suse/kernel-syms-azure&distro=SUSE Linux Enterprise Module for Public Cloud 15 SP6

Vulnerabilities (3,769)

• CVE-2024-47673Oct 9, 2024
  affected < 6.4.0-150600.8.17.1fixed 6.4.0-150600.8.17.1

  In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: pause TCM when the firmware is stopped Not doing so will make us send a host command to the transport while the firmware is not alive, which will trigger a WARNING. bad state = 0 WARNING: C

• CVE-2024-47671Oct 9, 2024
  affected < 6.4.0-150600.8.17.1fixed 6.4.0-150600.8.17.1

  In the Linux kernel, the following vulnerability has been resolved: USB: usbtmc: prevent kernel-usb-infoleak The syzbot reported a kernel-usb-infoleak in usbtmc_write, we need to clear the structure before filling fields.

• CVE-2024-47670Oct 9, 2024
  affected < 6.4.0-150600.8.17.1fixed 6.4.0-150600.8.17.1

  In the Linux kernel, the following vulnerability has been resolved: ocfs2: add bounds checking to ocfs2_xattr_find_entry() Add a paranoia check to make sure it doesn't stray beyond valid memory region containing ocfs2 xattr entries when scanning for a match. It will prevent ou

• CVE-2024-47660MedOct 9, 2024
  affected < 6.4.0-150600.8.17.1fixed 6.4.0-150600.8.17.1

  In the Linux kernel, the following vulnerability has been resolved: fsnotify: clear PARENT_WATCHED flags lazily In some setups directories can have many (usually negative) dentries. Hence __fsnotify_update_child_dentry_flags() function can take a significant amount of time. Sin

• CVE-2024-46871HigOct 9, 2024
  affected < 6.4.0-150600.8.17.1fixed 6.4.0-150600.8.17.1

  In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Correct the defined value for AMDGPU_DMUB_NOTIFICATION_MAX [Why & How] It actually exposes '6' types in enum dmub_notification_type. Not 5. Using smaller number to create array dmub_callback &

• CVE-2024-46870MedOct 9, 2024
  affected < 6.4.0-150600.8.17.1fixed 6.4.0-150600.8.17.1

  In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Disable DMCUB timeout for DCN35 [Why] DMCUB can intermittently take longer than expected to process commands. Old ASIC policy was to continue while logging a diagnostic error - which works fin

• CVE-2024-47669Oct 9, 2024
  affected < 6.4.0-150600.8.17.1fixed 6.4.0-150600.8.17.1

  In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix state management in error path of log writing function After commit a694291a6211 ("nilfs2: separate wait function from nilfs_segctor_write") was applied, the log writing function nilfs_segctor_do_co

• CVE-2024-47668Oct 9, 2024
  affected < 6.4.0-150600.8.17.1fixed 6.4.0-150600.8.17.1

  In the Linux kernel, the following vulnerability has been resolved: lib/generic-radix-tree.c: Fix rare race in __genradix_ptr_alloc() If we need to increase the tree depth, allocate a new node, and then race with another thread that increased the tree depth before us, we'll sti

• CVE-2024-47667Oct 9, 2024
  affected < 6.4.0-150600.8.17.1fixed 6.4.0-150600.8.17.1

  In the Linux kernel, the following vulnerability has been resolved: PCI: keystone: Add workaround for Errata #i2037 (AM65x SR 1.0) Errata #i2037 in AM65x/DRA80xM Processors Silicon Revision 1.0 (SPRZ452D_July 2018_Revised December 2019 [1]) mentions when an inbound PCIe TLP spa

• CVE-2024-47666Oct 9, 2024
  affected < 6.4.0-150600.8.20.1fixed 6.4.0-150600.8.20.1

  In the Linux kernel, the following vulnerability has been resolved: scsi: pm80xx: Set phy->enable_completion only when we wait for it pm8001_phy_control() populates the enable_completion pointer with a stack address, sends a PHY_LINK_RESET / PHY_HARD_RESET, waits 300 ms, and re

• CVE-2024-47665Oct 9, 2024
  affected < 6.4.0-150600.8.17.1fixed 6.4.0-150600.8.17.1

  In the Linux kernel, the following vulnerability has been resolved: i3c: mipi-i3c-hci: Error out instead on BUG_ON() in IBI DMA setup Definitely condition dma_get_cache_alignment * defined value > 256 during driver initialization is not reason to BUG_ON(). Turn that to graceful

• CVE-2024-47664Oct 9, 2024
  affected < 6.4.0-150600.8.17.1fixed 6.4.0-150600.8.17.1

  In the Linux kernel, the following vulnerability has been resolved: spi: hisi-kunpeng: Add verification for the max_frequency provided by the firmware If the value of max_speed_hz is 0, it may cause a division by zero error in hisi_calc_effective_speed(). The value of max_speed

• CVE-2024-47663Oct 9, 2024
  affected < 6.4.0-150600.8.17.1fixed 6.4.0-150600.8.17.1

  In the Linux kernel, the following vulnerability has been resolved: staging: iio: frequency: ad9834: Validate frequency parameter value In ad9834_write_frequency() clk_get_rate() can return 0. In such case ad9834_calc_freqreg() call will lead to division by zero. Checking 'if (

• CVE-2024-47662Oct 9, 2024
  affected < 6.4.0-150600.8.17.1fixed 6.4.0-150600.8.17.1

  In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Remove register from DCN35 DMCUB diagnostic collection [Why] These registers should not be read from driver and triggering the security violation when DMCUB work times out and diagnostics are c

• CVE-2024-47661Oct 9, 2024
  affected < 6.4.0-150600.8.17.1fixed 6.4.0-150600.8.17.1

  In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Avoid overflow from uint32_t to uint8_t [WHAT & HOW] dmub_rb_cmd's ramping_boundary has size of uint8_t and it is assigned 0xFFFF. Fix it by changing it to uint8_t with value of 0xFF. This fix

• CVE-2024-47658Oct 9, 2024
  affected < 6.4.0-150600.8.17.1fixed 6.4.0-150600.8.17.1

  In the Linux kernel, the following vulnerability has been resolved: crypto: stm32/cryp - call finalize with bh disabled The finalize operation in interrupt mode produce a produces a spinlock recursion warning. The reason is the fact that BH must be disabled during this process.

• CVE-2024-46865HigSep 27, 2024
  affected < 6.4.0-150600.8.37.1fixed 6.4.0-150600.8.37.1

  In the Linux kernel, the following vulnerability has been resolved: fou: fix initialization of grc The grc must be initialize first. There can be a condition where if fou is NULL, goto out will be executed and grc would be used uninitialized.

• CVE-2024-46859HigSep 27, 2024
  affected < 6.4.0-150600.8.17.1fixed 6.4.0-150600.8.17.1

  In the Linux kernel, the following vulnerability has been resolved: platform/x86: panasonic-laptop: Fix SINF array out of bounds accesses The panasonic laptop code in various places uses the SINF array with index values of 0 - SINF_CUR_BRIGHT(0x0d) without checking that the SIN

• CVE-2024-46854HigSep 27, 2024
  affected < 6.4.0-150600.8.17.1fixed 6.4.0-150600.8.17.1

  In the Linux kernel, the following vulnerability has been resolved: net: dpaa: Pad packets to ETH_ZLEN When sending packets under 60 bytes, up to three bytes of the buffer following the data may be leaked. Avoid this by extending all packets to ETH_ZLEN, ensuring nothing is lea

• CVE-2024-46853HigSep 27, 2024
  affected < 6.4.0-150600.8.17.1fixed 6.4.0-150600.8.17.1

  In the Linux kernel, the following vulnerability has been resolved: spi: nxp-fspi: fix the KASAN report out-of-bounds bug Change the memcpy length to fix the out-of-bounds issue when writing the data that is not 4 byte aligned to TX FIFO. To reproduce the issue, write 3 bytes