Important: kernel security and bug fix update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: use-after-free caused by l2capreassemblesdu in net/bluetooth/l2capcore.c CVE-2022-3564 kernel: stack overflow in doprocdointvec and procskipspaces CVE-2022-4378 kernel: use-after-free in...

K47009044: FreeBSD vulnerability CVE-2016-1887

Security Advisory Description Integer signedness error in the sockargs function in sys/kern/uipcsyscalls.c in FreeBSD 10.1 before p34, 10.2 before p17, and 10.3 before p3 allows local users to cause a denial of service memory overwrite and kernel panic or gain privileges via a negative buflen...

K80622270: Linux kernel vulnerability CVE-2020-10742

Security Advisory Description A flaw was found in the Linux kernel. An index buffer overflow during Direct IO write leading to the NFS client to crash. In some cases, a reach out of the index after one memory allocation by kmalloc will cause a kernel panic. The highest threat from this...

K24642829: Linux kernel vulnerability CVE-2015-7515

Security Advisory Description The aiptekprobe function in drivers/input/tablet/aiptek.c in the Linux kernel before 4.4 allows physically proximate attackers to cause a denial of service NULL pointer dereference and system crash via a crafted USB device that lacks endpoints. CVE-2015-7515 Impact A...

Security Bulletin: Vulnerabilities in IPv6 and MQ affect the IBM FlashSystem models 840 and 900

Summary There are vulnerabilities in the IPv6 and MQ components which affect the IBM FlashSystem™ 840 and IBM FlashSystem 900. An exploit of these vulnerabilities CVE-2016-10142 and CVE-2017-11176 could make the system susceptible to attacks which could allow an attacker to trigger a kernel panic...

PT-2025-49649

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.2.0-rc2+ 89 Description The Linux kernel contains a flaw in the IOMMU/AMD subsystem related to page fault error reporting. If the IOMMU domain for a device group is not properly configured, a page fault may...

SUSE CVE-2005-2872

The iptrecent kernel module iptrecent.c in Linux kernel before 2.6.12, when running on 64-bit processors such as AMD64, allows remote attackers to cause a denial of service kernel panic via certain attacks such as SSH brute force, which leads to memset calls using a length based on the uint32t...

SUSE CVE-2006-2272

Linux SCTP lksctp before 2.6.17 allows remote attackers to cause a denial of service kernel panic via incoming IP fragmented 1 COOKIEECHO and 2 HEARTBEAT SCTP control chunks...

SUSE CVE-2006-5649

Unspecified vulnerability in the "alignment check exception handling" in Ubuntu 5.10, 6.06 LTS, and 6.10 for the PowerPC PPC allows local users to cause a denial of service kernel panic via unspecified vectors...

SUSE CVE-2006-7177

MadWifi, when Ad-Hoc mode is used, allows remote attackers to cause a denial of service system crash via unspecified vectors that lead to a kernel panic in the ieee80211input function, related to "packets coming from a 'malicious' WinXP system."...

SUSE CVE-2007-4133

The 1 hugetlbvmtruncatelist and 2 hugetlbvmtruncate functions in fs/hugetlbfs/inode.c in the Linux kernel before 2.6.19-rc4 perform certain priotree calculations using HPAGESIZE instead of PAGESIZE units, which allows local users to cause a denial of service panic via unspecified vectors...

SUSE CVE-2007-4567

The ipv6hopjumbo function in net/ipv6/exthdrs.c in the Linux kernel before 2.6.22 does not properly validate the hop-by-hop IPv6 extended header, which allows remote attackers to cause a denial of service NULL pointer dereference and kernel panic via a crafted IPv6 packet...

SUSE CVE-2007-5087

The ATM module in the Linux kernel before 2.4.35.3, when CLIP support is enabled, allows local users to cause a denial of service kernel panic by reading /proc/net/atm/arp before the CLIP module has been loaded...

SUSE CVE-2008-1514

arch/s390/kernel/ptrace.c in Linux kernel 2.6.9, and other versions before 2.6.27-rc6, on s390 platforms allows local users to cause a denial of service kernel panic via the user-area-padding test from the ptrace testsuite in 31-bit mode, which triggers an invalid dereference...

SUSE CVE-2008-3276

Integer overflow in the dccpsetsockoptchange function in net/dccp/proto.c in the Datagram Congestion Control Protocol DCCP subsystem in the Linux kernel 2.6.17-rc1 through 2.6.26.2 allows remote attackers to cause a denial of service panic via a crafted integer value, related to Change L and Chan...

SUSE CVE-2010-1188

Use-after-free vulnerability in net/ipv4/tcpinput.c in the Linux kernel 2.6 before 2.6.20, when IPV6RECVPKTINFO is set on a listening socket, allows remote attackers to cause a denial of service kernel panic via a SYN packet while the socket is in a listening TCPLISTEN state, which is not properl...

SUSE CVE-2010-1436

gfs2 in the Linux kernel 2.6.18, and possibly other versions, does not properly handle when the gfs2quota struct occupies two separate pages, which allows local users to cause a denial of service kernel panic via certain manipulations that cause an out-of-bounds write, as demonstrated by writing...

SUSE CVE-2010-4163

The blkrqmapuseriov function in block/blk-map.c in the Linux kernel before 2.6.36.2 allows local users to cause a denial of service panic via a zero-length I/O request in a device ioctl to a SCSI device...

SUSE CVE-2012-1583

Double free vulnerability in the xfrm6tunnelrcv function in net/ipv6/xfrm6tunnel.c in the Linux kernel before 2.6.22, when the xfrm6tunnel module is enabled, allows remote attackers to cause a denial of service panic via crafted IPv6 packets...

SUSE CVE-2012-2372

The rdsibxmit function in net/rds/ibsend.c in the Reliable Datagram Sockets RDS protocol implementation in the Linux kernel 3.7.4 and earlier allows local users to cause a denial of service BUGON and kernel panic by establishing an RDS connection with the source IP address equal to the IPoIB...