ROS-20240819-01

Vulnerability of rtl92epcidisconnect function in drivers/staging/rtl8192e/rtl8192e/rtlcore.c module of the RealTek RTL8192E wireless adapter driver of the Linux kernel is related to the reuse of previously freed memory. reuse of previously freed memory. Exploitation of the vulnerability could all...

CVE-2024-42228

...

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: SUNRPC: Fix RPC client cleaned up the freed pipefs dentries CVE-2023-52803 In the Linux kernel, the following vulnerability has been resolved: net: relax socket state check at accept time. CVE-2024-36484 In the...

Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2024-12581)

The remote Oracle Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-12581 advisory. - net/mlx5e: drop shorter ethernet frames Manjunath Patil Orabug: 36879157 CVE-2024-41090 CVE-2024-41091 - netfilter: ipset: Fix race between...

Unbreakable Enterprise kernel-container security update

5.4.17-2136.334.6.el7 - loop: Fix a race between loop detach and loop open Gulam Mohamed Orabug: 36197800 - x86/bhi: Do not enable unnecessary BHI mitigation in OCI and Exadata VMs Alexandre Chartre Orabug: 36672495 - x86/bhi: Avoid warning in DB handler due to BHI mitigation Alexandre Chartre...

Unbreakable Enterprise kernel security update

5.4.17-2136.334.6 - loop: Fix a race between loop detach and loop open Gulam Mohamed Orabug: 36197800 - x86/bhi: Do not enable unnecessary BHI mitigation in OCI and Exadata VMs Alexandre Chartre Orabug: 36672495 - x86/bhi: Avoid warning in DB handler due to BHI mitigation Alexandre Chartre Orabug...

The vulnerability of the amdgpu_mes_remove_ring() function in the amdgpu driver of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the amdgpumesremovering function in the drivers/gpu/drm/amd/amdgpu/amdgpumes.c driver of the amdgpu core of the Linux operating system is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the...

SUSE-SU-2024:2785-1 Security update for kernel-firmware

This update for kernel-firmware fixes the following issues: Update to version 20240728: amdgpu: update DMCUB to v0.0.227.0 for DCN35 and DCN351 Revert 'iwlwifi: update ty/So/Ma firmwares for core89-58 release' linux-firmware: update firmware for MT7922 WiFi device linux-firmware: update firmware...

SUSE CVE-2024-41022

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix signedness bug in sdmav40processtrapirq The "instance" variable needs to be signed for the error handling to work...

SUSE CVE-2024-41061

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix array-index-out-of-bounds in dml2/FCLKChangeSupport Why Potential out of bounds access in dml2calculaterqanddlgparams because the value of outloweststateidx used as an index for FCLKChangeSupport array can be...

SUSE CVE-2024-41093

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: avoid using null object of framebuffer Instead of using state-fb-obj0 directly, get object from framebuffer by calling drmgemfbgetobj and return error code when object is null to avoid using null object of framebuffer...

SUSE CVE-2024-42123

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix double free erraddr pointer warnings In amdgpuumcbadpagepollingtimeout, the amdgpuumchandlebadpages will be run many times so that double free erraddr in some special case. So set the erraddr to NULL to avoid the...

SUSE CVE-2024-42228

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Using uninitialized value size when calling amdgpuvcecsreloc Initialize the size before calling amdgpuvcecsreloc, such as case 0x03000001. V2: To really improve the handling we would actually need to have a separate...

CVE-2024-42228

A vulnerability was found in the Linux kernel's amdgpu driver in the amdgpuvceringparsecs function where the size variable is initialized with a pointer that may not be properly set before use. This issue could lead to unpredictable behavior in the system. Mitigation Mitigation for this issue is...

OESA-2024-1943 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Skip do PCI error slot reset during RAS recovery Why: The PCI error slot reset maybe triggered after inject ue to UMC multi times, this caused system...

PT-2024-33748

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A null pointer dereference issue has been resolved in the Linux kernel. The problem occurred because the afb variable was assumed to be null at a certain point but was used later witho...

CVE-2024-42123

A vulnerability was found in the amdgpuumchandlebadpages function in the Linux kernel's amdgpu driver. If the function is called multiple times in quick succession, a double free error can occur because the errdata-erraddr pointer that is being freed is not being set to NULL in between calls. Thi...

CVE-2024-41093

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: avoid using null object of framebuffer Instead of using state-fb-obj0 directly, get object from framebuffer by calling drmgemfbgetobj and return error code when object is null to avoid using null object of framebuffer...

CVE-2024-41022

A vulnerability was found in the AMDGPU DRM driver’s sdmav40processtrapirq function in the Linux Kernel. This issue was addressed by correcting a signedness issue. The instance variable, which was previously unsigned, was changed to a signed type to ensure proper error handling. Mitigation...

CVE-2024-42228

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Using uninitialized value size when calling amdgpuvcecsreloc Initialize the size before calling amdgpuvcecsreloc, such as case 0x03000001. V2: To really improve the handling we would actually need to have a separate...