VYPR

rpm package

suse/kernel-source-rt&distro=SUSE Linux Enterprise Micro 5.5

pkg:rpm/suse/kernel-source-rt&distro=SUSE%20Linux%20Enterprise%20Micro%205.5

Vulnerabilities (4,559)

  • CVE-2023-53073May 2, 2025
    affected < 5.14.21-150500.13.97.1fixed 5.14.21-150500.13.97.1

    In the Linux kernel, the following vulnerability has been resolved: perf/x86/amd/core: Always clear status for idx The variable 'status' (which contains the unhandled overflow bits) is not being properly masked in some cases, displaying the following warning: WARNING: CPU: 1

  • CVE-2023-53071May 2, 2025
    affected < 5.14.21-150500.13.97.1fixed 5.14.21-150500.13.97.1

    In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: do not run mt76_unregister_device() on unregistered hw Trying to probe a mt7921e pci card without firmware results in a successful probe where ieee80211_register_hw hasn't been called. When removing

  • CVE-2023-53070May 2, 2025
    affected < 5.14.21-150500.13.97.1fixed 5.14.21-150500.13.97.1

    In the Linux kernel, the following vulnerability has been resolved: ACPI: PPTT: Fix to avoid sleep in the atomic context when PPTT is absent Commit 0c80f9e165f8 ("ACPI: PPTT: Leave the table mapped for the runtime usage") enabled to map PPTT once on the first invocation of acpi

  • CVE-2023-53068May 2, 2025
    affected < 5.14.21-150500.13.97.1fixed 5.14.21-150500.13.97.1

    In the Linux kernel, the following vulnerability has been resolved: net: usb: lan78xx: Limit packet length to skb->len Packet length retrieved from descriptor may be larger than the actual socket buffer length. In such case the cloned skb passed up the network stack will leak k

  • CVE-2023-53066May 2, 2025
    affected < 5.14.21-150500.13.97.1fixed 5.14.21-150500.13.97.1

    In the Linux kernel, the following vulnerability has been resolved: qed/qed_sriov: guard against NULL derefs from qed_iov_get_vf_info We have to make sure that the info returned by the helper is valid before using it. Found by Linux Verification Center (linuxtesting.org) with

  • CVE-2023-53065May 2, 2025
    affected < 5.14.21-150500.13.97.1fixed 5.14.21-150500.13.97.1

    In the Linux kernel, the following vulnerability has been resolved: perf/core: Fix perf_output_begin parameter is incorrectly invoked in perf_event_bpf_output syzkaller reportes a KASAN issue with stack-out-of-bounds. The call trace is as follows: dump_stack+0x9c/0xd3 print

  • CVE-2023-53064May 2, 2025
    affected < 5.14.21-150500.13.97.1fixed 5.14.21-150500.13.97.1

    In the Linux kernel, the following vulnerability has been resolved: iavf: fix hang on reboot with ice When a system with E810 with existing VFs gets rebooted the following hang may be observed. Pid 1 is hung in iavf_remove(), part of a network driver: PID: 1 TASK: fff

  • CVE-2023-53062May 2, 2025
    affected < 5.14.21-150500.13.97.1fixed 5.14.21-150500.13.97.1

    In the Linux kernel, the following vulnerability has been resolved: net: usb: smsc95xx: Limit packet length to skb->len Packet length retrieved from descriptor may be larger than the actual socket buffer length. In such case the cloned skb passed up the network stack will leak

  • CVE-2023-53060May 2, 2025
    affected < 5.14.21-150500.13.97.1fixed 5.14.21-150500.13.97.1

    In the Linux kernel, the following vulnerability has been resolved: igb: revert rtnl_lock() that causes deadlock The commit 6faee3d4ee8b ("igb: Add lock to avoid data race") adds rtnl_lock to eliminate a false data race shown below (FREE from device detaching) | (USE f

  • CVE-2023-53059May 2, 2025
    affected < 5.14.21-150500.13.97.1fixed 5.14.21-150500.13.97.1

    In the Linux kernel, the following vulnerability has been resolved: platform/chrome: cros_ec_chardev: fix kernel data leak from ioctl It is possible to peep kernel page's data by providing larger `insize` in struct cros_ec_command[1] when invoking EC host commands. Fix it by u

  • CVE-2023-53058May 2, 2025
    affected < 5.14.21-150500.13.97.1fixed 5.14.21-150500.13.97.1

    In the Linux kernel, the following vulnerability has been resolved: net/mlx5: E-Switch, Fix an Oops in error handling code The error handling dereferences "vport". There is nothing we can do if it is an error pointer except returning the error code.

  • CVE-2023-53057May 2, 2025
    affected < 5.14.21-150500.13.97.1fixed 5.14.21-150500.13.97.1

    In the Linux kernel, the following vulnerability has been resolved: Bluetooth: HCI: Fix global-out-of-bounds To loop a variable-length array, hci_init_stage_sync(stage) considers that stage[i] is valid as long as stage[i-1].func is valid. Thus, the last element of stage[].func

  • CVE-2023-53056May 2, 2025
    affected < 5.14.21-150500.13.97.1fixed 5.14.21-150500.13.97.1

    In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Synchronize the IOCB count to be in order A system hang was observed with the following call trace: BUG: kernel NULL pointer dereference, address: 0000000000000000 PGD 0 P4D 0 Oops: 0000 [#1] PR

  • CVE-2023-53054May 2, 2025
    affected < 5.14.21-150500.13.97.1fixed 5.14.21-150500.13.97.1

    In the Linux kernel, the following vulnerability has been resolved: usb: dwc2: fix a devres leak in hw_enable upon suspend resume Each time the platform goes to low power, PM suspend / resume routines call: __dwc2_lowlevel_hw_enable -> devm_add_action_or_reset(). This adds a ne

  • CVE-2023-53052May 2, 2025
    affected < 5.14.21-150500.13.97.1fixed 5.14.21-150500.13.97.1

    In the Linux kernel, the following vulnerability has been resolved: cifs: fix use-after-free bug in refresh_cache_worker() The UAF bug occurred because we were putting DFS root sessions in cifs_umount() while DFS cache refresher was being executed. Make DFS root sessions have

  • CVE-2023-53051May 2, 2025
    affected < 5.14.21-150500.13.94.1fixed 5.14.21-150500.13.94.1

    In the Linux kernel, the following vulnerability has been resolved: dm crypt: add cond_resched() to dmcrypt_write() The loop in dmcrypt_write may be running for unbounded amount of time, thus we need cond_resched() in it. This commit fixes the following warning: [ 3391.153255

  • CVE-2023-53049May 2, 2025
    affected < 5.14.21-150500.13.97.1fixed 5.14.21-150500.13.97.1

    In the Linux kernel, the following vulnerability has been resolved: usb: ucsi: Fix NULL pointer deref in ucsi_connector_change() When ucsi_init() fails, ucsi->connector is NULL, yet in case of ucsi_acpi we may still get events which cause the ucs_acpi code to call ucsi_connecto

  • CVE-2023-53048May 2, 2025
    affected < 5.14.21-150500.13.100.1fixed 5.14.21-150500.13.100.1

    In the Linux kernel, the following vulnerability has been resolved: usb: typec: tcpm: fix warning when handle discover_identity message Since both source and sink device can send discover_identity message in PD3, kernel may dump below warning: ------------[ cut here ]---------

  • CVE-2023-53046May 2, 2025
    affected < 5.14.21-150500.13.100.1fixed 5.14.21-150500.13.100.1

    In the Linux kernel, the following vulnerability has been resolved: Bluetooth: Fix race condition in hci_cmd_sync_clear There is a potential race condition in hci_cmd_sync_work and hci_cmd_sync_clear, and could lead to use-after-free. For instance, hci_cmd_sync_work is added to

  • CVE-2023-53045May 2, 2025
    affected < 5.14.21-150500.13.97.1fixed 5.14.21-150500.13.97.1

    In the Linux kernel, the following vulnerability has been resolved: usb: gadget: u_audio: don't let userspace block driver unbind In the unbind callback for f_uac1 and f_uac2, a call to snd_card_free() via g_audio_cleanup() will disconnect the card and then wait for all resourc

Page 66 of 228