Medium: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: usb-storage: alauda: Check whether the media is initialized CVE-2024-38619 In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: fully validate NFTDATAVALUE on store to data...

CVE-2024-42102 affecting package kernel for versions less than 5.15.164.1-1

CVE-2024-42102 affecting package kernel for versions less than 5.15.164.1-1. An upgraded version of the package is available that resolves this issue...

CVE-2024-42244 affecting package kernel for versions less than 5.15.164.1-1

CVE-2024-42244 affecting package kernel for versions less than 5.15.164.1-1. An upgraded version of the package is available that resolves this issue...

AZL-47793 CVE-2024-42294 affecting package kernel for versions less than 6.6.47.1-1

In the Linux kernel, the following vulnerability has been resolved: block: fix deadlock between sdremove & sdrelease Our test report the following hung task: 2538.459400 INFO: task "kworker/0:0":7 blocked for more than 188 seconds. 2538.459427 Call trace: 2538.459430 switchto+0x174/0x338...

AZL-47835 CVE-2024-42284 affecting package kernel for versions less than 5.15.167.1-1

In the Linux kernel, the following vulnerability has been resolved: tipc: Return non-zero value from tipcudpaddr2str on error tipcudpaddr2str should return non-zero value if the UDP media address is invalid. Otherwise, a buffer overflow access can occur in tipcmediaaddrprintf. Fix this by returni...

CVE-2024-42268 net/mlx5: Fix missing lock on sync reset reload

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix missing lock on sync reset reload On sync reset reload work, when remote host updates devlink on reload actions performed on that host, it misses taking devlink lock before calling devlinkremotereloadactionsperforme...

CVE-2024-23307 affecting package kernel for versions less than 6.6.35.1-4

CVE-2024-23307 affecting package kernel for versions less than 6.6.35.1-4. A patched version of the package is available...

CVE-2024-0646 affecting package kernel for versions less than 6.6.35.1-4

CVE-2024-0646 affecting package kernel for versions less than 6.6.35.1-4. A patched version of the package is available...

CVE-2024-42153 affecting package kernel for versions less than 6.6.43.1-7

CVE-2024-42153 affecting package kernel for versions less than 6.6.43.1-7. An upgraded version of the package is available that resolves this issue...

CVE-2024-42070 affecting package kernel for versions less than 6.6.43.1-7

CVE-2024-42070 affecting package kernel for versions less than 6.6.43.1-7. An upgraded version of the package is available that resolves this issue...

CVE-2024-35984 affecting package kernel for versions less than 6.6.35.1-4

CVE-2024-35984 affecting package kernel for versions less than 6.6.35.1-4. An upgraded version of the package is available that resolves this issue...

AZL-49105 CVE-2024-42259 affecting package kernel for versions less than 5.15.167.1-1

In the Linux kernel, the following vulnerability has been resolved: drm/i915/gem: Fix Virtual Memory mapping boundaries calculation Calculating the size of the mapped area as the lesser value between the requested size and the actual size does not consider the partial mapping offset. This can cau...

CVE-2024-42070 affecting package kernel for versions less than 5.15.162.2-1

CVE-2024-42070 affecting package kernel for versions less than 5.15.162.2-1. An upgraded version of the package is available that resolves this issue...

AZL-47204 CVE-2024-42229 affecting package kernel for versions less than 6.6.43.1-7

In the Linux kernel, the following vulnerability has been resolved: crypto: aead,cipher - zeroize key buffer after use I.G 9.7.B for FIPS 140-3 specifies that variables temporarily holding cryptographic information should be zeroized once they are no longer needed. Accomplish this by using...

AZL-47344 CVE-2024-42158 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: s390/pkey: Use kfreesensitive to fix Coccinelle warnings Replace memzeroexplicit and kfree with kfreesensitive to fix warnings reported by Coccinelle: WARNING opportunity for kfreesensitive/kvfreesensitive line 1506 WARNING...

AZL-47586 CVE-2024-42155 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: s390/pkey: Wipe copies of protected- and secure-keys Although the clear-key of neither protected- nor secure-keys is accessible, this key material should only be visible to the calling process. So wipe all copies of protected- or...

AZL-49302 CVE-2024-42122 affecting package kernel for versions less than 6.6.64.2-9

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add NULL pointer check for kzalloc Why & How Check return pointer of kzalloc before using it...

AZL-47143 CVE-2024-42073 affecting package kernel for versions less than 6.6.43.1-7

In the Linux kernel, the following vulnerability has been resolved: mlxsw: spectrumbuffers: Fix memory corruptions on Spectrum-4 systems The following two shared buffer operations make use of the Shared Buffer Status Register SBSR: devlink sb occupancy snapshot pci/0000:01:00.0 devlink sb occupan...

AZL-47125 CVE-2024-42066 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: drm/xe: Fix potential integer overflow in page size calculation Explicitly cast tbo-pagealignment to u64 before bit-shifting to prevent overflow when assigning to minpagesize...

CVE-2024-41098 ata: libata-core: Fix null pointer dereference on error

In the Linux kernel, the following vulnerability has been resolved: ata: libata-core: Fix null pointer dereference on error If the ataportalloc call in atahostalloc fails, atahostrelease will get called. However, the code in atahostrelease tries to free ataport struct members unconditionally, whi...