rpm package

suse/kernel-syms-azure&distro=SUSE Linux Enterprise Module for Public Cloud 15 SP6

pkg:rpm/suse/kernel-syms-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP6

Vulnerabilities (3,769)

CVE	CVSS	Affected versions	Fixed in	Published	Description
CVE-2025-37830	—	< 6.4.0-150600.8.40.1	6.4.0-150600.8.40.1	May 8, 2025	In the Linux kernel, the following vulnerability has been resolved: cpufreq: scmi: Fix null-ptr-deref in scmi_cpufreq_get_rate() cpufreq_cpu_get_raw() can return NULL when the target CPU is not present in the policy->cpus mask. scmi_cpufreq_get_rate() does not check for this ca
CVE-2025-37829	—	< 6.4.0-150600.8.40.1	6.4.0-150600.8.40.1	May 8, 2025	In the Linux kernel, the following vulnerability has been resolved: cpufreq: scpi: Fix null-ptr-deref in scpi_cpufreq_get_rate() cpufreq_cpu_get_raw() can return NULL when the target CPU is not present in the policy->cpus mask. scpi_cpufreq_get_rate() does not check for this ca
CVE-2025-37824	—	< 6.4.0-150600.8.40.1	6.4.0-150600.8.40.1	May 8, 2025	In the Linux kernel, the following vulnerability has been resolved: tipc: fix NULL pointer dereference in tipc_mon_reinit_self() syzbot reported: tipc: Node number set to 1055423674 Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1
CVE-2025-37823	—	< 6.4.0-150600.8.40.1	6.4.0-150600.8.40.1	May 8, 2025	In the Linux kernel, the following vulnerability has been resolved: net_sched: hfsc: Fix a potential UAF in hfsc_dequeue() too Similarly to the previous patch, we need to safe guard hfsc_dequeue() too. But for this one, we don't have a reliable reproducer.
CVE-2025-37820	—	< 6.4.0-150600.8.40.1	6.4.0-150600.8.40.1	May 8, 2025	In the Linux kernel, the following vulnerability has been resolved: xen-netfront: handle NULL returned by xdp_convert_buff_to_frame() The function xdp_convert_buff_to_frame() may return NULL if it fails to correctly convert the XDP buffer into an XDP frame due to memory constra
CVE-2025-37819	—	< 6.4.0-150600.8.40.1	6.4.0-150600.8.40.1	May 8, 2025	In the Linux kernel, the following vulnerability has been resolved: irqchip/gic-v2m: Prevent use after free of gicv2m_get_fwnode() With ACPI in place, gicv2m_get_fwnode() is registered with the pci subsystem as pci_msi_get_fwnode_cb(), which may get invoked at runtime during a
CVE-2025-37815	—	< 6.4.0-150600.8.40.1	6.4.0-150600.8.40.1	May 8, 2025	In the Linux kernel, the following vulnerability has been resolved: misc: microchip: pci1xxxx: Fix Kernel panic during IRQ handler registration Resolve kernel panic while accessing IRQ handler associated with the generated IRQ. This is done by acquiring the spinlock and storing
CVE-2025-37812	—	< 6.4.0-150600.8.40.1	6.4.0-150600.8.40.1	May 8, 2025	In the Linux kernel, the following vulnerability has been resolved: usb: cdns3: Fix deadlock when using NCM gadget The cdns3 driver has the same NCM deadlock as fixed in cdnsp by commit 58f2fcb3a845 ("usb: cdnsp: Fix deadlock issue during using NCM gadget"). Under PREEMPT_RT t
CVE-2025-37811	—	< 6.4.0-150600.8.43.1	6.4.0-150600.8.43.1	May 8, 2025	In the Linux kernel, the following vulnerability has been resolved: usb: chipidea: ci_hdrc_imx: fix usbmisc handling usbmisc is an optional device property so it is totally valid for the corresponding data->usbmisc_data to have a NULL value. Check that before dereferencing the
CVE-2025-37810	—	< 6.4.0-150600.8.40.1	6.4.0-150600.8.40.1	May 8, 2025	In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: gadget: check that event count does not exceed event buffer length The event count is read from register DWC3_GEVNTCOUNT. There is a check for the count being zero, but not for exceeding the event bu
CVE-2025-37809	—	< 6.4.0-150600.8.40.1	6.4.0-150600.8.40.1	May 8, 2025	In the Linux kernel, the following vulnerability has been resolved: usb: typec: class: Fix NULL pointer access Concurrent calls to typec_partner_unlink_device can lead to a NULL pointer dereference. This patch adds a mutex to protect USB device pointers and prevent this issue.
CVE-2025-37805	—	< 6.4.0-150600.8.40.1	6.4.0-150600.8.40.1	May 8, 2025	In the Linux kernel, the following vulnerability has been resolved: sound/virtio: Fix cancel_sync warnings on uninitialized work_structs Betty reported hitting the following warning: [ 8.709131][ T221] WARNING: CPU: 2 PID: 221 at kernel/workqueue.c:4182 ... [ 8.713282][
CVE-2025-37803	—	< 6.4.0-150600.8.40.1	6.4.0-150600.8.40.1	May 8, 2025	In the Linux kernel, the following vulnerability has been resolved: udmabuf: fix a buf size overflow issue during udmabuf creation by casting size_limit_mb to u64 when calculate pglimit.
CVE-2025-37801	—	< 6.4.0-150600.8.43.1	6.4.0-150600.8.43.1	May 8, 2025	In the Linux kernel, the following vulnerability has been resolved: spi: spi-imx: Add check for spi_imx_setupxfer() Add check for the return value of spi_imx_setupxfer(). spi_imx->rx and spi_imx->tx function pointer can be NULL when spi_imx_setupxfer() return error, and make NU
CVE-2025-37800	—	< 6.4.0-150600.8.43.1	6.4.0-150600.8.43.1	May 8, 2025	In the Linux kernel, the following vulnerability has been resolved: driver core: fix potential NULL pointer dereference in dev_uevent() If userspace reads "uevent" device attribute at the same time as another threads unbinds the device from its driver, change to dev->driver fro
CVE-2024-58237	—	< 6.4.0-150600.8.40.1	6.4.0-150600.8.40.1	May 5, 2025	In the Linux kernel, the following vulnerability has been resolved: bpf: consider that tail calls invalidate packet pointers Tail-called programs could execute any of the helpers that invalidate packet pointers. Hence, conservatively assume that each tail call invalidates packe
CVE-2024-58100	—	< 6.4.0-150600.8.40.1	6.4.0-150600.8.40.1	May 5, 2025	In the Linux kernel, the following vulnerability has been resolved: bpf: check changes_pkt_data property for extension programs When processing calls to global sub-programs, verifier decides whether to invalidate all packet pointers in current state depending on the changes_pkt
CVE-2024-58098	—	< 6.4.0-150600.8.40.1	6.4.0-150600.8.40.1	May 5, 2025	In the Linux kernel, the following vulnerability has been resolved: bpf: track changes_pkt_data property for global functions When processing calls to certain helpers, verifier invalidates all packet pointers in a current state. For example, consider the following program:
CVE-2025-37799	—	< 6.4.0-150600.8.37.1	6.4.0-150600.8.37.1	May 3, 2025	In the Linux kernel, the following vulnerability has been resolved: vmxnet3: Fix malformed packet sizing in vmxnet3_process_xdp vmxnet3 driver's XDP handling is buggy for packet sizes using ring0 (that is, packet sizes between 128 - 3k bytes). We noticed MTU-related connectivi
CVE-2025-37798	—	< 6.4.0-150600.8.37.1	6.4.0-150600.8.37.1	May 2, 2025	In the Linux kernel, the following vulnerability has been resolved: codel: remove sch->q.qlen check before qdisc_tree_reduce_backlog() After making all ->qlen_notify() callbacks idempotent, now it is safe to remove the check of qlen!=0 from both fq_codel_dequeue() and codel_qdi

CVE-2025-37830May 8, 2025
affected < 6.4.0-150600.8.40.1fixed 6.4.0-150600.8.40.1
In the Linux kernel, the following vulnerability has been resolved: cpufreq: scmi: Fix null-ptr-deref in scmi_cpufreq_get_rate() cpufreq_cpu_get_raw() can return NULL when the target CPU is not present in the policy->cpus mask. scmi_cpufreq_get_rate() does not check for this ca
CVE-2025-37829May 8, 2025
affected < 6.4.0-150600.8.40.1fixed 6.4.0-150600.8.40.1
In the Linux kernel, the following vulnerability has been resolved: cpufreq: scpi: Fix null-ptr-deref in scpi_cpufreq_get_rate() cpufreq_cpu_get_raw() can return NULL when the target CPU is not present in the policy->cpus mask. scpi_cpufreq_get_rate() does not check for this ca
CVE-2025-37824May 8, 2025
affected < 6.4.0-150600.8.40.1fixed 6.4.0-150600.8.40.1
In the Linux kernel, the following vulnerability has been resolved: tipc: fix NULL pointer dereference in tipc_mon_reinit_self() syzbot reported: tipc: Node number set to 1055423674 Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1
CVE-2025-37823May 8, 2025
affected < 6.4.0-150600.8.40.1fixed 6.4.0-150600.8.40.1
In the Linux kernel, the following vulnerability has been resolved: net_sched: hfsc: Fix a potential UAF in hfsc_dequeue() too Similarly to the previous patch, we need to safe guard hfsc_dequeue() too. But for this one, we don't have a reliable reproducer.
CVE-2025-37820May 8, 2025
affected < 6.4.0-150600.8.40.1fixed 6.4.0-150600.8.40.1
In the Linux kernel, the following vulnerability has been resolved: xen-netfront: handle NULL returned by xdp_convert_buff_to_frame() The function xdp_convert_buff_to_frame() may return NULL if it fails to correctly convert the XDP buffer into an XDP frame due to memory constra
CVE-2025-37819May 8, 2025
affected < 6.4.0-150600.8.40.1fixed 6.4.0-150600.8.40.1
In the Linux kernel, the following vulnerability has been resolved: irqchip/gic-v2m: Prevent use after free of gicv2m_get_fwnode() With ACPI in place, gicv2m_get_fwnode() is registered with the pci subsystem as pci_msi_get_fwnode_cb(), which may get invoked at runtime during a
CVE-2025-37815May 8, 2025
affected < 6.4.0-150600.8.40.1fixed 6.4.0-150600.8.40.1
In the Linux kernel, the following vulnerability has been resolved: misc: microchip: pci1xxxx: Fix Kernel panic during IRQ handler registration Resolve kernel panic while accessing IRQ handler associated with the generated IRQ. This is done by acquiring the spinlock and storing
CVE-2025-37812May 8, 2025
affected < 6.4.0-150600.8.40.1fixed 6.4.0-150600.8.40.1
In the Linux kernel, the following vulnerability has been resolved: usb: cdns3: Fix deadlock when using NCM gadget The cdns3 driver has the same NCM deadlock as fixed in cdnsp by commit 58f2fcb3a845 ("usb: cdnsp: Fix deadlock issue during using NCM gadget"). Under PREEMPT_RT t
CVE-2025-37811May 8, 2025
affected < 6.4.0-150600.8.43.1fixed 6.4.0-150600.8.43.1
In the Linux kernel, the following vulnerability has been resolved: usb: chipidea: ci_hdrc_imx: fix usbmisc handling usbmisc is an optional device property so it is totally valid for the corresponding data->usbmisc_data to have a NULL value. Check that before dereferencing the
CVE-2025-37810May 8, 2025
affected < 6.4.0-150600.8.40.1fixed 6.4.0-150600.8.40.1
In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: gadget: check that event count does not exceed event buffer length The event count is read from register DWC3_GEVNTCOUNT. There is a check for the count being zero, but not for exceeding the event bu
CVE-2025-37809May 8, 2025
affected < 6.4.0-150600.8.40.1fixed 6.4.0-150600.8.40.1
In the Linux kernel, the following vulnerability has been resolved: usb: typec: class: Fix NULL pointer access Concurrent calls to typec_partner_unlink_device can lead to a NULL pointer dereference. This patch adds a mutex to protect USB device pointers and prevent this issue.
CVE-2025-37805May 8, 2025
affected < 6.4.0-150600.8.40.1fixed 6.4.0-150600.8.40.1
In the Linux kernel, the following vulnerability has been resolved: sound/virtio: Fix cancel_sync warnings on uninitialized work_structs Betty reported hitting the following warning: [ 8.709131][ T221] WARNING: CPU: 2 PID: 221 at kernel/workqueue.c:4182 ... [ 8.713282][
CVE-2025-37803May 8, 2025
affected < 6.4.0-150600.8.40.1fixed 6.4.0-150600.8.40.1
In the Linux kernel, the following vulnerability has been resolved: udmabuf: fix a buf size overflow issue during udmabuf creation by casting size_limit_mb to u64 when calculate pglimit.
CVE-2025-37801May 8, 2025
affected < 6.4.0-150600.8.43.1fixed 6.4.0-150600.8.43.1
In the Linux kernel, the following vulnerability has been resolved: spi: spi-imx: Add check for spi_imx_setupxfer() Add check for the return value of spi_imx_setupxfer(). spi_imx->rx and spi_imx->tx function pointer can be NULL when spi_imx_setupxfer() return error, and make NU
CVE-2025-37800May 8, 2025
affected < 6.4.0-150600.8.43.1fixed 6.4.0-150600.8.43.1
In the Linux kernel, the following vulnerability has been resolved: driver core: fix potential NULL pointer dereference in dev_uevent() If userspace reads "uevent" device attribute at the same time as another threads unbinds the device from its driver, change to dev->driver fro
CVE-2024-58237May 5, 2025
affected < 6.4.0-150600.8.40.1fixed 6.4.0-150600.8.40.1
In the Linux kernel, the following vulnerability has been resolved: bpf: consider that tail calls invalidate packet pointers Tail-called programs could execute any of the helpers that invalidate packet pointers. Hence, conservatively assume that each tail call invalidates packe
CVE-2024-58100May 5, 2025
affected < 6.4.0-150600.8.40.1fixed 6.4.0-150600.8.40.1
In the Linux kernel, the following vulnerability has been resolved: bpf: check changes_pkt_data property for extension programs When processing calls to global sub-programs, verifier decides whether to invalidate all packet pointers in current state depending on the changes_pkt
CVE-2024-58098May 5, 2025
affected < 6.4.0-150600.8.40.1fixed 6.4.0-150600.8.40.1
In the Linux kernel, the following vulnerability has been resolved: bpf: track changes_pkt_data property for global functions When processing calls to certain helpers, verifier invalidates all packet pointers in a current state. For example, consider the following program:
CVE-2025-37799May 3, 2025
affected < 6.4.0-150600.8.37.1fixed 6.4.0-150600.8.37.1
In the Linux kernel, the following vulnerability has been resolved: vmxnet3: Fix malformed packet sizing in vmxnet3_process_xdp vmxnet3 driver's XDP handling is buggy for packet sizes using ring0 (that is, packet sizes between 128 - 3k bytes). We noticed MTU-related connectivi
CVE-2025-37798May 2, 2025
affected < 6.4.0-150600.8.37.1fixed 6.4.0-150600.8.37.1
In the Linux kernel, the following vulnerability has been resolved: codel: remove sch->q.qlen check before qdisc_tree_reduce_backlog() After making all ->qlen_notify() callbacks idempotent, now it is safe to remove the check of qlen!=0 from both fq_codel_dequeue() and codel_qdi

Page 53 of 189