rpm package

suse/kernel-syms&distro=SUSE OpenStack Cloud Crowbar 8

pkg:rpm/suse/kernel-syms&distro=SUSE%20OpenStack%20Cloud%20Crowbar%208

Vulnerabilities (347)

CVE	CVSS	KEV	Affected versions	Fixed in	Published	Description
CVE-2021-28711	—		< 4.4.180-94.153.1	4.4.180-94.153.1	Jan 5, 2022	Rogue backends can cause DoS of guests via high frequency events T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Xen offers the ability to run PV backends in regular unprivileged guests, typically re
CVE-2021-45485	—		< 4.4.180-94.153.1	4.4.180-94.153.1	Dec 25, 2021	In the IPv6 implementation in the Linux kernel before 5.13.3, net/ipv6/output_core.c has an information leak because of certain use of a hash table which, although big, doesn't properly consider that IPv6-based attackers can typically choose among many IPv6 source addresses.
CVE-2021-45486	—		< 4.4.180-94.153.1	4.4.180-94.153.1	Dec 25, 2021	In the IPv4 implementation in the Linux kernel before 5.12.4, net/ipv4/route.c has an information leak because the hash table is very small.
CVE-2021-45095	—		< 4.4.180-94.153.1	4.4.180-94.153.1	Dec 16, 2021	pep_sock_accept in net/phonet/pep.c in the Linux kernel through 5.15.8 has a refcount leak.
CVE-2021-39657	—		< 4.4.180-94.153.1	4.4.180-94.153.1	Dec 15, 2021	In ufshcd_eh_device_reset_handler of ufshcd.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:
CVE-2021-39648	—		< 4.4.180-94.153.1	4.4.180-94.153.1	Dec 15, 2021	In gadget_dev_desc_UDC_show of configfs.c, there is a possible disclosure of kernel heap memory due to a race condition. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersio
CVE-2021-0920	—	KEV	< 4.4.180-94.156.1	4.4.180-94.156.1	Dec 15, 2021	In unix_scm_to_skb of af_unix.c, there is a possible use after free bug due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndro
CVE-2018-25020	—		< 4.4.180-94.153.1	4.4.180-94.153.1	Dec 8, 2021	The BPF subsystem in the Linux kernel before 4.17 mishandles situations with a long jump over an instruction sequence where inner instructions require substantial expansions into multiple BPF instructions, leading to an overflow. This affects kernel/bpf/core.c and net/core/filter
CVE-2021-33098	—		< 4.4.180-94.153.1	4.4.180-94.153.1	Nov 17, 2021	Improper input validation in the Intel(R) Ethernet ixgbe driver for Linux before version 3.17.3 may allow an authenticated user to potentially enable denial of service via local access.
CVE-2021-43976	—		< 4.4.180-94.153.1	4.4.180-94.153.1	Nov 17, 2021	In the Linux kernel through 5.15.2, mwifiex_usb_recv in drivers/net/wireless/marvell/mwifiex/usb.c allows an attacker (who can connect a crafted USB device) to cause a denial of service (skb_over_panic).
CVE-2021-43389	—		< 4.4.180-94.150.1	4.4.180-94.150.1	Nov 4, 2021	An issue was discovered in the Linux kernel before 5.14.15. There is an array-index-out-of-bounds flaw in the detach_capi_ctr function in drivers/isdn/capi/kcapi.c.
CVE-2021-0935	—		< 4.4.180-94.153.1	4.4.180-94.153.1	Oct 25, 2021	In ip6_xmit of ip6_output.c, there is a possible out of bounds write due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid
CVE-2021-42739	—		< 4.4.180-94.150.1	4.4.180-94.150.1	Oct 20, 2021	The firewire subsystem in the Linux kernel through 5.14.13 has a buffer overflow related to drivers/media/firewire/firedtv-avc.c and drivers/media/firewire/firedtv-ci.c, because avc_ca_pmt mishandles bounds checking.
CVE-2021-42008	—		< 4.4.180-94.150.1	4.4.180-94.150.1	Oct 4, 2021	The decode_data function in drivers/net/hamradio/6pack.c in the Linux kernel before 5.13.13 has a slab out-of-bounds write. Input from a process that has the CAP_NET_ADMIN capability can lead to root access.
CVE-2021-3653	—		< 4.4.180-94.150.1	4.4.180-94.150.1	Sep 29, 2021	A flaw was found in the KVM's AMD code for supporting SVM nested virtualization. The flaw occurs when processing the VMCB (virtual machine control block) provided by the L1 guest to spawn/handle a nested guest (L2). Due to improper validation of the "int_ctl" field, this issue co
CVE-2021-40490	—		< 4.4.180-94.150.1	4.4.180-94.150.1	Sep 3, 2021	A race condition was discovered in ext4_write_inline_data_end in fs/ext4/inline.c in the ext4 subsystem in the Linux kernel through 5.13.13.
CVE-2021-38198	—		< 4.4.180-94.150.1	4.4.180-94.150.1	Aug 8, 2021	arch/x86/kvm/mmu/paging_tmpl.h in the Linux kernel before 5.12.11 incorrectly computes the access permissions of a shadow page, leading to a missing guest protection page fault.
CVE-2021-38204	—		< 4.4.180-94.150.1	4.4.180-94.150.1	Aug 8, 2021	drivers/usb/host/max3421-hcd.c in the Linux kernel before 5.13.6 allows physically proximate attackers to cause a denial of service (use-after-free and panic) by removing a MAX-3421 USB device in certain situations.
CVE-2021-38208	—		< 4.4.180-94.164.2	4.4.180-94.164.2	Aug 8, 2021	net/nfc/llcp_sock.c in the Linux kernel before 5.12.10 allows local unprivileged users to cause a denial of service (NULL pointer dereference and BUG) by making a getsockname call after a certain type of failure of a bind call.
CVE-2021-38160	—		< 4.4.180-94.150.1	4.4.180-94.150.1	Aug 7, 2021	In drivers/char/virtio_console.c in the Linux kernel before 5.13.4, data corruption or loss can be triggered by an untrusted device that supplies a buf->len value exceeding the buffer size. NOTE: the vendor indicates that the cited data corruption is not a vulnerability in any ex

CVE-2021-28711Jan 5, 2022
affected < 4.4.180-94.153.1fixed 4.4.180-94.153.1
Rogue backends can cause DoS of guests via high frequency events T[his CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] Xen offers the ability to run PV backends in regular unprivileged guests, typically re
CVE-2021-45485Dec 25, 2021
affected < 4.4.180-94.153.1fixed 4.4.180-94.153.1
In the IPv6 implementation in the Linux kernel before 5.13.3, net/ipv6/output_core.c has an information leak because of certain use of a hash table which, although big, doesn't properly consider that IPv6-based attackers can typically choose among many IPv6 source addresses.
CVE-2021-45486Dec 25, 2021
affected < 4.4.180-94.153.1fixed 4.4.180-94.153.1
In the IPv4 implementation in the Linux kernel before 5.12.4, net/ipv4/route.c has an information leak because the hash table is very small.
CVE-2021-45095Dec 16, 2021
affected < 4.4.180-94.153.1fixed 4.4.180-94.153.1
pep_sock_accept in net/phonet/pep.c in the Linux kernel through 5.15.8 has a refcount leak.
CVE-2021-39657Dec 15, 2021
affected < 4.4.180-94.153.1fixed 4.4.180-94.153.1
In ufshcd_eh_device_reset_handler of ufshcd.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:
CVE-2021-39648Dec 15, 2021
affected < 4.4.180-94.153.1fixed 4.4.180-94.153.1
In gadget_dev_desc_UDC_show of configfs.c, there is a possible disclosure of kernel heap memory due to a race condition. This could lead to local information disclosure with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersio
CVE-2021-0920KEVDec 15, 2021
affected < 4.4.180-94.156.1fixed 4.4.180-94.156.1
In unix_scm_to_skb of af_unix.c, there is a possible use after free bug due to a race condition. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndro
CVE-2018-25020Dec 8, 2021
affected < 4.4.180-94.153.1fixed 4.4.180-94.153.1
The BPF subsystem in the Linux kernel before 4.17 mishandles situations with a long jump over an instruction sequence where inner instructions require substantial expansions into multiple BPF instructions, leading to an overflow. This affects kernel/bpf/core.c and net/core/filter
CVE-2021-33098Nov 17, 2021
affected < 4.4.180-94.153.1fixed 4.4.180-94.153.1
Improper input validation in the Intel(R) Ethernet ixgbe driver for Linux before version 3.17.3 may allow an authenticated user to potentially enable denial of service via local access.
CVE-2021-43976Nov 17, 2021
affected < 4.4.180-94.153.1fixed 4.4.180-94.153.1
In the Linux kernel through 5.15.2, mwifiex_usb_recv in drivers/net/wireless/marvell/mwifiex/usb.c allows an attacker (who can connect a crafted USB device) to cause a denial of service (skb_over_panic).
CVE-2021-43389Nov 4, 2021
affected < 4.4.180-94.150.1fixed 4.4.180-94.150.1
An issue was discovered in the Linux kernel before 5.14.15. There is an array-index-out-of-bounds flaw in the detach_capi_ctr function in drivers/isdn/capi/kcapi.c.
CVE-2021-0935Oct 25, 2021
affected < 4.4.180-94.153.1fixed 4.4.180-94.153.1
In ip6_xmit of ip6_output.c, there is a possible out of bounds write due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android kernelAndroid
CVE-2021-42739Oct 20, 2021
affected < 4.4.180-94.150.1fixed 4.4.180-94.150.1
The firewire subsystem in the Linux kernel through 5.14.13 has a buffer overflow related to drivers/media/firewire/firedtv-avc.c and drivers/media/firewire/firedtv-ci.c, because avc_ca_pmt mishandles bounds checking.
CVE-2021-42008Oct 4, 2021
affected < 4.4.180-94.150.1fixed 4.4.180-94.150.1
The decode_data function in drivers/net/hamradio/6pack.c in the Linux kernel before 5.13.13 has a slab out-of-bounds write. Input from a process that has the CAP_NET_ADMIN capability can lead to root access.
CVE-2021-3653Sep 29, 2021
affected < 4.4.180-94.150.1fixed 4.4.180-94.150.1
A flaw was found in the KVM's AMD code for supporting SVM nested virtualization. The flaw occurs when processing the VMCB (virtual machine control block) provided by the L1 guest to spawn/handle a nested guest (L2). Due to improper validation of the "int_ctl" field, this issue co
CVE-2021-40490Sep 3, 2021
affected < 4.4.180-94.150.1fixed 4.4.180-94.150.1
A race condition was discovered in ext4_write_inline_data_end in fs/ext4/inline.c in the ext4 subsystem in the Linux kernel through 5.13.13.
CVE-2021-38198Aug 8, 2021
affected < 4.4.180-94.150.1fixed 4.4.180-94.150.1
arch/x86/kvm/mmu/paging_tmpl.h in the Linux kernel before 5.12.11 incorrectly computes the access permissions of a shadow page, leading to a missing guest protection page fault.
CVE-2021-38204Aug 8, 2021
affected < 4.4.180-94.150.1fixed 4.4.180-94.150.1
drivers/usb/host/max3421-hcd.c in the Linux kernel before 5.13.6 allows physically proximate attackers to cause a denial of service (use-after-free and panic) by removing a MAX-3421 USB device in certain situations.
CVE-2021-38208Aug 8, 2021
affected < 4.4.180-94.164.2fixed 4.4.180-94.164.2
net/nfc/llcp_sock.c in the Linux kernel before 5.12.10 allows local unprivileged users to cause a denial of service (NULL pointer dereference and BUG) by making a getsockname call after a certain type of failure of a bind call.
CVE-2021-38160Aug 7, 2021
affected < 4.4.180-94.150.1fixed 4.4.180-94.150.1
In drivers/char/virtio_console.c in the Linux kernel before 5.13.4, data corruption or loss can be triggered by an untrusted device that supplies a buf->len value exceeding the buffer size. NOTE: the vendor indicates that the cited data corruption is not a vulnerability in any ex

Page 4 of 18