kernel-livepatch-SLE15-SP6-RT_Update_13 (SUSE:Linux Enterprise Live Patching 15 SP6) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise Live Patching 15 SP6 package kernel-livepatch-SLE15-SP6-RT_Update_13, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (109)
CVE-2025-22083 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: vhost-scsi: Fix handling of multiple calls to vhost_scsi_set_endpoint…
CVE-2025-37786 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: dsa: free routing table on probe failure If complete = true in…
CVE-2025-38022 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: RDMA/core: Fix "KASAN: slab-use-after-free Read in ib_register_device"…
CVE-2025-38555 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: usb: gadget : fix use-after-free in composite_dev_cleanup() 1. In func…
CVE-2025-38206 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: exfat: fix double free in delayed_free The double free could happen in…
CVE-2025-38212 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ipc: fix to protect IPCS lookups using RCU syzbot reported that it…
CVE-2025-38396 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: fs: export anon_inode_make_secure_inode() and fix secretmem LSM bypass…
CVE-2025-38471 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: tls: always refresh the queue when reading sock After recent changes in…
CVE-2025-38500 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: xfrm: interface: fix use-after-free after changing collect_md xfrm…
CVE-2025-38494 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: HID: core: do not bypass hid_hw_raw_request hid_hw_raw_request() is…
CVE-2025-38013 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: Set n_channels after allocating struct…
CVE-2025-22035 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: tracing: Fix use-after-free in print_graph_function_flags during tracer…
CVE-2025-38024 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix slab-use-after-free Read in rxe_queue_cleanup bug Call…
CVE-2025-37921 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: vxlan: vnifilter: Fix unlocked deletion of default FDB entry When a VNI…
CVE-2025-37923 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: tracing: Fix oob write in trace_seq_to_buffer() syzbot reported this…
CVE-2025-37927 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: iommu/amd: Fix potential buffer overflow in parse_ivrs_acpihid There is…
CVE-2025-38000 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: sch_hfsc: Fix qlen accounting bug when using peek in hfsc_enqueue()…
CVE-2025-37738 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ext4: ignore xattrs past end Once inside 'ext4_xattr_inode_dec_ref_all'…
CVE-2025-37946 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: s390/pci: Fix duplicate pci_dev_put() in disable_slot() when PF has…
CVE-2025-38068 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: crypto: lzo - Fix compression buffer overrun Unlike the decompression…
CVE-2024-56699 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: s390/pci: Fix potential double remove of hotplug slot In commit…
CVE-2025-38077 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: platform/x86: dell-wmi-sysman: Avoid buffer overflow in…
CVE-2025-38079 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: crypto: algif_hash - fix double free in hash_accept If accept(2) is…
CVE-2025-37752 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net_sched: sch_sfq: move the limit validation It is not sufficient to…
CVE-2025-38566 — CVSS 7.5 (high): In the Linux kernel, the following vulnerability has been resolved: sunrpc: fix handling of server side tls alerts Scott Mayhew discovered…
CVE-2025-38004 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: can: bcm: add locking for bcm_op runtime updates The CAN broadcast…
CVE-2025-38027 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: regulator: max20086: fix invalid memory access max20086_parse_regulators…
CVE-2025-38081 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: spi-rockchip: Fix register out of bounds access Do not write native…
CVE-2025-37973 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: fix out-of-bounds access during multi-link element…
CVE-2025-38616 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: tls: handle data disappearing from under the TLS ULP TLS expects that…
CVE-2024-57982 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: xfrm: state: fix out-of-bounds read during lookup lookup and resize can…
CVE-2025-21920 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: vlan: enforce underlying device type Currently, VLAN devices can be…
CVE-2024-50106 — CVSS 7.0 (high): In the Linux kernel, the following vulnerability has been resolved: nfsd: fix race between laundromat and free_stateid There is a race…
CVE-2025-37945 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: phy: allow MDIO bus PM ops to start/stop state machine for…
CVE-2025-37961 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ipvs: fix uninit-value for saddr in do_output_route4 syzbot reports for…
CVE-2025-37967 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: usb: typec: ucsi: displayport: Fix deadlock This patch introduces the…
CVE-2025-37968 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: iio: light: opt3001: fix deadlock due to concurrent flag access The…
CVE-2025-37987 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: pds_core: Prevent possible adminq overflow/stuck condition The…
CVE-2025-37992 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net_sched: Flush gso_skb list too during ->change() Previously, when…
CVE-2025-37994 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: usb: typec: ucsi: displayport: Fix NULL pointer access This patch…
CVE-2025-37995 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: module: ensure that kobject_put() is safe for module type kobjects In…
CVE-2025-37997 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: fix region locking in hash types Region locking…
CVE-2025-37998 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: openvswitch: Fix unsafe attribute parsing in output_userspace() This…
CVE-2025-38001 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net_sched: hfsc: Address reentrant enqueue adding class to eltree twice…
CVE-2025-38003 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: can: bcm: add missing rcu read protection for procfs content When the…
CVE-2025-38005 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: dmaengine: ti: k3-udma: Add missing locking Recent kernels complain…
CVE-2025-38007 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: HID: uclogic: Add NULL check in uclogic_input_configured()…
CVE-2025-38009 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: disable napi on driver removal A warning on driver removal…
CVE-2025-38010 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: phy: tegra: xusb: Use a bitmask for UTMI pad power state tracking The…
CVE-2025-38011 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: csa unmap use uninterruptible lock After process exit to…
CVE-2025-38014 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: Refactor remove call with idxd_cleanup() helper The…
CVE-2025-38015 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: fix memory leak in error handling path of idxd_alloc…
CVE-2025-38018 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net/tls: fix kernel panic when alloc_page failed We cannot set…
CVE-2025-38020 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Disable MACsec offload for uplink representor profile MACsec…
CVE-2025-38023 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: nfs: handle failure of nfs_get_lock_context in unlock path When memory…
CVE-2025-38031 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: padata: do not leak refcount in reorder_work A recent patch that…
CVE-2025-38040 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: serial: mctrl_gpio: split disable_ms into sync and no_sync APIs The…
CVE-2025-38043 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: firmware: arm_ffa: Set dma_mask for ffa devices Set dma_mask for FFA…
CVE-2025-38044 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: media: cx231xx: set device_caps for 417 The video_device for the MPEG…
CVE-2025-38045 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: fix debug actions order The order of actions taken for…
CVE-2025-38053 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: idpf: fix null-ptr-deref in idpf_features_check idpf_features_check is…
CVE-2025-38057 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: espintcp: fix skb leaks A few error paths are missing a kfree_skb.
CVE-2025-38059 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: btrfs: avoid NULL pointer dereference if no valid csum tree [BUG] When…
CVE-2025-38060 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: bpf: copy_verifier_state() should copy 'loop_entry' field The…
CVE-2025-38065 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: orangefs: Do not truncate file size 'len' is used to store the result…
CVE-2025-38072 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: libnvdimm/labels: Fix divide error in nd_label_data_init() If a faulty…
CVE-2025-38080 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Increase block_sequence array size [Why] It's possible…
CVE-2025-38495 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: HID: core: ensure the allocated report buffer can contain the reserved…
CVE-2025-38498 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: do_change_type(): refuse to operate on unmounted/not ours mounts Ensure…
CVE-2025-38499 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: clone_private_mnt(): make sure that caller has CAP_SYS_ADMIN in the…
CVE-2025-38678 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: reject duplicate device on updates A…
CVE-2024-26831 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net/handshake: Fix handshake_req_destroy_test1 Recently…
CVE-2024-49568 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net/smc: check v2_ext_offset/eid_cnt/ism_gid_cnt when receiving…
CVE-2024-56613 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: sched/numa: fix memory leak due to the overwritten vma->numab_state…
CVE-2024-58053 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix handling of received connection abort Fix the handling of a…
CVE-2025-21658 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: btrfs: avoid NULL pointer dereference if no valid extent tree [BUG]…
CVE-2025-21720 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: xfrm: delete intermediate secpath entry in packet offload mode Packets…
CVE-2025-21868 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: allow small head cache usage with large MAX_SKB_FRAGS values…
CVE-2025-21898 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ftrace: Avoid potential division by zero in function_stat_show() Check…
CVE-2025-21899 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: tracing: Fix bad hist from corrupting named_triggers list The following…
CVE-2025-21959 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_conncount: Fully initialize struct nf_conncount_tuple in…
CVE-2025-21997 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: xsk: fix an integer overflow in xp_create_and_assign_umem() Since the i…
CVE-2025-22111 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: Remove RTNL dance for SIOCBRADDIF and SIOCBRDELIF. SIOCBRDELIF is…
CVE-2025-22113 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ext4: avoid journaling sb update on error if journal is destroying…
CVE-2025-22120 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ext4: goto right label 'out_mmap_sem' in ext4_setattr() Otherwise, if…
CVE-2025-23155 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: stmmac: Fix accessing freed irq affinity_hint In…
CVE-2025-37743 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: Avoid memory leak while enabling statistics Driver uses…
CVE-2025-37756 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: tls: explicitly disallow disconnect syzbot discovered that it can…
CVE-2025-37757 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: tipc: fix memory leak in tipc_link_xmit In case the backlog transmit…
CVE-2025-37800 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: driver core: fix potential NULL pointer dereference in dev_uevent() If…
CVE-2025-37801 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: spi: spi-imx: Add check for spi_imx_setupxfer() Add check for the…
CVE-2025-37811 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: usb: chipidea: ci_hdrc_imx: fix usbmisc handling usbmisc is an optional…
CVE-2025-37844 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: cifs: avoid NULL pointer dereference in dbg call cifs_server_dbg()…
CVE-2025-37859 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: page_pool: avoid infinite loop to schedule delayed worker We noticed…
CVE-2025-37862 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: HID: pidff: Fix null pointer dereference in pidff_find_fields This…
CVE-2025-37865 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: dsa: mv88e6xxx: fix -ENOENT when deleting VLANs and MST is…
CVE-2025-37874 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: ngbe: fix memory leak in ngbe_probe() error path When…
CVE-2025-37884 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: bpf: Fix deadlock between rcu_tasks_trace and event_mutex. Fix the…
CVE-2025-37909 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: lan743x: Fix memleak issue when GSO enabled Always map the `skb`…
CVE-2025-37917 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: ethernet: mtk-star-emac: fix spinlock recursion issues on rx/tx…
CVE-2025-37933 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: octeon_ep: Fix host hang issue during device reboot When the host loses…
CVE-2025-37936 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: perf/x86/intel: KVM: Mask PEBS_ENABLE loaded for guest with vCPU's…
CVE-2025-37938 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: tracing: Verify event formats that have "%*p.." The trace event…
CVE-2025-38644 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: reject TDLS operations when station is not associated…
CVE-2023-52888 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: media: mediatek: vcodec: Only free buffer VA that is not NULL In the…
CVE-2025-38078 — CVSS 4.7 (medium): In the Linux kernel, the following vulnerability has been resolved: ALSA: pcm: Fix race of buffer access at PCM OSS layer The PCM OSS layer…
CVE-2025-21938 — CVSS 4.7 (medium): In the Linux kernel, the following vulnerability has been resolved: mptcp: fix 'scheduling while atomic' in mptcp_pm_nl_append_new_local_add…
CVE-2025-38477 — CVSS 4.7 (medium): In the Linux kernel, the following vulnerability has been resolved: net/sched: sch_qfq: Fix race condition on qfq_aggregate A race…
CVE-2025-38083 — CVSS 4.7 (medium): In the Linux kernel, the following vulnerability has been resolved: net_sched: prio: fix a race in prio_tune() Gerrard Tai reported a race…