VYPR

rpm package

suse/kernel-vanilla&distro=SUSE Linux Enterprise Module for Development Tools 15

pkg:rpm/suse/kernel-vanilla&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015

Vulnerabilities (225)

  • CVE-2019-1125MedSep 3, 2019
    affected < 4.12.14-150.32.1fixed 4.12.14-150.32.1

    An information disclosure vulnerability exists when certain central processing units (CPU) speculatively access memory. An attacker who successfully exploited the vulnerability could read privileged data across trust boundaries. To exploit this vulnerability, an attacker would ha

  • CVE-2019-15666MedAug 27, 2019
    affected < 4.12.14-150.35.1fixed 4.12.14-150.35.1

    An issue was discovered in the Linux kernel before 5.0.19. There is an out-of-bounds array access in __xfrm_policy_unlink, which will cause denial of service, because verify_newpolicy_info in net/xfrm/xfrm_user.c mishandles directory validation.

  • CVE-2019-15538HigAug 25, 2019
    affected < 4.12.14-150.35.1fixed 4.12.14-150.35.1

    An issue was discovered in xfs_setattr_nonsize in fs/xfs/xfs_iops.c in the Linux kernel through 5.2.9. XFS partially wedges when a chgrp fails on account of being out of disk quota. xfs_setattr_nonsize is failing to unlock the ILOCK after the xfs_qm_vop_chown_reserve call fails.

  • CVE-2019-15292MedAug 21, 2019
    affected < 4.12.14-150.35.1fixed 4.12.14-150.35.1

    An issue was discovered in the Linux kernel before 5.0.9. There is a use-after-free in atalk_proc_exit, related to net/appletalk/atalk_proc.c, net/appletalk/ddp.c, and net/appletalk/sysctl_net_atalk.c.

  • CVE-2019-15291MedAug 20, 2019
    affected < 4.12.14-150.38.1fixed 4.12.14-150.38.1

    An issue was discovered in the Linux kernel through 5.2.9. There is a NULL pointer dereference caused by a malicious USB device in the flexcop_usb_probe function in the drivers/media/usb/b2c2/flexcop-usb.c driver.

  • CVE-2019-15239HigAug 20, 2019
    affected < 4.12.14-150.35.1fixed 4.12.14-150.35.1

    In the Linux kernel, a certain net/ipv4/tcp_output.c change, which was properly incorporated into 4.16.12, was incorrectly backported to the earlier longterm kernels, introducing a new vulnerability that was potentially more severe than the issue that was intended to be fixed by

  • CVE-2019-15222MedAug 19, 2019
    affected < 4.12.14-150.35.1fixed 4.12.14-150.35.1

    An issue was discovered in the Linux kernel before 5.2.8. There is a NULL pointer dereference caused by a malicious USB device in the sound/usb/helper.c (motu_microbookii) driver.

  • CVE-2019-15221MedAug 19, 2019
    affected < 4.12.14-150.35.1fixed 4.12.14-150.35.1

    An issue was discovered in the Linux kernel before 5.1.17. There is a NULL pointer dereference caused by a malicious USB device in the sound/usb/line6/pcm.c driver.

  • CVE-2019-15220MedAug 19, 2019
    affected < 4.12.14-150.35.1fixed 4.12.14-150.35.1

    An issue was discovered in the Linux kernel before 5.2.1. There is a use-after-free caused by a malicious USB device in the drivers/net/wireless/intersil/p54/p54usb.c driver.

  • CVE-2019-15219MedAug 19, 2019
    affected < 4.12.14-150.35.1fixed 4.12.14-150.35.1

    An issue was discovered in the Linux kernel before 5.1.8. There is a NULL pointer dereference caused by a malicious USB device in the drivers/usb/misc/sisusbvga/sisusb.c driver.

  • CVE-2019-15218MedAug 19, 2019
    affected < 4.12.14-150.35.1fixed 4.12.14-150.35.1

    An issue was discovered in the Linux kernel before 5.1.8. There is a NULL pointer dereference caused by a malicious USB device in the drivers/media/usb/siano/smsusb.c driver.

  • CVE-2019-15217MedAug 19, 2019
    affected < 4.12.14-150.35.1fixed 4.12.14-150.35.1

    An issue was discovered in the Linux kernel before 5.2.3. There is a NULL pointer dereference caused by a malicious USB device in the drivers/media/usb/zr364xx/zr364xx.c driver.

  • CVE-2019-15216MedAug 19, 2019
    affected < 4.12.14-150.35.1fixed 4.12.14-150.35.1

    An issue was discovered in the Linux kernel before 5.0.14. There is a NULL pointer dereference caused by a malicious USB device in the drivers/usb/misc/yurex.c driver.

  • CVE-2019-15215MedAug 19, 2019
    affected < 4.12.14-150.35.1fixed 4.12.14-150.35.1

    An issue was discovered in the Linux kernel before 5.2.6. There is a use-after-free caused by a malicious USB device in the drivers/media/usb/cpia2/cpia2_usb.c driver.

  • CVE-2019-15214MedAug 19, 2019
    affected < 4.12.14-150.35.1fixed 4.12.14-150.35.1

    An issue was discovered in the Linux kernel before 5.0.10. There is a use-after-free in the sound subsystem because card disconnection causes certain data structures to be deleted too early. This is related to sound/core/init.c and sound/core/info.c.

  • CVE-2019-15213MedAug 19, 2019
    affected < 4.12.14-150.47.1fixed 4.12.14-150.47.1

    An issue was discovered in the Linux kernel before 5.2.3. There is a use-after-free caused by a malicious USB device in the drivers/media/usb/dvb-usb/dvb-usb-init.c driver.

  • CVE-2019-15212MedAug 19, 2019
    affected < 4.12.14-150.35.1fixed 4.12.14-150.35.1

    An issue was discovered in the Linux kernel before 5.1.8. There is a double-free caused by a malicious USB device in the drivers/usb/misc/rio500.c driver.

  • CVE-2019-15211MedAug 19, 2019
    affected < 4.12.14-150.35.1fixed 4.12.14-150.35.1

    An issue was discovered in the Linux kernel before 5.2.6. There is a use-after-free caused by a malicious USB device in the drivers/media/v4l2-core/v4l2-dev.c driver because drivers/media/radio/radio-raremono.c does not properly allocate memory.

  • CVE-2018-20976HigAug 19, 2019
    affected < 4.12.14-150.35.1fixed 4.12.14-150.35.1

    An issue was discovered in fs/xfs/xfs_super.c in the Linux kernel before 4.18. A use after free exists, related to xfs_fs_fill_super failure.

  • CVE-2017-18551MedAug 19, 2019
    affected < 4.12.14-150.35.1fixed 4.12.14-150.35.1

    An issue was discovered in drivers/i2c/i2c-core-smbus.c in the Linux kernel before 4.14.15. There is an out of bounds write in the function i2c_smbus_xfer_emulated.

Page 5 of 12