rpm package
suse/kgraft-patch-SLE12-SP3_Update_42&distro=HPE Helion OpenStack 8
pkg:rpm/suse/kgraft-patch-SLE12-SP3_Update_42&distro=HPE%20Helion%20OpenStack%208
Vulnerabilities (23)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2021-3564 | Med | 5.5 | < 1-4.3.1 | 1-4.3.1 | Jun 8, 2021 | A flaw double-free memory corruption in the Linux kernel HCI device initialization subsystem was found in the way user attach malicious HCI TTY Bluetooth device. A local user could use this flaw to crash the system. This flaw affects all the Linux kernel versions starting from 3. | |
| CVE-2020-35519 | Hig | 7.8 | < 1-4.3.1 | 1-4.3.1 | May 6, 2021 | An out-of-bounds (OOB) memory access flaw was found in x25_bind in net/x25/af_x25.c in the Linux kernel version v5.12-rc5. A bounds check failure allows a local attacker with a user account on the system to gain access to out-of-bounds memory, leading to a system crash or a leak | |
| CVE-2019-0136 | Hig | 7.4 | < 1-4.3.1 | 1-4.3.1 | Jun 13, 2019 | Insufficient access control in the Intel(R) PROSet/Wireless WiFi Software driver before version 21.10 may allow an unauthenticated user to potentially enable denial of service via adjacent access. |
- affected < 1-4.3.1fixed 1-4.3.1
A flaw double-free memory corruption in the Linux kernel HCI device initialization subsystem was found in the way user attach malicious HCI TTY Bluetooth device. A local user could use this flaw to crash the system. This flaw affects all the Linux kernel versions starting from 3.
- affected < 1-4.3.1fixed 1-4.3.1
An out-of-bounds (OOB) memory access flaw was found in x25_bind in net/x25/af_x25.c in the Linux kernel version v5.12-rc5. A bounds check failure allows a local attacker with a user account on the system to gain access to out-of-bounds memory, leading to a system crash or a leak
- affected < 1-4.3.1fixed 1-4.3.1
Insufficient access control in the Intel(R) PROSet/Wireless WiFi Software driver before version 21.10 may allow an unauthenticated user to potentially enable denial of service via adjacent access.
Page 2 of 2