kgraft-patch-SLE12-SP5_Update_65 (SUSE:Linux Enterprise Live Patching 12 SP5) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise Live Patching 12 SP5 package kgraft-patch-SLE12-SP5_Update_65, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (83)
CVE-2025-21772 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: partitions: mac: fix handling of bogus partition table Fix several…
CVE-2024-56601 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: inet: do not leave a dangling sk pointer in inet_create()…
CVE-2024-56615 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bpf: fix OOB devmap writes when deleting elements Jordy reported issue…
CVE-2025-21791 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: vrf: use RCU protection in l3mdev_l3_out() l3mdev_l3_out() can be…
CVE-2024-53168 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: sunrpc: fix one UAF issue caused by sunrpc kernel tcp socket BUG…
CVE-2025-38488 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: smb: client: fix use-after-free in crypt_message when using async…
CVE-2024-53227 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: scsi: bfa: Fix use-after-free in bfad_im_module_exit() BUG: KASAN…
CVE-2025-38079 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: crypto: algif_hash - fix double free in hash_accept If accept(2) is…
CVE-2022-49465 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: blk-throttle: Set BIO_THROTTLED when bio has been throttled 1.In…
CVE-2022-49179 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: block, bfq: don't move oom_bfqq Our test report a UAF: [ 2073.019181]…
CVE-2024-56759 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: btrfs: fix use-after-free when COWing tree bock and tracing is enabled…
CVE-2022-50423 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ACPICA: Fix use-after-free in acpi_ut_copy_ipackage_to_ipackage() There…
CVE-2021-47222 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: bridge: fix vlan tunnel dst refcnt when egressing The egress…
CVE-2025-38494 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: HID: core: do not bypass hid_hw_raw_request hid_hw_raw_request() is…
CVE-2024-56600 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: inet6: do not leave a dangling sk pointer in inet6_create()…
CVE-2024-57896 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: btrfs: flush delalloc workers queue before stopping cleaner kthread…
CVE-2024-57899 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: fix mbss changed flags corruption on 32 bit systems On…
CVE-2024-57929 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: dm array: fix releasing a faulty array block twice in…
CVE-2024-52332 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: igb: Fix potential invalid memory access in igb_init_module() The…
CVE-2023-53321 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211_hwsim: drop short frames While technically some control…
CVE-2024-56650 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: netfilter: x_tables: fix LED ID check in led_tg_check() Syzbot has…
CVE-2024-53155 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix uninitialized value in ocfs2_file_read_iter() Syzbot has…
CVE-2024-56662 — CVSS 6.0 (medium): In the Linux kernel, the following vulnerability has been resolved: acpi: nfit: vmalloc-out-of-bounds Read in acpi_nfit_ctl Fix an issue…
CVE-2024-56681 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: crypto: bcm - add error check in the ahash_hmac_init function The…
CVE-2024-56700 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: media: wl128x: Fix atomicity violation in fmc_send_cmd() Atomicity…
CVE-2024-56722 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: Fix cpu stuck caused by printings during reset During reset…
CVE-2024-56739 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: rtc: check if __rtc_read_time was successful in rtc_timer_do_work() If…
CVE-2024-56747 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: scsi: qedi: Fix a possible memory leak in qedi_alloc_and_init_sb() Hook…
CVE-2024-56748 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: scsi: qedf: Fix a possible memory leak in qedf_alloc_and_init_sb() Hook…
CVE-2024-56763 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: tracing: Prevent bad count for tracing_cpumask_write If a large count…
CVE-2024-56769 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: media: dvb-frontends: dib3000mb: fix uninit-value in dib3000_write_reg…
CVE-2024-57884 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: mm: vmscan: account for free pages to prevent infinite Loop in…
CVE-2024-57890 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: RDMA/uverbs: Prevent integer overflow issue In the expression…
CVE-2024-57903 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: restrict SO_REUSEPORT to inet sockets After blamed commit, crypto…
CVE-2024-57922 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add check for granularity in dml ceil/floor helpers…
CVE-2024-57931 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: selinux: ignore unknown extended permissions When evaluating extended…
CVE-2024-57932 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: gve: guard XDP xmit NDO on existence of xdp queues In GVE, dedicated…
CVE-2024-57938 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net/sctp: Prevent autoclose integer overflow in sctp_association_init()…
CVE-2024-57996 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net_sched: sch_sfq: don't allow 1 packet limit The current…
CVE-2025-21653 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net_sched: cls_flow: validate TCA_FLOW_RSHIFT attribute syzbot found…
CVE-2025-21664 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: dm thin: make get_first_thin use rcu-safe list first function The…
CVE-2025-21678 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: gtp: Destroy device along with udp socket's netns dismantle…
CVE-2025-21682 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: eth: bnxt: always recalculate features after XDP clearing, fix…
CVE-2025-21738 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ata: libata-sff: Ensure that we cannot write outside the allocated…
CVE-2025-71085 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ipv6: BUG() in pskb_expand_head() as part of calipso_skbuff_setattr()…
CVE-2021-47223 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: bridge: fix vlan tunnel dst null pointer dereference This patch…
CVE-2022-49080 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: mm/mempolicy: fix mpol_new leak in shared_policy_replace If mpol_new is…
CVE-2022-49545 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Cancel pending work at closing a MIDI substream At…
CVE-2022-49563 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: crypto: qat - add param check for RSA Reject requests with a source…
CVE-2022-49564 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: crypto: qat - add param check for DH Reject requests with a source…
CVE-2024-26644 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: btrfs: don't abort filesystem when attempting to snapshot deleted…
CVE-2024-47809 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: dlm: fix possible lkb_resource null dereference This patch fixes a…
CVE-2024-48881 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: bcache: revert replacing IS_ERR_OR_NULL with IS_ERR again Commit…
CVE-2024-49948 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: add more sanity checks to qdisc_pkt_len_init() One path takes care…
CVE-2024-50142 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: xfrm: validate new SA's prefixlen using SA family when sel.family is…
CVE-2024-53185 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: smb: client: fix NULL ptr deref in crypto_aead_setkey() Neither SMB3.0…
CVE-2024-55916 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: Drivers: hv: util: Avoid accessing a ringbuffer not initialized yet If…
CVE-2024-56369 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/modes: Avoid divide by zero harder in drm_mode_vrefresh()…
CVE-2024-56532 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ALSA: us122l: Use snd_card_free_when_closed() at disconnection The USB…
CVE-2024-56533 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ALSA: usx2y: Use snd_card_free_when_closed() at disconnection The USB…
CVE-2024-56539 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: wifi: mwifiex: Fix memcpy() field-spanning write warning in…
CVE-2024-56574 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: media: ts2020: fix null-ptr-deref in ts2020_probe() KASAN reported a…
CVE-2024-56593 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: Fix oops due to NULL pointer dereference in…
CVE-2024-56594 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: set the right AMDGPU sg segment limitation The driver needs…
CVE-2024-56623 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix use after free on unload System crash is observed…
CVE-2024-56630 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ocfs2: free inode when ocfs2_get_init_inode() fails syzbot is reporting…
CVE-2024-56641 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net/smc: initialize close_work early to avoid warning We encountered a…
CVE-2024-56643 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: dccp: Fix memory leak in dccp_feat_change_recv If…
CVE-2024-56661 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: tipc: fix NULL deref in cleanup_bearer() syzbot found [1] that after…
CVE-2025-38495 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: HID: core: ensure the allocated report buffer can contain the reserved…
CVE-2025-38083 — CVSS 4.7 (medium): In the Linux kernel, the following vulnerability has been resolved: net_sched: prio: fix a race in prio_tune() Gerrard Tai reported a race…
CVE-2025-38477 — CVSS 4.7 (medium): In the Linux kernel, the following vulnerability has been resolved: net/sched: sch_qfq: Fix race condition on qfq_aggregate A race…
CVE-2024-56637 — CVSS 4.7 (medium): In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: Hold module reference while requesting a module User…
CVE-2023-53781: In the Linux kernel, the following vulnerability has been resolved: smc: Fix use-after-free in tcp_write_timer_handler(). With Eric's ref…
CVE-2022-50697: In the Linux kernel, the following vulnerability has been resolved: mrp: introduce active flags to prevent UAF when applicant uninit The…
CVE-2025-40186: In the Linux kernel, the following vulnerability has been resolved: tcp: Don't call reqsk_fastopen_remove() in tcp_conn_request(). syzbot…
CVE-2025-68285: In the Linux kernel, the following vulnerability has been resolved: libceph: fix potential use-after-free in have_mon_and_osd_map() The…
CVE-2025-68813: In the Linux kernel, the following vulnerability has been resolved: ipvs: fix ipv4 null-ptr-deref in route error path The IPv4 code path in…
CVE-2022-50700: In the Linux kernel, the following vulnerability has been resolved: wifi: ath10k: Delay the unmapping of the buffer On WCN3990, we are…
CVE-2022-50756: In the Linux kernel, the following vulnerability has been resolved: nvme-pci: fix mempool alloc size Convert the max size to bytes to match…
CVE-2022-50717: In the Linux kernel, the following vulnerability has been resolved: nvmet-tcp: add bounds check on Transfer Tag ttag is used as an index to…