ROS-20260114-7325

A vulnerability in the sound/core/seq/oss/seqosssynth.c module of the Linux operating system kernel is related to synchronization errors when using a shared resource "Race Situation" when processing SysEx messages. Exploitation of the vulnerability could allow an attacker to cause a denial of...

Security update for the Linux Kernel (Live Patch 20 for SLE 15 SP5)

This update for the Linux Kernel 5.14.21-1505005583 fixes several issues. The following security issues were fixed: CVE-2024-53146: NFSD: Prevent a potential integer overflow bsc1234854. CVE-2024-53214: vfio/pci: Properly hide first-in-list PCIe extended capability bsc1235005. CVE-2024-53173:...

SUSE-SU-2025:02390-1 Security update for the Linux Kernel RT (Live Patch 0 for SLE 15 SP6)

This update for the Linux Kernel 6.4.0-1506008 fixes several issues. The following security issues were fixed: - CVE-2024-53146: NFSD: Prevent a potential integer overflow bsc1234854. - CVE-2024-53214: vfio/pci: Properly hide first-in-list PCIe extended capability bsc1235005. - CVE-2024-53173:...

kernel security and bug fix update

2.6.32-71.14.1.0.1.el6 - replace Red Hat with Oracle in files genkey and kernel.spec 2.6.32-71.14.1.el6 - kvm x86: zero kvmvcpuevents-interrupt.pad Marcelo Tosatti 665471 665409 CVE-2010-4525 2.6.32-71.13.1.el6 email6.RHSA-2011-0007 178L, 11970C written - scsi lpfc: Fixed crashes for NULL pnode...

kernel snd_seq_oss_synth_make_info leak

The sndseqosssynthmakeinfo function in sound/core/seq/oss/seqosssynth.c in the sound subsystem in the Linux kernel before 2.6.27-rc2 does not verify that the device number is within the range defined by maxsynthdev before returning certain data to the caller, which allows local users to obtain...