kernel-default-base (SUSE:Linux Micro 6.1) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Micro 6.1 package kernel-default-base, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (200)
CVE-2026-43341 — CVSS 9.8 (critical): In the Linux kernel, the following vulnerability has been resolved: net/ipv6: ioam6: prevent schema length wraparound in trace fill…
CVE-2025-39946 — CVSS 9.8 (critical): In the Linux kernel, the following vulnerability has been resolved: tls: make sure to abort the stream if headers are bogus Normally we…
CVE-2024-36031 — CVSS 9.8 (critical): In the Linux kernel, the following vulnerability has been resolved: keys: Fix overwrite of key expiration on instantiation The expiry time…
CVE-2026-43501 — CVSS 9.8 (critical): In the Linux kernel, the following vulnerability has been resolved: ipv6: rpl: reserve mac_len headroom when recompressed SRH grows…
CVE-2026-43414 — CVSS 9.8 (critical): In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Completely fix fcport double free In…
CVE-2026-23112 — CVSS 9.8 (critical): In the Linux kernel, the following vulnerability has been resolved: nvmet-tcp: add bounds checks in nvmet_tcp_build_pdu_iovec…
CVE-2026-22984 — CVSS 9.8 (critical): In the Linux kernel, the following vulnerability has been resolved: libceph: prevent potential out-of-bounds reads in handle_auth_done()…
CVE-2026-31448 — CVSS 9.4 (critical): In the Linux kernel, the following vulnerability has been resolved: ext4: avoid infinite loops caused by residual data On the mkdir/mknod…
CVE-2024-47685 — CVSS 9.1 (critical): In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_reject_ipv6: fix nf_reject_ip6_tcphdr_put() syzbot…
CVE-2026-43406 — CVSS 9.1 (critical): In the Linux kernel, the following vulnerability has been resolved: libceph: prevent potential out-of-bounds reads in…
CVE-2026-43407 — CVSS 9.1 (critical): In the Linux kernel, the following vulnerability has been resolved: libceph: Fix potential out-of-bounds access in ceph_handle_auth_reply()…
CVE-2026-46043 — CVSS 9.1 (critical): In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Validate pad and ICRC before payload_size() in rxe_rcv…
CVE-2026-43284 — CVSS 8.8 (high): In the Linux kernel, the following vulnerability has been resolved: xfrm: esp: avoid in-place decrypt on shared skb frags MSG_SPLICE_PAGES…
CVE-2024-8805 — CVSS 8.8 (high): BlueZ HID over GATT Profile Improper Access Control Remote Code Execution Vulnerability. This vulnerability allows network-adjacent…
CVE-2026-23193 — CVSS 8.8 (high): In the Linux kernel, the following vulnerability has been resolved: scsi: target: iscsi: Fix use-after-free in iscsit_dec_session_usage_coun…
CVE-2026-23395 — CVSS 8.8 (high): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix accepting multiple L2CAP_ECRED_CONN_REQ Currently…
CVE-2026-46113 — CVSS 8.8 (high): In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Fix shadow paging use-after-free due to unexpected GFN The…
CVE-2026-31629 — CVSS 8.8 (high): In the Linux kernel, the following vulnerability has been resolved: nfc: llcp: add missing return after LLCP_CLOSED checks In…
CVE-2026-43503 — CVSS 8.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: skbuff: propagate shared-frag marker through frag-transfer helpers…
CVE-2026-43249 — CVSS 8.8 (high): In the Linux kernel, the following vulnerability has been resolved: 9p/xen: protect xen_9pfs_front_free against concurrent calls The…
CVE-2026-23172 — CVSS 8.4 (high): In the Linux kernel, the following vulnerability has been resolved: net: wwan: t7xx: fix potential skb->frags overflow in RX path When…
CVE-2024-27407 — CVSS 8.4 (high): In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Fixed overflow check in mi_enum_attr()
CVE-2026-45843 — CVSS 8.2 (high): In the Linux kernel, the following vulnerability has been resolved: slip: bound decode() reads against the compressed packet length…
CVE-2026-31788 — CVSS 8.2 (high): In the Linux kernel, the following vulnerability has been resolved: xen/privcmd: restrict usage in unprivileged domU The Xen privcmd driver…
CVE-2026-43362 — CVSS 8.1 (high): In the Linux kernel, the following vulnerability has been resolved: smb: client: fix in-place encryption corruption in SMB2_write()…
CVE-2026-31464 — CVSS 8.1 (high): In the Linux kernel, the following vulnerability has been resolved: scsi: ibmvfc: Fix OOB access in ibmvfc_discover_targets_done() A…
CVE-2026-31613 — CVSS 8.1 (high): In the Linux kernel, the following vulnerability has been resolved: smb: client: fix OOB reads parsing symlink error response When a CREATE…
CVE-2025-39889 — CVSS 8.1 (high): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: l2cap: Check encryption key size on incoming connection This…
CVE-2023-53217 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: nubus: Partially revert proc_create_single_data() conversion The…
CVE-2023-53235 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/tests: helpers: Avoid a driver uaf when using…
CVE-2024-57896 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: btrfs: flush delalloc workers queue before stopping cleaner kthread…
CVE-2024-50029 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_conn: Fix UAF in hci_enhanced_setup_sync This checks if…
CVE-2026-46209 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/gem: Fix inconsistent plane dimension calculation in…
CVE-2026-46181 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx4: Fix mis-use of RCU in mlx4_srq_event() Sashiko points out…
CVE-2026-46176 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix error path fall-through in mlx5_ib_dev_res_srq_init()…
CVE-2026-46157 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ALSA: pcm: oss: Fix data race at accessing runtime.oss.trigger…
CVE-2023-52926 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: IORING_OP_READ did not correctly consume the provided buffer list when…
CVE-2023-52927 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: netfilter: allow exp not to be removed in nf_ct_find_expectation…
CVE-2026-46111 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_conn: fix potential UAF in create_big_sync Add…
CVE-2023-53148 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: igb: Fix igb_down hung on surprise removal In a setup where a…
CVE-2023-53621 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: memcontrol: ensure memcg acquired by id is properly set up In the…
CVE-2023-53619 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrack: Avoid nf_ct_helper_hash uses after free If…
CVE-2026-46090 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ALSA: aloop: Fix peer runtime UAF during format-change stop…
CVE-2023-52922 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: can: bcm: Fix UAF in bcm_proc_show() BUG: KASAN: slab-use-after-free in…
CVE-2023-52921 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix possible UAF in amdgpu_cs_pass1() Since the gang_size…
CVE-2023-53179 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: add the missing IP_SET_HASH_WITH_NET0 macro for…
CVE-2026-46004 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ALSA: caiaq: Handle probe errors properly The probe procedure of…
CVE-2026-45984 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: gfs2: Fix use-after-free in iomap inline data write path The inline…
CVE-2023-53184 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: arm64/sme: Set new vector length before reallocating As part of fixing…
CVE-2026-45970 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bonding: alb: fix UAF in rlb_arp_recv during bond up/down The ALB RX…
CVE-2023-53187 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: btrfs: fix use-after-free of new block group that became unused If a…
CVE-2023-53192 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: vxlan: Fix nexthop hash size The nexthop code expects a 31 bit hash…
CVE-2026-45910 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix race condition in QP timer handlers I encontered the…
CVE-2026-45878 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix watch_id bounds checking in debug address watch v2 The…
CVE-2026-45852 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix double free in rxe_srq_from_init In rxe_srq_from_init()…
CVE-2023-53205 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: KVM: s390/diag: fix racy access of physical cpu number in diag 9c…
CVE-2026-43499 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: rtmutex: Use waiter::task instead of current in remove_waiter()…
CVE-2023-53215 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: sched/fair: Don't balance task to its current running CPU We've run…
CVE-2025-21652 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ipvlan: Fix use-after-free in ipvlan_get_iflink(). syzbot presented an…
CVE-2024-46736 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: smb: client: fix double put of @cfile in smb2_rename_path() If…
CVE-2025-21650 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: hns3: fixed hclge_fetch_pf_reg accesses bar space out of bounds…
CVE-2025-21631 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix waker_bfqq UAF after bfq_split_bfqq() Our syzkaller…
CVE-2024-46766 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ice: move netif_queue_set_napi to rtnl-protected sections Currently…
CVE-2024-58240 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: tls: separate no-async decryption request handling from async If we're…
CVE-2024-58093 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: PCI/ASPM: Fix link state exit during switch upstream function removal…
CVE-2024-46782 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ila: call nf_unregister_net_hooks() sooner syzbot found an…
CVE-2024-58083 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: KVM: Explicitly verify target vCPU is online in kvm_get_vcpu()…
CVE-2024-46796 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: smb: client: fix double put of @cfile in smb2_set_path_size() If…
CVE-2024-58072 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: rtlwifi: remove unused check_buddy_priv Commit 2461c7d60f9f…
CVE-2024-46800 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: sch/netem: fix use after free in netem_dequeue If netem_dequeue()…
CVE-2024-58069 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: rtc: pcf85063: fix potential OOB write in PCF85063 NVMEM read The nvmem…
CVE-2024-58055 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: usb: gadget: f_tcm: Don't free command immediately Don't prematurely…
CVE-2024-46804 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add array index check for hdcp ddc access [Why]…
CVE-2024-58034 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: memory: tegra20-emc: fix an OF node reference bug in…
CVE-2024-58013 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: Fix slab-use-after-free Read in mgmt_remove_adv_monitor…
CVE-2024-46811 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix index may exceed array range within…
CVE-2024-46812 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Skip inactive planes within ModeSupportAndSystemConfigu…
CVE-2024-46813 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check link_index before accessing dc->links[] [WHY &…
CVE-2024-46814 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check msg_id before processing transcation [WHY & HOW]…
CVE-2024-46815 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check num_valid_sets before accessing reader_wm_sets[]…
CVE-2024-58002 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: media: uvcvideo: Remove dangling pointers When an async control is…
CVE-2024-57998 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: OPP: add index check to assert to avoid buffer overflow in _read_freq()…
CVE-2024-46818 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check gpio_id before used as array index [WHY & HOW]…
CVE-2024-57990 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7925: fix off by one in mt7925_load_clc() This comparison…
CVE-2024-46821 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amd/pm: Fix negative array index read Avoid using the negative…
CVE-2024-57980 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: media: uvcvideo: Fix double free in error path If the uvc_status_init()…
CVE-2024-57979 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: pps: Fix a use-after-free On a board running ntpd and gpsd, I'm seeing…
CVE-2024-46828 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: sched: sch_cake: fix bulk flow accounting logic for host fairness In…
CVE-2024-46830 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Acquire kvm->srcu when handling KVM_SET_VCPU_EVENTS Grab…
CVE-2024-46831 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: microchip: vcap: Fix use-after-free error in kunit test This is a…
CVE-2024-57926 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: Set private->all_drm_private[i]->drm to NULL if…
CVE-2024-46836 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: usb: gadget: aspeed_udc: validate endpoint index for ast udc We should…
CVE-2024-57917 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: topology: Keep the cpumask unchanged when printing cpumap During fuzz…
CVE-2024-46845 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: tracing/timerlat: Only clear timer if a kthread exists The timerlat…
CVE-2024-46849 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ASoC: meson: axg-card: fix 'use-after-free' Buffer 'card->dai_link' is…
CVE-2024-46852 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: dma-buf: heaps: Fix off-by-one in CMA heap fault handler Until…
CVE-2024-46853 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: spi: nxp-fspi: fix the KASAN report out-of-bounds bug Change the memcpy…
CVE-2024-57904 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: iio: adc: at91: call input_free_device() on allocated iio_dev Current…
CVE-2024-57900 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ila: serialize calls to nf_register_net_hooks() syzbot found a race in…
CVE-2024-46859 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: platform/x86: panasonic-laptop: Fix SINF array out of bounds accesses…
CVE-2024-57899 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: fix mbss changed flags corruption on 32 bit systems On…
CVE-2024-57892 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix slab-use-after-free due to dangling pointer dqi_priv When…
CVE-2024-57887 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm: adv7511: Fix use-after-free in adv7533_attach_dsi() The host_node…
CVE-2024-46871 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Correct the defined value for AMDGPU_DMUB_NOTIFICATION_…
CVE-2024-57857 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: RDMA/siw: Remove direct link to net_device Do not manage a per device…
CVE-2024-57850 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: jffs2: Prevent rtime decompress memory corruption The rtime…
CVE-2024-57849 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: s390/cpum_sf: Handle CPU hotplug remove during sampling CPU hotplug…
CVE-2024-57801 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Skip restore TC rules for vport rep without loaded flag…
CVE-2024-57798 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/dp_mst: Ensure mst_primary pointer is valid in…
CVE-2024-57795 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Remove the direct link to net_device The similar patch in siw…
CVE-2024-57792 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: power: supply: gpio-charger: Fix set charge current limits Fix set…
CVE-2024-56775 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix handling of plane refcount [Why] The mechanism to…
CVE-2024-56766 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: mtd: rawnand: fix double free in atmel_pmecc_create_user() The "user"…
CVE-2024-56765 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: powerpc/pseries/vas: Add close() callback in vas_vm_ops struct The…
CVE-2024-56759 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: btrfs: fix use-after-free when COWing tree bock and tracing is enabled…
CVE-2024-56708 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: EDAC/igen6: Avoid segmentation fault on module unload The segmentation…
CVE-2024-47670 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ocfs2: add bounds checking to ocfs2_xattr_find_entry() Add a paranoia…
CVE-2024-56704 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: 9p/xen: fix release of IRQ Kernel logs indicate an IRQ was…
CVE-2024-56699 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: s390/pci: Fix potential double remove of hotplug slot In commit…
CVE-2024-56693 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: brd: defer automatic disk creation until module initialization succeeds…
CVE-2024-47675 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bpf: Fix use-after-free in bpf_uprobe_multi_link_attach() If…
CVE-2024-56678 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: powerpc/mm/fault: Fix kfence page fault reporting…
CVE-2024-56675 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bpf: Fix UAF via mismatching bpf_prog/attachment RCU flavors Uprobes…
CVE-2024-47682 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: scsi: sd: Fix off-by-one error in sd_read_block_characteristics() Ff…
CVE-2024-56658 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: defer final 'struct net' free in netns dismantle Ilya reported a…
CVE-2023-31248 — CVSS 7.8 (high): Linux Kernel nftables Use-After-Free Local Privilege Escalation Vulnerability; `nft_chain_lookup_byid()` failed to check whether a chain…
CVE-2024-47695 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: RDMA/rtrs-clt: Reset cid to con_num - 1 to stay in bounds In the…
CVE-2024-47696 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: RDMA/iwcm: Fix WARNING:at_kernel/workqueue.c:#check_flush_dependency In…
CVE-2024-47697 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drivers: media: dvb-frontends/rtl2830: fix an out-of-bounds write error…
CVE-2024-47698 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drivers: media: dvb-frontends/rtl2832: fix an out-of-bounds write error…
CVE-2024-56651 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: can: hi311x: hi3110_can_ist(): fix potential use-after-free The commit…
CVE-2024-47701 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ext4: avoid OOB when system.data xattr changes underneath the…
CVE-2024-56642 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: tipc: Fix use-after-free of kernel socket in cleanup_bearer()…
CVE-2024-56640 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net/smc: fix LGR and link use-after-free issue We encountered a…
CVE-2024-56638 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_inner: incorrect percpu area handling under softirq…
CVE-2024-56633 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: tcp_bpf: Fix the sk_mem_uncharge logic in tcp_bpf_sendmsg The current…
CVE-2024-56631 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: scsi: sg: Fix slab-use-after-free read in sg_release() Fix a…
CVE-2024-56619 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix potential out-of-bounds memory access in nilfs_find_entry()…
CVE-2024-56616 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/dp_mst: Fix MST sideband message body length check Fix the MST…
CVE-2024-56615 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: bpf: fix OOB devmap writes when deleting elements Jordy reported issue…
CVE-2024-56614 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: xsk: fix OOB map writes when deleting elements Jordy says: " In the…
CVE-2024-56609 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: rtw88: use ieee80211_purge_tx_queue() to purge TX skb When…
CVE-2024-47718 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: rtw88: always wait for both firmware loading attempts In…
CVE-2024-47719 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: iommufd: Protect against overflow of ALIGN() during iova allocation…
CVE-2024-56608 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix out-of-bounds access in 'dcn21_link_encoder_create'…
CVE-2024-47727 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: x86/tdx: Fix "in-kernel MMIO" check TDX only supports kernel-initiated…
CVE-2024-56606 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: af_packet: avoid erroring out after sock_init_data() in packet_create()…
CVE-2024-47730 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: crypto: hisilicon/qm - inject error before stopping queue The master…
CVE-2024-56605 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: do not leave dangling sk pointer on error in…
CVE-2024-56604 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: RFCOMM: avoid leaving dangling sk pointer in…
CVE-2024-56603 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: af_can: do not leave a dangling sk pointer in can_create() On…
CVE-2024-56602 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: ieee802154: do not leave a dangling sk pointer in…
CVE-2024-56601 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: inet: do not leave a dangling sk pointer in inet_create()…
CVE-2024-56600 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: inet6: do not leave a dangling sk pointer in inet6_create()…
CVE-2024-47742 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: firmware_loader: Block path traversal Most firmware names are hardcoded…
CVE-2024-56598 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: jfs: array-index-out-of-bounds fix in dtReadFirst The value of stbl can…
CVE-2024-47745 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: mm: call the security_mmap_file() LSM hook in remap_file_pages() The…
CVE-2024-47748 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: vhost_vdpa: assign irq bypass producer token correctly We used to call…
CVE-2024-56596 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: jfs: fix array-index-out-of-bounds in jfs_readdir The stbl might…
CVE-2024-47750 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: Fix Use-After-Free of rsv_qp on HIP08 Currently rsv_qp is…
CVE-2024-47751 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: PCI: kirin: Fix buffer overflow in kirin_pcie_parse_port() Within…
CVE-2024-56595 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: jfs: add a check to prevent array-index-out-of-bounds in dbAdjTree When…
CVE-2024-56582 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: btrfs: fix use-after-free in btrfs_encoded_read_endio() Shinichiro…
CVE-2024-56570 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ovl: Filter invalid inodes with missing lookup function Add a check to…
CVE-2024-56558 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: nfsd: make sure exp active before svc_export_show The function `e_show`…
CVE-2024-56551 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix usage slab after free [ +0.000021] BUG: KASAN…
CVE-2024-56548 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: hfsplus: don't query the device logical block size multiple times…
CVE-2024-56538 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm: zynqmp_kms: Unplug DRM device before removal Prevent userspace…
CVE-2024-54458 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: bsg: Set bsg_queue to NULL after removal Currently, this…
CVE-2024-53239 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ALSA: 6fire: Release resources at card release The current 6fire code…
CVE-2024-53237 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: fix use-after-free in device_for_each_child() Syzbot has…
CVE-2024-53227 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: scsi: bfa: Fix use-after-free in bfad_im_module_exit() BUG: KASAN…
CVE-2024-53216 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: nfsd: release svc_expkey/svc_export with rcu_work The last reference…
CVE-2024-49852 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: scsi: elx: libefc: Fix potential use after free in…
CVE-2024-49853 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: firmware: arm_scmi: Fix double free in OPTEE transport Channels can be…
CVE-2024-49854 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix uaf for accessing waker_bfqq after splitting After…
CVE-2024-53214 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: vfio/pci: Properly hide first-in-list PCIe extended capability There…
CVE-2024-53213 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: usb: lan78xx: Fix double free issue with interrupt buffer…
CVE-2024-53208 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: Fix slab-use-after-free Read in set_powered_sync This…
CVE-2024-53206 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: tcp: Fix use-after-free of nreq in reqsk_timer_handler(). The cited…
CVE-2024-53203 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: usb: typec: fix potential array underflow in ucsi_ccg_sync_control()…
CVE-2024-53194 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: PCI: Fix use-after-free of slot->bus on hot remove Dennis reports a…
CVE-2024-53191 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: fix warning when unbinding If there is an error during…
CVE-2024-53179 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: smb: client: fix use-after-free of signing key Customers have reported…
CVE-2024-53177 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: smb: prevent use-after-free due to open_cached_dir error paths If…
CVE-2024-53174 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: SUNRPC: make sure cache entry active before cache_show The function…
CVE-2024-53173 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: NFSv4.0: Fix a use-after-free problem in the asynchronous open() Yang…
CVE-2024-53171 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit After…
CVE-2024-53170 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: block: fix uaf for flush rq while iterating tags blk_mq_clear_flush_rq_m…
CVE-2024-49882 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ext4: fix double brelse() the buffer of the extents path In…
CVE-2024-49883 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ext4: aovid use-after-free in ext4_ext_insert_extent() As Ojaswin…
CVE-2024-49884 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: ext4: fix slab-use-after-free in ext4_split_extent_at() We hit the…
CVE-2024-53168 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: sunrpc: fix one UAF issue caused by sunrpc kernel tcp socket BUG…
CVE-2024-53166 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix bfqq uaf in bfq_limit_depth() Set new allocated bfqq to…
CVE-2024-53156 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: wifi: ath9k: add range check for conn_rsp_epid in htc_connect_service()…
CVE-2024-49894 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix index out of bounds in degamma hardware format…
CVE-2024-49895 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix index out of bounds in DCN30 degamma hardware…
CVE-2024-53142 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: initramfs: avoid filename buffer overrun The initramfs filename field…
CVE-2024-53141 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: add missing range check in bitmap_ip_uadt When…