suse/kernel-syms-azure&distro=SUSE Linux Enterprise Module for Public Cloud 15 SP6

Vulnerabilities (3,769)

• CVE-2024-39291Jun 24, 2024
  affected < 6.4.0-150600.8.8.1fixed 6.4.0-150600.8.8.1

  In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix buffer size in gfx_v9_4_3_init_ cp_compute_microcode() and rlc_microcode() The function gfx_v9_4_3_init_microcode in gfx_v9_4_3.c was generating about potential truncation of output when using t

• CVE-2024-38664Jun 24, 2024
  affected < 6.4.0-150600.8.8.1fixed 6.4.0-150600.8.8.1

  In the Linux kernel, the following vulnerability has been resolved: drm: zynqmp_dpsub: Always register bridge We must always register the DRM bridge, since zynqmp_dp_hpd_work_func calls drm_bridge_hpd_notify, which in turn expects hpd_mutex to be initialized. We do this before

• CVE-2024-38663Jun 24, 2024
  affected < 6.4.0-150600.8.8.1fixed 6.4.0-150600.8.8.1

  In the Linux kernel, the following vulnerability has been resolved: blk-cgroup: fix list corruption from resetting io stat Since commit 3b8cc6298724 ("blk-cgroup: Optimize blkcg_rstat_flush()"), each iostat instance is added to blkcg percpu list, so blkcg_reset_stats() can't re

• CVE-2024-38384Jun 24, 2024
  affected < 6.4.0-150600.8.8.1fixed 6.4.0-150600.8.8.1

  In the Linux kernel, the following vulnerability has been resolved: blk-cgroup: fix list corruption from reorder of WRITE ->lqueued __blkcg_rstat_flush() can be run anytime, especially when blk_cgroup_bio_start is being executed. If WRITE of `->lqueued` is re-ordered with READ

• CVE-2024-38780MedJun 21, 2024
  affected < 6.4.0-150600.8.8.1fixed 6.4.0-150600.8.8.1

  In the Linux kernel, the following vulnerability has been resolved: dma-buf/sw-sync: don't enable IRQ from sync_print_obj() Since commit a6aa8fca4d79 ("dma-buf/sw-sync: Reduce irqsave/irqrestore from known context") by error replaced spin_unlock_irqrestore() with spin_unlock_ir

• CVE-2024-38662MedJun 21, 2024
  affected < 6.4.0-150600.8.11.1fixed 6.4.0-150600.8.11.1

  In the Linux kernel, the following vulnerability has been resolved: bpf: Allow delete from sockmap/sockhash only if update is allowed We have seen an influx of syzkaller reports where a BPF program attached to a tracepoint triggers a locking rule violation by performing a map_d

• CVE-2024-36288MedJun 21, 2024
  affected < 6.4.0-150600.8.11.1fixed 6.4.0-150600.8.11.1

  In the Linux kernel, the following vulnerability has been resolved: SUNRPC: Fix loop termination condition in gss_free_in_token_pages() The in_token->pages[] array is not NULL terminated. This results in the following KASAN splat: KASAN: maybe wild-memory-access in range [0x

• CVE-2024-36477Jun 21, 2024
  affected < 6.4.0-150600.8.8.1fixed 6.4.0-150600.8.8.1

  In the Linux kernel, the following vulnerability has been resolved: tpm_tis_spi: Account for SPI header when allocating TPM SPI xfer buffer The TPM SPI transfer mechanism uses MAX_SPI_FRAMESIZE for computing the maximum transfer length and the size of the transfer buffer. As su

• CVE-2024-34777Jun 21, 2024
  affected < 6.4.0-150600.8.8.1fixed 6.4.0-150600.8.8.1

  In the Linux kernel, the following vulnerability has been resolved: dma-mapping: benchmark: fix node id validation While validating node ids in map_benchmark_ioctl(), node_possible() may be provided with invalid argument outside of [0,MAX_NUMNODES-1] range leading to: BUG: KAS

• CVE-2024-39277Jun 21, 2024
  affected < 6.4.0-150600.8.8.1fixed 6.4.0-150600.8.8.1

  In the Linux kernel, the following vulnerability has been resolved: dma-mapping: benchmark: handle NUMA_NO_NODE correctly cpumask_of_node() can be called for NUMA_NO_NODE inside do_map_benchmark() resulting in the following sanitizer report: UBSAN: array-index-out-of-bounds in

• CVE-2024-38659HigJun 21, 2024
  affected < 6.4.0-150600.8.8.1fixed 6.4.0-150600.8.8.1

  In the Linux kernel, the following vulnerability has been resolved: enic: Validate length of nl attributes in enic_set_vf_port enic_set_vf_port assumes that the nl attribute IFLA_PORT_PROFILE is of length PORT_PROFILE_MAX and that the nl attributes IFLA_PORT_INSTANCE_UUID, IFLA

• CVE-2024-38635HigJun 21, 2024
  affected < 6.4.0-150600.8.8.1fixed 6.4.0-150600.8.8.1

  In the Linux kernel, the following vulnerability has been resolved: soundwire: cadence: fix invalid PDI offset For some reason, we add an offset to the PDI, presumably to skip the PDI0 and PDI1 which are reserved for BPT. This code is however completely wrong and leads to an o

• CVE-2024-38381HigJun 21, 2024
  affected < 6.4.0-150600.8.8.1fixed 6.4.0-150600.8.8.1

  In the Linux kernel, the following vulnerability has been resolved: nfc: nci: Fix uninit-value in nci_rx_work syzbot reported the following uninit-value access issue [1] nci_rx_work() parses received packet from ndev->rx_q. It should be validated header size, payload size and

• CVE-2024-36489MedJun 21, 2024
  affected < 6.4.0-150600.8.11.1fixed 6.4.0-150600.8.11.1

  In the Linux kernel, the following vulnerability has been resolved: tls: fix missing memory barrier in tls_init In tls_init(), a write memory barrier is missing, and store-store reordering may cause NULL dereference in tls_{setsockopt,getsockopt}. CPU0

• CVE-2024-36484MedJun 21, 2024
  affected < 6.4.0-150600.8.20.1fixed 6.4.0-150600.8.20.1

  In the Linux kernel, the following vulnerability has been resolved: net: relax socket state check at accept time. Christoph reported the following splat: WARNING: CPU: 1 PID: 772 at net/ipv4/af_inet.c:761 __inet_accept+0x1f4/0x4a0 Modules linked in: CPU: 1 PID: 772 Comm: syz-e

• CVE-2024-36286MedJun 21, 2024
  affected < 6.4.0-150600.8.11.1fixed 6.4.0-150600.8.11.1

  In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlink_queue: acquire rcu_read_lock() in instance_destroy_rcu() syzbot reported that nf_reinject() could be called without rcu_read_lock() : WARNING: suspicious RCU usage 6.9.0-rc7-syzkaller-0206

• CVE-2024-36270MedJun 21, 2024
  affected < 6.4.0-150600.8.11.1fixed 6.4.0-150600.8.11.1

  In the Linux kernel, the following vulnerability has been resolved: netfilter: tproxy: bail out if IP has been disabled on the device syzbot reports: general protection fault, probably for non-canonical address 0xdffffc0000000003: 0000 [#1] PREEMPT SMP KASAN PTI KASAN: null-ptr

• CVE-2024-38636Jun 21, 2024
  affected < 6.4.0-150600.8.8.1fixed 6.4.0-150600.8.8.1

  In the Linux kernel, the following vulnerability has been resolved: f2fs: multidev: fix to recognize valid zero block address As reported by Yi Zhang in mailing list [1], kernel warning was catched during zbd/010 test as below: ./check zbd/010 zbd/010 (test gap zone support wi

• CVE-2024-38634Jun 21, 2024
  affected < 6.4.0-150600.8.8.1fixed 6.4.0-150600.8.8.1

  In the Linux kernel, the following vulnerability has been resolved: serial: max3100: Lock port->lock when calling uart_handle_cts_change() uart_handle_cts_change() has to be called with port lock taken, Since we run it in a separate work, the lock may not be taken at the time o

• CVE-2024-38633Jun 21, 2024
  affected < 6.4.0-150600.8.8.1fixed 6.4.0-150600.8.8.1

  In the Linux kernel, the following vulnerability has been resolved: serial: max3100: Update uart_driver_registered on driver removal The removal of the last MAX3100 device triggers the removal of the driver. However, code doesn't update the respective global variable and after