29 matches found
CVE-2024-26817 amdkfd: use calloc instead of kzalloc to avoid integer overflow
In the Linux kernel, the following vulnerability has been resolved: amdkfd: use calloc instead of kzalloc to avoid integer overflow This uses calloc instead of doing the multiplication which might overflow...
SUSE-SU-2024:0855-1 Security update for the Linux Kernel
The SUSE Linux Enterprise 15 SP5 Azure kernel was updated to receive various security and bugfixes. The following security bugs were fixed: - CVE-2023-6270: Fixed a use-after-free bug in aoecmdcfgpkts bsc1218562. - CVE-2023-52559: Fixed a bug by avoiding memory allocation in iommususpend...
CVE-2023-52607 powerpc/mm: Fix null-pointer dereference in pgtable_cache_add
In the Linux kernel, the following vulnerability has been resolved: powerpc/mm: Fix null-pointer dereference in pgtablecacheadd kasprintf returns a pointer to dynamically allocated memory which can be NULL upon failure. Ensure the allocation was successful by checking the pointer validity...
CVE-2021-46966
In the Linux kernel, the following vulnerability has been resolved: ACPI: custommethod: fix potential use-after-free issue In cmwrite, buf is always freed when reaching the end of the function. If the requested count is less than table.length, the allocated buffer will be freed but subsequent cal...
SUSE-SU-2022:1516-1 Security update for libwmf
This update for libwmf fixes the following issues: libwmf was updated to 0.2.12: upstream changed to fork from Fedora: https://github.com/caolanm/libwmf merged all the pending fixes merge in fixes for libgd CVE-2019-6978 bsc1123522 fixed memory allocation failure CVE-2016-9011 Fixes for %libexecd...
SUSE-SU-2022:0496-1 Security update for tiff
This update for tiff fixes the following issues: - CVE-2017-17095: Fixed DoS in tools/pal2rgb.c in pal2rgb bsc1071031. - CVE-2019-17546: Fixed integer overflow that potentially causes a heap-based buffer overflow via a crafted RGBA image bsc1154365. - CVE-2020-19131: Fixed buffer overflow in...
OPENSUSE-SU-2020:1433-1 Security update for docker-distribution
This update for docker-distribution fixes the following issues: - Enable build on %arm which include armv6, not only on armv7 - Enable ppc64le - Use correct URL to project - Remove fillup, we don't ship a sysconfig file - Correct systemd requires - Enable build on ARM - Upgraded to 2.7.1 - Suppor...
SUSE-SU-2018:2141-1 Security update for libvirt
This update for libvirt fixes the following issues: Security issues fixed: - CVE-2018-3639: Add support for 'ssbd' and 'virt-ssbd' CPUID feature bits to address V4 Speculative Store Bypass aka 'Memory Disambiguation' bsc1092885. - CVE-2018-1064: Fix denial of service problem during reading from...
Unbreakable Enterprise kernel security update
4.1.12-124.17.1 - block: update integrity interval after queue limits change Ritika Srivastava Orabug: 27586756 - dccp: check sk for closed state in dccpsendmsg Alexey Kodanev Orabug: 28001529 CVE-2017-8824 CVE-2018-1130 - net/rds: Implement ARP flushing correctly Hakon Bugge Orabug: 28219857 -...