1233 matches found
AZL-56544 CVE-2024-56766 affecting package kernel for versions less than 5.15.176.3-1
In the Linux kernel, the following vulnerability has been resolved: mtd: rawnand: fix double free in atmelpmecccreateuser The "user" pointer was converted from being allocated with kzalloc to being allocated by devmkzalloc. Calling kfreeuser will lead to a double free...
PT-2025-30759
Name of the Vulnerable Software and Affected Versions Linux Kernel versions 6.16.0-20250531.rc0.git0.69b3a602feac.63.fc42.s390x+debug and earlier. Description A flaw exists in the Linux kernel related to handling in atomic within the do secure storage access function. User space accesses to...
AZL-54836 CVE-2024-56754 affecting package kernel for versions less than 6.6.64.2-1
In the Linux kernel, the following vulnerability has been resolved: crypto: caam - Fix the pointer passed to caamqishutdown The type of the last parameter given to devmaddactionorreset is "struct caamdrvprivate ", but in caamqishutdown, it is casted to "struct device ". Pass the correct parameter...
AZL-55419 CVE-2024-56718 affecting package kernel for versions less than 6.6.76.1-1
In the Linux kernel, the following vulnerability has been resolved: net/smc: protect link down work from execute after lgr freed link down work may be scheduled before lgr freed but execute after lgr freed, which may result in crash. So it is need to hold a reference before shedule link down work...
AZL-55401 CVE-2024-56716 affecting package kernel for versions less than 5.15.176.3-1
In the Linux kernel, the following vulnerability has been resolved: netdevsim: prevent bad user input in nsimdevhealthbreakwrite If either a zero count or a large one is provided, kernel can crash...
AZL-54875 CVE-2024-56653 affecting package kernel for versions less than 6.6.76.1-1
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btmtk: avoid UAF in btmtkprocesscoredump hcidevcdappend may lead to the release of the skb, so it cannot be accessed once it is called. ================================================================== BUG: KASAN:...
AZL-54785 CVE-2024-56648 affecting package kernel for versions less than 5.15.176.3-1
In the Linux kernel, the following vulnerability has been resolved: net: hsr: avoid potential out-of-bound access in fillframeinfo syzbot is able to feed a packet with 14 bytes, pretending it is a vlan one. Since fillframeinfo is relying on skb-maclen already, extend the check to cover this case...
AZL-56151 CVE-2024-56575 affecting package kernel for versions less than 5.15.176.3-1
In the Linux kernel, the following vulnerability has been resolved: media: imx-jpeg: Ensure power suppliers be suspended before detach them The power suppliers are always requested to suspend asynchronously, devpmdomaindetach requires the caller to ensure proper synchronization of this function...
[SECURITY] Fedora 40 Update: kernel-6.12.4-100.fc40
The kernel meta package...
[SECURITY] Fedora 41 Update: kernel-6.12.4-200.fc41
The kernel meta package...
CBL Mariner 2.0 Security Update: kernel (CVE-2024-53060)
The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-53060 advisory. - In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: prevent NULL pointer...
CVE-2024-50279 affecting package kernel for versions less than 5.15.173.1-1
CVE-2024-50279 affecting package kernel for versions less than 5.15.173.1-1. An upgraded version of the package is available that resolves this issue...
CVE-2024-50044 affecting package kernel for versions less than 5.15.173.1-1
CVE-2024-50044 affecting package kernel for versions less than 5.15.173.1-1. An upgraded version of the package is available that resolves this issue...
CVE-2024-50142 affecting package kernel for versions less than 5.15.173.1-1
CVE-2024-50142 affecting package kernel for versions less than 5.15.173.1-1. An upgraded version of the package is available that resolves this issue...
SUSE SLES15 Security Update : kernel (Live Patch 49 for SLE 15 SP2) (SUSE-SU-2024:4231-1)
The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:4231-1 advisory. This update for the Linux Kernel 5.3.18-15020024194 fixes several issues. The following security issues were fixed: - CVE-2024-36904: tcp: Use...
CVE-2023-52601 affecting package kernel for versions less than 6.6.57.1-5
CVE-2023-52601 affecting package kernel for versions less than 6.6.57.1-5. A patched version of the package is available...
Security update for the Linux Kernel (Live Patch 15 for SLE 15 SP5)
This update for the Linux Kernel 5.14.21-1505005568 fixes several issues. The following security issues were fixed: CVE-2021-47517: Fix panic when interrupt coaleceing is set via ethtool bsc1225429. CVE-2024-36904: tcp: Use refcountincnotzero in tcptwskunique bsc1225733. CVE-2024-43861: Fix memor...
AZL-54204 CVE-2024-53119 affecting package kernel for versions less than 5.15.176.3-1
In the Linux kernel, the following vulnerability has been resolved: virtio/vsock: Fix acceptqueue memory leak As the final stages of socket destruction may be delayed, it is possible that virtiotransportrecvlisten will be called after the acceptqueue has been flushed, but before the SOCKDONE flag...
AZL-54268 CVE-2024-53108 affecting package kernel for versions less than 6.6.64.2-1
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Adjust VSDB parser for replay feature At some point, the IEEE ID identification for the replay check in the AMD EDID was added. However, this check causes the following out-of-bounds issues when using KASAN:...
AZL-54632 CVE-2024-53093 affecting package kernel for versions less than 6.6.64.2-1
In the Linux kernel, the following vulnerability has been resolved: nvme-multipath: defer partition scanning We need to suppress the partition scan from occuring within the controller's scanwork context. If a path error occurs here, the IO will wait until a path becomes available or all paths are...