VYPR

rpm package

suse/kernel-source-rt&distro=SUSE Linux Enterprise Micro 5.5

pkg:rpm/suse/kernel-source-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.5

Vulnerabilities (4,559)

  • CVE-2022-50248Sep 15, 2025
    affected < 5.14.21-150500.13.109.1fixed 5.14.21-150500.13.109.1

    In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: fix double free on tx path. We see kernel crashes and lockups and KASAN errors related to ax210 firmware crashes. One of the KASAN dumps pointed at the tx path, and it appears there is inde

  • CVE-2022-50247Sep 15, 2025
    affected < 5.14.21-150500.13.109.1fixed 5.14.21-150500.13.109.1

    In the Linux kernel, the following vulnerability has been resolved: usb: xhci-mtk: fix leakage of shared hcd when fail to set wakeup irq Can not set the @shared_hcd to NULL before decrease the usage count by usb_put_hcd(), this will cause the shared hcd not released.

  • CVE-2022-50246Sep 15, 2025
    affected < 5.14.21-150500.13.109.1fixed 5.14.21-150500.13.109.1

    In the Linux kernel, the following vulnerability has been resolved: usb: typec: tcpci: fix of node refcount leak in tcpci_register_port() I got the following report while doing device(mt6370-tcpc) load test with CONFIG_OF_UNITTEST and CONFIG_OF_DYNAMIC enabled: OF: ERROR: me

  • CVE-2022-50242Sep 15, 2025
    affected < 5.14.21-150500.13.109.1fixed 5.14.21-150500.13.109.1

    In the Linux kernel, the following vulnerability has been resolved: drivers: net: qlcnic: Fix potential memory leak in qlcnic_sriov_init() If vp alloc failed in qlcnic_sriov_init(), all previously allocated vp needs to be freed.

  • CVE-2022-50241Sep 15, 2025
    affected < 5.14.21-150500.13.109.1fixed 5.14.21-150500.13.109.1

    In the Linux kernel, the following vulnerability has been resolved: NFSD: fix use-after-free on source server when doing inter-server copy Use-after-free occurred when the laundromat tried to free expired cpntf_state entry on the s2s_cp_stateids list after inter-server copy com

  • CVE-2022-50239Sep 15, 2025
    affected < 5.14.21-150500.13.109.1fixed 5.14.21-150500.13.109.1

    In the Linux kernel, the following vulnerability has been resolved: cpufreq: qcom: fix writes in read-only memory region This commit fixes a kernel oops because of a write in some read-only memory: [ 9.068287] Unable to handle kernel write to read-only memory at virtual ad

  • CVE-2022-50235Sep 15, 2025
    affected < 5.14.21-150500.13.109.1fixed 5.14.21-150500.13.109.1

    In the Linux kernel, the following vulnerability has been resolved: NFSD: Protect against send buffer overflow in NFSv2 READDIR Restore the previous limit on the @count argument to prevent a buffer overflow attack.

  • CVE-2022-50234Sep 15, 2025
    affected < 5.14.21-150500.13.109.1fixed 5.14.21-150500.13.109.1

    In the Linux kernel, the following vulnerability has been resolved: io_uring/af_unix: defer registered files gc to io_uring release Instead of putting io_uring's registered files in unix_gc() we want it to be done by io_uring itself. The trick here is to consider io_uring regis

  • CVE-2025-39797Sep 12, 2025
    affected < 5.14.21-150500.13.112.1fixed 5.14.21-150500.13.112.1

    In the Linux kernel, the following vulnerability has been resolved: xfrm: Duplicate SPI Handling The issue originates when Strongswan initiates an XFRM_MSG_ALLOCSPI Netlink message, which triggers the kernel function xfrm_alloc_spi(). This function is expected to ensure uniquen

  • CVE-2025-40300MedSep 11, 2025
    affected < 5.14.21-150500.13.121.1fixed 5.14.21-150500.13.121.1

    In the Linux kernel, the following vulnerability has been resolved: x86/vmscape: Add conditional IBPB mitigation VMSCAPE is a vulnerability that exploits insufficient branch predictor isolation between a guest and a userspace hypervisor (like QEMU). Existing mitigations already

  • CVE-2025-39790HigSep 11, 2025
    affected < 5.14.21-150500.13.109.1fixed 5.14.21-150500.13.109.1

    In the Linux kernel, the following vulnerability has been resolved: bus: mhi: host: Detect events pointing to unexpected TREs When a remote device sends a completion event to the host, it contains a pointer to the consumed TRE. The host uses this pointer to process all of the T

  • CVE-2025-39742MedSep 11, 2025
    affected < 5.14.21-150500.13.112.1fixed 5.14.21-150500.13.112.1

    In the Linux kernel, the following vulnerability has been resolved: RDMA: hfi1: fix possible divide-by-zero in find_hw_thread_mask() The function divides number of online CPUs by num_core_siblings, and later checks the divider by zero. This implies a possibility to get and divi

  • CVE-2025-39746Sep 11, 2025
    affected < 5.14.21-150500.13.109.1fixed 5.14.21-150500.13.109.1

    In the Linux kernel, the following vulnerability has been resolved: wifi: ath10k: shutdown driver when hardware is unreliable In rare cases, ath10k may lose connection with the PCIe bus due to some unknown reasons, which could further lead to system crashes during resuming due

  • CVE-2025-39703MedSep 5, 2025
    affected < 5.14.21-150500.13.109.1fixed 5.14.21-150500.13.109.1

    In the Linux kernel, the following vulnerability has been resolved: net, hsr: reject HSR frame if skb can't hold tag Receiving HSR frame with insufficient space to hold HSR tag in the skb can result in a crash (kernel BUG): [ 45.390915] skbuff: skb_under_panic: text:ffffffff

  • CVE-2025-39691HigSep 5, 2025
    affected < 5.14.21-150500.13.109.1fixed 5.14.21-150500.13.109.1

    In the Linux kernel, the following vulnerability has been resolved: fs/buffer: fix use-after-free when call bh_read() helper There's issue as follows: BUG: KASAN: stack-out-of-bounds in end_buffer_read_sync+0xe3/0x110 Read of size 8 at addr ffffc9000168f7f8 by task swapper/3/0

  • CVE-2025-39726Sep 5, 2025
    affected < 5.14.21-150500.13.109.1fixed 5.14.21-150500.13.109.1

    In the Linux kernel, the following vulnerability has been resolved: s390/ism: fix concurrency management in ism_cmd() The s390x ISM device data sheet clearly states that only one request-response sequence is allowable per ISM function at any point in time. Unfortunately as of

  • CVE-2025-38734Sep 5, 2025
    affected < 5.14.21-150500.13.109.1fixed 5.14.21-150500.13.109.1

    In the Linux kernel, the following vulnerability has been resolved: net/smc: fix UAF on smcsk after smc_listen_out() BPF CI testing report a UAF issue: [ 16.446633] BUG: kernel NULL pointer dereference, address: 000000000000003 0 [ 16.447134] #PF: supervisor read acce

  • CVE-2025-38713HigSep 4, 2025
    affected < 5.14.21-150500.13.109.1fixed 5.14.21-150500.13.109.1

    In the Linux kernel, the following vulnerability has been resolved: hfsplus: fix slab-out-of-bounds read in hfsplus_uni2asc() The hfsplus_readdir() method is capable to crash by calling hfsplus_uni2asc(): [ 667.121659][ T9805] =================================================

  • CVE-2025-38706MedSep 4, 2025
    affected < 5.14.21-150500.13.109.1fixed 5.14.21-150500.13.109.1

    In the Linux kernel, the following vulnerability has been resolved: ASoC: core: Check for rtd == NULL in snd_soc_remove_pcm_runtime() snd_soc_remove_pcm_runtime() might be called with rtd == NULL which will leads to null pointer dereference. This was reproduced with topology lo

  • CVE-2025-38685HigSep 4, 2025
    affected < 5.14.21-150500.13.109.1fixed 5.14.21-150500.13.109.1

    In the Linux kernel, the following vulnerability has been resolved: fbdev: Fix vmalloc out-of-bounds write in fast_imageblit This issue triggers when a userspace program does an ioctl FBIOPUT_CON2FBMAP by passing console number and frame buffer number. Ideally this maps console

Page 49 of 228