VYPR

rpm package

suse/kernel-source-rt&distro=SUSE Linux Enterprise Micro 5.5

pkg:rpm/suse/kernel-source-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.5

Vulnerabilities (4,559)

  • CVE-2022-50047Jun 18, 2025
    affected < 5.14.21-150500.13.100.1fixed 5.14.21-150500.13.100.1

    In the Linux kernel, the following vulnerability has been resolved: net: dsa: mv88e6060: prevent crash on an unused port If the port isn't a CPU port nor a user port, 'cpu_dp' is a null pointer and a crash happened on dereferencing it in mv88e6060_setup_port(): [ 9.575872]

  • CVE-2022-50046Jun 18, 2025
    affected < 5.14.21-150500.13.100.1fixed 5.14.21-150500.13.100.1

    In the Linux kernel, the following vulnerability has been resolved: net/sunrpc: fix potential memory leaks in rpc_sysfs_xprt_state_change() The issue happens on some error handling paths. When the function fails to grab the object `xprt`, it simply returns 0, forgetting to decr

  • CVE-2022-50045Jun 18, 2025
    affected < 5.14.21-150500.13.100.1fixed 5.14.21-150500.13.100.1

    In the Linux kernel, the following vulnerability has been resolved: powerpc/pci: Fix get_phb_number() locking The recent change to get_phb_number() causes a DEBUG_ATOMIC_SLEEP warning on some systems: BUG: sleeping function called from invalid context at kernel/locking/mutex

  • CVE-2022-50044Jun 18, 2025
    affected < 5.14.21-150500.13.100.1fixed 5.14.21-150500.13.100.1

    In the Linux kernel, the following vulnerability has been resolved: net: qrtr: start MHI channel after endpoit creation MHI channel may generates event/interrupt right after enabling. It may leads to 2 race conditions issues. 1) Such event may be dropped by qcom_mhi_qrtr_dl_ca

  • CVE-2022-50041Jun 18, 2025
    affected < 5.14.21-150500.13.100.1fixed 5.14.21-150500.13.100.1

    In the Linux kernel, the following vulnerability has been resolved: ice: Fix call trace with null VSI during VF reset During stress test with attaching and detaching VF from KVM and simultaneously changing VFs spoofcheck and trust there was a call trace in ice_reset_vf that VF'

  • CVE-2022-50040Jun 18, 2025
    affected < 5.14.21-150500.13.100.1fixed 5.14.21-150500.13.100.1

    In the Linux kernel, the following vulnerability has been resolved: net: dsa: sja1105: fix buffer overflow in sja1105_setup_devlink_regions() If an error occurs in dsa_devlink_region_create(), then 'priv->regions' array will be accessed by negative index '-1'. Found by Linux V

  • CVE-2022-50039Jun 18, 2025
    affected < 5.14.21-150500.13.100.1fixed 5.14.21-150500.13.100.1

    In the Linux kernel, the following vulnerability has been resolved: stmmac: intel: Add a missing clk_disable_unprepare() call in intel_eth_pci_remove() Commit 09f012e64e4b ("stmmac: intel: Fix clock handling on error and remove paths") removed this clk_disable_unprepare() This

  • CVE-2022-50038Jun 18, 2025
    affected < 5.14.21-150500.13.100.1fixed 5.14.21-150500.13.100.1

    In the Linux kernel, the following vulnerability has been resolved: drm/meson: Fix refcount bugs in meson_vpu_has_available_connectors() In this function, there are two refcount leak bugs: (1) when breaking out of for_each_endpoint_of_node(), we need call the of_node_put() for

  • CVE-2022-50037Jun 18, 2025
    affected < 5.14.21-150500.13.100.1fixed 5.14.21-150500.13.100.1

    In the Linux kernel, the following vulnerability has been resolved: drm/i915/ttm: don't leak the ccs state The kernel only manages the ccs state with lmem-only objects, however the kernel should still take care not to leak the CCS state from the previous user. (cherry picked f

  • CVE-2022-50036Jun 18, 2025
    affected < 5.14.21-150500.13.100.1fixed 5.14.21-150500.13.100.1

    In the Linux kernel, the following vulnerability has been resolved: drm/sun4i: dsi: Prevent underflow when computing packet sizes Currently, the packet overhead is subtracted using unsigned arithmetic. With a short sync pulse, this could underflow and wrap around to near the ma

  • CVE-2022-50035Jun 18, 2025
    affected < 5.14.21-150500.13.100.1fixed 5.14.21-150500.13.100.1

    In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix use-after-free on amdgpu_bo_list mutex If amdgpu_cs_vm_handling returns r != 0, then it will unlock the bo_list_mutex inside the function amdgpu_cs_vm_handling and again on amdgpu_cs_parser_fini

  • CVE-2022-50034Jun 18, 2025
    affected < 5.14.21-150500.13.100.1fixed 5.14.21-150500.13.100.1

    In the Linux kernel, the following vulnerability has been resolved: usb: cdns3 fix use-after-free at workaround 2 BUG: KFENCE: use-after-free read in __list_del_entry_valid+0x10/0xac cdns3_wa2_remove_old_request() { ... kfree(priv_req->request.buf); cdns3_gadget_ep_free_req

  • CVE-2022-50033Jun 18, 2025
    affected < 5.14.21-150500.13.100.1fixed 5.14.21-150500.13.100.1

    In the Linux kernel, the following vulnerability has been resolved: usb: host: ohci-ppc-of: Fix refcount leak bug In ohci_hcd_ppc_of_probe(), of_find_compatible_node() will return a node pointer with refcount incremented. We should use of_node_put() when it is not used anymore.

  • CVE-2022-50032Jun 18, 2025
    affected < 5.14.21-150500.13.100.1fixed 5.14.21-150500.13.100.1

    In the Linux kernel, the following vulnerability has been resolved: usb: renesas: Fix refcount leak bug In usbhs_rza1_hardware_init(), of_find_node_by_name() will return a node pointer with refcount incremented. We should use of_node_put() when it is not used anymore.

  • CVE-2022-50030Jun 18, 2025
    affected < 5.14.21-150500.13.100.1fixed 5.14.21-150500.13.100.1

    In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Prevent buffer overflow crashes in debugfs with malformed user input Malformed user input to debugfs results in buffer overflow crashes. Adapt input string lengths to fit within internal buffers, l

  • CVE-2022-50029Jun 18, 2025
    affected < 5.14.21-150500.13.100.1fixed 5.14.21-150500.13.100.1

    In the Linux kernel, the following vulnerability has been resolved: clk: qcom: ipq8074: dont disable gcc_sleep_clk_src Once the usb sleep clocks are disabled, clock framework is trying to disable the sleep clock source also. However, it seems that it cannot be disabled and try

  • CVE-2022-50028Jun 18, 2025
    affected < 5.14.21-150500.13.100.1fixed 5.14.21-150500.13.100.1

    In the Linux kernel, the following vulnerability has been resolved: gadgetfs: ep_io - wait until IRQ finishes after usb_ep_queue() if wait_for_completion_interruptible() is interrupted we need to wait until IRQ gets finished. Otherwise complete() from epio_complete() can corru

  • CVE-2022-50027Jun 18, 2025
    affected < 5.14.21-150500.13.100.1fixed 5.14.21-150500.13.100.1

    In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix possible memory leak when failing to issue CMF WQE There is no corresponding free routine if lpfc_sli4_issue_wqe fails to issue the CMF WQE in lpfc_issue_cmf_sync_wqe. If ret_val is non-zero, t

  • CVE-2022-50026Jun 18, 2025
    affected < 5.14.21-150500.13.100.1fixed 5.14.21-150500.13.100.1

    In the Linux kernel, the following vulnerability has been resolved: habanalabs/gaudi: fix shift out of bounds When validating NIC queues, queue offset calculation must be performed only for NIC queues.

  • CVE-2022-50024Jun 18, 2025
    affected < 5.14.21-150500.13.100.1fixed 5.14.21-150500.13.100.1

    In the Linux kernel, the following vulnerability has been resolved: dmaengine: dw-axi-dmac: do not print NULL LLI during error During debugging we have seen an issue where axi_chan_dump_lli() is passed a NULL LLI pointer which ends up causing an OOPS due to trying to get fields

Page 59 of 228