VYPR

rpm package

suse/kgraft-patch-SLE12-SP2_Update_34&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP2

pkg:rpm/suse/kgraft-patch-SLE12-SP2_Update_34&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP2

Vulnerabilities (82)

  • CVE-2019-19965Dec 25, 2019
    affected < 1-3.3.1fixed 1-3.3.1

    In the Linux kernel through 5.4.6, there is a NULL pointer dereference in drivers/scsi/libsas/sas_discover.c because of mishandling of port disconnection during discovery, related to a PHY down race condition, aka CID-f70267f379b5.

  • CVE-2019-19966Dec 25, 2019
    affected < 1-3.3.1fixed 1-3.3.1

    In the Linux kernel before 5.1.6, there is a use-after-free in cpia2_exit() in drivers/media/usb/cpia2/cpia2_v4l.c that will cause denial of service, aka CID-dea37a972655.

  • CVE-2019-5108Dec 23, 2019
    affected < 1-3.3.1fixed 1-3.3.1

    An exploitable denial-of-service vulnerability exists in the Linux kernel prior to mainline 5.3. An attacker could exploit this vulnerability by triggering AP to send IAPP location updates for stations before the required authentication process has completed. This could lead to d

  • CVE-2019-19767Dec 12, 2019
    affected < 1-3.3.1fixed 1-3.3.1

    The Linux kernel before 5.4.2 mishandles ext4_expand_extra_isize, as demonstrated by use-after-free errors in __ext4_expand_extra_isize and ext4_xattr_set_entry, related to fs/ext4/inode.c and fs/ext4/super.c, aka CID-4ea99936a163.

  • CVE-2019-19768Dec 12, 2019
    affected < 1-3.3.1fixed 1-3.3.1

    In the Linux kernel 5.4.0-rc2, there is a use-after-free (read) in the __blk_add_trace function in kernel/trace/blktrace.c (which is used to fill out a blk_io_trace structure and place it in a per-cpu sub-buffer).

  • CVE-2019-19447Dec 8, 2019
    affected < 1-3.3.1fixed 1-3.3.1

    In the Linux kernel 5.0.21, mounting a crafted ext4 filesystem image, performing some operations, and unmounting can lead to a use-after-free in ext4_put_super in fs/ext4/super.c, related to dump_orphan_list in fs/ext4/super.c.

  • CVE-2019-19523Dec 3, 2019
    affected < 1-3.3.1fixed 1-3.3.1

    In the Linux kernel before 5.3.7, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/usb/misc/adutux.c driver, aka CID-44efc269db79.

  • CVE-2019-19524Dec 3, 2019
    affected < 1-3.3.1fixed 1-3.3.1

    In the Linux kernel before 5.3.12, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/input/ff-memless.c driver, aka CID-fa3a5a1880c9.

  • CVE-2019-19525Dec 3, 2019
    affected < 1-3.3.1fixed 1-3.3.1

    In the Linux kernel before 5.3.6, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/net/ieee802154/atusb.c driver, aka CID-7fd25e6fc035.

  • CVE-2019-19527Dec 3, 2019
    affected < 1-3.3.1fixed 1-3.3.1

    In the Linux kernel before 5.2.10, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/hid/usbhid/hiddev.c driver, aka CID-9c09b214f30e.

  • CVE-2019-19530Dec 3, 2019
    affected < 1-3.3.1fixed 1-3.3.1

    In the Linux kernel before 5.2.10, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/usb/class/cdc-acm.c driver, aka CID-c52873e5a1ef.

  • CVE-2019-19531Dec 3, 2019
    affected < 1-3.3.1fixed 1-3.3.1

    In the Linux kernel before 5.2.9, there is a use-after-free bug that can be caused by a malicious USB device in the drivers/usb/misc/yurex.c driver, aka CID-fc05481b2fca.

  • CVE-2019-19532Dec 3, 2019
    affected < 1-3.3.1fixed 1-3.3.1

    In the Linux kernel before 5.3.9, there are multiple out-of-bounds write bugs that can be caused by a malicious USB device in the Linux kernel HID drivers, aka CID-d9d4b1e46d95. This affects drivers/hid/hid-axff.c, drivers/hid/hid-dr.c, drivers/hid/hid-emsff.c, drivers/hid/hid-ga

  • CVE-2019-19533Dec 3, 2019
    affected < 1-3.3.1fixed 1-3.3.1

    In the Linux kernel before 5.3.4, there is an info-leak bug that can be caused by a malicious USB device in the drivers/media/usb/ttusb-dec/ttusb_dec.c driver, aka CID-a10feaf8c464.

  • CVE-2019-19534Dec 3, 2019
    affected < 1-3.3.1fixed 1-3.3.1

    In the Linux kernel before 5.3.11, there is an info-leak bug that can be caused by a malicious USB device in the drivers/net/can/usb/peak_usb/pcan_usb_core.c driver, aka CID-f7a1337f0d29.

  • CVE-2019-19535Dec 3, 2019
    affected < 1-3.3.1fixed 1-3.3.1

    In the Linux kernel before 5.2.9, there is an info-leak bug that can be caused by a malicious USB device in the drivers/net/can/usb/peak_usb/pcan_usb_fd.c driver, aka CID-30a8beeb3042.

  • CVE-2019-19536Dec 3, 2019
    affected < 1-3.3.1fixed 1-3.3.1

    In the Linux kernel before 5.2.9, there is an info-leak bug that can be caused by a malicious USB device in the drivers/net/can/usb/peak_usb/pcan_usb_pro.c driver, aka CID-ead16e53c2f0.

  • CVE-2019-19537Dec 3, 2019
    affected < 1-3.3.1fixed 1-3.3.1

    In the Linux kernel before 5.2.10, there is a race condition bug that can be caused by a malicious USB device in the USB character device driver layer, aka CID-303911cfc5b9. This affects drivers/usb/core/file.c.

  • CVE-2019-14901Nov 29, 2019
    affected < 1-3.3.1fixed 1-3.3.1

    A heap overflow flaw was found in the Linux kernel, all versions 3.x.x and 4.x.x before 4.18.0, in Marvell WiFi chip driver. The vulnerability allows a remote attacker to cause a system crash, resulting in a denial of service, or execute arbitrary code. The highest threat with th

  • CVE-2019-14897Nov 29, 2019
    affected < 1-3.3.1fixed 1-3.3.1

    A stack-based buffer overflow was found in the Linux kernel, version kernel-2.6.32, in Marvell WiFi chip driver. An attacker is able to cause a denial of service (system crash) or, possibly execute arbitrary code, when a STA works in IBSS mode (allows connecting stations together

Page 3 of 5