kgraft-patch-SLE12-SP5_Update_68 (SUSE:Linux Enterprise Live Patching 12 SP5) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise Live Patching 12 SP5 package kgraft-patch-SLE12-SP5_Update_68, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (127)
CVE-2022-49478 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: media: pvrusb2: fix array-index-out-of-bounds in pvr2_i2c_core_init…
CVE-2021-47668 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: can: dev: can_restart: fix use after free bug After calling…
CVE-2021-47669 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: can: vxcan: vxcan_xmit: fix use after free bug After calling…
CVE-2022-49044 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: dm integrity: fix memory corruption when tag_size is less than digest…
CVE-2022-49111 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: Fix use after free in hci_send_acl This fixes the following…
CVE-2022-49176 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bfq: fix use-after-free in bfq_dispatch_request KASAN reports a…
CVE-2022-49179 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: block, bfq: don't move oom_bfqq Our test report a UAF: [ 2073.019181]…
CVE-2022-49205 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Fix double uncharge the mem of sk_msg If tcp_bpf_sendmsg…
CVE-2022-49290 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: mac80211: fix potential double free on mesh join While commit…
CVE-2022-49385 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: driver: base: fix UAF when driver_attach failed When…
CVE-2022-49390 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: macsec: fix UAF bug for real_dev Create a new macsec device but not get…
CVE-2022-49411 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bfq: Make sure bfqg for which we are queueing requests is online Bios…
CVE-2022-49465 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: blk-throttle: Set BIO_THROTTLED when bio has been throttled 1.In…
CVE-2022-49489 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/msm/disp/dpu1: set vbif hw config to NULL to avoid use after memory…
CVE-2022-49535 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix null pointer dereference after failing to issue FLOGI…
CVE-2022-49753 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: dmaengine: Fix double increment of client_count in dma_chan_get() The…
CVE-2022-50423 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ACPICA: Fix use-after-free in acpi_ut_copy_ipackage_to_ipackage() There…
CVE-2023-53023 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: nfc: Fix use-after-free in local_cleanup() Fix a use-after-free…
CVE-2024-53168 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: sunrpc: fix one UAF issue caused by sunrpc kernel tcp socket BUG…
CVE-2024-57980 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: media: uvcvideo: Fix double free in error path If the uvc_status_init()…
CVE-2024-58093 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: PCI/ASPM: Fix link state exit during switch upstream function removal…
CVE-2025-21702 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: pfifo_tail_enqueue: Drop new packet when sch->limit == 0 Expected…
CVE-2025-21735 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: NFC: nci: Add bounds checking in nci_hci_create_pipe() The "pipe"…
CVE-2025-21764 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ndisc: use RCU protection in ndisc_alloc_skb() ndisc_alloc_skb() can be…
CVE-2025-21772 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: partitions: mac: fix handling of bogus partition table Fix several…
CVE-2025-21927 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: nvme-tcp: fix potential memory corruption in nvme_tcp_recv_pdu()…
CVE-2025-22004 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: atm: fix use after free in lec_send() The ->send() operation frees…
CVE-2025-37752 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net_sched: sch_sfq: move the limit validation It is not sufficient to…
CVE-2025-37797 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net_sched: hfsc: Fix a UAF vulnerability in class handling This patch…
CVE-2025-38000 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: sch_hfsc: Fix qlen accounting bug when using peek in hfsc_enqueue()…
CVE-2025-38212 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ipc: fix to protect IPCS lookups using RCU syzbot reported that it…
CVE-2025-38488 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: smb: client: fix use-after-free in crypt_message when using async…
CVE-2026-22999 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net/sched: sch_qfq: do not free existing class in qfq_change_class()…
CVE-2026-23074 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net/sched: Enforce that teql can only be used as root qdisc Design…
CVE-2026-23191 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ALSA: aloop: Fix racy access at PCM trigger The PCM trigger callback of…
CVE-2026-23209 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: macvlan: fix error recovery in macvlan_common_newlink() valis provided…
CVE-2026-23268 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: apparmor: fix unprivileged local user can do privileged policy…
CVE-2025-37785 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: ext4: fix OOB read when checking dotdot dir Mounting a corrupted…
CVE-2024-46865 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: fou: fix initialization of grc The grc must be initialize first. There…
CVE-2022-49542 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Move cfg_log_verbose check before calling lpfc_dmp_dbg() In…
CVE-2022-49561 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrack: re-fetch conntrack after insertion In case the…
CVE-2022-49658 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: bpf: Fix insufficient bounds propagation from adjust_scalar_min_max_vals…
CVE-2022-49668 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: PM / devfreq: exynos-ppmu: Fix refcount leak in of_get_devfreq_events…
CVE-2022-49693 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/msm/mdp4: Fix refcount leak in mdp4_modeset_init_intf…
CVE-2022-49725 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: i40e: Fix call trace in setup_tx_descriptors After PF reset and ethtool…
CVE-2022-49728 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix signed integer overflow in __ip6_append_data Resurrect ubsan…
CVE-2022-49749 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: i2c: designware: use casting of u64 in clock multiplication to avoid…
CVE-2025-22055 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: fix geneve_opt length integer overflow struct geneve_opt uses 5…
CVE-2025-22053 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: ibmveth: make veth_pool_store stop hanging v2: - Created a single…
CVE-2022-49537 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix call trace observed during I/O with CMF enabled The…
CVE-2022-49351 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: altera: Fix refcount leak in altera_tse_mdio_create Every…
CVE-2025-21976 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: fbdev: hyperv_fb: Allow graceful removal of framebuffer When a Hyper-V…
CVE-2025-22008 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: regulator: check that dummy regulator has been probed before using it…
CVE-2022-49442 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drivers/base/node.c: fix compaction sysfs file leak Compaction sysfs…
CVE-2025-22010 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: Fix soft lockup during bt pages loop Driver runs a for-loop…
CVE-2020-36789 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: can: dev: can_get_echo_skb(): prevent call to kfree_skb() in hard IRQ…
CVE-2025-22018 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: atm: Fix NULL pointer dereference When MPOA_cache_impos_rcvd() receives…
CVE-2022-49504 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Inhibit aborts if external loopback plug is inserted After…
CVE-2022-49521 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix resource leak in lpfc_sli4_send_seq_to_ulp() If no…
CVE-2022-49525 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: media: cx25821: Fix the warning when removing the module When removing…
CVE-2022-49534 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Protect memory leak for NPIV ports sending PLOGI_RJT There…
CVE-2022-49536 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix SCSI I/O completion and abort handler deadlock During…
CVE-2025-22086 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix mlx5_poll_one() cur_qp update flow When cur_qp isn't…
CVE-2023-53032 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: Fix overflow before widen in the bitmap_ip_create()…
CVE-2024-46763 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: fou: Fix null-ptr-deref in GRO. We observed a null-ptr-deref in…
CVE-2024-49994 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: block: fix integer overflow in BLKSECDISCARD I independently…
CVE-2024-50038 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: netfilter: xtables: avoid NFPROTO_UNSPEC where needed syzbot managed to…
CVE-2024-50272 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: filemap: Fix bounds checking in filemap_read() If the caller supplies…
CVE-2024-52559 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/msm/gem: prevent integer overflow in msm_ioctl_gem_submit() The…
CVE-2025-23131 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: dlm: prevent NPD when writing a positive value to event_done do_uevent…
CVE-2024-54683 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: netfilter: IDLETIMER: Fix for possible ABBA deadlock Deletion of the…
CVE-2024-56590 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_core: Fix not checking skb length on hci_acldata_packet…
CVE-2024-56641 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net/smc: initialize close_work early to avoid warning We encountered a…
CVE-2024-57924 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: fs: relax assertions on failure to encode file handles Encoding file…
CVE-2024-57981 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: usb: xhci: Fix NULL pointer dereference on certain command aborts If a…
CVE-2024-58005 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: tpm: Change to kvalloc() in eventlog/acpi.c The following failure was…
CVE-2024-58009 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: handle NULL sock pointer in l2cap_sock_alloc A NULL…
CVE-2024-58017 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: printk: Fix signed integer overflow when defining LOG_BUF_LEN_MAX…
CVE-2024-58063 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: wifi: rtlwifi: fix memory leaks and invalid access at probe error path…
CVE-2025-21635 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: rds: sysctl: rds_tcp_{rcv,snd}buf: avoid using current->nsproxy As…
CVE-2025-21738 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ata: libata-sff: Ensure that we cannot write outside the allocated…
CVE-2025-21750 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: Check the return value of of_property_read_string_index(…
CVE-2025-21758 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ipv6: mcast: add RCU protection to mld_newpack() mld_newpack() can be…
CVE-2025-71085 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ipv6: BUG() in pskb_expand_head() as part of calipso_skbuff_setattr()…
CVE-2025-21768 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: ipv6: fix dst ref loops in rpl, seg6 and ioam6 lwtunnels Some…
CVE-2025-21779 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Reject Hyper-V's SEND_IPI hypercalls if local APIC isn't…
CVE-2025-21806 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: let net.core.dev_weight always be non-zero The following problem…
CVE-2025-21862 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drop_monitor: fix incorrect initialization order Syzkaller reports the…
CVE-2025-21881 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: uprobes: Reject the shared zeropage in uprobe_write_opcode() We…
CVE-2025-21909 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: wifi: nl80211: reject cooked mode if it is set along with other flags…
CVE-2025-21910 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: regulatory: improve invalid hints checking Syzbot keeps…
CVE-2025-21926 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: gso: fix ownership in __udp_gso_segment In __udp_gso_segment the…
CVE-2021-47659 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/plane: Move range check for format_count earlier While the check…
CVE-2025-71120 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: SUNRPC: svcauth_gss: avoid NULL deref on zero length gss_token in…
CVE-2025-21931 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: hwpoison, memory_hotplug: lock folio before unmap hwpoisoned folio…
CVE-2025-21941 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix null check for pipe_ctx->plane_state in…
CVE-2022-49055 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Check for potential null return of kmalloc_array() As the…
CVE-2022-49060 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net/smc: Fix NULL pointer dereference in smc_pnet_find_ib() dev_name()…
CVE-2022-49086 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: fix leak of nested actions While parsing…
CVE-2025-21948 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: HID: appleir: Fix potential NULL dereference at raw event handle…
CVE-2022-49118 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: scsi: hisi_sas: Free irq vectors in order for v3 HW If the driver probe…
CVE-2022-49121 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: scsi: pm8001: Fix tag leaks on error In pm8001_chip_set_dev_state_req()…
CVE-2022-49137 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/amd/amdgpu/amdgpu_cs: fix refcount leak of a dma_fence obj This…
CVE-2022-49171 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ext4: don't BUG if someone dirty pages without asking ext4 first…
CVE-2022-49175 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: PM: core: keep irq flags in device_pm_check_callbacks() The function…
CVE-2025-21956 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Assign normalized_pix_clk when color depth = 14 [WHY &…
CVE-2025-21957 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: scsi: qla1280: Fix kernel oops when debug level > 2 A null dereference…
CVE-2022-49188 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: remoteproc: qcom_q6v5_mss: Fix some leaks in q6v5_alloc_memory_region…
CVE-2022-49197 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: af_netlink: Fix shift out of bounds in group mask calculation When a…
CVE-2025-21963 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: cifs: Fix integer overflow while processing acdirmax mount option…
CVE-2022-49232 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix a NULL pointer dereference in…
CVE-2025-21964 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: cifs: Fix integer overflow while processing acregmax mount option…
CVE-2022-49305 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drivers: staging: rtl8192u: Fix deadlock in ieee80211_beacons_stop()…
CVE-2022-49325 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: tcp: add accessors to read/set tp->snd_cwnd We had various bugs over…
CVE-2022-49335 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/cs: make commands with 0 chunks illegal behaviour…
CVE-2025-38477 — CVSS 4.7 (medium): In the Linux kernel, the following vulnerability has been resolved: net/sched: sch_qfq: Fix race condition on qfq_aggregate A race…
CVE-2022-49590 — CVSS 4.7 (medium): In the Linux kernel, the following vulnerability has been resolved: igmp: Fix data-races around sysctl_igmp_llm_reports. While reading…
CVE-2025-22060 — CVSS 4.7 (medium): In the Linux kernel, the following vulnerability has been resolved: net: mvpp2: Prevent parser TCAM memory corruption Protect the parser…
CVE-2025-40018: In the Linux kernel, the following vulnerability has been resolved: ipvs: Defer ip_vs_ftp unregister during netns cleanup On the netns…
CVE-2023-53781: In the Linux kernel, the following vulnerability has been resolved: smc: Fix use-after-free in tcp_write_timer_handler(). With Eric's ref…
CVE-2023-53794: In the Linux kernel, the following vulnerability has been resolved: cifs: fix session state check in reconnect to avoid use-after-free…
CVE-2022-49730: Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
CVE-2025-68285: In the Linux kernel, the following vulnerability has been resolved: libceph: fix potential use-after-free in have_mon_and_osd_map() The…
CVE-2025-68813: In the Linux kernel, the following vulnerability has been resolved: ipvs: fix ipv4 null-ptr-deref in route error path The IPv4 code path in…
CVE-2025-39973: In the Linux kernel, the following vulnerability has been resolved: i40e: add validation for ring_len param The `ring_len` parameter…
CVE-2022-50697: In the Linux kernel, the following vulnerability has been resolved: mrp: introduce active flags to prevent UAF when applicant uninit The…
CVE-2022-50756: In the Linux kernel, the following vulnerability has been resolved: nvme-pci: fix mempool alloc size Convert the max size to bytes to match…