suse/kernel-syms-azure&distro=SUSE Linux Enterprise Module for Public Cloud 15 SP6

Vulnerabilities (3,769)

• CVE-2024-39499Jul 12, 2024
  affected < 6.4.0-150600.8.11.1fixed 6.4.0-150600.8.11.1

  In the Linux kernel, the following vulnerability has been resolved: vmci: prevent speculation leaks by sanitizing event in event_deliver() Coverity spotted that event_msg is controlled by user-space, event_msg->event_data.event is passed to event_deliver() and used as an index

• CVE-2024-39498Jul 12, 2024
  affected < 6.4.0-150600.8.8.1fixed 6.4.0-150600.8.8.1

  In the Linux kernel, the following vulnerability has been resolved: drm/mst: Fix NULL pointer dereference at drm_dp_add_payload_part2 [Why] Commit: - commit 5aa1dfcdf0a4 ("drm/mst: Refactor the flow for payload allocation/removement") accidently overwrite the commit - commit 54

• CVE-2024-39497Jul 12, 2024
  affected < 6.4.0-150600.8.11.1fixed 6.4.0-150600.8.11.1

  In the Linux kernel, the following vulnerability has been resolved: drm/shmem-helper: Fix BUG_ON() on mmap(PROT_WRITE, MAP_PRIVATE) Lack of check for copy-on-write (COW) mapping in drm_gem_shmem_mmap allows users to call mmap with PROT_WRITE and MAP_PRIVATE flag causing a kerne

• CVE-2024-39496Jul 12, 2024
  affected < 6.4.0-150600.8.8.1fixed 6.4.0-150600.8.8.1

  In the Linux kernel, the following vulnerability has been resolved: btrfs: zoned: fix use-after-free due to race with dev replace While loading a zone's info during creation of a block group, we can race with a device replace operation and then trigger a use-after-free on the d

• CVE-2024-39494Jul 12, 2024
  affected < 6.4.0-150600.8.8.1fixed 6.4.0-150600.8.8.1

  In the Linux kernel, the following vulnerability has been resolved: ima: Fix use-after-free on a dentry's dname.name ->d_name.name can change on rename and the earlier value can be freed; there are conditions sufficient to stabilize it (->d_lock on dentry, ->d_lock on its paren

• CVE-2024-39493MedJul 10, 2024
  affected < 6.4.0-150600.8.11.1fixed 6.4.0-150600.8.11.1

  In the Linux kernel, the following vulnerability has been resolved: crypto: qat - Fix ADF_DEV_RESET_SYNC memory leak Using completion_done to determine whether the caller has gone away only works after a complete call. Furthermore it's still possible that the caller has not ye

• CVE-2024-39489MedJul 10, 2024
  affected < 6.4.0-150600.8.11.1fixed 6.4.0-150600.8.11.1

  In the Linux kernel, the following vulnerability has been resolved: ipv6: sr: fix memleak in seg6_hmac_init_algo seg6_hmac_init_algo returns without cleaning up the previous allocations if one fails, so it's going to leak all that memory and the crypto tfms. Update seg6_hmac_e

• CVE-2024-39491Jul 10, 2024
  affected < 6.4.0-150600.8.11.1fixed 6.4.0-150600.8.11.1

  In the Linux kernel, the following vulnerability has been resolved: ALSA: hda: cs35l56: Fix lifetime of cs_dsp instance The cs_dsp instance is initialized in the driver probe() so it should be freed in the driver remove(). Also fix a missing call to cs_dsp_remove() in the error

• CVE-2024-39490Jul 10, 2024
  affected < 6.4.0-150600.8.8.1fixed 6.4.0-150600.8.8.1

  In the Linux kernel, the following vulnerability has been resolved: ipv6: sr: fix missing sk_buff release in seg6_input_core The seg6_input() function is responsible for adding the SRH into a packet, delegating the operation to the seg6_input_core(). This function uses the skb_

• CVE-2024-39488Jul 10, 2024
  affected < 6.4.0-150600.8.11.1fixed 6.4.0-150600.8.11.1

  In the Linux kernel, the following vulnerability has been resolved: arm64: asm-bug: Add .align 2 to the end of __BUG_ENTRY When CONFIG_DEBUG_BUGVERBOSE=n, we fail to add necessary padding bytes to bug_table entries, and as a result the last entry in a bug table will be ignored,

• CVE-2024-39487Jul 9, 2024
  affected < 6.4.0-150600.8.8.1fixed 6.4.0-150600.8.8.1

  In the Linux kernel, the following vulnerability has been resolved: bonding: Fix out-of-bounds read in bond_option_arp_ip_targets_set() In function bond_option_arp_ip_targets_set(), if newval->string is an empty string, newval->string+1 will point to the byte after the string,

• CVE-2024-39486Jul 6, 2024
  affected < 6.4.0-150600.8.11.1fixed 6.4.0-150600.8.11.1

  In the Linux kernel, the following vulnerability has been resolved: drm/drm_file: Fix pid refcounting race <[email protected]>, Maxime Ripard <[email protected]>, Thomas Zimmermann <[email protected]> filp->pid is supposed to be a refcounted pointer; however

• CVE-2024-39482MedJul 5, 2024
  affected < 6.4.0-150600.8.8.1fixed 6.4.0-150600.8.8.1

  In the Linux kernel, the following vulnerability has been resolved: bcache: fix variable length array abuse in btree_iter btree_iter is used in two ways: either allocated on the stack with a fixed size MAX_BSETS, or from a mempool with a dynamic size based on the specific cache

• CVE-2024-39484Jul 5, 2024
  affected < 6.4.0-150600.8.11.1fixed 6.4.0-150600.8.11.1

  In the Linux kernel, the following vulnerability has been resolved: mmc: davinci: Don't strip remove function when driver is builtin Using __exit for the remove function results in the remove callback being discarded with CONFIG_MMC_DAVINCI=y. When such a device gets unbound (e

• CVE-2024-39483Jul 5, 2024
  affected < 6.4.0-150600.8.11.1fixed 6.4.0-150600.8.11.1

  In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: WARN on vNMI + NMI window iff NMIs are outright masked When requesting an NMI window, WARN on vNMI support being enabled if and only if NMIs are actually masked, i.e. if the vCPU is already handling a

• CVE-2024-39481Jul 5, 2024
  affected < 6.4.0-150600.8.8.1fixed 6.4.0-150600.8.8.1

  In the Linux kernel, the following vulnerability has been resolved: media: mc: Fix graph walk in media_pipeline_start The graph walk tries to follow all links, even if they are not between pads. This causes a crash with, e.g. a MEDIA_LNK_FL_ANCILLARY_LINK link. Fix this by all

• CVE-2024-39480Jul 5, 2024
  affected < 6.4.0-150600.8.23.1fixed 6.4.0-150600.8.23.1

  In the Linux kernel, the following vulnerability has been resolved: kdb: Fix buffer overflow during tab-complete Currently, when the user attempts symbol completion with the Tab key, kdb will use strncpy() to insert the completed symbol into the command buffer. Unfortunately it

• CVE-2024-39479Jul 5, 2024
  affected < 6.4.0-150600.8.8.1fixed 6.4.0-150600.8.8.1

  In the Linux kernel, the following vulnerability has been resolved: drm/i915/hwmon: Get rid of devm When both hwmon and hwmon drvdata (on which hwmon depends) are device managed resources, the expectation, on device unbind, is that hwmon will be released before drvdata. However

• CVE-2024-39476Jul 5, 2024
  affected < 6.4.0-150600.8.11.1fixed 6.4.0-150600.8.11.1

  In the Linux kernel, the following vulnerability has been resolved: md/raid5: fix deadlock that raid5d() wait for itself to clear MD_SB_CHANGE_PENDING Xiao reported that lvm2 test lvconvert-raid-takeover.sh can hang with small possibility, the root cause is exactly the same as

• CVE-2024-39475Jul 5, 2024
  affected < 6.4.0-150600.8.8.1fixed 6.4.0-150600.8.8.1

  In the Linux kernel, the following vulnerability has been resolved: fbdev: savage: Handle err return when savagefb_check_var failed The commit 04e5eac8f3ab("fbdev: savage: Error out if pixclock equals zero") checks the value of pixclock to avoid divide-by-zero error. However th