135 matches found
CVE-2025-38495
In the Linux kernel, the following vulnerability has been resolved: HID: core: ensure the allocated report buffer can contain the reserved report ID When the report ID is not used, the low level transport drivers expect the first byte to be 0. However, currently the allocated buffer not account f...
PT-2025-31091
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.10.244-1 Debian 11 bullseye Linux kernel versions prior to 6.1.147-1 Debian bookworm Linux kernel versions prior to 6.12.41-1 Debian trixie Linux kernel versions prior to 6.1.153-1deb11u1 Debian 11 bullseye - 6...
SUSE SLES12 Security Update : kernel (Live Patch 62 for SLE 12 SP5) (SUSE-SU-2025:0896-1)
The remote SUSE Linux SLES12 host has a package installed that is affected by a vulnerability as referenced in the SUSE- SU-2025:0896-1 advisory. This update for the Linux Kernel 4.12.14-122234 fixes one issue. The following security issue was fixed: - CVE-2024-50302: HID: core: zero-initialize t...
SUSE-SU-2025:0962-1 Security update for the Linux Kernel (Live Patch 5 for SLE 15 SP6)
This update for the Linux Kernel 6.4.0-1506002325 fixes several issues. The following security issues were fixed: - CVE-2024-56648: net: hsr: avoid potential out-of-bound access in fillframeinfo bsc1235452. - CVE-2024-50302: HID: core: zero-initialize the report buffer bsc1233679...
SUSE-SU-2025:0946-1 Security update for the Linux Kernel (Live Patch 32 for SLE 15 SP4)
This update for the Linux Kernel 5.14.21-15040024136 fixes several issues. The following security issues were fixed: - CVE-2024-46818: drm/amd/display: Check gpioid before used as array index bsc1231204. - CVE-2024-46815: drm/amd/display: Check numvalidsets before accessing readerwmsets bsc123119...
Security update for the Linux Kernel (Live Patch 41 for SLE 15 SP3)
This update for the Linux Kernel 5.3.18-15030059150 fixes several issues. The following security issues were fixed: CVE-2024-46818: drm/amd/display: Check gpioid before used as array index bsc1231204. CVE-2021-47261: Fix initializing CQ fragments buffer bsc1224954 CVE-2024-50302: HID: core:...
SUSE-SU-2025:0924-1 Security update for the Linux Kernel (Live Patch 61 for SLE 12 SP5)
This update for the Linux Kernel 4.12.14-122231 fixes several issues. The following security issues were fixed: - CVE-2024-46818: drm/amd/display: Check gpioid before used as array index bsc1231204. - CVE-2024-50302: HID: core: zero-initialize the report buffer bsc1233679...
SUSE-SU-2025:0908-1 Security update for the Linux Kernel (Live Patch 54 for SLE 12 SP5)
This update for the Linux Kernel 4.12.14-122201 fixes several issues. The following security issues were fixed: - CVE-2024-46818: drm/amd/display: Check gpioid before used as array index bsc1231204. - CVE-2024-50302: HID: core: zero-initialize the report buffer bsc1233679. - CVE-2022-48792: scsi:...
Security update for the Linux Kernel (Live Patch 54 for SLE 12 SP5)
This update for the Linux Kernel 4.12.14-122201 fixes several issues. The following security issues were fixed: CVE-2024-46818: drm/amd/display: Check gpioid before used as array index bsc1231204. CVE-2024-50302: HID: core: zero-initialize the report buffer bsc1233679. CVE-2022-48792: scsi: pm800...
Security update for the Linux Kernel (Live Patch 50 for SLE 15 SP3)
This update for the Linux Kernel 5.3.18-15030059182 fixes one issue. The following security issue was fixed: CVE-2024-50302: HID: core: zero-initialize the report buffer bsc1233679. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdat...
SUSE-SU-2025:0907-1 Security update for the Linux Kernel (Live Patch 50 for SLE 15 SP3)
This update for the Linux Kernel 5.3.18-15030059182 fixes one issue. The following security issue was fixed: - CVE-2024-50302: HID: core: zero-initialize the report buffer bsc1233679...
CLSA-2025-1742322442 kernel: Fix of 5 CVEs
HID: core: zero-initialize the report buffer CVE-2024-50302 - Revert "drm/amdgpu: add missing size check in amdgpudebugfsgprwaveread" - drm/amd/amdgpu: Fix GPR read from debugfs v2 CVE-2024-50282 - USB: serial: ioedgeport: fix use after free in debug printk CVE-2024-50267 - wifi: iwlegacy: Clear...
Security update for the Linux Kernel (Live Patch 62 for SLE 12 SP5)
This update for the Linux Kernel 4.12.14-122234 fixes one issue. The following security issue was fixed: CVE-2024-50302: HID: core: zero-initialize the report buffer bsc1233679. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or...
SUSE-SU-2025:0896-1 Security update for the Linux Kernel (Live Patch 62 for SLE 12 SP5)
This update for the Linux Kernel 4.12.14-122234 fixes one issue. The following security issue was fixed: - CVE-2024-50302: HID: core: zero-initialize the report buffer bsc1233679...
SUSE-SU-2025:0888-1 Security update for the Linux Kernel RT (Live Patch 4 for SLE 15 SP6)
This update for the Linux Kernel 6.4.0-1506001014 fixes several issues. The following security issues were fixed: - CVE-2024-56648: net: hsr: avoid potential out-of-bound access in fillframeinfo bsc1235452. - CVE-2024-50302: HID: core: zero-initialize the report buffer bsc1233679...
RHEL 8 : kernel (RHSA-2025:2489)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:2489 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: HID: core: zero-initialize the...
kernel: HID: core: zero-initialize the report buffer
A vulnerability was found in the Linux kernel's driver for Human Interface Devices. This flaw allows an attacker to use a malicious input device to read information from the report buffer. This could be used to leak kernel memory, enabling the exploitation of additional vulnerabilities...
Important: Red Hat Security Advisory: kernel security update
An update for kernel is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...
kernel: HID: core: zero-initialize the report buffer
A vulnerability was found in the Linux kernel's driver for Human Interface Devices. This flaw allows an attacker to use a malicious input device to read information from the report buffer. This could be used to leak kernel memory, enabling the exploitation of additional vulnerabilities...
Azure Linux 3.0 Security Update: kernel (CVE-2024-50302)
The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-50302 advisory. - In the Linux kernel, the following vulnerability has been resolved: HID: core: zero-initialize the report...