VYPR

rpm package

suse/kernel-syms&distro=SUSE Linux Enterprise Module for Development Tools 15 SP7

pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP7

Vulnerabilities (2,262)

  • CVE-2025-21898Apr 1, 2025
    affected < 6.4.0-150700.53.6.1fixed 6.4.0-150700.53.6.1

    In the Linux kernel, the following vulnerability has been resolved: ftrace: Avoid potential division by zero in function_stat_show() Check whether denominator expression x * (x - 1) * 1000 mod {2^32, 2^64} produce zero and skip stddev computation in that case. For now don't ca

  • CVE-2025-21895Apr 1, 2025
    affected < 6.4.0-150700.53.3.1fixed 6.4.0-150700.53.3.1

    In the Linux kernel, the following vulnerability has been resolved: perf/core: Order the PMU list to fix warning about unordered pmu_ctx_list Syskaller triggers a warning due to prev_epc->pmu != next_epc->pmu in perf_event_swap_task_ctx_data(). vmcore shows that two lists have

  • CVE-2025-21894Apr 1, 2025
    affected < 6.4.0-150700.53.3.1fixed 6.4.0-150700.53.3.1

    In the Linux kernel, the following vulnerability has been resolved: net: enetc: VFs do not support HWTSTAMP_TX_ONESTEP_SYNC Actually ENETC VFs do not support HWTSTAMP_TX_ONESTEP_SYNC because only ENETC PF can access PMa_SINGLE_STEP registers. And there will be a crash if VFs ar

  • CVE-2025-21893Mar 31, 2025
    affected < 6.4.0-150700.53.3.1fixed 6.4.0-150700.53.3.1

    In the Linux kernel, the following vulnerability has been resolved: keys: Fix UAF in key_put() Once a key's reference count has been reduced to 0, the garbage collector thread may destroy it at any time and so key_put() is not allowed to touch the key after that point. The mos

  • CVE-2025-21892Mar 27, 2025
    affected < 6.4.0-150700.53.3.1fixed 6.4.0-150700.53.3.1

    In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix the recovery flow of the UMR QP This patch addresses an issue in the recovery flow of the UMR QP, ensuring tasks do not get stuck, as highlighted by the call trace [1]. During recovery, before t

  • CVE-2025-21891Mar 27, 2025
    affected < 6.4.0-150700.53.3.1fixed 6.4.0-150700.53.3.1

    In the Linux kernel, the following vulnerability has been resolved: ipvlan: ensure network headers are in skb linear part syzbot found that ipvlan_process_v6_outbound() was assuming the IPv6 network header isis present in skb->head [1] Add the needed pskb_network_may_pull() ca

  • CVE-2025-21890Mar 27, 2025
    affected < 6.4.0-150700.53.3.1fixed 6.4.0-150700.53.3.1

    In the Linux kernel, the following vulnerability has been resolved: idpf: fix checksums set in idpf_rx_rsc() idpf_rx_rsc() uses skb_transport_offset(skb) while the transport header is not set yet. This triggers the following warning for CONFIG_DEBUG_NET=y builds. DEBUG_NET_WA

  • CVE-2025-21889Mar 27, 2025
    affected < 6.4.0-150700.53.3.1fixed 6.4.0-150700.53.3.1

    In the Linux kernel, the following vulnerability has been resolved: perf/core: Add RCU read lock protection to perf_iterate_ctx() The perf_iterate_ctx() function performs RCU list traversal but currently lacks RCU read lock protection. This causes lockdep warnings when running

  • CVE-2025-21888Mar 27, 2025
    affected < 6.4.0-150700.53.3.1fixed 6.4.0-150700.53.3.1

    In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix a WARN during dereg_mr for DM type Memory regions (MR) of type DM (device memory) do not have an associated umem. In the __mlx5_ib_dereg_mr() -> mlx5_free_priv_descs() flow, the code incorrectly

  • CVE-2025-21887Mar 27, 2025
    affected < 6.4.0-150700.53.3.1fixed 6.4.0-150700.53.3.1

    In the Linux kernel, the following vulnerability has been resolved: ovl: fix UAF in ovl_dentry_update_reval by moving dput() in ovl_link_up The issue was caused by dput(upper) being called before ovl_dentry_update_reval(), while upper->d_flags was still accessed in ovl_dentry_r

  • CVE-2025-21886Mar 27, 2025
    affected < 6.4.0-150700.53.3.1fixed 6.4.0-150700.53.3.1

    In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix implicit ODP hang on parent deregistration Fix the destroy_unused_implicit_child_mr() to prevent hanging during parent deregistration as of below [1]. Upon entering destroy_unused_implicit_child

  • CVE-2025-21885Mar 27, 2025
    affected < 6.4.0-150700.53.3.1fixed 6.4.0-150700.53.3.1

    In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxt_re: Fix the page details for the srq created by kernel consumers While using nvme target with use_srq on, below kernel panic is noticed. [ 549.698111] bnxt_en 0000:41:00.0 enp65s0np0: FEC autoneg of

  • CVE-2025-21884Mar 27, 2025
    affected < 6.4.0-150700.53.3.1fixed 6.4.0-150700.53.3.1

    In the Linux kernel, the following vulnerability has been resolved: net: better track kernel sockets lifetime While kernel sockets are dismantled during pernet_operations->exit(), their freeing can be delayed by any tx packets still held in qdisc or device queues, due to skb_se

  • CVE-2025-21883Mar 27, 2025
    affected < 6.4.0-150700.53.3.1fixed 6.4.0-150700.53.3.1

    In the Linux kernel, the following vulnerability has been resolved: ice: Fix deinitializing VF in error path If ice_ena_vfs() fails after calling ice_create_vf_entries(), it frees all VFs without removing them from snapshot PF-VF mailbox list, leading to list corruption. Repro

  • CVE-2025-21882Mar 27, 2025
    affected < 6.4.0-150700.53.3.1fixed 6.4.0-150700.53.3.1

    In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix vport QoS cleanup on error When enabling vport QoS fails, the scheduling node was never freed, causing a leak. Add the missing free and reset the vport scheduling node pointer to NULL.

  • CVE-2025-21881Mar 27, 2025
    affected < 6.4.0-150700.53.3.1fixed 6.4.0-150700.53.3.1

    In the Linux kernel, the following vulnerability has been resolved: uprobes: Reject the shared zeropage in uprobe_write_opcode() We triggered the following crash in syzkaller tests: BUG: Bad page state in process syz.7.38 pfn:1eff3 page: refcount:0 mapcount:0 mapping:0000

  • CVE-2025-21880Mar 27, 2025
    affected < 6.4.0-150700.53.6.1fixed 6.4.0-150700.53.6.1

    In the Linux kernel, the following vulnerability has been resolved: drm/xe/userptr: fix EFAULT handling Currently we treat EFAULT from hmm_range_fault() as a non-fatal error when called from xe_vm_userptr_pin() with the idea that we want to avoid killing the entire vm and chuck

  • CVE-2025-21878Mar 27, 2025
    affected < 6.4.0-150700.53.3.1fixed 6.4.0-150700.53.3.1

    In the Linux kernel, the following vulnerability has been resolved: i2c: npcm: disable interrupt enable bit before devm_request_irq The customer reports that there is a soft lockup issue related to the i2c driver. After checking, the i2c module was doing a tx transfer and the b

  • CVE-2025-21877Mar 27, 2025
    affected < 6.4.0-150700.53.3.1fixed 6.4.0-150700.53.3.1

    In the Linux kernel, the following vulnerability has been resolved: usbnet: gl620a: fix endpoint checking in genelink_bind() Syzbot reports [1] a warning in usb_submit_urb() triggered by inconsistencies between expected and actually present endpoints in gl620a driver. Since gen

  • CVE-2025-21876Mar 27, 2025
    affected < 6.4.0-150700.53.3.1fixed 6.4.0-150700.53.3.1

    In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Fix suspicious RCU usage Commit ("iommu/vt-d: Allocate DMAR fault interrupts locally") moved the call to enable_drhd_fault_handling() to a code path that does not hold any lock while

Page 104 of 114