SUSE-SU-2026:0958-1 Security update for the Linux Kernel (Live Patch 72 for SUSE Linux Enterprise 12 SP5)

This update for the SUSE Linux Enterprise Kernel 4.12.14-122.272 fixes various security issues The following security issues were fixed: - CVE-2022-50423: ACPICA: Fix use-after-free in acpiutcopyipackagetoipackage bsc1250785. - CVE-2022-50697: mrp: introduce active flags to prevent UAF when...

The vulnerability of the microprogramming software for Intel Data Center GPU Flex 140 and Intel Data Center GPU Flex 170 lies in the possibility of operations being executed outside the buffer in memory, which can allow a hacker to cause a service failure.

The vulnerability of the microprogrammed graphics processor software of Intel Data Center GPU Flex 140 and Intel Data Center GPU Flex 170 lies in the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of embedded software developed by Qualcomm, related to the execution of operations outside the buffer in memory, allows attackers to disclose protected information.

The vulnerability of embedded software developed for Qualcomm chips lies in the fact that operations are performed outside of the buffer in memory. Exploiting this vulnerability can allow attackers to disclose protected information...

The vulnerability of the loginAuth function in the TOTOlink EX1800T Wi-Fi extension software allows a perpetrator to influence the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the loginAuth function in the TOTOlink EX1800T Wi-Fi extension software lies in the fact that the operation results are stored outside of the buffer in memory. Exploiting this vulnerability could allow an attacker to influence the confidentiality, integrity, and accessibility...

The vulnerability of the formexeCommand() function in Tenda i21 router microprogramming software allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the formexeCommand function in Tenda i21 router microprogramming software is related to the operation that occurs outside the buffer in memory when processing the cmdinput parameter. Exploiting this vulnerability allows a remote attacker to compromise the confidentiality,...

The vulnerability in the implementation of the Secure Boot protocol for operating systems with security features allows a perpetrator to circumvent security restrictions.

The vulnerability of the Secure Boot protocol for Windows operating systems lies in the fact that operations are performed outside of the buffer in memory. Exploiting this vulnerability could allow a malicious actor to circumvent security restrictions remotely...

The vulnerability of the registerRequestHandle() function in TP-LINK TL-WR886N router software allows a hacker to manipulate the integrity, accessibility, and confidentiality of the protected information.

The vulnerability of the registerRequestHandle function in TP-LINK’s TL-WR886N router software lies in the fact that the operation’s output is stored outside of the buffer in memory. Exploiting this vulnerability could allow a remote attacker to compromise the integrity, availability, and...

The vulnerability of Android and Linux operating systems in Qualcomm embedded devices, related to the execution of operations outside of the buffer in memory, allows attackers to trigger system failures.

The vulnerability of Android and Linux operating systems in Qualcomm embedded devices lies in the fact that operations are performed outside of the buffer in memory. Exploiting this vulnerability can allow an attacker to trigger a service failure by sending specially crafted DRM requests...

The vulnerability of the remote connection function of the microprogramming software for Lenovo ThinkSystem storage servers, Lenovo ThinkStation workstations, and Lenovo ThinkEdge industrial computers, as well as the Lenovo ThinkAgile software/hardware system, allows attackers to increase their privileges.

The vulnerability of the Remote Presence subsystem of the microprogramming software for Lenovo ThinkSystem servers, Lenovo ThinkStation workstations, Lenovo ThinkEdge industrial computers, and the Lenovo ThinkAgile software/hardware system lies in the fact that the operation data is stored outsid...

The vulnerability of the DSL-320B-D1 router’s microprogramming software lies in the fact that the operation results are stored outside the buffer in memory, allowing an intruder to gain unauthorized access to the device with the user’s login credentials (login.xgi).

The vulnerability of the microprogrammed operating system of the DSL-320B-D1 router lies in the fact that the operation results are stored outside of the buffer in memory. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to the device with user login...

The vulnerability of the implementation of diagnostic functions for ping and tracert in the microprogramming software of TP-Link TL-R600VPN allows a intruder to execute arbitrary code.

The vulnerability of the ping and tracert diagnostic functions in the microprogramming software for TP-Link TL-R600VPN implementations lies in the fact that the operation’s results are stored outside of the buffer in memory. Exploiting this vulnerability allows a remote attacker to execute...