suse/kernel-syms&distro=SUSE Linux Enterprise Server LTSS Extended Security 12 SP5

Vulnerabilities (1,794)

• CVE-2023-52853May 21, 2024
  affected < 4.12.14-122.250.1fixed 4.12.14-122.250.1

  In the Linux kernel, the following vulnerability has been resolved: hid: cp2112: Fix duplicate workqueue initialization Previously the cp2112 driver called INIT_DELAYED_WORK within cp2112_gpio_irq_startup, resulting in duplicate initilizations of the workqueue on subsequent IRQ

• CVE-2023-52813May 21, 2024
  affected < 4.12.14-122.272.1fixed 4.12.14-122.272.1

  In the Linux kernel, the following vulnerability has been resolved: crypto: pcrypt - Fix hungtask for PADATA_RESET We found a hungtask bug in test_aead_vec_cfg as follows: INFO: task cryptomgr_test:391009 blocked for more than 120 seconds. "echo 0 > /proc/sys/kernel/hung_task_

• CVE-2021-47416May 21, 2024
  affected < 4.12.14-122.234.1fixed 4.12.14-122.234.1

  In the Linux kernel, the following vulnerability has been resolved: phy: mdio: fix memory leak Syzbot reported memory leak in MDIO bus interface, the problem was in wrong state logic. MDIOBUS_ALLOCATED indicates 2 states: 1. Bus is only allocated 2. Bus allocated and __mdiob

• CVE-2021-47223May 21, 2024
  affected < 4.12.14-122.247.1fixed 4.12.14-122.247.1

  In the Linux kernel, the following vulnerability has been resolved: net: bridge: fix vlan tunnel dst null pointer dereference This patch fixes a tunnel_dst null pointer dereference due to lockless access in the tunnel egress path. When deleting a vlan tunnel the tunnel_dst poin

• CVE-2021-47222May 21, 2024
  affected < 4.12.14-122.247.1fixed 4.12.14-122.247.1

  In the Linux kernel, the following vulnerability has been resolved: net: bridge: fix vlan tunnel dst refcnt when egressing The egress tunnel code uses dst_clone() and directly sets the result which is wrong because the entry might have 0 refcnt or be already deleted, causing nu

• CVE-2024-35937May 19, 2024
  affected < 4.12.14-122.237.1fixed 4.12.14-122.237.1

  In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: check A-MSDU format more carefully If it looks like there's another subframe in the A-MSDU but the header isn't fully there, we can end up reading data out of bounds, only to discard later. Make

• CVE-2024-35910MedMay 19, 2024
  affected < 4.12.14-122.255.1fixed 4.12.14-122.255.1

  In the Linux kernel, the following vulnerability has been resolved: tcp: properly terminate timers for kernel sockets We had various syzbot reports about tcp timers firing after the corresponding netns has been dismantled. Fortunately Josef Bacik could trigger the issue more o

• CVE-2024-35847May 17, 2024
  affected < 4.12.14-122.244.1fixed 4.12.14-122.244.1

  In the Linux kernel, the following vulnerability has been resolved: irqchip/gic-v3-its: Prevent double free on error The error handling path in its_vpe_irq_domain_alloc() causes a double free when its_vpe_init() fails after successfully allocating at least one interrupt. This h

• CVE-2024-35839May 17, 2024
  affected < 4.12.14-122.266.1fixed 4.12.14-122.266.1

  In the Linux kernel, the following vulnerability has been resolved: netfilter: bridge: replace physindev with physinif in nf_bridge_info An skb can be added to a neigh->arp_queue while waiting for an arp reply. Where original skb's skb->dev can be different to neigh's neigh->de

• CVE-2024-35790May 17, 2024
  affected < 4.12.14-122.266.1fixed 4.12.14-122.266.1

  In the Linux kernel, the following vulnerability has been resolved: usb: typec: altmodes/displayport: create sysfs nodes as driver's default device attribute group The DisplayPort driver's sysfs nodes may be present to the userspace before typec_altmode_set_drvdata() completes

• CVE-2024-27397HigMay 14, 2024
  affected < 4.12.14-122.250.1fixed 4.12.14-122.250.1

  In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: use timestamp to check for set element timeout Add a timestamp field at the beginning of the transaction, store it in the nftables per-netns area. Update set backend .insert, .deactivate

• CVE-2024-27388May 1, 2024
  affected < 4.12.14-122.250.1fixed 4.12.14-122.250.1

  In the Linux kernel, the following vulnerability has been resolved: SUNRPC: fix some memleaks in gssx_dec_option_array The creds and oa->data need to be freed in the error-handling paths after their allocation. So this patch add these deallocations in the corresponding paths.

• CVE-2023-52653May 1, 2024
  affected < 4.12.14-122.250.1fixed 4.12.14-122.250.1

  In the Linux kernel, the following vulnerability has been resolved: SUNRPC: fix a memleak in gss_import_v2_context The ctx->mech_used.data allocated by kmemdup is not freed in neither gss_import_v2_context nor it only caller gss_krb5_import_sec_context, which frees ctx on error

• CVE-2024-27054May 1, 2024
  affected < 4.12.14-122.250.1fixed 4.12.14-122.250.1

  In the Linux kernel, the following vulnerability has been resolved: s390/dasd: fix double module refcount decrement Once the discipline is associated with the device, deleting the device takes care of decrementing the module's refcount. Doing it manually on this error path cau

• CVE-2024-27051May 1, 2024
  affected < 4.12.14-122.237.1fixed 4.12.14-122.237.1

  In the Linux kernel, the following vulnerability has been resolved: cpufreq: brcmstb-avs-cpufreq: add check for cpufreq_cpu_get's return value cpufreq_cpu_get may return NULL. To avoid NULL-dereference check it and return 0 in case of error. Found by Linux Verification Center

• CVE-2024-27043May 1, 2024
  affected < 4.12.14-122.234.1fixed 4.12.14-122.234.1

  In the Linux kernel, the following vulnerability has been resolved: media: edia: dvbdev: fix a use-after-free In dvb_register_device, *pdvbdev is set equal to dvbdev, which is freed in several error-handling paths. However, *pdvbdev is not set to NULL after dvbdev's deallocatio

• CVE-2024-26982HigMay 1, 2024
  affected < 4.12.14-122.269.1fixed 4.12.14-122.269.1

  In the Linux kernel, the following vulnerability has been resolved: Squashfs: check the inode number is not the invalid value of zero Syskiller has produced an out of bounds access in fill_meta_index(). That out of bounds access is ultimately caused because the inode has an in

• CVE-2024-26974HigMay 1, 2024
  affected < 4.12.14-122.269.1fixed 4.12.14-122.269.1

  In the Linux kernel, the following vulnerability has been resolved: crypto: qat - resolve race condition during AER recovery During the PCI AER system's error recovery process, the kernel driver may encounter a race condition with freeing the reset_data structure's memory. If t

• CVE-2024-26935MedMay 1, 2024
  affected < 4.12.14-122.293.1fixed 4.12.14-122.293.1

  In the Linux kernel, the following vulnerability has been resolved: scsi: core: Fix unremoved procfs host directory regression Commit fc663711b944 ("scsi: core: Remove the /proc/scsi/${proc_name} directory earlier") fixed a bug related to modules loading/unloading, by adding a

• CVE-2024-27010May 1, 2024
  affected < 4.12.14-122.261.1fixed 4.12.14-122.261.1

  In the Linux kernel, the following vulnerability has been resolved: net/sched: Fix mirred deadlock on device recursion When the mirred action is used on a classful egress qdisc and a packet is mirrored or redirected to self we hit a qdisc lock deadlock. See trace below. [.....