rpm package
suse/kernel-syms-rt&distro=SUSE Real Time Module 15 SP5
pkg:rpm/suse/kernel-syms-rt&distro=SUSE%20Real%20Time%20Module%2015%20SP5
Vulnerabilities (2,442)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-48995 | — | < 5.14.21-150500.13.76.1 | 5.14.21-150500.13.76.1 | Oct 21, 2024 | In the Linux kernel, the following vulnerability has been resolved: Input: raydium_ts_i2c - fix memory leak in raydium_i2c_send() There is a kmemleak when test the raydium_i2c_ts with bpf mock device: unreferenced object 0xffff88812d3675a0 (size 8): comm "python3", pid 3 | ||
| CVE-2022-48994 | — | < 5.14.21-150500.13.76.1 | 5.14.21-150500.13.76.1 | Oct 21, 2024 | In the Linux kernel, the following vulnerability has been resolved: ALSA: seq: Fix function prototype mismatch in snd_seq_expand_var_event With clang's kernel control flow integrity (kCFI, CONFIG_CFI_CLANG), indirect call targets are validated against the expected function poin | ||
| CVE-2022-48992 | — | < 5.14.21-150500.13.76.1 | 5.14.21-150500.13.76.1 | Oct 21, 2024 | In the Linux kernel, the following vulnerability has been resolved: ASoC: soc-pcm: Add NULL check in BE reparenting Add NULL check in dpcm_be_reparent API, to handle kernel NULL pointer dereference error. The issue occurred in fuzzing test. | ||
| CVE-2022-48991 | — | < 5.14.21-150500.13.76.1 | 5.14.21-150500.13.76.1 | Oct 21, 2024 | In the Linux kernel, the following vulnerability has been resolved: mm/khugepaged: invoke MMU notifiers in shmem/file collapse paths Any codepath that zaps page table entries must invoke MMU notifiers to ensure that secondary MMUs (like KVM) don't keep accessing pages which are | ||
| CVE-2022-48990 | — | < 5.14.21-150500.13.79.1 | 5.14.21-150500.13.79.1 | Oct 21, 2024 | In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix use-after-free during gpu recovery [Why] [ 754.862560] refcount_t: underflow; use-after-free. [ 754.862898] Call Trace: [ 754.862903] [ 754.862913] amdgpu_job_free_c | ||
| CVE-2022-48989 | — | < 5.14.21-150500.13.79.1 | 5.14.21-150500.13.79.1 | Oct 21, 2024 | In the Linux kernel, the following vulnerability has been resolved: fscache: Fix oops due to race with cookie_lru and use_cookie If a cookie expires from the LRU and the LRU_DISCARD flag is set, but the state machine has not run yet, it's possible another thread can call fscach | ||
| CVE-2022-48988 | — | < 5.14.21-150500.13.76.1 | 5.14.21-150500.13.76.1 | Oct 21, 2024 | In the Linux kernel, the following vulnerability has been resolved: memcg: fix possible use-after-free in memcg_write_event_control() memcg_write_event_control() accesses the dentry->d_name of the specified control fd to route the write call. As a cgroup interface file can't b | ||
| CVE-2022-48987 | — | < 5.14.21-150500.13.76.1 | 5.14.21-150500.13.76.1 | Oct 21, 2024 | In the Linux kernel, the following vulnerability has been resolved: media: v4l2-dv-timings.c: fix too strict blanking sanity checks Sanity checks were added to verify the v4l2_bt_timings blanking fields in order to avoid integer overflows when userspace passes weird values. Bu | ||
| CVE-2022-48985 | — | < 5.14.21-150500.13.76.1 | 5.14.21-150500.13.76.1 | Oct 21, 2024 | In the Linux kernel, the following vulnerability has been resolved: net: mana: Fix race on per-CQ variable napi work_done After calling napi_complete_done(), the NAPIF_STATE_SCHED bit may be cleared, and another CPU can start napi thread and access per-CQ variable, cq->work_don | ||
| CVE-2022-48983 | — | < 5.14.21-150500.13.79.1 | 5.14.21-150500.13.79.1 | Oct 21, 2024 | In the Linux kernel, the following vulnerability has been resolved: io_uring: Fix a null-ptr-deref in io_tctx_exit_cb() Syzkaller reports a NULL deref bug as follows: BUG: KASAN: null-ptr-deref in io_tctx_exit_cb+0x53/0xd3 Read of size 4 at addr 0000000000000138 by task file | ||
| CVE-2022-48982 | — | < 5.14.21-150500.13.79.1 | 5.14.21-150500.13.79.1 | Oct 21, 2024 | In the Linux kernel, the following vulnerability has been resolved: Bluetooth: Fix crash when replugging CSR fake controllers It seems fake CSR 5.0 clones can cause the suspend notifier to be registered twice causing the following kernel panic: [ 71.986122] Call Trace: [ 7 | ||
| CVE-2022-48981 | — | < 5.14.21-150500.13.76.1 | 5.14.21-150500.13.76.1 | Oct 21, 2024 | In the Linux kernel, the following vulnerability has been resolved: drm/shmem-helper: Remove errant put in error path drm_gem_shmem_mmap() doesn't own this reference, resulting in the GEM object getting prematurely freed leading to a later use-after-free. | ||
| CVE-2022-48980 | — | < 5.14.21-150500.13.76.1 | 5.14.21-150500.13.76.1 | Oct 21, 2024 | In the Linux kernel, the following vulnerability has been resolved: net: dsa: sja1105: avoid out of bounds access in sja1105_init_l2_policing() The SJA1105 family has 45 L2 policing table entries (SJA1105_MAX_L2_POLICING_COUNT) and SJA1110 has 110 (SJA1110_MAX_L2_POLICING_COUNT | ||
| CVE-2022-48979 | — | < 5.14.21-150500.13.79.1 | 5.14.21-150500.13.79.1 | Oct 21, 2024 | In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: fix array index out of bound error in DCN32 DML [Why&How] LinkCapacitySupport array is indexed with the number of voltage states and not the number of max DPPs. Fix the error by changing the ar | ||
| CVE-2022-48978 | — | < 5.14.21-150500.13.76.1 | 5.14.21-150500.13.76.1 | Oct 21, 2024 | In the Linux kernel, the following vulnerability has been resolved: HID: core: fix shift-out-of-bounds in hid_report_raw_event Syzbot reported shift-out-of-bounds in hid_report_raw_event. microsoft 0003:045E:07DA.0001: hid_field_extract() called with n (128) > 32! (swapper/0) | ||
| CVE-2022-48977 | — | < 5.14.21-150500.13.76.1 | 5.14.21-150500.13.76.1 | Oct 21, 2024 | In the Linux kernel, the following vulnerability has been resolved: can: af_can: fix NULL pointer dereference in can_rcv_filter Analogue to commit 8aa59e355949 ("can: af_can: fix NULL pointer dereference in can_rx_register()") we need to check for a missing initialization of ml | ||
| CVE-2022-48975 | — | < 5.14.21-150500.13.76.1 | 5.14.21-150500.13.76.1 | Oct 21, 2024 | In the Linux kernel, the following vulnerability has been resolved: gpiolib: fix memory leak in gpiochip_setup_dev() Here is a backtrace report about memory leak detected in gpiochip_setup_dev(): unreferenced object 0xffff88810b406400 (size 512): comm "python3", pid 1682, ji | ||
| CVE-2022-48973 | — | < 5.14.21-150500.13.76.1 | 5.14.21-150500.13.76.1 | Oct 21, 2024 | In the Linux kernel, the following vulnerability has been resolved: gpio: amd8111: Fix PCI device reference count leak for_each_pci_dev() is implemented by pci_get_device(). The comment of pci_get_device() says that it will increase the reference count for the returned pci_dev | ||
| CVE-2022-48972 | — | < 5.14.21-150500.13.76.1 | 5.14.21-150500.13.76.1 | Oct 21, 2024 | In the Linux kernel, the following vulnerability has been resolved: mac802154: fix missing INIT_LIST_HEAD in ieee802154_if_add() Kernel fault injection test reports null-ptr-deref as follows: BUG: kernel NULL pointer dereference, address: 0000000000000008 RIP: 0010:cfg802154_n | ||
| CVE-2022-48971 | — | < 5.14.21-150500.13.76.1 | 5.14.21-150500.13.76.1 | Oct 21, 2024 | In the Linux kernel, the following vulnerability has been resolved: Bluetooth: Fix not cleanup led when bt_init fails bt_init() calls bt_leds_init() to register led, but if it fails later, bt_leds_cleanup() is not called to unregister it. This can cause panic if the argument " |
- CVE-2022-48995Oct 21, 2024affected < 5.14.21-150500.13.76.1fixed 5.14.21-150500.13.76.1
In the Linux kernel, the following vulnerability has been resolved: Input: raydium_ts_i2c - fix memory leak in raydium_i2c_send() There is a kmemleak when test the raydium_i2c_ts with bpf mock device: unreferenced object 0xffff88812d3675a0 (size 8): comm "python3", pid 3
- CVE-2022-48994Oct 21, 2024affected < 5.14.21-150500.13.76.1fixed 5.14.21-150500.13.76.1
In the Linux kernel, the following vulnerability has been resolved: ALSA: seq: Fix function prototype mismatch in snd_seq_expand_var_event With clang's kernel control flow integrity (kCFI, CONFIG_CFI_CLANG), indirect call targets are validated against the expected function poin
- CVE-2022-48992Oct 21, 2024affected < 5.14.21-150500.13.76.1fixed 5.14.21-150500.13.76.1
In the Linux kernel, the following vulnerability has been resolved: ASoC: soc-pcm: Add NULL check in BE reparenting Add NULL check in dpcm_be_reparent API, to handle kernel NULL pointer dereference error. The issue occurred in fuzzing test.
- CVE-2022-48991Oct 21, 2024affected < 5.14.21-150500.13.76.1fixed 5.14.21-150500.13.76.1
In the Linux kernel, the following vulnerability has been resolved: mm/khugepaged: invoke MMU notifiers in shmem/file collapse paths Any codepath that zaps page table entries must invoke MMU notifiers to ensure that secondary MMUs (like KVM) don't keep accessing pages which are
- CVE-2022-48990Oct 21, 2024affected < 5.14.21-150500.13.79.1fixed 5.14.21-150500.13.79.1
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix use-after-free during gpu recovery [Why] [ 754.862560] refcount_t: underflow; use-after-free. [ 754.862898] Call Trace: [ 754.862903] [ 754.862913] amdgpu_job_free_c
- CVE-2022-48989Oct 21, 2024affected < 5.14.21-150500.13.79.1fixed 5.14.21-150500.13.79.1
In the Linux kernel, the following vulnerability has been resolved: fscache: Fix oops due to race with cookie_lru and use_cookie If a cookie expires from the LRU and the LRU_DISCARD flag is set, but the state machine has not run yet, it's possible another thread can call fscach
- CVE-2022-48988Oct 21, 2024affected < 5.14.21-150500.13.76.1fixed 5.14.21-150500.13.76.1
In the Linux kernel, the following vulnerability has been resolved: memcg: fix possible use-after-free in memcg_write_event_control() memcg_write_event_control() accesses the dentry->d_name of the specified control fd to route the write call. As a cgroup interface file can't b
- CVE-2022-48987Oct 21, 2024affected < 5.14.21-150500.13.76.1fixed 5.14.21-150500.13.76.1
In the Linux kernel, the following vulnerability has been resolved: media: v4l2-dv-timings.c: fix too strict blanking sanity checks Sanity checks were added to verify the v4l2_bt_timings blanking fields in order to avoid integer overflows when userspace passes weird values. Bu
- CVE-2022-48985Oct 21, 2024affected < 5.14.21-150500.13.76.1fixed 5.14.21-150500.13.76.1
In the Linux kernel, the following vulnerability has been resolved: net: mana: Fix race on per-CQ variable napi work_done After calling napi_complete_done(), the NAPIF_STATE_SCHED bit may be cleared, and another CPU can start napi thread and access per-CQ variable, cq->work_don
- CVE-2022-48983Oct 21, 2024affected < 5.14.21-150500.13.79.1fixed 5.14.21-150500.13.79.1
In the Linux kernel, the following vulnerability has been resolved: io_uring: Fix a null-ptr-deref in io_tctx_exit_cb() Syzkaller reports a NULL deref bug as follows: BUG: KASAN: null-ptr-deref in io_tctx_exit_cb+0x53/0xd3 Read of size 4 at addr 0000000000000138 by task file
- CVE-2022-48982Oct 21, 2024affected < 5.14.21-150500.13.79.1fixed 5.14.21-150500.13.79.1
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: Fix crash when replugging CSR fake controllers It seems fake CSR 5.0 clones can cause the suspend notifier to be registered twice causing the following kernel panic: [ 71.986122] Call Trace: [ 7
- CVE-2022-48981Oct 21, 2024affected < 5.14.21-150500.13.76.1fixed 5.14.21-150500.13.76.1
In the Linux kernel, the following vulnerability has been resolved: drm/shmem-helper: Remove errant put in error path drm_gem_shmem_mmap() doesn't own this reference, resulting in the GEM object getting prematurely freed leading to a later use-after-free.
- CVE-2022-48980Oct 21, 2024affected < 5.14.21-150500.13.76.1fixed 5.14.21-150500.13.76.1
In the Linux kernel, the following vulnerability has been resolved: net: dsa: sja1105: avoid out of bounds access in sja1105_init_l2_policing() The SJA1105 family has 45 L2 policing table entries (SJA1105_MAX_L2_POLICING_COUNT) and SJA1110 has 110 (SJA1110_MAX_L2_POLICING_COUNT
- CVE-2022-48979Oct 21, 2024affected < 5.14.21-150500.13.79.1fixed 5.14.21-150500.13.79.1
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: fix array index out of bound error in DCN32 DML [Why&How] LinkCapacitySupport array is indexed with the number of voltage states and not the number of max DPPs. Fix the error by changing the ar
- CVE-2022-48978Oct 21, 2024affected < 5.14.21-150500.13.76.1fixed 5.14.21-150500.13.76.1
In the Linux kernel, the following vulnerability has been resolved: HID: core: fix shift-out-of-bounds in hid_report_raw_event Syzbot reported shift-out-of-bounds in hid_report_raw_event. microsoft 0003:045E:07DA.0001: hid_field_extract() called with n (128) > 32! (swapper/0)
- CVE-2022-48977Oct 21, 2024affected < 5.14.21-150500.13.76.1fixed 5.14.21-150500.13.76.1
In the Linux kernel, the following vulnerability has been resolved: can: af_can: fix NULL pointer dereference in can_rcv_filter Analogue to commit 8aa59e355949 ("can: af_can: fix NULL pointer dereference in can_rx_register()") we need to check for a missing initialization of ml
- CVE-2022-48975Oct 21, 2024affected < 5.14.21-150500.13.76.1fixed 5.14.21-150500.13.76.1
In the Linux kernel, the following vulnerability has been resolved: gpiolib: fix memory leak in gpiochip_setup_dev() Here is a backtrace report about memory leak detected in gpiochip_setup_dev(): unreferenced object 0xffff88810b406400 (size 512): comm "python3", pid 1682, ji
- CVE-2022-48973Oct 21, 2024affected < 5.14.21-150500.13.76.1fixed 5.14.21-150500.13.76.1
In the Linux kernel, the following vulnerability has been resolved: gpio: amd8111: Fix PCI device reference count leak for_each_pci_dev() is implemented by pci_get_device(). The comment of pci_get_device() says that it will increase the reference count for the returned pci_dev
- CVE-2022-48972Oct 21, 2024affected < 5.14.21-150500.13.76.1fixed 5.14.21-150500.13.76.1
In the Linux kernel, the following vulnerability has been resolved: mac802154: fix missing INIT_LIST_HEAD in ieee802154_if_add() Kernel fault injection test reports null-ptr-deref as follows: BUG: kernel NULL pointer dereference, address: 0000000000000008 RIP: 0010:cfg802154_n
- CVE-2022-48971Oct 21, 2024affected < 5.14.21-150500.13.76.1fixed 5.14.21-150500.13.76.1
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: Fix not cleanup led when bt_init fails bt_init() calls bt_leds_init() to register led, but if it fails later, bt_leds_cleanup() is not called to unregister it. This can cause panic if the argument "
Page 8 of 123