53 matches found
CVE-2024-36961 thermal/debugfs: Fix two locking issues with thermal zone debug
In the Linux kernel, the following vulnerability has been resolved: thermal/debugfs: Fix two locking issues with thermal zone debug With the current thermal zone locking arrangement in the debugfs code, user space can open the "mitigations" file for a thermal zone before the zone's debugfs pointe...
CVE-2024-35990
In the Linux kernel, the following vulnerability has been resolved: dma: xilinxdpdma: Fix locking There are several places where either chan-lock or chan-vchan.lock was not held. Add appropriate locking. This fixes lockdep warnings like 31.077578 ------------ cut here ------------ 31.077831...
CVE-2024-35990 dma: xilinx_dpdma: Fix locking
In the Linux kernel, the following vulnerability has been resolved: dma: xilinxdpdma: Fix locking There are several places where either chan-lock or chan-vchan.lock was not held. Add appropriate locking. This fixes lockdep warnings like 31.077578 ------------ cut here ------------ 31.077831...
SUSE-SU-2022:2779-1 Security update for the Linux Kernel (Live Patch 26 for SLE 15 SP2)
This update for the Linux Kernel 5.3.18-15020024112 fixes several issues. The following security issues were fixed: - CVE-2022-1679: Fixed a use-after-free in the Atheros wireless driver in the way a user forces the ath9khtcwaitfortarget function to fail with some input messages bsc1199487. -...
GSD-2022-1003907 ipv6: fix locking issues with loops over idev->addr_list
ipv6: fix locking issues with loops over idev-addrlist This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.19.247 by commit...
GSD-2022-1003792 ipv6: fix locking issues with loops over idev->addr_list
ipv6: fix locking issues with loops over idev-addrlist This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.198 by commit...
GSD-2022-1003410 ipv6: fix locking issues with loops over idev->addr_list
ipv6: fix locking issues with loops over idev-addrlist This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.46 by commit...
GSD-2022-1003156 ipv6: fix locking issues with loops over idev->addr_list
ipv6: fix locking issues with loops over idev-addrlist This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.14 by commit...
GSD-2022-1002837 ipv6: fix locking issues with loops over idev->addr_list
ipv6: fix locking issues with loops over idev-addrlist This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.18.3 by commit...
SUSE-SU-2021:0408-1 Security update for the Linux Kernel (Live Patch 31 for SLE 12 SP3)
This update for the Linux Kernel 4.4.180-94116 fixes several issues. The following security issues were fixed: - CVE-2020-36158: Fixed a potential remote code execution in the Marvell mwifiex driver bsc1180562. - CVE-2020-0465: Fixed multiple missing bounds checks in hid-multitouch.c that could...
OPENSUSE-SU-2019:2510-1 Security update for qemu
This update for qemu fixes the following issues: qemu was updated to v3.1.1.1, a stable, bug-fix-only release, which includes 2 fixes we already carry, as well as one additional use- after-free fix in slirp. CVE-2018-20126 bsc1119991, CVE-2019-14378 bsc1143794, and CVE-2019-15890 bsc1149811...
Integer Overflows
The kernel packages contain the Linux kernel, the core of any Linux operating system. A NULL pointer dereference flaw was found in the way the Linux kernel's Stream Control Transmission Protocol SCTP implementation handled simultaneous connections between the same hosts. A remote attacker could u...
SuSE 10 Security Update : xscreensaver (ZYPP Patch Number 5334)
Following security problem is fixed by this patch : - When getpwuid fails due to dropped network on NIS accounts fail instead of silently disabling locking and just blanking. CVE-2008-1683 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc...