kgraft-patch-SLE12-SP5_Update_58 (SUSE:Linux Enterprise Live Patching 12 SP5) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise Live Patching 12 SP5 package kgraft-patch-SLE12-SP5_Update_58, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (200)
CVE-2023-52832 — CVSS 9.1 (critical): In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: don't return unset power in ieee80211_get_tx_power() We…
CVE-2024-35960 — CVSS 9.1 (critical): In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Properly link new fs rules into the tree Previously…
CVE-2021-47354 — CVSS 9.1 (critical): In the Linux kernel, the following vulnerability has been resolved: drm/sched: Avoid data corruptions Wait for all dependencies of a job to…
CVE-2022-0435 — CVSS 8.8 (high): A stack overflow flaw was found in the Linux kernel's TIPC protocol functionality in the way a user sends a packet with malicious content…
CVE-2022-48754 — CVSS 8.4 (high): In the Linux kernel, the following vulnerability has been resolved: phylib: fix potential use-after-free Commit bafbdd527d56 ("phylib: Add…
CVE-2025-21702 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: pfifo_tail_enqueue: Drop new packet when sch->limit == 0 Expected…
CVE-2024-35862 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF in smb2_is_network_name_deleted() Skip…
CVE-2024-35863 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF in is_valid_oplock_break() Skip sessions…
CVE-2024-35864 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF in smb2_is_valid_lease_break() Skip…
CVE-2021-47566 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: proc/vmcore: fix clearing user buffer by properly using clear_user() To…
CVE-2024-35867 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF in cifs_stats_proc_show() Skip sessions…
CVE-2024-35868 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF in cifs_stats_proc_write() Skip sessions…
CVE-2024-35886 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix infinite recursion in fib6_dump_done(). syzkaller reported…
CVE-2021-47571 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: staging: rtl8192e: Fix use after free in _rtl92e_pci_disconnect() The…
CVE-2021-47576 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: scsi: scsi_debug: Sanity check block descriptor length in…
CVE-2021-47589 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: igbvf: fix double free in `igbvf_probe` In `igbvf_probe`, if…
CVE-2022-49179 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: block, bfq: don't move oom_bfqq Our test report a UAF: [ 2073.019181]…
CVE-2022-49465 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: blk-throttle: Set BIO_THROTTLED when bio has been throttled 1.In…
CVE-2025-38494 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: HID: core: do not bypass hid_hw_raw_request hid_hw_raw_request() is…
CVE-2023-4244 — CVSS 7.8 (high): A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation…
CVE-2021-47103 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: inet: fully convert sk->sk_rx_dst to RCU rules syzbot reported various…
CVE-2023-52835 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: perf/core: Bail out early if the request AUX area is out of bound When…
CVE-2024-53173 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: NFSv4.0: Fix a use-after-free problem in the asynchronous open() Yang…
CVE-2024-38545 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: Fix UAF for cq async event The refcount of CQ is not…
CVE-2021-47293 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net/sched: act_skbmod: Skip non-Ethernet packets Currently…
CVE-2022-48732 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/nouveau: fix off by one in BIOS boundary checking Bounds checking…
CVE-2024-38552 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix potential index out of bounds in color…
CVE-2022-48733 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: btrfs: fix use-after-free after failure to create a snapshot At…
CVE-2022-48740 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: selinux: fix double free of cond_list on error paths On error path from…
CVE-2021-4439 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: isdn: cpai: check ctr->cnr to avoid array index out of bound The…
CVE-2024-38578 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ecryptfs: Fix buffer size for tag 66 packet The 'TAG 66 Packet Format'…
CVE-2025-37752 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net_sched: sch_sfq: move the limit validation It is not sufficient to…
CVE-2024-38627 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: stm class: Fix a double free in stm_register_device() The…
CVE-2025-37797 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net_sched: hfsc: Fix a UAF vulnerability in class handling This patch…
CVE-2022-48771 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Fix stale file descriptors on failed usercopy A failing…
CVE-2021-47328 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: scsi: iscsi: Fix conn use after free during resets If we haven't done a…
CVE-2022-48792 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: scsi: pm8001: Fix use-after-free for aborted SSP/STP sas_task Currently…
CVE-2025-21772 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: partitions: mac: fix handling of bogus partition table Fix several…
CVE-2024-26928 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF in cifs_debug_files_proc_show() Skip…
CVE-2021-47520 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: can: pch_can: pch_can_rx_normal: fix use after free After calling…
CVE-2024-46818 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check gpio_id before used as array index [WHY & HOW]…
CVE-2022-48956 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ipv6: avoid use-after-free in ip6_fragment() Blamed commit claimed…
CVE-2024-50125 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: SCO: Fix UAF on sco_sock_timeout conn->sk maybe have been…
CVE-2024-50264 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: vsock/virtio: Initialization of the dangling pointer occurring in…
CVE-2024-35949 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: btrfs: make sure that WRITTEN is set on all metadata blocks We…
CVE-2023-52752 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: smb: client: fix use-after-free bug in cifs_debug_data_proc_show() Skip…
CVE-2021-47600 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: dm btree remove: fix use after free in rebalance_children() Move…
CVE-2021-47372 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: macb: fix use after free on rmmod plat_dev->dev->platform_data is…
CVE-2023-52757 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential deadlock when releasing mids All…
CVE-2024-35979 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: raid1: fix use-after-free for original bio in raid1_write_request()…
CVE-2025-38079 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: crypto: algif_hash - fix double free in hash_accept If accept(2) is…
CVE-2023-52764 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: media: gspca: cpia1: shift-out-of-bounds in set_flicker Syzkaller…
CVE-2021-47609 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: firmware: arm_scpi: Fix string overflow in SCPI genpd driver Without…
CVE-2021-47379 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: blk-cgroup: fix UAF by grabbing blkcg lock before destroying blkg pd…
CVE-2022-22942 — CVSS 7.8 (high): The vmwgfx driver contains a local privilege escalation vulnerability that allows unprivileged users to gain access to files opened by…
CVE-2024-36880 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: qca: add missing firmware sanity checks Add the missing…
CVE-2023-52818 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amd: Fix UBSAN array-index-out-of-bounds for SMU7 For pptable…
CVE-2024-36934 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bna: ensure the copied buf is NUL terminated Currently, we allocate a…
CVE-2024-36940 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: pinctrl: core: delete incorrect free in pinctrl_enable() The "pctldev"…
CVE-2024-56605 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: do not leave dangling sk pointer on error in…
CVE-2024-56601 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: inet: do not leave a dangling sk pointer in inet_create()…
CVE-2024-53214 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: vfio/pci: Properly hide first-in-list PCIe extended capability There…
CVE-2024-36016 — CVSS 7.7 (high): In the Linux kernel, the following vulnerability has been resolved: tty: n_gsm: fix possible out-of-bounds in gsm0_receive() Assuming the…
CVE-2022-48760 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: USB: core: Fix hang in usb_kill_urb by adding memory barriers The…
CVE-2023-52507 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: nfc: nci: assert requested protocol is valid The protocol is used in a…
CVE-2024-38621 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: media: stk1160: fix bounds checking in stk1160_copy_video() The…
CVE-2024-41059 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: hfsplus: fix uninit-value in copy_name [syzbot reported] BUG: KMSAN…
CVE-2024-35896 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: netfilter: validate user input for expected length I got multiple…
CVE-2024-38659 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: enic: Validate length of nl attributes in enic_set_vf_port…
CVE-2024-36960 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Fix invalid reads in fence signaled events Correctly set…
CVE-2024-50279 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: dm cache: fix out-of-bounds access to the dirty bitset when resizing…
CVE-2024-50301 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: security/keys: fix slab-out-of-bounds in key_task_permission KASAN…
CVE-2021-47191 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: scsi: scsi_debug: Fix out-of-bound read in resp_readcap16() The…
CVE-2021-47309 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: net: validate lwtstate->data before returning from skb_tunnel_info()…
CVE-2024-36915 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: nfc: llcp: fix nfc_llcp_setsockopt() unsafe copies syzbot reported…
CVE-2022-48759 — CVSS 7.0 (high): In the Linux kernel, the following vulnerability has been resolved: rpmsg: char: Fix race between the release of rpmsg_ctrldev and cdev…
CVE-2024-56664 — CVSS 7.0 (high): In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Fix race between element replace and close() Element…
CVE-2023-24023 — CVSS 6.8 (medium): Bluetooth BR/EDR devices with Secure Simple Pairing and Secure Connections pairing in Bluetooth Core Specification 4.2 through 5.4 allow…
CVE-2024-35976 — CVSS 6.7 (medium): In the Linux kernel, the following vulnerability has been resolved: xsk: validate user input for XDP_{UMEM|COMPLETION}_FILL_RING syzbot…
CVE-2023-52819 — CVSS 6.6 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/amd: Fix UBSAN array-index-out-of-bounds for Polaris and Tonga For…
CVE-2024-57893 — CVSS 6.3 (medium): In the Linux kernel, the following vulnerability has been resolved: ALSA: seq: oss: Fix races at processing SysEx messages OSS sequencer…
CVE-2024-38544 — CVSS 6.3 (medium): In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix seg fault in rxe_comp_queue_pkt In rxe_comp_queue_pkt()…
CVE-2021-47267 — CVSS 6.3 (medium): In the Linux kernel, the following vulnerability has been resolved: usb: fix various gadget panics on 10gbps cabling usb_assign_descriptors(…
CVE-2024-26894 — CVSS 6.0 (medium): In the Linux kernel, the following vulnerability has been resolved: ACPI: processor_idle: Fix memory leak in acpi_processor_power_exit()…
CVE-2021-47544 — CVSS 5.9 (medium): In the Linux kernel, the following vulnerability has been resolved: tcp: fix page frag corruption on page fault Steffen reported a TCP…
CVE-2024-36894 — CVSS 5.6 (medium): In the Linux kernel, the following vulnerability has been resolved: usb: gadget: f_fs: Fix race between aio_cancel() and AIO request…
CVE-2024-37021 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: fpga: manager: add owner module and take its refcount The current…
CVE-2024-38546 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm: vc4: Fix possible null pointer dereference In…
CVE-2024-38549 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: Add 0 size check to mtk_drm_gem_obj Add a check to…
CVE-2024-38553 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: fec: remove .ndo_poll_controller to avoid deadlocks There is a…
CVE-2024-38565 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: wifi: ar5523: enable proper endpoint verification Syzkaller reports [1]…
CVE-2024-38567 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: wifi: carl9170: add a proper sanity check for endpoints Syzkaller…
CVE-2024-38579 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: crypto: bcm - Fix pointer arithmetic In spu2_dump_omd() value of ptr is…
CVE-2024-38597 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: eth: sungem: remove .ndo_poll_controller to avoid deadlocks Erhard…
CVE-2024-38598 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: md: fix resync softlockup when bitmap size is less than array size Is…
CVE-2024-38608 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix netif state handling mlx5e_suspend cleans resources only…
CVE-2024-38618 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ALSA: timer: Set lower bound of start tick time Currently ALSA timer…
CVE-2024-38619 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: usb-storage: alauda: Check whether the media is initialized The member…
CVE-2024-38661 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: s390/ap: Fix crash in AP internal function modify_bitmap() A system…
CVE-2024-38780 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: dma-buf/sw-sync: don't enable IRQ from sync_print_obj() Since commit…
CVE-2024-39301 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net/9p: fix uninit-value in p9_client_rpc() Syzbot with the help of…
CVE-2024-39475 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: fbdev: savage: Handle err return when savagefb_check_var failed The…
CVE-2024-40937 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: gve: Clear napi->skb before dev_kfree_skb_any() gve_rx_free_skb…
CVE-2024-42232 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: libceph: fix race between delayed_work() and ceph_monc_stop() The way…
CVE-2024-43861 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: usb: qmi_wwan: fix memory leak for not ip packets Free the unused…
CVE-2024-45016 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: netem: fix return value if duplicate enqueue fails There is a bug in…
CVE-2024-47684 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: tcp: check skb is non-NULL in tcp_rto_delta_us() We have some machines…
CVE-2025-38495 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: HID: core: ensure the allocated report buffer can contain the reserved…
CVE-2021-43389 — CVSS 5.5 (medium): An issue was discovered in the Linux kernel before 5.14.15. There is an array-index-out-of-bounds flaw in the detach_capi_ctr function in…
CVE-2021-47145 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: btrfs: do not BUG_ON in link_to_fixup_dir While doing error injection…
CVE-2021-47193 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: scsi: pm80xx: Fix memory leak during rmmod Driver failed to release all…
CVE-2021-47201 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: iavf: free q_vectors before queues in iavf_disable_vf…
CVE-2021-47270 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: usb: fix various gadgets null ptr deref on 10gbps cabling. This avoids…
CVE-2021-47275 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: bcache: avoid oversized read request in cache missing code path In the…
CVE-2021-47294 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: netrom: Decrease sock refcount when sock timers expire Commit…
CVE-2021-47297 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: fix uninit-value in caif_seqpkt_sendmsg When nr_segs equal to zero…
CVE-2021-47407 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Handle SRCU initialization failure during page track init…
CVE-2021-47418 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net_sched: fix NULL deref in fifo_set_limit() syzbot reported another…
CVE-2021-47434 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: xhci: Fix command ring pointer corruption while aborting a command The…
CVE-2021-47438 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix memory leak in mlx5_core_destroy_cq() error path Prior…
CVE-2021-47445 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/msm: Fix null pointer dereference on pointer edp The initialization…
CVE-2021-47498 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: dm rq: don't queue request to blk-mq during DM suspend DM uses blk-mq's…
CVE-2021-47518 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: nfc: fix potential NULL pointer deref in nfc_genl_dump_ses_done The…
CVE-2021-47587 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: systemport: Add global locking for descriptor lifecycle The…
CVE-2021-47602 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: mac80211: track only QoS data frames for admission control For…
CVE-2021-47617 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: PCI: pciehp: Fix infinite loop in IRQ handler upon power fault The…
CVE-2022-48711 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: tipc: improve size validations for received domain records The function…
CVE-2022-48715 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: scsi: bnx2fc: Make bnx2fc_recv_frame() mp safe Running tests with a…
CVE-2022-48722 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: ieee802154: ca8210: Stop leaking skb's Upon error the…
CVE-2022-48743 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: amd-xgbe: Fix skb data length underflow There will be BUG_ON()…
CVE-2022-48756 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/msm/dsi: invalid parameter check in msm_dsi_phy_enable The function…
CVE-2022-48758 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: scsi: bnx2fc: Flush destroy_work queue before calling…
CVE-2022-48772 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: media: lgdt3306a: Add a check against null-pointer-def The driver…
CVE-2022-48911 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_queue: fix possible use-after-free Eric Dumazet says: The…
CVE-2022-49080 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: mm/mempolicy: fix mpol_new leak in shared_policy_replace If mpol_new is…
CVE-2022-49545 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Cancel pending work at closing a MIDI substream At…
CVE-2023-52622 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ext4: avoid online resizing failures due to oversized flex bg When we…
CVE-2023-52675 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: powerpc/imc-pmu: Add a null pointer check in update_events_in_group()…
CVE-2023-52683 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ACPI: LPIT: Avoid u32 multiplication overflow In lpit_update_residency()…
CVE-2023-52693 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ACPI: video: check for error while searching for backlight device…
CVE-2023-52737 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: btrfs: lock the inode in shared mode before starting fiemap Currently…
CVE-2023-52753 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Avoid NULL dereference of timing generator [Why & How]…
CVE-2023-52754 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: media: imon: fix access to invalid resource for the second interface…
CVE-2023-52762 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: virtio-blk: fix implicit overflow on virtio_max_dma_size The following…
CVE-2023-52784 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: bonding: stop the device in bond_setup_by_slave() Commit 9eed321cde22…
CVE-2023-52808 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: scsi: hisi_sas: Set debugfs_dir pointer to NULL after removing debugfs…
CVE-2023-52809 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: scsi: libfc: Fix potential NULL pointer dereference in…
CVE-2023-52811 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: scsi: ibmvfc: Remove BUG_ON in the case of an empty event pool In…
CVE-2023-52817 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix a null pointer access when the smc_rreg pointer is NULL…
CVE-2023-52834 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: atl1c: Work around the DMA RX overflow issue This is based on alx…
CVE-2023-52843 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: llc: verify mac len before reading mac header LLC reads the mac header…
CVE-2023-52845 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: tipc: Change nla_policy for bearer-related names to NLA_NUL_STRING…
CVE-2023-52855 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: usb: dwc2: fix possible NULL pointer dereference caused by driver…
CVE-2023-52881 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: tcp: do not accept ACK of bytes we never sent This patch is based on a…
CVE-2024-26633 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ip6_tunnel: fix NEXTHDR_FRAGMENT handling in ip6_tnl_parse_tlv_enc_lim()…
CVE-2024-26635 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: llc: Drop support for ETH_P_TR_802_2. syzbot reported an uninit-value…
CVE-2024-26636 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: llc: make llc_ui_sendmsg() more robust against bonding changes syzbot…
CVE-2024-26641 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ip6_tunnel: make sure to pull inner header in __ip6_tnl_rcv() syzbot…
CVE-2024-26679 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: inet: read sk->sk_family once in inet_recv_error() inet_recv_error() is…
CVE-2024-26687 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: xen/events: close evtchn after mapping cleanup shutdown_pirq and…
CVE-2024-26813 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: vfio/platform: Create persistent IRQ handlers The vfio-platform…
CVE-2024-26845 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: scsi: target: core: Add TMF to tmr_list handling An abort that is…
CVE-2024-26863 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: hsr: Fix uninit-value access in hsr_get_node() KMSAN reported the…
CVE-2024-26880 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: dm: call the resume method on internal suspend There is this reported…
CVE-2024-26973 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: fat: fix uninitialized field in nostale filehandles When…
CVE-2024-27399 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: l2cap: fix null-ptr-deref in l2cap_chan_timeout There is a…
CVE-2024-27410 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: wifi: nl80211: reject iftype change with mesh ID change It's currently…
CVE-2024-35247 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: fpga: region: add owner module and take its refcount The current…
CVE-2024-35805 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: dm snapshot: fix lockup in dm_exception_table_exit There was reported…
CVE-2024-35807 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ext4: fix corruption during on-line resize We observed a corruption…
CVE-2024-35819 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: soc: fsl: qbman: Use raw spinlock for cgr_lock smp_call_function always…
CVE-2024-35822 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: usb: udc: remove warning when queue disabled ep It is possible trigger…
CVE-2024-35828 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: wifi: libertas: fix some memleaks in lbs_allocate_cmd_buffer() In the…
CVE-2024-35865 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF in smb2_is_valid_oplock_break() Skip…
CVE-2024-35922 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: fbmon: prevent division by zero in fb_videomode_from_videomode() The…
CVE-2024-35925 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: block: prevent division by zero in blk_rq_stat_sum() The expression…
CVE-2024-35930 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix possible memory leak in lpfc_rcv_padisc() The call to…
CVE-2024-35947 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: dyndbg: fix old BUG_ON in >control parser Fix a BUG_ON from 2009. Even…
CVE-2024-35950 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/client: Fully protect modes[] with dev->mode_config.mutex The…
CVE-2024-35956 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: btrfs: qgroup: fix qgroup prealloc rsv leak in subvolume operations…
CVE-2024-35958 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: ena: Fix incorrect descriptor free behavior ENA has two types of…
CVE-2024-35962 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: netfilter: complete validation of user input In my recent commit, I…
CVE-2024-35997 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: HID: i2c-hid: remove I2C_HID_READ_PENDING flag to prevent lock-up The…
CVE-2024-35998 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: smb3: fix lock ordering potential deadlock in cifs_sync_mid_result…
CVE-2024-36014 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/arm/malidp: fix a possible null pointer dereference In…
CVE-2024-36017 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: rtnetlink: Correct nested IFLA_VF_VLAN_LIST attribute validation Each…
CVE-2024-36025 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix off by one in qla_edif_app_getstats() The…
CVE-2024-36479 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: fpga: bridge: add owner module and take its refcount The current…
CVE-2024-36917 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: block: fix overflow in blk_ioctl_discard() There is no check for…
CVE-2024-36919 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: scsi: bnx2fc: Remove spin_lock_bh while releasing resources after…
CVE-2024-36938 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: bpf, skmsg: Fix NULL pointer dereference in sk_psock_skb_ingress_enqueue…
CVE-2024-36941 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: wifi: nl80211: don't free NULL coalescing rule If the parsing fails, we…
CVE-2024-36964 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: fs/9p: only translate RWX permissions for plain 9P2000 Garbage in plain…
CVE-2024-53146 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: NFSD: Prevent a potential integer overflow If the tag length is >=…
CVE-2024-57996 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net_sched: sch_sfq: don't allow 1 packet limit The current…
CVE-2020-10135 — CVSS 5.4 (medium): Legacy pairing and secure-connections pairing authentication in Bluetooth BR/EDR Core Specification v5.2 and earlier may allow an…
CVE-2022-48761 — CVSS 5.3 (medium): In the Linux kernel, the following vulnerability has been resolved: usb: xhci-plat: fix crash when suspend if remote wake enable Crashed at…
CVE-2024-35835 — CVSS 5.3 (medium): In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: fix a double-free in arfs_create_groups When `in` allocated…
CVE-2024-36949 — CVSS 4.7 (medium): In the Linux kernel, the following vulnerability has been resolved: amd/amdkfd: sync all devices to wait all processes being evicted If…