-150500.13.73.1fixed 5.14.21-150500.13.73.1
In the Linux kernel, the following vulnerability has been resolved: Input: MT - limit max slots syzbot is reporting too large allocation at input_mt_init_slots(), for num_slots is supplied from userspace using ioctl(UI_DEV_CREATE). Since nobody knows possible max slots, this p
CVE-2024-45007Sep 4, 2024
affected < 5.14.21-150500.13.73.1fixed 5.14.21-150500.13.73.1
In the Linux kernel, the following vulnerability has been resolved: char: xillybus: Don't destroy workqueue from work item running on it Triggered by a kref decrement, destroy_workqueue() may be called from within a work item for destroying its own workqueue. This illegal situa
CVE-2024-45006Sep 4, 2024
affected < 5.14.21-150500.13.73.1fixed 5.14.21-150500.13.73.1
In the Linux kernel, the following vulnerability has been resolved: xhci: Fix Panther point NULL pointer deref at full-speed re-enumeration re-enumerating full-speed devices after a failed address device command can trigger a NULL pointer dereference. Full-speed devices may ne
CVE-2024-45003Sep 4, 2024
affected < 5.14.21-150500.13.73.1fixed 5.14.21-150500.13.73.1
In the Linux kernel, the following vulnerability has been resolved: vfs: Don't evict inode under the inode lru traversing context The inode reclaiming process(See function prune_icache_sb) collects all reclaimable inodes and mark them with I_FREEING flag at first, at that time,
CVE-2024-45001Sep 4, 2024
affected < 5.14.21-150500.13.73.1fixed 5.14.21-150500.13.73.1
In the Linux kernel, the following vulnerability has been resolved: net: mana: Fix RX buf alloc_size alignment and atomic op panic The MANA driver's RX buffer alloc_size is passed into napi_build_skb() to create SKB. skb_shinfo(skb) is located at the end of skb, and its alignme
CVE-2024-45000Sep 4, 2024
affected < 5.14.21-150500.13.73.1fixed 5.14.21-150500.13.73.1
In the Linux kernel, the following vulnerability has been resolved: fs/netfs/fscache_cookie: add missing "n_accesses" check This fixes a NULL pointer dereference bug due to a data race which looks like this: BUG: kernel NULL pointer dereference, address: 0000000000000008 #
CVE-2024-44999Sep 4, 2024
affected < 5.14.21-150500.13.73.1fixed 5.14.21-150500.13.73.1
In the Linux kernel, the following vulnerability has been resolved: gtp: pull network headers in gtp_dev_xmit() syzbot/KMSAN reported use of uninit-value in get_dev_xmit() [1] We must make sure the IPv4 or Ipv6 header is pulled in skb->head before accessing fields in them. Us
CVE-2024-44998Sep 4, 2024
affected < 5.14.21-150500.13.73.1fixed 5.14.21-150500.13.73.1
In the Linux kernel, the following vulnerability has been resolved: atm: idt77252: prevent use after free in dequeue_rx() We can't dereference "skb" after calling vcc->push() because the skb is released.
CVE-2024-44995Sep 4, 2024
affected < 5.14.21-150500.13.79.1fixed 5.14.21-150500.13.79.1
In the Linux kernel, the following vulnerability has been resolved: net: hns3: fix a deadlock problem when config TC during resetting When config TC during the reset process, may cause a deadlock, the flow is as below: pf reset start
CVE-2024-44988Sep 4, 2024
affected < 5.14.21-150500.13.73.1fixed 5.14.21-150500.13.73.1
In the Linux kernel, the following vulnerability has been resolved: net: dsa: mv88e6xxx: Fix out-of-bound access If an ATU violation was caused by a CPU Load operation, the SPID could be larger than DSA_MAX_PORTS (the size of mv88e6xxx_chip.ports[] array).
CVE-2024-44982Sep 4, 2024
affected < 5.14.21-150500.13.73.1fixed 5.14.21-150500.13.73.1
In the Linux kernel, the following vulnerability has been resolved: drm/msm/dpu: cleanup FB if dpu_format_populate_layout fails If the dpu_format_populate_layout() fails, then FB is prepared, but not cleaned up. This ends up leaking the pin_count on the GEM object and causes a
CVE-2024-44948MedSep 4, 2024
affected < 5.14.21-150500.13.73.1fixed 5.14.21-150500.13.73.1
In the Linux kernel, the following vulnerability has been resolved: x86/mtrr: Check if fixed MTRRs exist before saving them MTRRs have an obsolete fixed variant for fine grained caching control of the 640K-1MB region that uses separate MSRs. This fixed variant has a separate ca
CVE-2024-44971Sep 4, 2024
affected < 5.14.21-150500.13.73.1fixed 5.14.21-150500.13.73.1
In the Linux kernel, the following vulnerability has been resolved: net: dsa: bcm_sf2: Fix a possible memory leak in bcm_sf2_mdio_register() bcm_sf2_mdio_register() calls of_phy_find_device() and then phy_device_remove() in a loop to remove existing PHY devices. of_phy_find_dev
CVE-2024-44970Sep 4, 2024
affected < 5.14.21-150500.13.73.1fixed 5.14.21-150500.13.73.1
In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: SHAMPO, Fix invalid WQ linked list unlink When all the strides in a WQE have been consumed, the WQE is unlinked from the WQ linked list (mlx5_wq_ll_pop()). For SHAMPO, it is possible to receive CQEs

Page 135 of 228