kernel-default (SUSE:Linux Enterprise High Availability Extension 15 SP4) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise High Availability Extension 15 SP4 package kernel-default, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (200)
CVE-2023-2163 — CVSS 10.0 (critical): Incorrect verifier pruning in BPF in Linux Kernel >=5.4 leads to unsafe code paths being incorrectly marked as safe, resulting in arbitrary…
CVE-2024-38541 — CVSS 9.8 (critical): In the Linux kernel, the following vulnerability has been resolved: of: module: add buffer overflow check in of_modalias() In…
CVE-2021-43527 — CVSS 9.8 (critical): NSS (Network Security Services) versions prior to 3.73 or 3.68.1 ESR are vulnerable to a heap overflow when handling DER-encoded DSA or…
CVE-2021-47378 — CVSS 9.8 (critical): In the Linux kernel, the following vulnerability has been resolved: nvme-rdma: destroy cm id before destroy qp to avoid use after free We…
CVE-2026-31405 — CVSS 9.8 (critical): In the Linux kernel, the following vulnerability has been resolved: media: dvb-net: fix OOB access in ULE extension header tables The…
CVE-2026-43501 — CVSS 9.8 (critical): In the Linux kernel, the following vulnerability has been resolved: ipv6: rpl: reserve mac_len headroom when recompressed SRH grows…
CVE-2026-43037 — CVSS 9.8 (critical): In the Linux kernel, the following vulnerability has been resolved: ip6_tunnel: clear skb2->cb[] in ip4ip6_err() Oskar Kjos reported the…
CVE-2026-46043 — CVSS 9.1 (critical): In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Validate pad and ICRC before payload_size() in rxe_rcv…
CVE-2023-52832 — CVSS 9.1 (critical): In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: don't return unset power in ieee80211_get_tx_power() We…
CVE-2023-52798 — CVSS 8.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: fix dfs radar event locking The ath11k active pdevs are…
CVE-2026-31629 — CVSS 8.8 (high): In the Linux kernel, the following vulnerability has been resolved: nfc: llcp: add missing return after LLCP_CLOSED checks In…
CVE-2026-46113 — CVSS 8.8 (high): In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Fix shadow paging use-after-free due to unexpected GFN The…
CVE-2022-42719 — CVSS 8.8 (high): A use-after-free in the mac80211 stack when parsing a multi-BSSID element in the Linux kernel 5.2 through 5.19.x before 5.19.16 could be…
CVE-2023-28410 — CVSS 8.8 (high): Improper restriction of operations within the bounds of a memory buffer in some Intel(R) i915 Graphics drivers for linux before kernel…
CVE-2024-8805 — CVSS 8.8 (high): BlueZ HID over GATT Profile Improper Access Control Remote Code Execution Vulnerability. This vulnerability allows network-adjacent…
CVE-2023-5178 — CVSS 8.8 (high): A use-after-free vulnerability was found in drivers/nvme/target/tcp.c` in `nvmet_tcp_free_crypto` due to a logical bug in the NVMe/TCP…
CVE-2022-48754 — CVSS 8.4 (high): In the Linux kernel, the following vulnerability has been resolved: phylib: fix potential use-after-free Commit bafbdd527d56 ("phylib: Add…
CVE-2024-35869 — CVSS 8.4 (high): In the Linux kernel, the following vulnerability has been resolved: smb: client: guarantee refcounted children from parent session Avoid…
CVE-2023-52810 — CVSS 8.4 (high): In the Linux kernel, the following vulnerability has been resolved: fs/jfs: Add check for negative db_l2nbperpage l2nbperpage is…
CVE-2021-47456 — CVSS 8.4 (high): In the Linux kernel, the following vulnerability has been resolved: can: peak_pci: peak_pci_remove(): fix UAF When remove the module…
CVE-2022-1012 — CVSS 8.2 (high): A memory leak problem was found in the TCP source port generation algorithm in net/ipv4/tcp.c due to the small table perturb size. This…
CVE-2021-47368 — CVSS 8.1 (high): In the Linux kernel, the following vulnerability has been resolved: enetc: Fix illegal access when reading affinity_hint…
CVE-2022-41674 — CVSS 8.1 (high): An issue was discovered in the Linux kernel before 5.19.16. Attackers able to inject WLAN frames could cause a buffer overflow in the…
CVE-2022-50386 — CVSS 8.0 (high): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix user-after-free This uses l2cap_chan_hold_unless_z…
CVE-2022-42896 — CVSS 8.0 (high): There are use-after-free vulnerabilities in the Linux kernel's net/bluetooth/l2cap_core.c's l2cap_connect and l2cap_le_connect_req…
CVE-2025-39967 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: fbcon: fix integer overflow in fbcon_do_set_font Fix integer overflow…
CVE-2025-39945 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: cnic: Fix use-after-free bugs in cnic_delete_task The original code…
CVE-2021-47098 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: hwmon: (lm90) Prevent integer overflow/underflow in hysteresis…
CVE-2025-39860 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: Fix use-after-free in l2cap_sock_cleanup_listen() syzbot…
CVE-2025-39824 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: HID: asus: fix UAF via HID_CLAIMED_INPUT validation After…
CVE-2025-39823 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: KVM: x86: use array_index_nospec with indices that come from guest min…
CVE-2021-47107 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: NFSD: Fix READDIR buffer overflow If a client sends a READDIR count…
CVE-2025-39797 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: xfrm: Duplicate SPI Handling The issue originates when Strongswan…
CVE-2025-39790 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bus: mhi: host: Detect events pointing to unexpected TREs When a remote…
CVE-2025-39691 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: fs/buffer: fix use-after-free when call bh_read() helper There's issue…
CVE-2025-38734 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net/smc: fix UAF on smcsk after smc_listen_out() BPF CI testing report…
CVE-2025-38685 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: fbdev: Fix vmalloc out-of-bounds write in fast_imageblit This issue…
CVE-2025-38618 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: vsock: Do not allow binding to VMADDR_PORT_ANY It is possible for a…
CVE-2025-38572 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ipv6: reject malicious packets in ipv6_gso_segment() syzbot was able to…
CVE-2025-38565 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: perf/core: Exit early on perf_mmap() fail When perf_mmap() fails to…
CVE-2025-38563 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: perf/core: Prevent VMA split of buffer mappings The perf mmap code is…
CVE-2025-38555 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: usb: gadget : fix use-after-free in composite_dev_cleanup() 1. In func…
CVE-2021-47194 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: cfg80211: call cfg80211_stop_ap when switch from P2P_GO type If the…
CVE-2021-47196 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: RDMA/core: Set send and receive CQ before forwarding to the driver…
CVE-2025-38494 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: HID: core: do not bypass hid_hw_raw_request hid_hw_raw_request() is…
CVE-2021-47198 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix use-after-free in lpfc_unreg_rpi() routine An error is…
CVE-2025-38488 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: smb: client: fix use-after-free in crypt_message when using async…
CVE-2021-47200 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/prime: Fix use after free in mmap with drm_gem_ttm_mmap…
CVE-2025-38476 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: rpl: Fix use-after-free in rpl_do_srh_inline(). Running…
CVE-2025-38375 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: virtio-net: ensure the received length does not exceed allocated size…
CVE-2021-47204 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: dpaa2-eth: fix use-after-free in dpaa2_eth_remove Access to netdev…
CVE-2025-38350 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net/sched: Always pass notifications when child class becomes empty…
CVE-2025-38323 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: atm: add lec_mutex syzbot found its way in net/atm/lec.c, and…
CVE-2025-38257 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: s390/pkey: Prevent overflow in size calculation for memdup_user()…
CVE-2025-38212 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ipc: fix to protect IPCS lookups using RCU syzbot reported that it…
CVE-2025-38206 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: exfat: fix double free in delayed_free The double free could happen in…
CVE-2025-38180 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: atm: fix /proc/net/atm/lec handling /proc/net/atm/lec must ensure…
CVE-2025-38129 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: page_pool: Fix use-after-free in page_pool_recycle_in_ring syzbot…
CVE-2022-50432 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: kernfs: fix use-after-free in __kernfs_remove Syzkaller managed to…
CVE-2022-49270 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: dm: fix use-after-free in dm_cleanup_zoned_dev() dm_cleanup_zoned_dev()…
CVE-2022-49261 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/i915/gem: add missing boundary check in vm_access A missing bounds…
CVE-2022-49258 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: crypto: ccree - Fix use after free in cc_cipher_exit()…
CVE-2022-49236 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bpf: Fix UAF due to race between btf_try_get_module and load_module…
CVE-2022-49196 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: powerpc/pseries: Fix use after free in remove_phb_dynamic() In…
CVE-2022-49182 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: hns3: add vlan list lock to protect vlan list When adding port…
CVE-2022-49179 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: block, bfq: don't move oom_bfqq Our test report a UAF: [ 2073.019181]…
CVE-2022-49176 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bfq: fix use-after-free in bfq_dispatch_request KASAN reports a…
CVE-2021-4439 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: isdn: cpai: check ctr->cnr to avoid array index out of bound The…
CVE-2026-23274 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: netfilter: xt_IDLETIMER: reject rev0 reuse of ALARM timer labels…
CVE-2026-23272 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: unconditionally bump set->nelems before insertion…
CVE-2026-23268 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: apparmor: fix unprivileged local user can do privileged policy…
CVE-2026-23243 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: RDMA/umad: Reject negative data_len in ib_umad_write ib_umad_write…
CVE-2026-23209 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: macvlan: fix error recovery in macvlan_common_newlink() valis provided…
CVE-2026-23191 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ALSA: aloop: Fix racy access at PCM trigger The PCM trigger callback of…
CVE-2026-23103 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ipvlan: Make the addrs_lock be per port Make the addrs_lock be per…
CVE-2026-23089 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Fix use-after-free in snd_usb_mixer_free() When…
CVE-2026-23074 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net/sched: Enforce that teql can only be used as root qdisc Design…
CVE-2026-23004 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: dst: fix races in rt6_uncached_list_del() and rt_del_uncached_list()…
CVE-2026-23001 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: macvlan: fix possible UAF in macvlan_forward_source() Add RCU…
CVE-2026-22999 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net/sched: sch_qfq: do not free existing class in qfq_change_class()…
CVE-2021-46936 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: fix use-after-free in tw_timer_handler A real world panic issue…
CVE-2021-47082 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: tun: avoid double free in tun_free_netdev Avoid double free in…
CVE-2021-47087 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: tee: optee: Fix incorrect page free bug Pointer to the allocated pages…
CVE-2025-71089 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: iommu: disable SVA when CONFIG_X86 is set Patch series "Fix stale IOTLB…
CVE-2022-50423 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ACPICA: Fix use-after-free in acpi_ut_copy_ipackage_to_ipackage() There…
CVE-2022-50422 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: scsi: libsas: Fix use-after-free bug in smp_execute_task_sg() When…
CVE-2022-50419 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_sysfs: Fix attempting to call device_add multiple times…
CVE-2022-50417 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/panfrost: Fix GEM handle creation ref-counting…
CVE-2022-48821 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: avoid double fput() on failed usercopy If the copy back…
CVE-2022-48822 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: usb: f_fs: Fix use-after-free for epfile Consider a case where…
CVE-2022-50411 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ACPICA: Fix error code path in acpi_ds_call_control_method() A…
CVE-2022-50410 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: NFSD: Protect against send buffer overflow in NFSv2 READ Since before…
CVE-2022-50408 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: fix use-after-free bug in brcmf_netdev_start_xmit() >…
CVE-2022-50401 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: nfsd: under NFSv4.1, fix double svc_xprt_put on rpc_create failure On…
CVE-2022-50368 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/msm/dsi: fix memory corruption with too many bridges Add the…
CVE-2022-50367 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: fs: fix UAF/GPF bug in nilfs_mdt_destroy In alloc_inode…
CVE-2022-48834 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: usb: usbtmc: Fix bug in pipe direction for control transfers The syzbot…
CVE-2022-50329 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix uaf for bfqq in bfq_exit_icq_bfqq Commit 64dc8c732f5c…
CVE-2022-48837 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: usb: gadget: rndis: prevent integer overflow in rndis_set_response() If…
CVE-2022-50328 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: jbd2: fix potential use-after-free in jbd2_fc_wait_bufs In…
CVE-2022-50320 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ACPI: tables: FPDT: Don't call acpi_os_map_memory() on invalid phys…
CVE-2022-50301 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: iommu/omap: Fix buffer overflow in debugfs There are two issues here…
CVE-2022-50258 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: Fix potential stack-out-of-bounds in…
CVE-2022-48847 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: watch_queue: Fix filter limit check In watch_queue_set_filter(), there…
CVE-2022-50252 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: igb: Do not free q_vector unless new one was allocated Avoid potential…
CVE-2022-48851 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: staging: gdm724x: fix use after free in gdm_lte_rx() The netif_rx_ni()…
CVE-2022-50248 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: fix double free on tx path. We see kernel crashes…
CVE-2022-50241 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: NFSD: fix use-after-free on source server when doing inter-server copy…
CVE-2021-4037 — CVSS 7.8 (high): A vulnerability was found in the fs/inode.c:inode_init_owner() function logic of the LInux kernel that allows local users to create files…
CVE-2022-50235 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: NFSD: Protect against send buffer overflow in NFSv2 READDIR Restore the…
CVE-2022-50234 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: io_uring/af_unix: defer registered files gc to io_uring release Instead…
CVE-2022-50229 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ALSA: bcd2000: Fix a UAF bug on the error path of probing When the…
CVE-2022-50220 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: usbnet: Fix linkwatch use-after-free on disconnect usbnet uses the work…
CVE-2022-50213 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: do not allow SET_ID to refer to another table…
CVE-2022-50212 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: do not allow CHAIN_ID to refer to another table…
CVE-2026-31758 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: usb: usbtmc: Flush anchored URBs in usbtmc_release When calling…
CVE-2022-48873 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: Don't remove map on creater_process and device_release…
CVE-2022-48878 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_qca: Fix driver shutdown on closed serdev The driver…
CVE-2022-50192 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: spi: tegra20-slink: fix UAF in tegra_slink_remove() After calling…
CVE-2022-50190 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: spi: Fix simplification of devm_spi_register_controller This reverts…
CVE-2022-50185 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/radeon: fix potential buffer overflow in ni_set_mc_special_registers…
CVE-2022-50179 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ath9k: fix use-after-free in ath9k_hif_usb_rx_cb Syzbot reported…
CVE-2022-50164 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: fix double list_add at iwl_mvm_mac_wake_tx_queue…
CVE-2022-50156 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: HID: cp2112: prevent a buffer overflow in cp2112_xfer() Smatch…
CVE-2022-50151 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: usb: cdns3: fix random warning message when driver load Warning log: […
CVE-2022-50142 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: intel_th: msu: Fix vmalloced buffers After commit f5ff79fddf0e…
CVE-2022-50137 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: RDMA/irdma: Fix a window for use-after-free During a destroy CQ an…
CVE-2022-50131 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: HID: mcp2221: prevent a buffer overflow in mcp_smbus_write() Smatch…
CVE-2022-50129 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: RDMA/srpt: Fix a use-after-free Change the LIO port members inside…
CVE-2022-48912 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: netfilter: fix use-after-free in __nf_register_net_hook() We must not…
CVE-2022-48913 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: blktrace: fix use after free for struct blk_trace When tracing the…
CVE-2022-50101 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: video: fbdev: vt8623fb: Check the size of screen before memset_io() In…
CVE-2022-50099 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: video: fbdev: arkfb: Check the size of screen before memset_io() In the…
CVE-2022-50097 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: video: fbdev: s3fb: Check the size of screen before memset_io() In the…
CVE-2022-50095 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: posix-cpu-timers: Cleanup CPU timers before freeing them during exec…
CVE-2022-48919 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: cifs: fix double free race when mount fails in cifs_get_root() When…
CVE-2022-50087 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: firmware: arm_scpi: Ensure scpi_info is not assigned if the probe fails…
CVE-2022-50085 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: dm raid: fix address sanitizer warning in raid_resume There is a KASAN…
CVE-2022-48925 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: RDMA/cma: Do not change route.addr.src_addr outside state checks If the…
CVE-2022-48926 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: usb: gadget: rndis: add spinlock for rndis response list There's no…
CVE-2022-48927 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: iio: adc: tsc2046: fix memory corruption by preventing array overflow…
CVE-2022-50072 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: NFSv4/pnfs: Fix a use-after-free bug in open If someone cancels the…
CVE-2022-50067 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: btrfs: unset reloc control if transaction commit fails in…
CVE-2022-50066 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: atlantic: fix aq_vec index out of range error The final update…
CVE-2022-50051 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ASoC: SOF: debug: Fix potential buffer overflow by snprintf()…
CVE-2022-50040 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: dsa: sja1105: fix buffer overflow in sja1105_setup_devlink_regions(…
CVE-2022-50034 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: usb: cdns3 fix use-after-free at workaround 2 BUG: KFENCE…
CVE-2022-50030 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Prevent buffer overflow crashes in debugfs with malformed…
CVE-2022-50022 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drivers:md:fix a potential use-after-free bug In line 2884…
CVE-2022-48943 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: KVM: x86/mmu: make apf token non-zero to fix bug In current async…
CVE-2022-50021 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ext4: block range must be validated before use in ext4_mb_clear_bb()…
CVE-2022-50005 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: nfc: pn533: Fix use-after-free bugs caused by pn532_cmd_timeout When…
CVE-2022-49999 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: btrfs: fix space cache corruption and potential double allocations When…
CVE-2022-49995 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: writeback: avoid use-after-free after removing device When a disk is…
CVE-2022-48948 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: usb: gadget: uvc: Prevent buffer overflow in setup handler Setup…
CVE-2022-49990 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: s390: fix double free of GS and RI CBs on fork() failure The pointers…
CVE-2022-48951 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ASoC: ops: Check bounds for second channel in snd_soc_put_volsw_sx()…
CVE-2022-48954 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: s390/qeth: fix use-after-free in hsci KASAN found that addr was…
CVE-2022-49980 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: USB: gadget: Fix use-after-free Read in usb_udc_uevent() The syzbot…
CVE-2022-48956 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ipv6: avoid use-after-free in ip6_fragment() Blamed commit claimed…
CVE-2022-49969 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: clear optc underflow before turn off odm clock [Why]…
CVE-2022-48960 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: hisilicon: Fix potential use-after-free in hix5hd2_rx() The skb is…
CVE-2022-49956 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: staging: rtl8712: fix use after free bugs _Read/Write_MACREG callbacks…
CVE-2022-48962 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: hisilicon: Fix potential use-after-free in hisi_femac_rx() The skb…
CVE-2022-49952 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: fix memory corruption on probe Add the missing sanity…
CVE-2022-49950 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: fix memory corruption on open The probe…
CVE-2022-49934 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: Fix UAF in ieee80211_scan_rx() ieee80211_scan_rx()…
CVE-2022-49910 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix use-after-free caused by l2cap_reassemble_sdu Fix…
CVE-2022-49900 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: i2c: piix4: Fix adapter not be removed in piix4_remove() In…
CVE-2022-49892 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ftrace: Fix use-after-free for dynamic ftrace_ops KASAN reported a…
CVE-2022-48981 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/shmem-helper: Remove errant put in error path drm_gem_shmem_mmap()…
CVE-2022-49888 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: arm64: entry: avoid kprobe recursion The cortex_a76_erratum_1463225_debu…
CVE-2022-48991 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: mm/khugepaged: invoke MMU notifiers in shmem/file collapse paths Any…
CVE-2022-49846 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: udf: Fix a slab-out-of-bounds write bug in udf_find_entry() Syzbot…
CVE-2022-49842 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ASoC: core: Fix use-after-free in snd_soc_exit() KASAN reports a…
CVE-2022-49834 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix use-after-free bug of ns_writer on remount If a nilfs2…
CVE-2022-49826 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ata: libata-transport: fix double ata_host_put() in ata_tport_add() In…
CVE-2022-49789 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: scsi: zfcp: Fix double free of FSF request when qdio send fails We used…
CVE-2022-49006 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: tracing: Free buffers when a used dynamic event is removed After 65536…
CVE-2022-49779 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: kprobes: Skip clearing aggrprobe's post_handler in kprobe-on-ftrace…
CVE-2022-49775 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: tcp: cdg: allow tcp_cdg_release() to be called multiple times…
CVE-2022-49770 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ceph: avoid putting the realm twice when decoding snaps fails When…
CVE-2022-49755 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: usb: gadget: f_fs: Prevent race during ffs_ep0_queue_wait While…
CVE-2022-49014 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: tun: Fix use-after-free in tun_detach() syzbot reported…
CVE-2022-49015 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: hsr: Fix potential use-after-free The skb is delivered to…
CVE-2022-49753 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: dmaengine: Fix double increment of client_count in dma_chan_get() The…
CVE-2022-49724 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: tty: goldfish: Fix free_irq() on remove Pass the correct dev_id to…
CVE-2022-49722 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ice: Fix memory corruption in VF driver Disable VF's RX/TX queues, when…
CVE-2022-49022 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: mac8021: fix possible oob access in ieee80211_get_rate_duration…
CVE-2022-49023 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: fix buffer overflow in elem comparison For vendor…
CVE-2022-49720 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: block: Fix handling of offline queues in blk_mq_alloc_request_hctx()…
CVE-2022-49025 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix use-after-free when reverting termination table When…
CVE-2022-49026 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: e100: Fix possible use after free in e100_xmit_prepare In…
CVE-2022-49711 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bus: fsl-mc-bus: fix KASAN use-after-free in fsl_mc_bus_remove() In…
CVE-2022-49700 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: mm/slub: add missing TID updates on slab deactivation The fastpath in…
CVE-2022-49029 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: hwmon: (ibmpex) Fix possible UAF when ibmpex_register_bmc() fails…
CVE-2022-49695 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: igb: fix a use-after-free issue in igb_clean_tx_ring Fix the following…
CVE-2022-49044 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: dm integrity: fix memory corruption when tag_size is less than digest…
CVE-2022-49685 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: iio: trigger: sysfs: fix use-after-free on remove Ensure that the…