kernel-livepatch-SLE15-SP4-RT_Update_19 (SUSE:Linux Enterprise Live Patching 15 SP4) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise Live Patching 15 SP4 package kernel-livepatch-SLE15-SP4-RT_Update_19, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (49)
CVE-2023-52457 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: serial: 8250: omap: Don't skip resource freeing if…
CVE-2023-52452 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bpf: Fix accesses to uninit stack slots Privileged programs are…
CVE-2024-26598 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: vgic-its: Avoid potential UAF in LPI translation cache…
CVE-2019-25162 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: i2c: Fix a potential use after free Free the adap structure only after…
CVE-2024-26589 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bpf: Reject variable offset alu on PTR_TO_FLOW_KEYS For…
CVE-2024-26622 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: tomoyo: fix UAF write bug in tomoyo_write_control() Since…
CVE-2023-6817 — CVSS 7.8 (high): A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation…
CVE-2023-52531 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: Fix a memory corruption issue A few lines above…
CVE-2023-5197 — CVSS 7.8 (high): A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation…
CVE-2023-52451 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: powerpc/pseries/memhp: Fix access beyond end of drmem array…
CVE-2023-52530 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: fix potential key use-after-free When…
CVE-2023-52439 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: uio: Fix use-after-free in uio_open core-1 core-2…
CVE-2023-52482 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: x86/srso: Add SRSO mitigation for Hygon processors Add mitigation for…
CVE-2023-52445 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: media: pvrusb2: fix use after free on context disconnection Upon module…
CVE-2023-52475 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: Input: powermate - fix use-after-free in powermate_config_complete…
CVE-2023-52464 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: EDAC/thunderx: Fix possible out-of-bounds string access Enabling…
CVE-2023-52340 — CVSS 7.5 (high): The IPv6 implementation in the Linux kernel before 6.3 has a net/ipv6/route.c max_size threshold that can be consumed easily, e.g., leading…
CVE-2024-26593 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: i2c: i801: Fix block process call transactions According to the Intel…
CVE-2021-47083 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: pinctrl: mediatek: fix global-out-of-bounds issue When eint virtual…
CVE-2023-6270 — CVSS 7.0 (high): A flaw was found in the ATA over Ethernet (AoE) driver in the Linux kernel. The aoecmd_cfg_pkts() function improperly updates the refcnt on…
CVE-2024-26586 — CVSS 6.7 (medium): In the Linux kernel, the following vulnerability has been resolved: mlxsw: spectrum_acl_tcam: Fix stack corruption When tc filters are…
CVE-2023-52447 — CVSS 6.7 (medium): In the Linux kernel, the following vulnerability has been resolved: bpf: Defer the free of inner map when necessary When updating or…
CVE-2024-0607 — CVSS 6.6 (medium): A flaw was found in the Netfilter subsystem in the Linux kernel. The issue is in the nft_byteorder_eval() function, where the code iterates…
CVE-2023-28746 — CVSS 6.5 (medium): Information exposure through microarchitectural state after transient execution from some register files for some Intel(R) Atom(R)…
CVE-2023-52443 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: apparmor: avoid crash when parsed profile name is empty When processing…
CVE-2023-52484 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: iommu/arm-smmu-v3: Fix soft lockup triggered by arm_smmu_mm_invalidate_r…
CVE-2023-52429 — CVSS 5.5 (medium): dm_table_create in drivers/md/dm-table.c in the Linux kernel through 6.7.4 can attempt to (in alloc_targets) allocate more than INT_MAX…
CVE-2023-52559 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Avoid memory allocation in iommu_suspend() The…
CVE-2022-48627 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: vt: fix memory overlapping when deleting chars in the buffer A memory…
CVE-2024-1151 — CVSS 5.5 (medium): A vulnerability was reported in the Open vSwitch sub-component in the Linux Kernel. The flaw occurs when a recursive operation of code push…
CVE-2024-23849 — CVSS 5.5 (medium): In rds_recv_track_latency in net/rds/af_rds.c in the Linux kernel through 6.7.1, there is an off-by-one error for an RDS_MSG_RX_DGRAM_TRACE_…
CVE-2024-23850 — CVSS 5.5 (medium): In btrfs_get_root_ref in fs/btrfs/disk-io.c in the Linux kernel through 6.7.1, there can be an assertion failure and crash because a…
CVE-2024-23851 — CVSS 5.5 (medium): copy_params in drivers/md/dm-ioctl.c in the Linux kernel through 6.7.1 can attempt to allocate more than INT_MAX bytes, and crash, because…
CVE-2021-46923 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: fs/mount_setattr: always cleanup mount_kattr Make sure that…
CVE-2023-52449 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: mtd: Fix gluebi NULL pointer dereference caused by ftl notifier If both…
CVE-2023-52463 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: efivarfs: force RO when remounting if SetVariable is not supported If…
CVE-2023-52448 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: gfs2: Fix kernel NULL pointer dereference in gfs2_rgrp_dump Syzkaller…
CVE-2023-52467 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: mfd: syscon: Fix null pointer dereference in of_syscon_register()…
CVE-2021-46924 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: NFC: st21nfca: Fix memory leak in device probe and remove…
CVE-2024-26602 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: sched/membarrier: reduce the ability to hammer on sys_membarrier On…
CVE-2024-26603 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: x86/fpu: Stop relying on userspace for info to fault in xsave buffer…
CVE-2023-52456 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: serial: imx: fix tx statemachine deadlock When using the serial port as…
CVE-2024-26591 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: bpf: Fix re-attachment branch in bpf_tracing_prog_attach The following…
CVE-2021-46932 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: Input: appletouch - initialize work before device registration Syzbot…
CVE-2024-26595 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: mlxsw: spectrum_acl_tcam: Fix NULL pointer dereference in error path…
CVE-2024-26585 — CVSS 4.7 (medium): In the Linux kernel, the following vulnerability has been resolved: tls: fix race between tx work scheduling and socket close Similarly to…
CVE-2023-52478 — CVSS 4.7 (medium): In the Linux kernel, the following vulnerability has been resolved: HID: logitech-hidpp: Fix kernel crash on receiver USB disconnect…
CVE-2024-26607 — CVSS 4.7 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/bridge: sii902x: Fix probing race issue A null pointer dereference…
CVE-2021-46934 — CVSS 3.3 (low): In the Linux kernel, the following vulnerability has been resolved: i2c: validate user data in compat ioctl Wrong user data may cause…