rpm package
suse/kernel-syms-rt&distro=SUSE Real Time Module 15 SP6
pkg:rpm/suse/kernel-syms-rt&distro=SUSE%20Real%20Time%20Module%2015%20SP6
Vulnerabilities (3,740)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2023-53730 | — | < 6.4.0-150600.10.58.1 | 6.4.0-150600.10.58.1 | Oct 22, 2025 | In the Linux kernel, the following vulnerability has been resolved: blk-iocost: use spin_lock_irqsave in adjust_inuse_and_calc_cost adjust_inuse_and_calc_cost() use spin_lock_irq() and IRQ will be enabled when unlock. DEADLOCK might happen if we have held other locks and disabl | ||
| CVE-2023-53729 | — | < 6.4.0-150600.10.58.1 | 6.4.0-150600.10.58.1 | Oct 22, 2025 | In the Linux kernel, the following vulnerability has been resolved: soc: qcom: qmi_encdec: Restrict string length in decode The QMI TLV value for strings in a lot of qmi element info structures account for null terminated strings with MAX_LEN + 1. If a string is actually MAX_LE | ||
| CVE-2023-53728 | — | < 6.4.0-150600.10.58.1 | 6.4.0-150600.10.58.1 | Oct 22, 2025 | In the Linux kernel, the following vulnerability has been resolved: posix-timers: Ensure timer ID search-loop limit is valid posix_timer_add() tries to allocate a posix timer ID by starting from the cached ID which was stored by the last successful allocation. This is done in | ||
| CVE-2023-53727 | — | < 6.4.0-150600.10.58.1 | 6.4.0-150600.10.58.1 | Oct 22, 2025 | In the Linux kernel, the following vulnerability has been resolved: net/sched: fq_pie: avoid stalls in fq_pie_timer() When setting a high number of flows (limit being 65536), fq_pie_timer() is currently using too much time as syzbot reported. Add logic to yield the cpu every 2 | ||
| CVE-2023-53726 | — | < 6.4.0-150600.10.58.1 | 6.4.0-150600.10.58.1 | Oct 22, 2025 | In the Linux kernel, the following vulnerability has been resolved: arm64: csum: Fix OoB access in IP checksum code for negative lengths Although commit c2c24edb1d9c ("arm64: csum: Fix pathological zero-length calls") added an early return for zero-length input, syzkaller has p | ||
| CVE-2023-53725 | — | < 6.4.0-150600.10.58.1 | 6.4.0-150600.10.58.1 | Oct 22, 2025 | In the Linux kernel, the following vulnerability has been resolved: clocksource/drivers/cadence-ttc: Fix memory leak in ttc_timer_probe Smatch reports: drivers/clocksource/timer-cadence-ttc.c:529 ttc_timer_probe() warn: 'timer_baseaddr' from of_iomap() not released on lines: 49 | ||
| CVE-2023-53722 | — | < 6.4.0-150600.10.58.1 | 6.4.0-150600.10.58.1 | Oct 22, 2025 | In the Linux kernel, the following vulnerability has been resolved: md: raid1: fix potential OOB in raid1_remove_disk() If rddev->raid_disk is greater than mddev->raid_disks, there will be an out-of-bounds in raid1_remove_disk(). We have already found similar reports as follows | ||
| CVE-2023-53721 | — | < 6.4.0-150600.10.58.1 | 6.4.0-150600.10.58.1 | Oct 22, 2025 | In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: Fix a NULL pointer dereference in ath12k_mac_op_hw_scan() In ath12k_mac_op_hw_scan(), the return value of kzalloc() is directly used in memcpy(), which may lead to a NULL pointer dereference on fa | ||
| CVE-2023-53718 | — | < 6.4.0-150600.10.58.1 | 6.4.0-150600.10.58.1 | Oct 22, 2025 | In the Linux kernel, the following vulnerability has been resolved: ring-buffer: Do not swap cpu_buffer during resize process When ring_buffer_swap_cpu was called during resize process, the cpu buffer was swapped in the middle, resulting in incorrect state. Continuing to run in | ||
| CVE-2023-53713 | — | < 6.4.0-150600.10.58.1 | 6.4.0-150600.10.58.1 | Oct 22, 2025 | In the Linux kernel, the following vulnerability has been resolved: arm64: sme: Use STR P to clear FFR context field in streaming SVE mode The FFR is a predicate register which can vary between 16 and 256 bits in size depending upon the configured vector length. When saving the | ||
| CVE-2023-53711 | — | < 6.4.0-150600.10.58.1 | 6.4.0-150600.10.58.1 | Oct 22, 2025 | In the Linux kernel, the following vulnerability has been resolved: NFS: Fix a potential data corruption We must ensure that the subrequests are joined back into the head before we can retransmit a request. If the head was not on the commit lists, because the server wrote it sy | ||
| CVE-2023-53708 | — | < 6.4.0-150600.10.58.1 | 6.4.0-150600.10.58.1 | Oct 22, 2025 | In the Linux kernel, the following vulnerability has been resolved: ACPI: x86: s2idle: Catch multiple ACPI_TYPE_PACKAGE objects If a badly constructed firmware includes multiple `ACPI_TYPE_PACKAGE` objects while evaluating the AMD LPS0 _DSM, there will be a memory leak. Explic | ||
| CVE-2023-53707 | — | < 6.4.0-150600.10.58.1 | 6.4.0-150600.10.58.1 | Oct 22, 2025 | In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix integer overflow in amdgpu_cs_pass1 The type of size is unsigned int, if size is 0x40000000, there will be an integer overflow, size will be zero after size *= sizeof(uint32_t), will cause unini | ||
| CVE-2023-53704 | — | < 6.4.0-150600.10.58.1 | 6.4.0-150600.10.58.1 | Oct 22, 2025 | In the Linux kernel, the following vulnerability has been resolved: clk: imx: clk-imx8mp: improve error handling in imx8mp_clocks_probe() Replace of_iomap() and kzalloc() with devm_of_iomap() and devm_kzalloc() which can automatically release the related memory when the device | ||
| CVE-2023-53703 | — | < 6.4.0-150600.10.58.1 | 6.4.0-150600.10.58.1 | Oct 22, 2025 | In the Linux kernel, the following vulnerability has been resolved: HID: amd_sfh: Fix for shift-out-of-bounds Shift operation of 'exp' and 'shift' variables exceeds the maximum number of shift values in the u32 range leading to UBSAN shift-out-of-bounds. ... [ 6.120512] UBS | ||
| CVE-2023-53699 | — | < 6.4.0-150600.10.58.1 | 6.4.0-150600.10.58.1 | Oct 22, 2025 | In the Linux kernel, the following vulnerability has been resolved: riscv: move memblock_allow_resize() after linear mapping is ready The initial memblock metadata is accessed from kernel image mapping. The regions arrays need to "reallocated" from memblock and accessed through | ||
| CVE-2023-53698 | — | < 6.4.0-150600.10.58.1 | 6.4.0-150600.10.58.1 | Oct 22, 2025 | In the Linux kernel, the following vulnerability has been resolved: xsk: fix refcount underflow in error path Fix a refcount underflow problem reported by syzbot that can happen when a system is running out of memory. If xp_alloc_tx_descs() fails, and it can only fail due to no | ||
| CVE-2023-53697 | — | < 6.4.0-150600.10.58.1 | 6.4.0-150600.10.58.1 | Oct 22, 2025 | In the Linux kernel, the following vulnerability has been resolved: nvdimm: Fix memleak of pmu attr_groups in unregister_nvdimm_pmu() Memory pointed by 'nd_pmu->pmu.attr_groups' is allocated in function 'register_nvdimm_pmu' and is lost after 'kfree(nd_pmu)' call in function 'u | ||
| CVE-2023-53693 | — | < 6.4.0-150600.10.58.1 | 6.4.0-150600.10.58.1 | Oct 22, 2025 | In the Linux kernel, the following vulnerability has been resolved: USB: gadget: Fix the memory leak in raw_gadget driver Currently, increasing raw_dev->count happens before invoke the raw_queue_event(), if the raw_queue_event() return error, invoke raw_release() will not trigg | ||
| CVE-2025-40016 | — | < 6.4.0-150600.10.58.1 | 6.4.0-150600.10.58.1 | Oct 20, 2025 | In the Linux kernel, the following vulnerability has been resolved: media: uvcvideo: Mark invalid entities with id UVC_INVALID_ENTITY_ID Per UVC 1.1+ specification 3.7.2, units and terminals must have a non-zero unique ID. ``` Each Unit and Terminal within the video function i |
- CVE-2023-53730Oct 22, 2025affected < 6.4.0-150600.10.58.1fixed 6.4.0-150600.10.58.1
In the Linux kernel, the following vulnerability has been resolved: blk-iocost: use spin_lock_irqsave in adjust_inuse_and_calc_cost adjust_inuse_and_calc_cost() use spin_lock_irq() and IRQ will be enabled when unlock. DEADLOCK might happen if we have held other locks and disabl
- CVE-2023-53729Oct 22, 2025affected < 6.4.0-150600.10.58.1fixed 6.4.0-150600.10.58.1
In the Linux kernel, the following vulnerability has been resolved: soc: qcom: qmi_encdec: Restrict string length in decode The QMI TLV value for strings in a lot of qmi element info structures account for null terminated strings with MAX_LEN + 1. If a string is actually MAX_LE
- CVE-2023-53728Oct 22, 2025affected < 6.4.0-150600.10.58.1fixed 6.4.0-150600.10.58.1
In the Linux kernel, the following vulnerability has been resolved: posix-timers: Ensure timer ID search-loop limit is valid posix_timer_add() tries to allocate a posix timer ID by starting from the cached ID which was stored by the last successful allocation. This is done in
- CVE-2023-53727Oct 22, 2025affected < 6.4.0-150600.10.58.1fixed 6.4.0-150600.10.58.1
In the Linux kernel, the following vulnerability has been resolved: net/sched: fq_pie: avoid stalls in fq_pie_timer() When setting a high number of flows (limit being 65536), fq_pie_timer() is currently using too much time as syzbot reported. Add logic to yield the cpu every 2
- CVE-2023-53726Oct 22, 2025affected < 6.4.0-150600.10.58.1fixed 6.4.0-150600.10.58.1
In the Linux kernel, the following vulnerability has been resolved: arm64: csum: Fix OoB access in IP checksum code for negative lengths Although commit c2c24edb1d9c ("arm64: csum: Fix pathological zero-length calls") added an early return for zero-length input, syzkaller has p
- CVE-2023-53725Oct 22, 2025affected < 6.4.0-150600.10.58.1fixed 6.4.0-150600.10.58.1
In the Linux kernel, the following vulnerability has been resolved: clocksource/drivers/cadence-ttc: Fix memory leak in ttc_timer_probe Smatch reports: drivers/clocksource/timer-cadence-ttc.c:529 ttc_timer_probe() warn: 'timer_baseaddr' from of_iomap() not released on lines: 49
- CVE-2023-53722Oct 22, 2025affected < 6.4.0-150600.10.58.1fixed 6.4.0-150600.10.58.1
In the Linux kernel, the following vulnerability has been resolved: md: raid1: fix potential OOB in raid1_remove_disk() If rddev->raid_disk is greater than mddev->raid_disks, there will be an out-of-bounds in raid1_remove_disk(). We have already found similar reports as follows
- CVE-2023-53721Oct 22, 2025affected < 6.4.0-150600.10.58.1fixed 6.4.0-150600.10.58.1
In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: Fix a NULL pointer dereference in ath12k_mac_op_hw_scan() In ath12k_mac_op_hw_scan(), the return value of kzalloc() is directly used in memcpy(), which may lead to a NULL pointer dereference on fa
- CVE-2023-53718Oct 22, 2025affected < 6.4.0-150600.10.58.1fixed 6.4.0-150600.10.58.1
In the Linux kernel, the following vulnerability has been resolved: ring-buffer: Do not swap cpu_buffer during resize process When ring_buffer_swap_cpu was called during resize process, the cpu buffer was swapped in the middle, resulting in incorrect state. Continuing to run in
- CVE-2023-53713Oct 22, 2025affected < 6.4.0-150600.10.58.1fixed 6.4.0-150600.10.58.1
In the Linux kernel, the following vulnerability has been resolved: arm64: sme: Use STR P to clear FFR context field in streaming SVE mode The FFR is a predicate register which can vary between 16 and 256 bits in size depending upon the configured vector length. When saving the
- CVE-2023-53711Oct 22, 2025affected < 6.4.0-150600.10.58.1fixed 6.4.0-150600.10.58.1
In the Linux kernel, the following vulnerability has been resolved: NFS: Fix a potential data corruption We must ensure that the subrequests are joined back into the head before we can retransmit a request. If the head was not on the commit lists, because the server wrote it sy
- CVE-2023-53708Oct 22, 2025affected < 6.4.0-150600.10.58.1fixed 6.4.0-150600.10.58.1
In the Linux kernel, the following vulnerability has been resolved: ACPI: x86: s2idle: Catch multiple ACPI_TYPE_PACKAGE objects If a badly constructed firmware includes multiple `ACPI_TYPE_PACKAGE` objects while evaluating the AMD LPS0 _DSM, there will be a memory leak. Explic
- CVE-2023-53707Oct 22, 2025affected < 6.4.0-150600.10.58.1fixed 6.4.0-150600.10.58.1
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix integer overflow in amdgpu_cs_pass1 The type of size is unsigned int, if size is 0x40000000, there will be an integer overflow, size will be zero after size *= sizeof(uint32_t), will cause unini
- CVE-2023-53704Oct 22, 2025affected < 6.4.0-150600.10.58.1fixed 6.4.0-150600.10.58.1
In the Linux kernel, the following vulnerability has been resolved: clk: imx: clk-imx8mp: improve error handling in imx8mp_clocks_probe() Replace of_iomap() and kzalloc() with devm_of_iomap() and devm_kzalloc() which can automatically release the related memory when the device
- CVE-2023-53703Oct 22, 2025affected < 6.4.0-150600.10.58.1fixed 6.4.0-150600.10.58.1
In the Linux kernel, the following vulnerability has been resolved: HID: amd_sfh: Fix for shift-out-of-bounds Shift operation of 'exp' and 'shift' variables exceeds the maximum number of shift values in the u32 range leading to UBSAN shift-out-of-bounds. ... [ 6.120512] UBS
- CVE-2023-53699Oct 22, 2025affected < 6.4.0-150600.10.58.1fixed 6.4.0-150600.10.58.1
In the Linux kernel, the following vulnerability has been resolved: riscv: move memblock_allow_resize() after linear mapping is ready The initial memblock metadata is accessed from kernel image mapping. The regions arrays need to "reallocated" from memblock and accessed through
- CVE-2023-53698Oct 22, 2025affected < 6.4.0-150600.10.58.1fixed 6.4.0-150600.10.58.1
In the Linux kernel, the following vulnerability has been resolved: xsk: fix refcount underflow in error path Fix a refcount underflow problem reported by syzbot that can happen when a system is running out of memory. If xp_alloc_tx_descs() fails, and it can only fail due to no
- CVE-2023-53697Oct 22, 2025affected < 6.4.0-150600.10.58.1fixed 6.4.0-150600.10.58.1
In the Linux kernel, the following vulnerability has been resolved: nvdimm: Fix memleak of pmu attr_groups in unregister_nvdimm_pmu() Memory pointed by 'nd_pmu->pmu.attr_groups' is allocated in function 'register_nvdimm_pmu' and is lost after 'kfree(nd_pmu)' call in function 'u
- CVE-2023-53693Oct 22, 2025affected < 6.4.0-150600.10.58.1fixed 6.4.0-150600.10.58.1
In the Linux kernel, the following vulnerability has been resolved: USB: gadget: Fix the memory leak in raw_gadget driver Currently, increasing raw_dev->count happens before invoke the raw_queue_event(), if the raw_queue_event() return error, invoke raw_release() will not trigg
- CVE-2025-40016Oct 20, 2025affected < 6.4.0-150600.10.58.1fixed 6.4.0-150600.10.58.1
In the Linux kernel, the following vulnerability has been resolved: media: uvcvideo: Mark invalid entities with id UVC_INVALID_ENTITY_ID Per UVC 1.1+ specification 3.7.2, units and terminals must have a non-zero unique ID. ``` Each Unit and Terminal within the video function i
Page 5 of 187