kernel-livepatch-SLE15-SP5-RT_Update_21 (SUSE:Linux Enterprise Live Patching 15 SP5) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise Live Patching 15 SP5 package kernel-livepatch-SLE15-SP5-RT_Update_21, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (130)
CVE-2024-44977 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Validate TA binary size Add TA binary size validation to…
CVE-2024-46674 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: st: fix probed platform device ref count on probe error path…
CVE-2024-46673 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: scsi: aacraid: Fix double-free on probe failure aac_probe_one() calls…
CVE-2023-52916 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: media: aspeed: Fix memory overwrite if timing is 1600x900 When…
CVE-2024-46725 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix out-of-bounds write warning Check the ring type value…
CVE-2024-46786 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: fscache: delete fscache_cookie_lru_timer when fscache exits to avoid…
CVE-2024-44986 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ipv6: fix possible UAF in ip6_finish_output2() If skb_expand_head()…
CVE-2024-45026 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: s390/dasd: fix error recovery leading to data corruption on ESE devices…
CVE-2024-44987 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ipv6: prevent UAF in ip6_send_skb() syzbot reported an UAF in…
CVE-2024-46746 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: HID: amd_sfh: free driver_data after destroying hid device HID driver…
CVE-2024-46738 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: VMCI: Fix use-after-free when removing resource in…
CVE-2024-46744 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: Squashfs: sanity check symbolic link size Syzkiller reports a "KMSAN…
CVE-2024-44967 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/mgag200: Bind I2C lifetime to DRM device Managed cleanup with…
CVE-2024-46759 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: hwmon: (adc128d818) Fix underflows seen when writing limit attributes…
CVE-2024-46830 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Acquire kvm->srcu when handling KVM_SET_VCPU_EVENTS Grab…
CVE-2024-46798 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ASoC: dapm: Fix UAF for snd_soc_pcm_runtime object When using kernel…
CVE-2024-44998 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: atm: idt77252: prevent use after free in dequeue_rx() We can't…
CVE-2024-46747 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: HID: cougar: fix slab-out-of-bounds Read in cougar_report_fixup…
CVE-2024-46774 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: powerpc/rtas: Prevent Spectre v1 gadget construction in sys_rtas()…
CVE-2024-46731 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amd/pm: fix the Out-of-bounds read warning using index i - 1U may…
CVE-2024-44999 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: gtp: pull network headers in gtp_dev_xmit() syzbot/KMSAN reported use…
CVE-2024-38538 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: net: bridge: xmit: make sure we have at least eth header len bytes…
CVE-2024-46743 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: of/irq: Prevent device address out-of-bounds read in interrupt map walk…
CVE-2024-46722 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix mc_data out-of-bounds read warning Clear warning that…
CVE-2024-46723 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix ucode out-of-bounds read warning Clear warning that…
CVE-2024-46724 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix out-of-bounds read of df_v1_7_channel_number Check the…
CVE-2024-44935 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: sctp: Fix null-ptr-deref in reuseport_add_sock(). syzbot reported a…
CVE-2024-44944 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: netfilter: ctnetlink: use helper function to calculate expect ID Delete…
CVE-2024-44946 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: kcm: Serialise kcm_sendmsg() for the same socket. syzkaller reported…
CVE-2024-44948 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: x86/mtrr: Check if fixed MTRRs exist before saving them MTRRs have an…
CVE-2024-44950 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: serial: sc16is7xx: fix invalid FIFO access with special register set…
CVE-2024-44969 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: s390/sclp: Prevent release of buffer in I/O When a task waiting for…
CVE-2024-44970 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: SHAMPO, Fix invalid WQ linked list unlink When all the…
CVE-2024-44971 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: dsa: bcm_sf2: Fix a possible memory leak in bcm_sf2_mdio_register()…
CVE-2024-44982 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/msm/dpu: cleanup FB if dpu_format_populate_layout fails If the…
CVE-2024-44988 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: dsa: mv88e6xxx: Fix out-of-bound access If an ATU violation was…
CVE-2024-44989 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: bonding: fix xfrm real_dev null pointer dereference We shouldn't set…
CVE-2024-44990 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: bonding: fix null pointer deref in bond_ipsec_offload_ok We must check…
CVE-2024-45000 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: fs/netfs/fscache_cookie: add missing "n_accesses" check This fixes a…
CVE-2024-45001 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: mana: Fix RX buf alloc_size alignment and atomic op panic The MANA…
CVE-2024-45006 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: xhci: Fix Panther point NULL pointer deref at full-speed re-enumeration…
CVE-2024-45007 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: char: xillybus: Don't destroy workqueue from work item running on it…
CVE-2024-45008 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: Input: MT - limit max slots syzbot is reporting too large allocation at…
CVE-2024-45011 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: char: xillybus: Check USB endpoints when probing device Ensure, as the…
CVE-2024-45013 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: nvme: move stopping keep-alive into nvme_uninit_ctrl() Commit…
CVE-2024-45015 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/msm/dpu: move dpu_encoder's connector assignment to atomic_enable()…
CVE-2024-45018 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: netfilter: flowtable: initialise extack before use Fix missing…
CVE-2024-45020 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: bpf: Fix a kernel verifier crash in stacksafe() Daniel Hodges reported…
CVE-2024-45021 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: memcg_write_event_control(): fix a user-triggerable oops we are *not*…
CVE-2024-45028 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: mmc: mmc_test: Fix NULL dereference on allocation failure If the…
CVE-2024-45029 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: i2c: tegra: Do not mark ACPI devices as irq safe On ACPI machines, the…
CVE-2024-46675 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: core: Prevent USB core invalid event buffer address access…
CVE-2024-46676 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: nfc: pn533: Add poll mod list filling check In case of im_protocols…
CVE-2024-46677 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: gtp: fix a potential NULL pointer dereference When sockfd_lookup()…
CVE-2024-46685 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: pinctrl: single: fix potential NULL dereference in pcs_get_function()…
CVE-2024-46686 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: smb/client: avoid dereferencing rdata=NULL in smb2_new_read_req() This…
CVE-2024-46689 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: soc: qcom: cmd-db: Map shared memory as WC, not WB Linux does not write…
CVE-2024-46694 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: avoid using null object of framebuffer Instead of…
CVE-2024-46702 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Mark XDomain as unplugged when router is removed I noticed…
CVE-2024-46707 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Make ICC_*SGI*_EL1 undef in the absence of a vGICv3 On a…
CVE-2024-46714 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Skip wbscl_set_scaler_filter if filter is null Callers…
CVE-2024-46715 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: driver: iio: add missing checks on iio_info's callback access Some…
CVE-2024-46717 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: SHAMPO, Fix incorrect page release Under the following…
CVE-2024-46720 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix dereference after null check check the pointer hive…
CVE-2024-46721 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: apparmor: fix possible NULL pointer dereference profile->parent->dents[A…
CVE-2024-46726 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Ensure index calculation will not overflow [WHY & HOW]…
CVE-2024-46727 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add otg_master NULL check within…
CVE-2024-46728 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check index for aux_rd_interval before using…
CVE-2024-46730 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Ensure array index tg_inst won't be -1 [WHY & HOW]…
CVE-2024-46761 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: pci/hotplug/pnv_php: Fix hotplug driver crash on Powernv The hotplug…
CVE-2022-48911 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_queue: fix possible use-after-free Eric Dumazet says: The…
CVE-2022-48923 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: btrfs: prevent copying too big compressed lzo segment Compressed length…
CVE-2022-48935 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: unregister flowtable hooks on netns exit…
CVE-2022-48944 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: sched: Fix yet more sched_fork() races Where commit 4ef0c5c6b5ba…
CVE-2022-48945 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: media: vivid: fix compose size exceed boundary syzkaller found a bug…
CVE-2023-52610 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net/sched: act_ct: fix skb leak and crash on ooo frags act_ct adds…
CVE-2024-26640 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: tcp: add sanity checks to rx zerocopy TCP rx zerocopy intent is to map…
CVE-2024-26759 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: mm/swap: fix race when skipping swapcache When skipping swapcache for…
CVE-2024-26767 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: fixed integer types and null check locations [why]…
CVE-2024-38632 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: vfio/pci: fix potential memory leak in vfio_intx_enable() If…
CVE-2024-40910 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ax25: Fix refcount imbalance on inbound connections When releasing a…
CVE-2024-40973 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: media: mtk-vcodec: potential null pointer deference in SCP The return…
CVE-2024-40983 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: tipc: force a dst refcount before doing decryption As it says in commit…
CVE-2024-41062 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: bluetooth/l2cap: sync sock recv cb and release The problem occurs…
CVE-2024-41082 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: nvme-fabrics: use reserved tag for reg read/write command In some…
CVE-2024-42259 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/i915/gem: Fix Virtual Memory mapping boundaries calculation…
CVE-2024-42265 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: protect the fetch of ->fd[fd] in do_dup2() from mispredictions both…
CVE-2024-42304 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ext4: make sure the first directory block is not a hole The syzbot…
CVE-2024-42305 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ext4: check dot and dotdot of dx_root before making dir indexed Syzbot…
CVE-2024-42306 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: udf: Avoid using corrupted block bitmap buffer When the filesystem…
CVE-2024-43828 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ext4: fix infinite loop when replaying fast_commit When doing…
CVE-2024-43835 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: virtio_net: Fix napi_skb_cache_put warning After the commit…
CVE-2024-43890 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: tracing: Fix overflow in get_free_elt() "tracing_map->next_elt" in…
CVE-2024-43912 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: wifi: nl80211: disallow setting special AP channel widths Setting the…
CVE-2024-43914 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: md/raid5: avoid BUG_ON() while continue reshape after reassembling…
CVE-2024-46751 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: btrfs: don't BUG_ON() when 0 reference count at btrfs_lookup_extent_info…
CVE-2024-46752 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: btrfs: replace BUG_ON() with error handling at update_ref_for_cow()…
CVE-2024-46753 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: btrfs: handle errors from btrfs_dec_ref() properly In walk_up_proc() we…
CVE-2024-46755 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: wifi: mwifiex: Do not return unused priv in mwifiex_get_priv_by_id()…
CVE-2022-48901 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: btrfs: do not start relocation until in progress drops are done We hit…
CVE-2024-46771 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: can: bcm: Remove proc entry when dev is unregistered. syzkaller…
CVE-2024-46772 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check denominator crb_pipes before used [WHAT & HOW] A…
CVE-2024-46773 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check denominator pbn_div before used [WHAT & HOW] A…
CVE-2024-46778 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check UnboundedRequestEnabled's value…
CVE-2024-46780 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: nilfs2: protect references to superblock parameters exposed in sysfs…
CVE-2024-46781 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix missing cleanup on rollforward recovery error In an error…
CVE-2024-46783 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: tcp_bpf: fix return value of tcp_bpf_sendmsg() When we cork messages in…
CVE-2024-46784 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: mana: Fix error handling in mana_create_txq/rxq's NAPI cleanup…
CVE-2024-46791 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: can: mcp251x: fix deadlock if an interrupt occurs during mcp251x_open…
CVE-2024-46822 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: arm64: acpi: Harden get_cpu_for_acpi_id() against missing CPU entry In…
CVE-2024-46732 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Assign linear_pitch_alignment even for VM…
CVE-2024-46737 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: nvmet-tcp: fix kernel crash if commands allocation fails If the…
CVE-2024-46739 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: uio_hv_generic: Fix kernel NULL pointer dereference in hv_uio_rescind…
CVE-2024-46745 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: Input: uinput - reject requests with unreasonable number of slots When…
CVE-2024-46750 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: PCI: Add missing bridge lock to pci_bus_lock() One of the true…
CVE-2024-26804 — CVSS 5.3 (medium): In the Linux kernel, the following vulnerability has been resolved: net: ip_tunnel: prevent perpetual headroom growth syzkaller triggered…
CVE-2024-46679 — CVSS 4.7 (medium): In the Linux kernel, the following vulnerability has been resolved: ethtool: check device is present when getting link settings A sysfs…
CVE-2024-45003 — CVSS 4.7 (medium): In the Linux kernel, the following vulnerability has been resolved: vfs: Don't evict inode under the inode lru traversing context The inode…
CVE-2024-44954 — CVSS 4.7 (medium): In the Linux kernel, the following vulnerability has been resolved: ALSA: line6: Fix racy access to midibuf There can be concurrent…
CVE-2024-46787 — CVSS 4.7 (medium): In the Linux kernel, the following vulnerability has been resolved: userfaultfd: fix checks for huge PMDs Patch series "userfaultfd: fix…
CVE-2024-26837 — CVSS 4.7 (medium): In the Linux kernel, the following vulnerability has been resolved: net: bridge: switchdev: Skip MDB replays of deferred events on offload…
CVE-2024-38596 — CVSS 4.7 (medium): In the Linux kernel, the following vulnerability has been resolved: af_unix: Fix data races in unix_release_sock/unix_stream_sendmsg A…
CVE-2024-42154 — CVSS 4.4 (medium): In the Linux kernel, the following vulnerability has been resolved: tcp_metrics: validate source addr length I don't see anything checking…
CVE-2024-46794 — CVSS 3.3 (low): In the Linux kernel, the following vulnerability has been resolved: x86/tdx: Fix data leak in mmio_read() The mmio_read() function makes a…
CVE-2024-43898: Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
CVE-2024-46758: Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
CVE-2024-37353: Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
CVE-2024-44972: Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
CVE-2024-46756: Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
CVE-2024-44952: Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.