kernel-livepatch-SLE15-SP5_Update_19 (SUSE:Linux Enterprise Live Patching 15 SP5) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise Live Patching 15 SP5 package kernel-livepatch-SLE15-SP5_Update_19, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (200)
CVE-2022-49053 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: scsi: target: tcmu: Fix possible page UAF tcmu_try_get_data_page()…
CVE-2025-21756 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: vsock: Keep the binding until socket destruction Preserve sockets…
CVE-2024-42119 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Skip finding free audio for unknown engine_id [WHY]…
CVE-2024-42120 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check pipe offset before setting vblank pipe_ctx has a…
CVE-2024-42121 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check index msg_id before read or write [WHAT] msg_id…
CVE-2025-21692 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: sched: fix ets qdisc OOB Indexing Haowei Yan…
CVE-2022-48873 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: Don't remove map on creater_process and device_release…
CVE-2024-41092 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/i915/gt: Fix potential UAF by revoke of fence registers CI has been…
CVE-2022-0500 — CVSS 7.8 (high): A flaw was found in unrestricted eBPF usage by the BPF_BTF_LOAD, leading to a possible out-of-bounds memory write in the Linux kernel’s…
CVE-2025-37890 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net_sched: hfsc: Fix a UAF vulnerability in class with netem as child…
CVE-2022-23222 — CVSS 7.8 (high): kernel/bpf/verifier.c in the Linux kernel through 5.15.14 allows local users to gain privileges because of the availability of pointer…
CVE-2025-21999 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: proc: fix UAF in proc_get_inode() Fix race between rmmod and…
CVE-2024-27024 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net/rds: fix WARNING in rds_conn_connect_if_down If connection isn't…
CVE-2022-48943 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: KVM: x86/mmu: make apf token non-zero to fix bug In current async…
CVE-2024-43830 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: leds: trigger: Unregister sysfs attributes before calling deactivate()…
CVE-2025-38212 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ipc: fix to protect IPCS lookups using RCU syzbot reported that it…
CVE-2023-3610 — CVSS 7.8 (high): A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation…
CVE-2024-43839 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bna: adjust 'name' buf size of bna_tcb and bna_ccb structures To have…
CVE-2024-43900 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: media: xc2028: avoid use-after-free in load_firmware_cb() syzkaller…
CVE-2024-43842 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: Fix array index mistake in rtw89_sta_info_get_iter() In…
CVE-2022-48912 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: netfilter: fix use-after-free in __nf_register_net_hook() We must not…
CVE-2024-42086 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: iio: chemical: bme680: Fix overflows in compensate() functions There…
CVE-2025-21791 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: vrf: use RCU protection in l3mdev_l3_out() l3mdev_l3_out() can be…
CVE-2022-48913 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: blktrace: fix use after free for struct blk_trace When tracing the…
CVE-2024-43858 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: jfs: Fix array-index-out-of-bounds in diFree
CVE-2024-42092 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: gpio: davinci: Validate the obtained number of IRQs Value of…
CVE-2023-52859 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: perf: hisi: Fix use-after-free when register pmu fails When we fail to…
CVE-2024-42104 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: nilfs2: add missing check for inode numbers on directory entries Syzbot…
CVE-2024-43873 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: vhost/vsock: always initialize seqpacket_allow There are two issues…
CVE-2024-53156 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: ath9k: add range check for conn_rsp_epid in htc_connect_service()…
CVE-2022-48919 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: cifs: fix double free race when mount fails in cifs_get_root() When…
CVE-2024-56601 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: inet: do not leave a dangling sk pointer in inet_create()…
CVE-2024-42148 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bnx2x: Fix multiple UBSAN array-index-out-of-bounds Fix UBSAN warnings…
CVE-2024-50127 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: sched: fix use-after-free in taprio_change() In 'taprio_change()'…
CVE-2024-50125 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: SCO: Fix UAF on sco_sock_timeout conn->sk maybe have been…
CVE-2024-50124 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: ISO: Fix UAF on iso_sock_timeout conn->sk maybe have been…
CVE-2024-56600 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: inet6: do not leave a dangling sk pointer in inet6_create()…
CVE-2025-38206 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: exfat: fix double free in delayed_free The double free could happen in…
CVE-2022-48878 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_qca: Fix driver shutdown on closed serdev The driver…
CVE-2024-41000 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: block/ioctl: prefer different overflow check Running syzkaller with the…
CVE-2024-53208 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: Fix slab-use-after-free Read in set_powered_sync This…
CVE-2023-52906 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net/sched: act_mpls: Fix warning during failed attribute validation The…
CVE-2024-41011 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: don't allow mapping the MMIO HDP page with large pages We…
CVE-2025-38555 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: usb: gadget : fix use-after-free in composite_dev_cleanup() 1. In func…
CVE-2024-53168 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: sunrpc: fix one UAF issue caused by sunrpc kernel tcp socket BUG…
CVE-2022-48925 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: RDMA/cma: Do not change route.addr.src_addr outside state checks If the…
CVE-2024-42271 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net/iucv: fix use after free in iucv_sock_close() iucv_sever_path() is…
CVE-2024-58013 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: Fix slab-use-after-free Read in mgmt_remove_adv_monitor…
CVE-2022-48926 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: usb: gadget: rndis: add spinlock for rndis response list There's no…
CVE-2022-48927 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: iio: adc: tsc2046: fix memory corruption by preventing array overflow…
CVE-2024-42280 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: mISDN: Fix a use after free in hfcmulti_tx() Don't dereference *sp…
CVE-2024-41039 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: firmware: cs_dsp: Fix overflow checking of wmfw header Fix the checking…
CVE-2024-41042 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: prefer nft_chain_validate nft_chain_validate…
CVE-2024-42284 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: tipc: Return non-zero value from tipc_udp_addr2str() on error…
CVE-2024-42285 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: RDMA/iwcm: Fix a use-after-free related to destroying CM IDs…
CVE-2024-41045 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bpf: Defer work in bpf_timer_cancel_and_free Currently, the same case…
CVE-2024-46818 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check gpio_id before used as array index [WHY & HOW]…
CVE-2025-38494 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: HID: core: do not bypass hid_hw_raw_request hid_hw_raw_request() is…
CVE-2021-47517 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ethtool: do not perform operations on net devices being unregistered…
CVE-2024-56605 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: do not leave dangling sk pointer on error in…
CVE-2024-42301 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: dev/parport: fix the array out-of-bounds risk Fixed array out-of-bounds…
CVE-2024-42302 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: PCI/DPC: Fix use-after-free on concurrent DPC and hot-removal Keith…
CVE-2024-46815 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check num_valid_sets before accessing reader_wm_sets[]…
CVE-2024-41073 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: nvme: avoid double free special payload If a discard request needs to…
CVE-2025-38079 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: crypto: algif_hash - fix double free in hash_accept If accept(2) is…
CVE-2021-47106 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: fix use-after-free in nft_set_catchall_destroy()…
CVE-2024-42313 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: media: venus: fix use after free in vdec_close There appears to be a…
CVE-2024-41087 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ata: libata-core: Fix double free on error If e.g. the ata_port_alloc()…
CVE-2022-48883 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: IPoIB, Block PKEY interfaces with less rx queues than parent…
CVE-2025-38000 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: sch_hfsc: Fix qlen accounting bug when using peek in hfsc_enqueue()…
CVE-2024-42225 — CVSS 7.5 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: replace skb_put with skb_put_zero Avoid potentially reusing…
CVE-2024-50301 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: security/keys: fix slab-out-of-bounds in key_task_permission KASAN…
CVE-2024-50279 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: dm cache: fix out-of-bounds access to the dirty bitset when resizing…
CVE-2022-48871 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: tty: serial: qcom-geni-serial: fix slab-out-of-bounds on RX FIFO buffer…
CVE-2024-50115 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: KVM: nSVM: Ignore nCR3[4:0] when loading PDPTEs from memory Ignore…
CVE-2024-42292 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: kobject_uevent: Fix OOB access within zap_modalias_env()…
CVE-2024-49860 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: ACPI: sysfs: validate return type of _STR method Only buffer objects…
CVE-2024-40978 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: scsi: qedi: Fix crash while reading debugfs attribute The…
CVE-2022-48881 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: platform/x86/amd: Fix refcount leak in amd_pmc_probe…
CVE-2021-4204 — CVSS 7.1 (high): An out-of-bounds (OOB) memory access flaw was found in the Linux kernel's eBPF due to an Improper Input Validation. This flaw allows a…
CVE-2024-26669 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: net/sched: flower: Fix chain template offload When a qdisc is deleted…
CVE-2024-49855 — CVSS 7.0 (high): In the Linux kernel, the following vulnerability has been resolved: nbd: fix race between timeout and normal completion If request timetout…
CVE-2024-43882 — CVSS 7.0 (high): In the Linux kernel, the following vulnerability has been resolved: exec: Fix ToCToU between perm check and set-uid/gid usage When opening…
CVE-2024-42228 — CVSS 7.0 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Using uninitialized value *size when calling…
CVE-2024-43883 — CVSS 7.0 (high): In the Linux kernel, the following vulnerability has been resolved: usb: vhci-hcd: Do not drop references before new references are gained…
CVE-2024-50154 — CVSS 7.0 (high): In the Linux kernel, the following vulnerability has been resolved: tcp/dccp: Don't use timer_pending() in reqsk_queue_unlink(). Martin…
CVE-2022-48872 — CVSS 7.0 (high): In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: Fix use-after-free race condition for maps It is…
CVE-2024-42162 — CVSS 7.0 (high): In the Linux kernel, the following vulnerability has been resolved: gve: Account for stopped queues when reading NIC stats We now account…
CVE-2024-36013 — CVSS 6.8 (medium): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix slab-use-after-free in l2cap_connect() Extend a…
CVE-2022-4382 — CVSS 6.4 (medium): A use-after-free flaw caused by a race among the superblock operations in the gadgetfs Linux driver was found. It could be triggered by…
CVE-2022-40133 — CVSS 6.3 (medium): A use-after-free(UAF) vulnerability was found in function 'vmw_execbuf_tie_context' in drivers/gpu/vmxgfx/vmxgfx_execbuf.c in Linux…
CVE-2023-52581 — CVSS 6.3 (medium): In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: fix memleak when more than 255 elements expired…
CVE-2022-38457 — CVSS 6.3 (medium): A use-after-free(UAF) vulnerability was found in function 'vmw_cmd_res_check' in drivers/gpu/vmxgfx/vmxgfx_execbuf.c in Linux kernel's…
CVE-2024-41016 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ocfs2: strict bound check before memcmp in ocfs2_xattr_find_entry()…
CVE-2024-41022 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix signedness bug in sdma_v4_0_process_trap_irq() The…
CVE-2024-41035 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: USB: core: Fix duplicate endpoint bug by clearing reserved bits in the…
CVE-2024-41036 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: ks8851: Fix deadlock with the SPI chip variant When SMP is enabled…
CVE-2024-41038 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: firmware: cs_dsp: Prevent buffer overrun when processing V2 alg headers…
CVE-2024-41056 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: firmware: cs_dsp: Use strnlen() on name fields in V1 wmfw files Use…
CVE-2024-41060 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/radeon: check bo_va->bo is non-NULL before using it The call to…
CVE-2024-41062 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: bluetooth/l2cap: sync sock recv cb and release The problem occurs…
CVE-2024-41065 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: powerpc/pseries: Whitelist dtl slub object for copying to userspace…
CVE-2024-41068 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: s390/sclp: Fix sclp_init() cleanup on failure If sclp_init() fails it…
CVE-2024-41079 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: nvmet: always initialize cqe.result The spec doesn't mandate that the…
CVE-2024-41080 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: io_uring: fix possible deadlock in io_register_iowq_max_workers() The…
CVE-2024-41088 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: can: mcp251xfd: fix infinite loop when xmit fails When the…
CVE-2024-41089 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/nouveau/dispnv04: fix null pointer dereference in…
CVE-2024-41093 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: avoid using null object of framebuffer Instead of using…
CVE-2024-41095 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/nouveau/dispnv04: fix null pointer dereference in…
CVE-2024-41097 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: usb: atm: cxacru: fix endpoint checking in cxacru_bind() Syzbot is…
CVE-2024-41098 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ata: libata-core: Fix null pointer dereference on error If the…
CVE-2024-42069 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: mana: Fix possible double free in error handling path When…
CVE-2024-42074 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ASoC: amd: acp: add a null check for chip_pdev structure When acp…
CVE-2024-42076 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: can: j1939: Initialize unused data in j1939_send_one() syzbot…
CVE-2024-42077 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix DIO failure due to insufficient transaction credits The code…
CVE-2024-42080 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: RDMA/restrack: Fix potential invalid address access struct…
CVE-2024-42082 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: xdp: Remove WARN() from __xdp_reg_mem_model() syzkaller reports a…
CVE-2024-42085 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: core: remove lock of otg mode during gadget suspend/resume…
CVE-2024-42087 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/panel: ilitek-ili9881c: Fix warning with GPIO controllers that…
CVE-2024-42089 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ASoC: fsl-asoc-card: set priv->pdev before using it priv->pdev pointer…
CVE-2024-42090 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: pinctrl: fix deadlock in create_pinctrl() when handling -EPROBE_DEFER…
CVE-2024-42095 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: serial: 8250_omap: Implementation of Errata i2310 As per Errata…
CVE-2024-42097 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ALSA: emux: improve patch ioctl data validation In load_data(), make…
CVE-2024-42098 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: crypto: ecdh - explicitly zeroize private_key private_key is…
CVE-2024-42101 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/nouveau: fix null pointer dereference in nouveau_connector_get_modes…
CVE-2024-42106 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: inet_diag: Initialize pad field in struct inet_diag_req_v2 KMSAN…
CVE-2024-42110 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: ntb_netdev: Move ntb_netdev_rx_handler() to call netif_rx() from…
CVE-2024-42115 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: jffs2: Fix potential illegal address access in jffs2_free_inode During…
CVE-2024-42126 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: powerpc: Avoid nmi_enter/nmi_exit in real mode interrupt…
CVE-2024-42127 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/lima: fix shared irq handling on driver remove lima uses a shared…
CVE-2024-42137 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: qca: Fix BT enable failure again for QCA6390 after warm…
CVE-2024-42139 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ice: Fix improper extts handling Extts events are disabled and enabled…
CVE-2024-42142 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net/mlx5: E-switch, Create ingress ACL when needed Currently, ingress…
CVE-2024-42223 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: media: dvb-frontends: tda10048: Fix integer overflow state->xtal_hz can…
CVE-2024-42232 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: libceph: fix race between delayed_work() and ceph_monc_stop() The way…
CVE-2024-42236 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: usb: gadget: configfs: Prevent OOB read/write in usb_string_copy()…
CVE-2024-42237 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: firmware: cs_dsp: Validate payload length before processing block Move…
CVE-2024-42238 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: firmware: cs_dsp: Return error if block header overflows file Return an…
CVE-2024-42239 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: bpf: Fail bpf_timer_cancel when callback is being cancelled Given a…
CVE-2024-42240 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: x86/bhi: Avoid warning in #DB handler due to BHI mitigation When BHI…
CVE-2024-42244 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: USB: serial: mos7840: fix crash on resume Since commit c49cfa917025…
CVE-2024-42246 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net, sunrpc: Remap EPERM in case of connection failure in…
CVE-2024-42247 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: wireguard: allowedips: avoid unaligned 64-bit memory accesses On the…
CVE-2024-42268 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix missing lock on sync reset reload On sync reset reload…
CVE-2024-42274 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: Revert "ALSA: firewire-lib: operate for period elapse event in process…
CVE-2024-42276 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: nvme-pci: add missing condition check for existence of mapped data…
CVE-2024-42277 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: iommu: sprd: Avoid NULL deref in sprd_iommu_hw_en In…
CVE-2024-42281 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: bpf: Fix a segment issue when downgrading gso_size Linearize the skb…
CVE-2024-42283 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: nexthop: Initialize all fields in dumped nexthops struct…
CVE-2024-42286 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: validate nvme_local_port correctly The driver load…
CVE-2024-42288 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix for possible memory corruption Init Control Block is…
CVE-2024-42289 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: During vport delete send async logout explicitly During…
CVE-2024-42291 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ice: Add a per-VF limit on number of FDIR filters While the iavf driver…
CVE-2024-42295 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: nilfs2: handle inconsistent state in nilfs_btnode_create_block() Syzbot…
CVE-2024-42309 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/gma500: fix null pointer dereference in psb_intel_lvds_get_modes In…
CVE-2024-42310 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/gma500: fix null pointer dereference in cdv_intel_lvds_get_modes In…
CVE-2024-42311 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: hfs: fix to initialize fields of hfs_inode_info after hfs_alloc_inode()…
CVE-2024-42312 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: sysctl: always initialize i_uid/i_gid Always initialize i_uid/i_gid…
CVE-2024-42315 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: exfat: fix potential deadlock on __exfat_get_dentry_set When accessing…
CVE-2024-42318 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: landlock: Don't lose track of restrictions on cred_transfer When a…
CVE-2024-42319 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: mailbox: mtk-cmdq: Move devm_mbox_controller_register() after…
CVE-2024-42320 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: s390/dasd: fix error checks in dasd_copy_pair_store() dasd_add_busid()…
CVE-2024-42322 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ipvs: properly dereference pe in ip_vs_add_service Use pe directly to…
CVE-2024-43816 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Revise lpfc_prep_embed_io routine with proper endian macro…
CVE-2024-43818 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ASoC: amd: Adjust error handling in case of absent codec device…
CVE-2024-43819 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: kvm: s390: Reject memory region operations for ucontrol VMs This change…
CVE-2024-43821 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix a possible null pointer dereference In function…
CVE-2024-43823 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: PCI: keystone: Fix NULL pointer dereference in case of DT error in…
CVE-2024-43829 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/qxl: Add check for drm_cvt_mode Add check for the return value of…
CVE-2024-43831 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: media: mediatek: vcodec: Handle invalid decoder vsi Handle an invalid…
CVE-2024-43834 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: xdp: fix invalid wait context of page_pool_destroy() If the driver uses…
CVE-2024-43837 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: bpf: Fix null pointer dereference in resolve_prog_type() for…
CVE-2024-43846 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: lib: objagg: Fix general protection fault The library supports…
CVE-2024-43849 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: soc: qcom: pdr: protect locator_addr with the main mutex If the service…
CVE-2024-43853 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: cgroup/cpuset: Prevent UAF in proc_cpuset_show() An UAF can happen when…
CVE-2024-43854 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: block: initialize integrity buffer to zero before writing it to media…
CVE-2024-43856 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: dma: fix call order in dmam_free_coherent dmam_free_coherent() frees a…
CVE-2024-43860 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: remoteproc: imx_rproc: Skip over memory region when node value is NULL…
CVE-2024-43861 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: usb: qmi_wwan: fix memory leak for not ip packets Free the unused…
CVE-2024-43863 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Fix a deadlock in dma buf fence polling Introduce a version…
CVE-2024-43867 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/nouveau: prime: fix refcount underflow Calling nouveau_bo_ref() on…
CVE-2024-43871 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: devres: Fix memory leakage caused by driver API devm_free_percpu() It…
CVE-2024-43872 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: Fix soft lockup under heavy CEQE load CEQEs are handled in…
CVE-2024-43879 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: handle 2x996 RU allocation in cfg80211_calculate_bitrate…
CVE-2024-43880 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: mlxsw: spectrum_acl_erp: Fix object nesting warning ACLs in Spectrum-2…
CVE-2025-38678 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: reject duplicate device on updates A…
CVE-2021-4441 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: spi: spi-zynq-qspi: Fix a NULL pointer dereference in…
CVE-2021-47546 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ipv6: fix memory leak in fib6_rule_suppress The kernel leaks memory…
CVE-2022-48645 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: enetc: deny offload of tc-based TSN features on VF interfaces TSN…
CVE-2022-48706 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: vdpa: ifcvf: Do proper cleanup if IFCVF init fails ifcvf_mgmt_dev leaks…
CVE-2022-48808 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: dsa: fix panic when DSA master device unbinds on shutdown Rafael…
CVE-2022-48865 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: tipc: fix kernel panic when enabling bearer When enabling a bearer on a…
CVE-2022-48868 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: Let probe fail when workqueue cannot be enabled The…
CVE-2022-48870 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: tty: fix possible null-ptr-defer in spk_ttyio_release Run the following…
CVE-2022-48875 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: sdata can be NULL during AMPDU start…
CVE-2022-48880 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: platform/surface: aggregator: Add missing call to…
CVE-2022-48882 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix macsec possible null dereference when updating MAC…
CVE-2022-48884 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix command stats access after free Command may fail while…
CVE-2022-48885 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ice: Fix potential memory leak in ice_gnss_tty_write() The…