rpm package

suse/kernel-source-rt&distro=SUSE Linux Enterprise Micro 5.5

pkg:rpm/suse/kernel-source-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.5

Vulnerabilities (4,559)

CVE	Sev	CVSS	Affected versions	Fixed in	Published	Description
CVE-2024-26916		—	< 5.14.21-150500.13.58.1	5.14.21-150500.13.58.1	Apr 17, 2024	In the Linux kernel, the following vulnerability has been resolved: Revert "drm/amd: flush any delayed gfxoff on suspend entry" commit ab4750332dbe ("drm/amdgpu/sdma5.2: add begin/end_use ring callbacks") caused GFXOFF control to be used more heavily and the codepath that was r
CVE-2024-26915		—	< 5.14.21-150500.13.58.1	5.14.21-150500.13.58.1	Apr 17, 2024	In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Reset IH OVERFLOW_CLEAR bit Allows us to detect subsequent IH ring buffer overflows as well.
CVE-2023-52645		—	< 5.14.21-150500.13.52.1	5.14.21-150500.13.52.1	Apr 17, 2024	In the Linux kernel, the following vulnerability has been resolved: pmdomain: mediatek: fix race conditions with genpd If the power domains are registered first with genpd and after that the driver attempts to power them on in the probe sequence, then it is possible that a ra
CVE-2024-26907	Hig	7.8	< 5.14.21-150500.13.58.1	5.14.21-150500.13.58.1	Apr 17, 2024	In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix fortify source warning while accessing Eth segment ------------[ cut here ]------------ memcpy: detected field-spanning write (size 56) of single field "eseg->inline_hdr.start" at /var/lib/dkms
CVE-2024-26906	Med	5.5	< 5.14.21-150500.13.79.1	5.14.21-150500.13.79.1	Apr 17, 2024	In the Linux kernel, the following vulnerability has been resolved: x86/mm: Disallow vsyscall page read for copy_from_kernel_nofault() When trying to use copy_from_kernel_nofault() to read vsyscall page through a bpf program, the following oops was reported: BUG: unable to h
CVE-2024-26903	Med	5.5	< 5.14.21-150500.13.52.1	5.14.21-150500.13.52.1	Apr 17, 2024	In the Linux kernel, the following vulnerability has been resolved: Bluetooth: rfcomm: Fix null-ptr-deref in rfcomm_check_security During our fuzz testing of the connection and disconnection process at the RFCOMM layer, we discovered this bug. By comparing the packets from a no
CVE-2024-26901	Med	5.5	< 5.14.21-150500.13.52.1	5.14.21-150500.13.52.1	Apr 17, 2024	In the Linux kernel, the following vulnerability has been resolved: do_sys_name_to_handle(): use kzalloc() to fix kernel-infoleak syzbot identified a kernel information leak vulnerability in do_sys_name_to_handle() and issued the following report [1]. [1] "BUG: KMSAN: kernel-i
CVE-2024-26898	Hig	7.8	< 5.14.21-150500.13.52.1	5.14.21-150500.13.52.1	Apr 17, 2024	In the Linux kernel, the following vulnerability has been resolved: aoe: fix the potential use-after-free problem in aoecmd_cfg_pkts This patch is against CVE-2023-6270. The description of cve is: A flaw was found in the ATA over Ethernet (AoE) driver in the Linux kernel.
CVE-2024-26897	Med	4.7	< 5.14.21-150500.13.52.1	5.14.21-150500.13.52.1	Apr 17, 2024	In the Linux kernel, the following vulnerability has been resolved: wifi: ath9k: delay all of ath9k_wmi_event_tasklet() until init is complete The ath9k_wmi_event_tasklet() used in ath9k_htc assumes that all the data structures have been fully initialised by the time it runs. H
CVE-2024-26895	Hig	7.8	< 5.14.21-150500.13.52.1	5.14.21-150500.13.52.1	Apr 17, 2024	In the Linux kernel, the following vulnerability has been resolved: wifi: wilc1000: prevent use-after-free on vif when cleaning up all interfaces wilc_netdev_cleanup currently triggers a KASAN warning, which can be observed on interface registration error path, or simply by rem
CVE-2024-26894	Med	6.0	< 5.14.21-150500.13.58.1	5.14.21-150500.13.58.1	Apr 17, 2024	In the Linux kernel, the following vulnerability has been resolved: ACPI: processor_idle: Fix memory leak in acpi_processor_power_exit() After unregistering the CPU idle device, the memory associated with it is not freed, leading to a memory leak: unreferenced object 0xffff896
CVE-2024-26891	Med	5.5	< 5.14.21-150500.13.52.1	5.14.21-150500.13.52.1	Apr 17, 2024	In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Don't issue ATS Invalidation request when device is disconnected For those endpoint devices connect to system via hotplug capable ports, users could request a hot reset to the device by flapping dev
CVE-2024-26889	Med	5.5	< 5.14.21-150500.13.58.1	5.14.21-150500.13.58.1	Apr 17, 2024	In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_core: Fix possible buffer overflow struct hci_dev_info has a fixed size name[8] field so in the event that hdev->name is bigger than that strcpy would attempt to write past its size, so this fixe
CVE-2024-26886	Med	6.5	< 5.14.21-150500.13.82.1	5.14.21-150500.13.82.1	Apr 17, 2024	In the Linux kernel, the following vulnerability has been resolved: Bluetooth: af_bluetooth: Fix deadlock Attemting to do sock_lock on .recvmsg may cause a deadlock as shown bellow, so instead of using sock_sock this uses sk_receive_queue.lock on bt_sock_ioctl to avoid the UAF:
CVE-2024-26885	Hig	7.8	< 5.14.21-150500.13.52.1	5.14.21-150500.13.52.1	Apr 17, 2024	In the Linux kernel, the following vulnerability has been resolved: bpf: Fix DEVMAP_HASH overflow check on 32-bit arches The devmap code allocates a number hash buckets equal to the next power of two of the max_entries value provided when creating the map. When rounding up to t
CVE-2024-26884	Hig	7.8	< 5.14.21-150500.13.52.1	5.14.21-150500.13.52.1	Apr 17, 2024	In the Linux kernel, the following vulnerability has been resolved: bpf: Fix hashtab overflow check on 32-bit arches The hashtab code relies on roundup_pow_of_two() to compute the number of hash buckets, and contains an overflow check by checking if the resulting value is 0. Ho
CVE-2024-26883	Hig	7.8	< 5.14.21-150500.13.52.1	5.14.21-150500.13.52.1	Apr 17, 2024	In the Linux kernel, the following vulnerability has been resolved: bpf: Fix stackmap overflow check on 32-bit arches The stackmap code relies on roundup_pow_of_two() to compute the number of hash buckets, and contains an overflow check by checking if the resulting value is 0.
CVE-2024-26882	Hig	7.8	< 5.14.21-150500.13.52.1	5.14.21-150500.13.52.1	Apr 17, 2024	In the Linux kernel, the following vulnerability has been resolved: net: ip_tunnel: make sure to pull inner header in ip_tunnel_rcv() Apply the same fix than ones found in : 8d975c15c0cd ("ip6_tunnel: make sure to pull inner header in __ip6_tnl_rcv()") 1ca1ba465e55 ("geneve: m
CVE-2024-26880	Med	5.5	< 5.14.21-150500.13.58.1	5.14.21-150500.13.58.1	Apr 17, 2024	In the Linux kernel, the following vulnerability has been resolved: dm: call the resume method on internal suspend There is this reported crash when experimenting with the lvm2 testsuite. The list corruption is caused by the fact that the postsuspend and resume methods were not
CVE-2024-26878	Med	4.7	< 5.14.21-150500.13.52.1	5.14.21-150500.13.52.1	Apr 17, 2024	In the Linux kernel, the following vulnerability has been resolved: quota: Fix potential NULL pointer dereference Below race may cause NULL pointer dereference P1 P2 dquot_free_inode quota_off drop_dquot_ref remove_dquot_ref dquots = i_dquot(inode)

CVE-2024-26916Apr 17, 2024
affected < 5.14.21-150500.13.58.1fixed 5.14.21-150500.13.58.1
In the Linux kernel, the following vulnerability has been resolved: Revert "drm/amd: flush any delayed gfxoff on suspend entry" commit ab4750332dbe ("drm/amdgpu/sdma5.2: add begin/end_use ring callbacks") caused GFXOFF control to be used more heavily and the codepath that was r
CVE-2024-26915Apr 17, 2024
affected < 5.14.21-150500.13.58.1fixed 5.14.21-150500.13.58.1
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Reset IH OVERFLOW_CLEAR bit Allows us to detect subsequent IH ring buffer overflows as well.
CVE-2023-52645Apr 17, 2024
affected < 5.14.21-150500.13.52.1fixed 5.14.21-150500.13.52.1
In the Linux kernel, the following vulnerability has been resolved: pmdomain: mediatek: fix race conditions with genpd If the power domains are registered first with genpd and *after that* the driver attempts to power them on in the probe sequence, then it is possible that a ra
CVE-2024-26907HigApr 17, 2024
affected < 5.14.21-150500.13.58.1fixed 5.14.21-150500.13.58.1
In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix fortify source warning while accessing Eth segment ------------[ cut here ]------------ memcpy: detected field-spanning write (size 56) of single field "eseg->inline_hdr.start" at /var/lib/dkms
CVE-2024-26906MedApr 17, 2024
affected < 5.14.21-150500.13.79.1fixed 5.14.21-150500.13.79.1
In the Linux kernel, the following vulnerability has been resolved: x86/mm: Disallow vsyscall page read for copy_from_kernel_nofault() When trying to use copy_from_kernel_nofault() to read vsyscall page through a bpf program, the following oops was reported: BUG: unable to h
CVE-2024-26903MedApr 17, 2024
affected < 5.14.21-150500.13.52.1fixed 5.14.21-150500.13.52.1
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: rfcomm: Fix null-ptr-deref in rfcomm_check_security During our fuzz testing of the connection and disconnection process at the RFCOMM layer, we discovered this bug. By comparing the packets from a no
CVE-2024-26901MedApr 17, 2024
affected < 5.14.21-150500.13.52.1fixed 5.14.21-150500.13.52.1
In the Linux kernel, the following vulnerability has been resolved: do_sys_name_to_handle(): use kzalloc() to fix kernel-infoleak syzbot identified a kernel information leak vulnerability in do_sys_name_to_handle() and issued the following report [1]. [1] "BUG: KMSAN: kernel-i
CVE-2024-26898HigApr 17, 2024
affected < 5.14.21-150500.13.52.1fixed 5.14.21-150500.13.52.1
In the Linux kernel, the following vulnerability has been resolved: aoe: fix the potential use-after-free problem in aoecmd_cfg_pkts This patch is against CVE-2023-6270. The description of cve is: A flaw was found in the ATA over Ethernet (AoE) driver in the Linux kernel.
CVE-2024-26897MedApr 17, 2024
affected < 5.14.21-150500.13.52.1fixed 5.14.21-150500.13.52.1
In the Linux kernel, the following vulnerability has been resolved: wifi: ath9k: delay all of ath9k_wmi_event_tasklet() until init is complete The ath9k_wmi_event_tasklet() used in ath9k_htc assumes that all the data structures have been fully initialised by the time it runs. H
CVE-2024-26895HigApr 17, 2024
affected < 5.14.21-150500.13.52.1fixed 5.14.21-150500.13.52.1
In the Linux kernel, the following vulnerability has been resolved: wifi: wilc1000: prevent use-after-free on vif when cleaning up all interfaces wilc_netdev_cleanup currently triggers a KASAN warning, which can be observed on interface registration error path, or simply by rem
CVE-2024-26894MedApr 17, 2024
affected < 5.14.21-150500.13.58.1fixed 5.14.21-150500.13.58.1
In the Linux kernel, the following vulnerability has been resolved: ACPI: processor_idle: Fix memory leak in acpi_processor_power_exit() After unregistering the CPU idle device, the memory associated with it is not freed, leading to a memory leak: unreferenced object 0xffff896
CVE-2024-26891MedApr 17, 2024
affected < 5.14.21-150500.13.52.1fixed 5.14.21-150500.13.52.1
In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Don't issue ATS Invalidation request when device is disconnected For those endpoint devices connect to system via hotplug capable ports, users could request a hot reset to the device by flapping dev
CVE-2024-26889MedApr 17, 2024
affected < 5.14.21-150500.13.58.1fixed 5.14.21-150500.13.58.1
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_core: Fix possible buffer overflow struct hci_dev_info has a fixed size name[8] field so in the event that hdev->name is bigger than that strcpy would attempt to write past its size, so this fixe
CVE-2024-26886MedApr 17, 2024
affected < 5.14.21-150500.13.82.1fixed 5.14.21-150500.13.82.1
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: af_bluetooth: Fix deadlock Attemting to do sock_lock on .recvmsg may cause a deadlock as shown bellow, so instead of using sock_sock this uses sk_receive_queue.lock on bt_sock_ioctl to avoid the UAF:
CVE-2024-26885HigApr 17, 2024
affected < 5.14.21-150500.13.52.1fixed 5.14.21-150500.13.52.1
In the Linux kernel, the following vulnerability has been resolved: bpf: Fix DEVMAP_HASH overflow check on 32-bit arches The devmap code allocates a number hash buckets equal to the next power of two of the max_entries value provided when creating the map. When rounding up to t
CVE-2024-26884HigApr 17, 2024
affected < 5.14.21-150500.13.52.1fixed 5.14.21-150500.13.52.1
In the Linux kernel, the following vulnerability has been resolved: bpf: Fix hashtab overflow check on 32-bit arches The hashtab code relies on roundup_pow_of_two() to compute the number of hash buckets, and contains an overflow check by checking if the resulting value is 0. Ho
CVE-2024-26883HigApr 17, 2024
affected < 5.14.21-150500.13.52.1fixed 5.14.21-150500.13.52.1
In the Linux kernel, the following vulnerability has been resolved: bpf: Fix stackmap overflow check on 32-bit arches The stackmap code relies on roundup_pow_of_two() to compute the number of hash buckets, and contains an overflow check by checking if the resulting value is 0.
CVE-2024-26882HigApr 17, 2024
affected < 5.14.21-150500.13.52.1fixed 5.14.21-150500.13.52.1
In the Linux kernel, the following vulnerability has been resolved: net: ip_tunnel: make sure to pull inner header in ip_tunnel_rcv() Apply the same fix than ones found in : 8d975c15c0cd ("ip6_tunnel: make sure to pull inner header in __ip6_tnl_rcv()") 1ca1ba465e55 ("geneve: m
CVE-2024-26880MedApr 17, 2024
affected < 5.14.21-150500.13.58.1fixed 5.14.21-150500.13.58.1
In the Linux kernel, the following vulnerability has been resolved: dm: call the resume method on internal suspend There is this reported crash when experimenting with the lvm2 testsuite. The list corruption is caused by the fact that the postsuspend and resume methods were not
CVE-2024-26878MedApr 17, 2024
affected < 5.14.21-150500.13.52.1fixed 5.14.21-150500.13.52.1
In the Linux kernel, the following vulnerability has been resolved: quota: Fix potential NULL pointer dereference Below race may cause NULL pointer dereference P1 P2 dquot_free_inode quota_off drop_dquot_ref remove_dquot_ref dquots = i_dquot(inode)

Page 205 of 228