VYPR

rpm package

suse/kernel-syms-azure&distro=SUSE Linux Enterprise Module for Public Cloud 15 SP6

pkg:rpm/suse/kernel-syms-azure&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP6

Vulnerabilities (3,769)

  • CVE-2025-21636Jan 19, 2025
    affected < 6.4.0-150600.8.31.1fixed 6.4.0-150600.8.31.1

    In the Linux kernel, the following vulnerability has been resolved: sctp: sysctl: plpmtud_probe_interval: avoid using current->nsproxy As mentioned in a previous commit of this series, using the 'net' structure via 'current' is not recommended for different reasons: - Inconsis

  • CVE-2025-21635Jan 19, 2025
    affected < 6.4.0-150600.8.34.1fixed 6.4.0-150600.8.34.1

    In the Linux kernel, the following vulnerability has been resolved: rds: sysctl: rds_tcp_{rcv,snd}buf: avoid using current->nsproxy As mentioned in a previous commit of this series, using the 'net' structure via 'current' is not recommended for different reasons: - Inconsisten

  • CVE-2025-21632Jan 19, 2025
    affected < 6.4.0-150600.8.26.1fixed 6.4.0-150600.8.26.1

    In the Linux kernel, the following vulnerability has been resolved: x86/fpu: Ensure shadow stack is active before "getting" registers The x86 shadow stack support has its own set of registers. Those registers are XSAVE-managed, but they are "supervisor state components" which m

  • CVE-2025-21631Jan 19, 2025
    affected < 6.4.0-150600.8.34.1fixed 6.4.0-150600.8.34.1

    In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix waker_bfqq UAF after bfq_split_bfqq() Our syzkaller report a following UAF for v6.6: BUG: KASAN: slab-use-after-free in bfq_init_rq+0x175d/0x17a0 block/bfq-iosched.c:6958 Read of size 8 at addr

  • CVE-2024-57857Jan 15, 2025
    affected < 6.4.0-150600.8.26.1fixed 6.4.0-150600.8.26.1

    In the Linux kernel, the following vulnerability has been resolved: RDMA/siw: Remove direct link to net_device Do not manage a per device direct link to net_device. Rely on associated ib_devices net_device management, not doubling the effort locally. A badly managed local link

  • CVE-2024-57802Jan 15, 2025
    affected < 6.4.0-150600.8.26.1fixed 6.4.0-150600.8.26.1

    In the Linux kernel, the following vulnerability has been resolved: netrom: check buffer length before accessing it Syzkaller reports an uninit value read from ax25cmp when sending raw message through ieee802154 implementation. =================================================

  • CVE-2024-57801Jan 15, 2025
    affected < 6.4.0-150600.8.26.1fixed 6.4.0-150600.8.26.1

    In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Skip restore TC rules for vport rep without loaded flag During driver unload, unregister_netdev is called after unloading vport rep. So, the mlx5e_rep_priv is already freed while trying to get rpriv-

  • CVE-2024-57795Jan 15, 2025
    affected < 6.4.0-150600.8.26.1fixed 6.4.0-150600.8.26.1

    In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Remove the direct link to net_device The similar patch in siw is in the link: https://git.kernel.org/rdma/rdma/c/16b87037b48889 This problem also occurred in RXE. The following analyze this problem.

  • CVE-2024-39282Jan 15, 2025
    affected < 6.4.0-150600.8.26.1fixed 6.4.0-150600.8.26.1

    In the Linux kernel, the following vulnerability has been resolved: net: wwan: t7xx: Fix FSM command timeout issue When driver processes the internal state change command, it use an asynchronous thread to process the command operation. If the main thread detects that the task h

  • CVE-2024-36476Jan 15, 2025
    affected < 6.4.0-150600.8.26.1fixed 6.4.0-150600.8.26.1

    In the Linux kernel, the following vulnerability has been resolved: RDMA/rtrs: Ensure 'ib_sge list' is accessible Move the declaration of the 'ib_sge list' variable outside the 'always_invalidate' block to ensure it remains accessible for use throughout the function. Previousl

  • CVE-2025-21629Jan 15, 2025
    affected < 6.4.0-150600.8.40.1fixed 6.4.0-150600.8.40.1

    In the Linux kernel, the following vulnerability has been resolved: net: reenable NETIF_F_IPV6_CSUM offload for BIG TCP packets The blamed commit disabled hardware offoad of IPv6 packets with extension headers on devices that advertise NETIF_F_IPV6_CSUM, based on the definition

  • CVE-2024-57903Jan 15, 2025
    affected < 6.4.0-150600.8.26.1fixed 6.4.0-150600.8.26.1

    In the Linux kernel, the following vulnerability has been resolved: net: restrict SO_REUSEPORT to inet sockets After blamed commit, crypto sockets could accidentally be destroyed from RCU call back, as spotted by zyzbot [1]. Trying to acquire a mutex in RCU callback is not all

  • CVE-2024-57900Jan 15, 2025
    affected < 6.4.0-150600.8.34.1fixed 6.4.0-150600.8.34.1

    In the Linux kernel, the following vulnerability has been resolved: ila: serialize calls to nf_register_net_hooks() syzbot found a race in ila_add_mapping() [1] commit 031ae72825ce ("ila: call nf_unregister_net_hooks() sooner") attempted to fix a similar issue. Looking at the

  • CVE-2024-57899Jan 15, 2025
    affected < 6.4.0-150600.8.26.1fixed 6.4.0-150600.8.26.1

    In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: fix mbss changed flags corruption on 32 bit systems On 32-bit systems, the size of an unsigned long is 4 bytes, while a u64 is 8 bytes. Therefore, when using or_each_set_bit(bit, &bits, sizeof(c

  • CVE-2024-57897Jan 15, 2025
    affected < 6.4.0-150600.8.26.1fixed 6.4.0-150600.8.26.1

    In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Correct the migration DMA map direction The SVM DMA device map direction should be set the same as the DMA unmap setting, otherwise the DMA core will report the following warning. Before finialize

  • CVE-2024-57896Jan 15, 2025
    affected < 6.4.0-150600.8.26.1fixed 6.4.0-150600.8.26.1

    In the Linux kernel, the following vulnerability has been resolved: btrfs: flush delalloc workers queue before stopping cleaner kthread during unmount During the unmount path, at close_ctree(), we first stop the cleaner kthread, using kthread_stop() which frees the associated t

  • CVE-2024-57893Jan 15, 2025
    affected < 6.4.0-150600.8.26.1fixed 6.4.0-150600.8.26.1

    In the Linux kernel, the following vulnerability has been resolved: ALSA: seq: oss: Fix races at processing SysEx messages OSS sequencer handles the SysEx messages split in 6 bytes packets, and ALSA sequencer OSS layer tries to combine those. It stores the data in the internal

  • CVE-2024-57892Jan 15, 2025
    affected < 6.4.0-150600.8.26.1fixed 6.4.0-150600.8.26.1

    In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix slab-use-after-free due to dangling pointer dqi_priv When mounting ocfs2 and then remounting it as read-only, a slab-use-after-free occurs after the user uses a syscall to quota_getnextquota. Specif

  • CVE-2024-57890Jan 15, 2025
    affected < 6.4.0-150600.8.26.1fixed 6.4.0-150600.8.26.1

    In the Linux kernel, the following vulnerability has been resolved: RDMA/uverbs: Prevent integer overflow issue In the expression "cmd.wqe_size * cmd.wr_count", both variables are u32 values that come from the user so the multiplication can lead to integer wrapping. Then we pa

  • CVE-2024-57889Jan 15, 2025
    affected < 6.4.0-150600.8.31.1fixed 6.4.0-150600.8.31.1

    In the Linux kernel, the following vulnerability has been resolved: pinctrl: mcp23s08: Fix sleeping in atomic context due to regmap locking If a device uses MCP23xxx IO expander to receive IRQs, the following bug can happen: BUG: sleeping function called from invalid context

Page 78 of 189