VYPR

rpm package

suse/kernel-source-rt&distro=SUSE Real Time Module 15 SP6

pkg:rpm/suse/kernel-source-rt&distro=SUSE%20Real%20Time%20Module%2015%20SP6

Vulnerabilities (3,740)

  • CVE-2024-46729Sep 18, 2024
    affected < 6.4.0-150600.10.14.1fixed 6.4.0-150600.10.14.1

    In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix incorrect size calculation for loop [WHY] fe_clk_en has size of 5 but sizeof(fe_clk_en) has byte size 20 which is lager than the array size. [HOW] Divide byte size 20 by its element size.

  • CVE-2024-46728Sep 18, 2024
    affected < 6.4.0-150600.10.14.1fixed 6.4.0-150600.10.14.1

    In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check index for aux_rd_interval before using aux_rd_interval has size of 7 and should be checked. This fixes 3 OVERRUN and 1 INTEGER_OVERFLOW issues reported by Coverity.

  • CVE-2024-46726Sep 18, 2024
    affected < 6.4.0-150600.10.14.1fixed 6.4.0-150600.10.14.1

    In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Ensure index calculation will not overflow [WHY & HOW] Make sure vmid0p72_idx, vnom0p8_idx and vmax0p9_idx calculation will never overflow and exceess array size. This fixes 3 OVERRUN and 1 IN

  • CVE-2024-46724Sep 18, 2024
    affected < 6.4.0-150600.10.14.1fixed 6.4.0-150600.10.14.1

    In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix out-of-bounds read of df_v1_7_channel_number Check the fb_channel_number range to avoid the array out-of-bounds read error

  • CVE-2024-46723Sep 18, 2024
    affected < 6.4.0-150600.10.14.1fixed 6.4.0-150600.10.14.1

    In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix ucode out-of-bounds read warning Clear warning that read ucode[] may out-of-bounds.

  • CVE-2024-46722Sep 18, 2024
    affected < 6.4.0-150600.10.14.1fixed 6.4.0-150600.10.14.1

    In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix mc_data out-of-bounds read warning Clear warning that read mc_data[i-1] may out-of-bounds.

  • CVE-2024-46721Sep 18, 2024
    affected < 6.4.0-150600.10.17.1fixed 6.4.0-150600.10.17.1

    In the Linux kernel, the following vulnerability has been resolved: apparmor: fix possible NULL pointer dereference profile->parent->dents[AAFS_PROF_DIR] could be NULL only if its parent is made from __create_missing_ancestors(..) and 'ent->old' is NULL in aa_replace_profiles(.

  • CVE-2024-46720Sep 18, 2024
    affected < 6.4.0-150600.10.14.1fixed 6.4.0-150600.10.14.1

    In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix dereference after null check check the pointer hive before use.

  • CVE-2024-46719Sep 18, 2024
    affected < 6.4.0-150600.10.14.1fixed 6.4.0-150600.10.14.1

    In the Linux kernel, the following vulnerability has been resolved: usb: typec: ucsi: Fix null pointer dereference in trace ucsi_register_altmode checks IS_ERR for the alt pointer and treats NULL as valid. When CONFIG_TYPEC_DP_ALTMODE is not enabled, ucsi_register_displayport r

  • CVE-2024-46717Sep 18, 2024
    affected < 6.4.0-150600.10.14.1fixed 6.4.0-150600.10.14.1

    In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: SHAMPO, Fix incorrect page release Under the following conditions: 1) No skb created yet 2) header_size == 0 (no SHAMPO header) 3) header_index + 1 % MLX5E_SHAMPO_WQ_HEADER_PER_PAGE == 0 (this is the

  • CVE-2024-46716Sep 18, 2024
    affected < 6.4.0-150600.10.14.1fixed 6.4.0-150600.10.14.1

    In the Linux kernel, the following vulnerability has been resolved: dmaengine: altera-msgdma: properly free descriptor in msgdma_free_descriptor Remove list_del call in msgdma_chan_desc_cleanup, this should be the role of msgdma_free_descriptor. In consequence replace list_add_

  • CVE-2024-46714Sep 18, 2024
    affected < 6.4.0-150600.10.14.1fixed 6.4.0-150600.10.14.1

    In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Skip wbscl_set_scaler_filter if filter is null Callers can pass null in filter (i.e. from returned from the function wbscl_get_filter_coeffs_16p) and a null check is added to ensure that is not

  • CVE-2024-46713Sep 13, 2024
    affected < 6.4.0-150600.10.39.1fixed 6.4.0-150600.10.39.1

    In the Linux kernel, the following vulnerability has been resolved: perf/aux: Fix AUX buffer serialization Ole reported that event->mmap_mutex is strictly insufficient to serialize the AUX buffer, add a per RB mutex to fully serialize it. Note that in the lock order comment th

  • CVE-2024-46710Sep 13, 2024
    affected < 6.4.0-150600.10.14.1fixed 6.4.0-150600.10.14.1

    In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Prevent unmapping active read buffers The kms paths keep a persistent map active to read and compare the cursor buffer. These maps can race with each other in simple scenario where: a) buffer "a" ma

  • CVE-2024-46709Sep 13, 2024
    affected < 6.4.0-150600.10.14.1fixed 6.4.0-150600.10.14.1

    In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Fix prime with external buffers Make sure that for external buffers mapping goes through the dma_buf interface instead of trying to access pages directly. External buffers might not provide direct

  • CVE-2024-46707Sep 13, 2024
    affected < 6.4.0-150600.10.14.1fixed 6.4.0-150600.10.14.1

    In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Make ICC_*SGI*_EL1 undef in the absence of a vGICv3 On a system with a GICv3, if a guest hasn't been configured with GICv3 and that the host is not capable of GICv2 emulation, a write to any of the

  • CVE-2024-46706Sep 13, 2024
    affected < 6.4.0-150600.10.14.1fixed 6.4.0-150600.10.14.1

    In the Linux kernel, the following vulnerability has been resolved: tty: serial: fsl_lpuart: mark last busy before uart_add_one_port With "earlycon initcall_debug=1 loglevel=8" in bootargs, kernel sometimes boot hang. It is because normal console still is not ready, but runtime

  • CVE-2024-46702Sep 13, 2024
    affected < 6.4.0-150600.10.14.1fixed 6.4.0-150600.10.14.1

    In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Mark XDomain as unplugged when router is removed I noticed that when we do discrete host router NVM upgrade and it gets hot-removed from the PCIe side as a result of NVM firmware authentication, if

  • CVE-2024-46679MedSep 13, 2024
    affected < 6.4.0-150600.10.14.1fixed 6.4.0-150600.10.14.1

    In the Linux kernel, the following vulnerability has been resolved: ethtool: check device is present when getting link settings A sysfs reader can race with a device reset or removal, attempting to read device state when the device is not actually present. eg: [exception

  • CVE-2024-46695Sep 13, 2024
    affected < 6.4.0-150600.10.14.1fixed 6.4.0-150600.10.14.1

    In the Linux kernel, the following vulnerability has been resolved: selinux,smack: don't bypass permissions check in inode_setsecctx hook Marek Gresko reports that the root user on an NFS client is able to change the security labels on files on an NFS filesystem that is exporte

Page 121 of 187