kernel-rt_debug (SUSE:Real Time Module 15 SP7) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Real Time Module 15 SP7 package kernel-rt_debug, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (119)
CVE-2025-21929 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: HID: intel-ish-hid: Fix use-after-free issue in hid_ishtp_cl_remove()…
CVE-2025-37789 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: fix nested key length validation in the set() action…
CVE-2024-46713 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: perf/aux: Fix AUX buffer serialization Ole reported that…
CVE-2025-37797 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net_sched: hfsc: Fix a UAF vulnerability in class handling This patch…
CVE-2025-37798 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: codel: remove sch->q.qlen check before qdisc_tree_reduce_backlog()…
CVE-2025-21702 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: pfifo_tail_enqueue: Drop new packet when sch->limit == 0 Expected…
CVE-2025-37803 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: udmabuf: fix a buf size overflow issue during udmabuf creation by…
CVE-2025-37823 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: net_sched: hfsc: Fix a potential UAF in hfsc_dequeue() too Similarly to…
CVE-2024-57998 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: OPP: add index check to assert to avoid buffer overflow in _read_freq()…
CVE-2025-22085 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: RDMA/core: Fix use-after-free when rename device name Syzbot reported a…
CVE-2024-54458 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: bsg: Set bsg_queue to NULL after removal Currently, this…
CVE-2025-22088 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: RDMA/erdma: Prevent use-after-free in erdma_accept_newconn() After the…
CVE-2025-22126 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: md: fix mddev uaf while iterating all_mddevs list While iterating…
CVE-2025-37957 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Forcibly leave SMM mode on SHUTDOWN interception Previously…
CVE-2024-58093 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: PCI/ASPM: Fix link state exit during switch upstream function removal…
CVE-2025-22097 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: drm/vkms: Fix use after free and double free on init error If the…
CVE-2025-21919 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: sched/fair: Fix potential memory corruption in child_cfs_rq_on_list…
CVE-2025-37750 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: smb: client: fix UAF in decryption with multichannel After commit…
CVE-2024-27018 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: netfilter: br_netfilter: skip conntrack input hook for promisc packets…
CVE-2025-22056 — CVSS 7.8 (high): In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_tunnel: fix geneve_opt type confusion addition When…
CVE-2024-50083 — CVSS 7.5 (high): In the Linux kernel, the following vulnerability has been resolved: tcp: fix mptcp DSS corruption due to large pmtu xmit Syzkaller was able…
CVE-2025-22112 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: eth: bnxt: fix out-of-range access of vnic_info array The…
CVE-2023-53034 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: ntb_hw_switchtec: Fix shift-out-of-bounds in switchtec_ntb_mw_set_trans…
CVE-2024-46865 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: fou: fix initialization of grc The grc must be initialize first. There…
CVE-2025-37749 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: net: ppp: Add bound checking for skb data on ppp_sync_txmung Ensure we…
CVE-2025-37780 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: isofs: Prevent the use of too small fid syzbot reported a…
CVE-2025-22104 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: ibmvnic: Use kernel helpers for hex dumps Previously, when the driver…
CVE-2025-22107 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: net: dsa: sja1105: fix kasan out-of-bounds warning in…
CVE-2025-37879 — CVSS 7.1 (high): In the Linux kernel, the following vulnerability has been resolved: 9p/net: fix improper handling of bogus negative read/write replies In…
CVE-2024-50106 — CVSS 7.0 (high): In the Linux kernel, the following vulnerability has been resolved: nfsd: fix race between laundromat and free_stateid There is a race…
CVE-2024-28956 — CVSS 5.6 (medium): Exposure of Sensitive Information in Shared Microarchitectural Structures during Transient Execution for some Intel(R) Processors may allow…
CVE-2025-22057 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: decrease cached dst counters in dst_release Upstream fix…
CVE-2025-22058 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: udp: Fix memory accounting leak. Matt Dowling reported a weird UDP…
CVE-2025-22062 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: sctp: add mutual exclusion in proc_sctp_do_udp_port() We must serialize…
CVE-2025-22063 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: netlabel: Fix NULL pointer exception caused by CALIPSO on IPv4 sockets…
CVE-2025-22064 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: don't unregister hook when table is dormant When…
CVE-2025-22065 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: idpf: fix adapter NULL pointer dereference on reboot With SRIOV…
CVE-2025-22070 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: fs/9p: fix NULL pointer dereference on mkdir When a 9p tree was mounted…
CVE-2025-22075 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: rtnetlink: Allocate vfinfo size for VF GUIDs when supported Commit…
CVE-2025-22086 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix mlx5_poll_one() cur_qp update flow When cur_qp isn't…
CVE-2025-22091 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Fix page_size variable overflow Change all variables storing…
CVE-2025-22093 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: avoid NPD when ASIC does not support DMUB…
CVE-2025-22094 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: powerpc/perf: Fix ref-counting on the PMU 'vpa_pmu' Commit 176cda0619b6…
CVE-2025-22102 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btnxpuart: Fix kernel panic during FW release This fixes a…
CVE-2025-22103 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: fix NULL pointer dereference in l3mdev_l3_rcv When delete l3s…
CVE-2025-22108 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: bnxt_en: Mask the bd_cnt field in the TX BD properly The bd_cnt field…
CVE-2025-22109 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ax25: Remove broken autobind Binding AX25 socket by using the autobind…
CVE-2025-22116 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: idpf: check error for register_netdev() on init Current init logic…
CVE-2025-22125 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: md/raid1,raid10: don't ignore IO flags If blk-wbt is enabled by…
CVE-2025-22128 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: Clear affinity hint before calling ath12k_pci_free_irq()…
CVE-2025-23129 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: Clear affinity hint before calling ath11k_pcic_free_irq()…
CVE-2025-23131 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: dlm: prevent NPD when writing a positive value to event_done do_uevent…
CVE-2025-23134 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ALSA: timer: Don't take register_mutex with copy_from/to_user() The…
CVE-2025-23136 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: thermal: int340x: Add NULL check for adev Not all devices have an ACPI…
CVE-2025-23138 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: watch_queue: fix pipe accounting mismatch Currently…
CVE-2025-23140 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: misc: pci_endpoint_test: Avoid issue of interrupts remaining after…
CVE-2025-23145 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: mptcp: fix NULL pointer in can_accept_new_subflow When testing valkey…
CVE-2025-23150 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ext4: fix off-by-one error in do_split Syzkaller detected a…
CVE-2025-23154 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: io_uring/net: fix io_req_post_cqe abuse by send bundle [ 114.987980][…
CVE-2025-23160 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: media: mediatek: vcodec: Fix a resource leak related to the scp device…
CVE-2025-37747 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: perf: Fix hang while freeing sigtrap event Perf can hang while freeing…
CVE-2025-37748 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: iommu/mediatek: Fix NULL pointer deference in mtk_iommu_device_group…
CVE-2025-37755 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: libwx: handle page_pool_dev_alloc_pages error…
CVE-2025-37773 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: virtiofs: add filesystem context source name check In certain…
CVE-2025-37787 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: dsa: mv88e6xxx: avoid unregistering devlink regions which were…
CVE-2025-37790 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: mctp: Set SOCK_RCU_FREE Bind lookup runs under RCU, so ensure that…
CVE-2025-37799 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: vmxnet3: Fix malformed packet sizing in vmxnet3_process_xdp vmxnet3…
CVE-2025-37809 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: usb: typec: class: Fix NULL pointer access Concurrent calls to…
CVE-2025-37820 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: xen-netfront: handle NULL returned by xdp_convert_buff_to_frame() The…
CVE-2025-40325 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: md/raid10: wait barrier before returning discard request with…
CVE-2024-35840 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: mptcp: use OPTION_MPTCP_MPJ_SYNACK in subflow_finish_connect()…
CVE-2024-46763 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: fou: Fix null-ptr-deref in GRO. We observed a null-ptr-deref in…
CVE-2024-50223 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: sched/numa: Fix the potential null pointer dereference in…
CVE-2024-56641 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net/smc: initialize close_work early to avoid warning We encountered a…
CVE-2024-56702 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: bpf: Mark raw_tp arguments with PTR_MAYBE_NULL Arguments to a raw…
CVE-2024-58001 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ocfs2: handle a symlink read error correctly Patch series "Convert…
CVE-2024-58070 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: bpf: bpf_local_storage: Always use bpf_mem_alloc in PREEMPT_RT In…
CVE-2024-58094 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: jfs: add check read-only before truncation in jfs_truncate_nolock()…
CVE-2024-58095 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: jfs: add check read-only before txBeginAnon() call Added a read-only…
CVE-2024-58096 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: add srng->lock for ath11k_hal_srng_* in monitor mode…
CVE-2024-58097 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: fix RCU stall while reaping monitor destination ring…
CVE-2025-21648 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrack: clamp maximum hashtable size to INT_MAX Use…
CVE-2025-21683 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: bpf: Fix bpf_sk_select_reuseport() memory leak As pointed out in the…
CVE-2025-21707 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: mptcp: consolidate suboption status MPTCP maintains the received…
CVE-2025-21758 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ipv6: mcast: add RCU protection to mld_newpack() mld_newpack() can be…
CVE-2025-21768 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: ipv6: fix dst ref loops in rpl, seg6 and ioam6 lwtunnels Some…
CVE-2025-21787 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: team: better TEAM_OPTION_TYPE_STRING validation syzbot reported…
CVE-2025-21792 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ax25: Fix refcount leak caused by setting SO_BINDTODEVICE sockopt If an…
CVE-2025-21814 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: ptp: Ensure info->enable callback is always set The ioctl and sysfs…
CVE-2025-21852 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net: Add rx_skb of kfree_skb to raw_tp_null_args[]. Yan Zhai reported a…
CVE-2025-21853 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: bpf: avoid holding freeze_mutex during mmap operation We use…
CVE-2025-21962 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: cifs: Fix integer overflow while processing closetimeo mount option…
CVE-2025-21963 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: cifs: Fix integer overflow while processing acdirmax mount option…
CVE-2025-21964 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: cifs: Fix integer overflow while processing acregmax mount option…
CVE-2025-22018 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: atm: Fix NULL pointer dereference When MPOA_cache_impos_rcvd() receives…
CVE-2025-22021 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: netfilter: socket: Lookup orig tuple for IPv6 SNAT nf_sk_lookup_slow_v4…
CVE-2025-22025 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: nfsd: put dl_stid if fail to queue dl_recall Before calling…
CVE-2025-22030 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: mm: zswap: fix crypto_free_acomp() deadlock in zswap_cpu_comp_dead()…
CVE-2025-22033 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: arm64: Don't call NULL in do_compat_alignment_fixup()…
CVE-2025-22044 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: acpi: nfit: fix narrowing conversion in acpi_nfit_ctl Syzkaller has…
CVE-2025-37960 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: memblock: Accept allocated memory before use in memblock_double_array()…
CVE-2025-37974 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: s390/pci: Fix missing check for zpci_create_device() error return The…
CVE-2025-38152 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: remoteproc: core: Clear table_sz when rproc_shutdown There is case as…
CVE-2025-38637 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net_sched: skbprio: Remove overly strict queue assertions In the…
CVE-2025-37824 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: tipc: fix NULL pointer dereference in tipc_mon_reinit_self() syzbot…
CVE-2025-37829 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: cpufreq: scpi: Fix null-ptr-deref in scpi_cpufreq_get_rate()…
CVE-2025-37830 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: cpufreq: scmi: Fix null-ptr-deref in scmi_cpufreq_get_rate()…
CVE-2025-37831 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: cpufreq: apple-soc: Fix null-ptr-deref in apple_soc_cpufreq_get_rate()…
CVE-2025-37833 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: net/niu: Niu requires MSIX ENTRY_DATA fields touch before entry reads…
CVE-2025-37842 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: spi: fsl-qspi: use devm function instead of driver remove Driver use…
CVE-2025-37870 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: prevent hang on link training fail [Why] When link…
CVE-2025-37886 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: pds_core: make wait_context part of q_info Make the wait_context a full…
CVE-2025-37887 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: pds_core: handle unsupported PDS_CORE_CMD_FW_CONTROL result If the FW…
CVE-2025-37949 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: xenbus: Use kref to track req lifetime Marek reported seeing a NULL…
CVE-2025-37958 — CVSS 5.5 (medium): In the Linux kernel, the following vulnerability has been resolved: mm/huge_memory: fix dereferencing invalid pmd migration entry When…
CVE-2025-22027 — CVSS 4.7 (medium): In the Linux kernel, the following vulnerability has been resolved: media: streamzap: fix race between device disconnection and urb…
CVE-2025-22050 — CVSS 4.7 (medium): In the Linux kernel, the following vulnerability has been resolved: usbnet:fix NPE during rx_complete Missing usbnet_going_away Check in…
CVE-2024-27415 — CVSS 4.7 (medium): In the Linux kernel, the following vulnerability has been resolved: netfilter: bridge: confirm multicast packets before passing them up the…
CVE-2025-37804: Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.