kernel-livepatch-SLE15-SP5_Update_22 (SUSE:Linux Enterprise Live Patching 15 SP5) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise Live Patching 15 SP5 package kernel-livepatch-SLE15-SP5_Update_22, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (117)
CVE-2024-8805 — CVSS 8.8 (high): BlueZ HID over GATT Profile Improper Access Control Remote Code Execution Vulnerability. This vulnerability allows network-adjacent…
CVE-2024-53156 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: ath9k: add range check for conn_rsp_epid in htc_connect_service()…
CVE-2023-53676 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: scsi: target: iscsi: Fix buffer overflow in lio_target_nacl_info_show()…
CVE-2024-50262 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bpf: Fix out-of-bounds write in trie_get_next_key() trie_get_next_key()…
CVE-2024-53142 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: initramfs: avoid filename buffer overrun The initramfs filename field…
CVE-2024-57849 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: s390/cpum_sf: Handle CPU hotplug remove during sampling CPU hotplug…
CVE-2024-58013 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: Fix slab-use-after-free Read in mgmt_remove_adv_monitor…
CVE-2024-53095 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: smb: client: Fix use-after-free of network namespace. Recently, we got…
CVE-2025-21692 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: sched: fix ets qdisc OOB Indexing Haowei Yan…
CVE-2025-21702 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: pfifo_tail_enqueue: Drop new packet when sch->limit == 0 Expected…
CVE-2025-21772 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: partitions: mac: fix handling of bogus partition table Fix several…
CVE-2025-21791 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: vrf: use RCU protection in l3mdev_l3_out() l3mdev_l3_out() can be…
CVE-2025-37752 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net_sched: sch_sfq: move the limit validation It is not sufficient to…
CVE-2025-37797 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net_sched: hfsc: Fix a UAF vulnerability in class handling This patch…
CVE-2025-38618 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: vsock: Do not allow binding to VMADDR_PORT_ANY It is possible for a…
CVE-2025-38494 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: HID: core: do not bypass hid_hw_raw_request hid_hw_raw_request() is…
CVE-2024-50143 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: udf: fix uninit-value use in udf_get_fileshortad Check for overflow…
CVE-2025-38476 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: rpl: Fix use-after-free in rpl_do_srh_inline(). Running…
CVE-2022-50252 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: igb: Do not free q_vector unless new one was allocated Avoid potential…
CVE-2025-38206 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: exfat: fix double free in delayed_free The double free could happen in…
CVE-2024-53166 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix bfqq uaf in bfq_limit_depth() Set new allocated bfqq to…
CVE-2024-53168 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: sunrpc: fix one UAF issue caused by sunrpc kernel tcp socket BUG…
CVE-2024-53173 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: NFSv4.0: Fix a use-after-free problem in the asynchronous open() Yang…
CVE-2024-53179 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: smb: client: fix use-after-free of signing key Customers have reported…
CVE-2024-53206 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: tcp: Fix use-after-free of nreq in reqsk_timer_handler(). The cited…
CVE-2024-50280 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: dm cache: fix flushing uninitialized delayed_work on cache_ctr error An…
CVE-2024-53213 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: usb: lan78xx: Fix double free issue with interrupt buffer…
CVE-2024-53214 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: vfio/pci: Properly hide first-in-list PCIe extended capability There…
CVE-2024-53239 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ALSA: 6fire: Release resources at card release The current 6fire code…
CVE-2025-38572 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ipv6: reject malicious packets in ipv6_gso_segment() syzbot was able to…
CVE-2024-56548 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: hfsplus: don't query the device logical block size multiple times…
CVE-2024-56570 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ovl: Filter invalid inodes with missing lookup function Add a check to…
CVE-2025-38079 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: crypto: algif_hash - fix double free in hash_accept If accept(2) is…
CVE-2024-56598 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: jfs: array-index-out-of-bounds fix in dtReadFirst The value of stbl can…
CVE-2024-56601 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: inet: do not leave a dangling sk pointer in inet_create()…
CVE-2024-56604 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: RFCOMM: avoid leaving dangling sk pointer in…
CVE-2024-56605 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: do not leave dangling sk pointer on error in…
CVE-2024-56619 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry()…
CVE-2022-48742 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: rtnetlink: make sure to refresh master_dev/m_ops in __rtnl_newlink()…
CVE-2024-44934 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: bridge: mcast: wait for previous gc cycles when removing port…
CVE-2024-50278 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: dm cache: fix potential out-of-bounds access on the first resume…
CVE-2024-53162 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: crypto: qat/qat_4xxx - fix off by one in uof_get_name() The fw_objs[]…
CVE-2024-50279 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: dm cache: fix out-of-bounds access to the dirty bitset when resizing…
CVE-2022-50490 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: bpf: Propagate error from htab_lock_bucket() to userspace In…
CVE-2024-36915 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: nfc: llcp: fix nfc_llcp_setsockopt() unsafe copies syzbot reported…
CVE-2024-50154 — CVSS 7.0 (high): In the Linux kernel, the following vulnerability has been resolved: tcp/dccp: Don't use timer_pending() in reqsk_queue_unlink(). Martin…
CVE-2024-56664 — CVSS 7.0 (high): In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Fix race between element replace and close() Element…
CVE-2023-33951 — CVSS 6.7 (medium): A race condition vulnerability was found in the vmwgfx driver in the Linux kernel. The flaw exists within the handling of GEM objects. The…
CVE-2023-33952 — CVSS 6.7 (medium): A double-free vulnerability was found in handling vmw_buffer_object objects in the vmwgfx driver in the Linux kernel. This issue occurs due…
CVE-2024-26886 — CVSS 6.5 (medium): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: af_bluetooth: Fix deadlock Attemting to do sock_lock on…
CVE-2022-36280 — CVSS 6.3 (medium): An out-of-bounds(OOB) memory access vulnerability was found in vmwgfx driver in drivers/gpu/vmxgfx/vmxgfx_kms.c in GPU component in the…
CVE-2024-57893 — CVSS 6.3 (medium): In the Linux kernel, the following vulnerability has been resolved: ALSA: seq: oss: Fix races at processing SysEx messages OSS sequencer…
CVE-2024-26924 — CVSS 5.9 (medium): In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_pipapo: do not free live element Pablo reports a…
CVE-2024-53240 — CVSS 5.7 (medium): In the Linux kernel, the following vulnerability has been resolved: xen/netfront: fix crash when removing device When removing a netfront…
CVE-2024-50166 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: fsl/fman: Fix refcount handling of fman-related devices In mac_probe()…
CVE-2022-49033 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: btrfs: qgroup: fix sleep from invalid context bug in…
CVE-2022-49035 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: media: s5p_cec: limit msg.len to CEC_MAX_MSG_SIZE I expect that the…
CVE-2022-49080 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: mm/mempolicy: fix mpol_new leak in shared_policy_replace If mpol_new is…
CVE-2022-50327 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ACPI: processor: idle: Check acpi_fetch_acpi_dev() return value The…
CVE-2022-50409 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: If sock is dead don't access sock's sk_wq in sk_stream_wait_memory…
CVE-2023-52920 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: bpf: support non-r10 register spill/fill to/from stack in precision…
CVE-2024-42232 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: libceph: fix race between delayed_work() and ceph_monc_stop() The way…
CVE-2024-47666 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: scsi: pm80xx: Set phy->enable_completion only when we wait for it…
CVE-2024-47678 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: icmp: change the order of rate limits ICMP messages are ratelimited…
CVE-2024-49944 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: sctp: set sk_state back to CLOSED if autobind fails in…
CVE-2024-49952 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: prevent nf_skb_duplicated corruption syzbot found…
CVE-2021-47202 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: thermal: Fix NULL pointer dereferences in of_thermal_ functions…
CVE-2024-50202 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: nilfs2: propagate directory read errors from nilfs_find_entry() Syzbot…
CVE-2024-50256 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6() I…
CVE-2024-50296 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: hns3: fix kernel crash when uninstalling driver When the driver is…
CVE-2024-53051 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/i915/hdcp: Add encoder check in intel_hdcp_get_capability Sometimes…
CVE-2024-53055 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: fix 6 GHz scan construction If more than 255…
CVE-2024-53056 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: Fix potential NULL dereference in mtk_crtc_destroy() In…
CVE-2024-53064 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: idpf: fix idpf_vc_core_init error path In an event where the platform…
CVE-2024-53072 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: platform/x86/amd/pmc: Detect when STB is not available Loading the…
CVE-2024-53090 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: afs: Fix lock recursion afs_wake_up_async_call() can incur lock…
CVE-2024-53101 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: fs: Fix uninitialized value issue in from_kuid and from_kgid…
CVE-2024-53113 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: mm: fix NULL pointer dereference in alloc_pages_bulk_noprof We…
CVE-2024-53114 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: x86/CPU/AMD: Clear virtualized VMLOAD/VMSAVE on Zen4 client A number of…
CVE-2024-53119 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: virtio/vsock: Fix accept_queue memory leak As the final stages of…
CVE-2024-53120 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: CT: Fix null-ptr-deref in add rule err flow In error flow of…
CVE-2024-53122 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: mptcp: cope racing subflow creation in mptcp_rcv_space_adjust…
CVE-2024-53125 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: bpf: sync_linked_regs() must preserve subreg_def Range propagation must…
CVE-2024-53130 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix null-ptr-deref in block_dirty_buffer tracepoint When using…
CVE-2024-53131 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix null-ptr-deref in block_touch_buffer tracepoint Patch…
CVE-2024-53146 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: NFSD: Prevent a potential integer overflow If the tag length is >=…
CVE-2024-53157 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: firmware: arm_scpi: Check the DVFS OPP count returned by the firmware…
CVE-2024-53158 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: soc: qcom: geni-se: fix array underflow in geni_se_clk_tbl_get() This…
CVE-2024-53161 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: EDAC/bluefield: Fix potential integer overflow The 64-bit argument for…
CVE-2024-53164 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: sched: fix ordering of qlen adjustment Changes to sch->q.qlen…
CVE-2024-53210 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: s390/iucv: MSG_PEEK causes memory leak in iucv_sock_destruct() Passing…
CVE-2024-53241 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: x86/xen: don't do PV iret hypercall through hypercall page Instead of…
CVE-2024-56539 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: wifi: mwifiex: Fix memcpy() field-spanning write warning in…
CVE-2024-56549 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: cachefiles: Fix NULL pointer dereference in object->file At present…
CVE-2024-56575 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: media: imx-jpeg: Ensure power suppliers be suspended before detach them…
CVE-2024-56755 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: netfs/fscache: Add a memory barrier for FSCACHE_VOLUME_CREATING In…
CVE-2024-57793 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: virt: tdx-guest: Just leak decrypted memory on unrecoverable errors In…
CVE-2024-57996 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net_sched: sch_sfq: don't allow 1 packet limit The current…
CVE-2024-58239 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: tls: stop recv() if initial process_rx_list gave us non-DATA If we have…
CVE-2025-21971 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net_sched: Prevent creation of classes with TC_H_ROOT The function…
CVE-2025-38495 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: HID: core: ensure the allocated report buffer can contain the reserved…
CVE-2025-38499 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: clone_private_mnt(): make sure that caller has CAP_SYS_ADMIN in the…
CVE-2025-38608 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: bpf, ktls: Fix data corruption when using bpf_msg_pop_data() in ktls…
CVE-2025-38644 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: reject TDLS operations when station is not associated…
CVE-2025-38664 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ice: Fix a null pointer dereference in ice_copy_and_init_pkg() Add…
CVE-2025-38678 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: reject duplicate device on updates A…
CVE-2025-38617 — CVSS 4.7 (medium): In the Linux kernel, the following vulnerability has been resolved: net/packet: fix a race in packet_set_ring() and packet_notifier() When…
CVE-2023-1382 — CVSS 4.7 (medium): A data race flaw was found in the Linux kernel, between where con is allocated and con->sock is set. This issue leads to a NULL pointer…
CVE-2025-38083 — CVSS 4.7 (medium): In the Linux kernel, the following vulnerability has been resolved: net_sched: prio: fix a race in prio_tune() Gerrard Tai reported a race…
CVE-2025-38477 — CVSS 4.7 (medium): In the Linux kernel, the following vulnerability has been resolved: net/sched: sch_qfq: Fix race condition on qfq_aggregate A race…
CVE-2024-24860 — CVSS 4.6 (medium): A race condition was found in the Linux kernel's bluetooth device driver in {min,max}_key_size_set() function. This can result in a null…
CVE-2024-50211 — CVSS 3.3 (low): In the Linux kernel, the following vulnerability has been resolved: udf: refactor inode_bmap() to handle error Refactor inode_bmap() to…
CVE-2024-56571: Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
CVE-2024-50018: Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
CVE-2024-50181: Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
CVE-2025-40204: In the Linux kernel, the following vulnerability has been resolved: sctp: Fix MAC comparison to be constant-time To prevent timing attacks…