Lucene search
K
SusecveMost viewed

59380 matches found

SUSE CVE
SUSE CVE
•added 2025/12/31 12:31 a.m.•11 views

SUSE CVE-2022-50823

In the Linux kernel, the following vulnerability has been resolved: clk: tegra: Fix refcount leak in tegra114clockinit offindmatchingnode returns a node pointer with refcount incremented, we should use ofnodeput on it when not need anymore. Add missing ofnodeput to avoid refcount leak...

5.5CVSS6.4AI score0.00233EPSS
Exploits0References9
SUSE CVE
SUSE CVE
•added 2025/12/31 12:31 a.m.•11 views

SUSE CVE-2022-50839

In the Linux kernel, the following vulnerability has been resolved: jbd2: fix potential buffer head reference count leak As in 'jbd2fcwaitbufs' if buffer isn't uptodate, will return -EIO without update 'journal-jfcoff'. But 'jbd2fcreleasebufs' will release buffer head from 'jfcoff - 1' if 'bh' is...

5.5CVSS6.8AI score0.00206EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2025/12/31 12:31 a.m.•11 views

SUSE CVE-2022-50842

In the Linux kernel, the following vulnerability has been resolved: drm/virtio: Check whether transferred 2D BO is shmem Transferred 2D BO always must be a shmem BO. Add check for that to prevent NULL dereference if userspace passes a VRAM BO...

5.5CVSS6.5AI score0.00201EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2025/12/31 12:27 a.m.•11 views

SUSE CVE-2023-54236

In the Linux kernel, the following vulnerability has been resolved: net/netfailover: fix txq exceeding warning The failover txq is inited as 16 queues. when a packet is transmitted from the failover device firstly, the failover device will select the queue which is returned from the primary devic...

6.1CVSS6.5AI score0.0018EPSS
Exploits0References8
SUSE CVE
SUSE CVE
•added 2025/12/30 12:23 a.m.•11 views

SUSE CVE-2025-68973

In GnuPG before 2.4.9, armorfilter in g10/armor.c has two increments of an index variable where one is intended, leading to an out-of-bounds write for crafted input. For ExtendedLTS, 2.2.51 and later are fixed versions...

8CVSS6.8AI score0.00129EPSS
Exploits1References16
SUSE CVE
SUSE CVE
•added 2025/12/25 1:5 a.m.•11 views

SUSE CVE-2022-50701

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7921s: fix slab-out-of-bounds access in sdio host SDIO may need addtional 511 bytes to align bus operation. If the tailroom of this skb is not big enough, we would access invalid memory region. For low level...

5.5CVSS6.5AI score0.00167EPSS
Exploits0References5
SUSE CVE
SUSE CVE
•added 2025/12/25 1:5 a.m.•11 views

SUSE CVE-2022-50706

In the Linux kernel, the following vulnerability has been resolved: net/ieee802154: don't warn zero-sized rawsendmsg syzbot is hitting skbassertlen warning at devqueuexmit 1, for PFIEEE802154 socket's zero-sized rawsendmsg request is hitting devqueuexmit with skb-len == 0. Since PFIEEE802154...

5.5CVSS6.4AI score0.00173EPSS
Exploits0References4
SUSE CVE
SUSE CVE
•added 2025/12/25 1:4 a.m.•11 views

SUSE CVE-2022-50734

In the Linux kernel, the following vulnerability has been resolved: nvmem: core: Fix memleak in nvmemregister devsetname will alloc memory for nvmem-dev.kobj.name in nvmemregister, when nvmemvalidatekeepouts failed, nvmem's memory will be freed and return, but nobody will free memory for...

6.5AI score0.002EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/25 12:56 a.m.•11 views

SUSE CVE-2023-54048

In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxtre: Prevent handling any completions after qp destroy HW may generate completions that indicates QP is destroyed. Driver should not be scheduling any more completion handlers for this QP, after the QP is destroyed. Since...

5.5CVSS6.3AI score0.00206EPSS
Exploits0References22
SUSE CVE
SUSE CVE
•added 2025/12/25 12:54 a.m.•11 views

SUSE CVE-2023-54140

In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix WARNING in markbufferdirty due to discarded buffer reuse A syzbot stress test using a corrupted disk image reported that markbufferdirty called from nilfsmarkinodedirty or nilfspalloccommitallocentry may output a kern...

3.3CVSS6.4AI score0.00195EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2025/12/25 12:23 a.m.•11 views

SUSE CVE-2025-68726

In the Linux kernel, the following vulnerability has been resolved: crypto: aead - Fix reqsize handling Commit afddce13ce81d "crypto: api - Add reqsize to cryptoalg" introduced crareqsize field in cryptoalg struct to replace type specific reqsize fields. It looks like this was introduced...

5.5CVSS6.6AI score0.00155EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/20 12:25 a.m.•11 views

SUSE CVE-2025-68297

In the Linux kernel, the following vulnerability has been resolved: ceph: fix crash in processv2sparseread for encrypted directories The crash in processv2sparseread for fscrypt-encrypted directories has been reported. Issue takes place for Ceph msgr2 protocol in secure mode. It can be reproduced...

5.5CVSS6.4AI score0.00176EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2025/12/19 1:7 a.m.•11 views

SUSE CVE-2024-29371

In jose4j before 0.9.6, an attacker can cause a Denial-of-Service DoS condition by crafting a malicious JSON Web Encryption JWE token with an exceptionally high compression ratio. When this token is processed by the server, it results in significant memory allocation and processing time during...

7.5CVSS5.4AI score0.00244EPSS
Exploits1References6
SUSE CVE
SUSE CVE
•added 2025/12/17 12:24 a.m.•11 views

SUSE CVE-2025-68241

In the Linux kernel, the following vulnerability has been resolved: ipv4: route: Prevent rtbindexception from rebinding stale fnhe The sit driver's packet transmission path calls: sittunnelxmit - updateorcreatefnhe, which lead to fnheremoveoldest being called to delete entries exceeding...

5.5CVSS6.2AI score0.00165EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2025/12/10 12:39 a.m.•11 views

SUSE CVE-2022-50645

In the Linux kernel, the following vulnerability has been resolved: EDAC/i10nm: fix refcount leak in pcigetdevwrapper As the comment of pcigetdomainbusandslot says, it returns a PCI device with refcount incremented, so it doesn't need to call an extra pcidevget in pcigetdevwrapper, and the PCI...

3.3CVSS6.5AI score0.00173EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/10 12:38 a.m.•11 views

SUSE CVE-2022-50650

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix reference state management for synchronous callbacks Currently, verifier verifies callback functions sync and async as if they will be executed once, i.e. it explores execution state as if the function was being called...

6CVSS6.5AI score0.00181EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/10 12:38 a.m.•11 views

SUSE CVE-2022-50659

In the Linux kernel, the following vulnerability has been resolved: hwrng: geode - Fix PCI device refcount leak foreachpcidev is implemented by pcigetdevice. The comment of pcigetdevice says that it will increase the reference count for the returned pcidev and also decrease the reference count fo...

6.4AI score0.00233EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/10 12:38 a.m.•11 views

SUSE CVE-2022-50661

In the Linux kernel, the following vulnerability has been resolved: seccomp: Move copyseccomp to no failure path. Our syzbot instance reported memory leaks in doseccomp 0, similar to the report 1. It shows that we miss freeing struct seccompfilter and some objects included in it. We can reproduce...

5.5CVSS6.4AI score0.00206EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2025/12/09 12:31 a.m.•11 views

SUSE CVE-2022-50617

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/powerplay/psm: Fix memory leak in power state init Commit 902bc65de0b3 "drm/amdgpu/powerplay/psm: return an error in power state init" made the power state init function return early in case of failure to get an entry...

4.4CVSS6.5AI score0.00168EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2025/12/06 12:23 a.m.•11 views

SUSE CVE-2025-40221

In the Linux kernel, the following vulnerability has been resolved: media: pci: mg4b: fix uninitialized iio scan data Fix potential leak of uninitialized stack data to userspace by ensuring that the scan structure is zeroed before use...

6.3CVSS6.5AI score0.00161EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2025/11/25 12:25 a.m.•11 views

SUSE CVE-2025-40212

In the Linux kernel, the following vulnerability has been resolved: nfsd: fix refcount leak in nfsdsetfhdentry nfsd exports a "pseudo root filesystem" which is used by NFSv4 to find the various exported filesystems using LOOKUP requests from a known root filehandle. NFSv3 uses the MOUNT protocol ...

7CVSS6.5AI score0.00161EPSS
Exploits0References17
SUSE CVE
SUSE CVE
•added 2025/11/14 12:25 a.m.•11 views

SUSE CVE-2025-40118

In the Linux kernel, the following vulnerability has been resolved: scsi: pm80xx: Fix array-index-out-of-of-bounds on rmmod Since commit f7b705c238d1 "scsi: pm80xx: Set phyattached to zero when device is gone" UBSAN reports: UBSAN: array-index-out-of-bounds in drivers/scsi/pm8001/pm8001sas.c:786:...

6.1CVSS6.3AI score0.00188EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2025/11/14 12:24 a.m.•11 views

SUSE CVE-2025-40164

In the Linux kernel, the following vulnerability has been resolved: usbnet: Fix using smpprocessorid in preemptible code warnings Syzbot reported the following warning: BUG: using smpprocessorid in preemptible 00000000 code: dhcpcd/2879 caller is usbnetskbreturn+0x74/0x490...

4.7CVSS6.7AI score0.00171EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2025/11/13 12:24 a.m.•11 views

SUSE CVE-2025-40125

In the Linux kernel, the following vulnerability has been resolved: blk-mq: check kobject stateinsysfs before deleting in blkmqunregisterhctx In blkmqupdatenrhwqueues the return value of blkmqsysfsregisterhctxs is not checked. If sysfs creation for hctx fails, later changing the number of hwqueue...

6.5AI score0.00188EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/11/13 12:24 a.m.•11 views

SUSE CVE-2025-40149

In the Linux kernel, the following vulnerability has been resolved: tls: Use skdstget and dstdevrcu in getnetdevforsock. getnetdevforsock is called during setsockopt, so not under RCU. Using skdstgetsk-dev could trigger UAF. Let's use skdstget and dstdevrcu. Note that the only -ndoskgetlowerdev...

6.3CVSS6.5AI score0.00142EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2025/10/29 12:24 a.m.•11 views

SUSE CVE-2025-40078

In the Linux kernel, the following vulnerability has been resolved: bpf: Explicitly check accesses to bpfsockaddr Syzkaller found a kernel warning on the following sockaddr program: 0: r0 = 0 1: r2 = u32 r1 +60 2: exit which triggers: verifier bug: error during ctx access conversion 0 This is...

5.5CVSS6.4AI score0.00197EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2025/10/24 11:46 p.m.•11 views

SUSE CVE-2024-45003

In the Linux kernel, the following vulnerability has been resolved: vfs: Don't evict inode under the inode lru traversing context The inode reclaiming processSee function pruneicachesb collects all reclaimable inodes and mark them with IFREEING flag at first, at that time, other processes will be...

5.5CVSS6.2AI score0.00172EPSS
Exploits0References18
SUSE CVE
SUSE CVE
•added 2025/10/24 11:24 p.m.•11 views

SUSE CVE-2025-40019

In the Linux kernel, the following vulnerability has been resolved: crypto: essiv - Check ssize for decryption and in-place encryption Move the ssize check to the start in essivaeadcrypt so that it's also checked for decryption and in-place encryption...

7CVSS6.5AI score0.00274EPSS
Exploits1References26
SUSE CVE
SUSE CVE
•added 2025/10/21 11:32 p.m.•11 views

SUSE CVE-2025-10678

NetBird VPN when installed using vendor's provided script failed to remove or change default password of an admin account created by ZITADEL. This issue affects instances installed using vendor's provided script. This issue may affect instances created with Docker if the default password was not...

9.3CVSS7.1AI score0.0038EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/10/09 11:23 p.m.•11 views

SUSE CVE-2025-39955

In the Linux kernel, the following vulnerability has been resolved: tcp: Clear tcpsksk-fastopenrsk in tcpdisconnect. syzbot reported the splat below where a socket had tcpsksk-fastopenrsk in the TCPESTABLISHED state. 0 syzbot reused the server-side TCP Fast Open socket as a new client before the...

6.1CVSS6.4AI score0.00144EPSS
Exploits0References23
SUSE CVE
SUSE CVE
•added 2025/10/08 11:22 p.m.•11 views

SUSE CVE-2025-58183

tar.Reader does not set a maximum size on the number of sparse region data blocks in GNU tar pax 1.0 sparse files. A maliciously-crafted archive containing a large number of sparse regions can cause a Reader to read an unbounded amount of data from the archive into memory. When reading from a...

3.3CVSS6.8AI score0.00419EPSS
Exploits0References32
SUSE CVE
SUSE CVE
•added 2025/10/05 2:57 a.m.•11 views

SUSE CVE-2023-6378

A serialization vulnerability in logback receiver component part of logback version 1.4.11 allows an attacker to mount a Denial-Of-Service attack by sending poisoned data...

7.5CVSS7.2AI score0.009EPSS
Exploits0References2
SUSE CVE
SUSE CVE
•added 2025/10/02 11:58 p.m.•11 views

SUSE CVE-2023-53487

In the Linux kernel, the following vulnerability has been resolved: powerpc/rtasflash: allow user copy to flash block cache objects With hardened usercopy enabled CONFIGHARDENEDUSERCOPY=y, using the /proc/powerpc/rtas/firmwareupdate interface to prepare a system firmware update yields a BUG: kern...

5.5CVSS6.4AI score0.00153EPSS
Exploits0References19
SUSE CVE
SUSE CVE
•added 2025/09/19 11:23 p.m.•11 views

SUSE CVE-2025-39850

In the Linux kernel, the following vulnerability has been resolved: vxlan: Fix NPD in arp,neighreduce when using nexthop objects When the "proxy" option is enabled on a VXLAN device, the device will suppress ARP requests and IPv6 Neighbor Solicitation messages if it is able to reply on behalf of...

5.5CVSS6.3AI score0.00135EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2025/09/18 11:40 p.m.•11 views

SUSE CVE-2023-53230

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix warning in cifssmb3domount This fixes the following warning reported by kernel test robot fs/smb/client/cifsfs.c:982 cifssmb3domount warn: possible memory leak of 'cifssb'...

5.5CVSS6.5AI score0.00145EPSS
Exploits0References19
SUSE CVE
SUSE CVE
•added 2025/09/16 11:23 p.m.•11 views

SUSE CVE-2025-39835

In the Linux kernel, the following vulnerability has been resolved: xfs: do not propagate ENODATA disk errors into xattr code ENODATA aka ENOATTR has a very specific meaning in the xfs xattr code; namely, that the requested attribute name could not be found. However, a medium error from disk may...

5.5CVSS6.5AI score0.00157EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2025/09/15 11:27 p.m.•11 views

SUSE CVE-2023-53245

In the Linux kernel, the following vulnerability has been resolved: scsi: storvsc: Fix handling of virtual Fibre Channel timeouts Hyper-V provides the ability to connect Fibre Channel LUNs to the host system and present them in a guest VM as a SCSI device. I/O to the vFC device is handled by the...

5.5CVSS6.2AI score0.00137EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2025/09/15 11:27 p.m.•11 views

SUSE CVE-2023-53254

In the Linux kernel, the following vulnerability has been resolved: cacheinfo: Fix sharedcpumap to handle shared caches at different levels The cacheinfo sets up the sharedcpumap by checking whether the caches with the same index are shared between CPUs. However, this will trigger...

6.3CVSS6.5AI score0.00138EPSS
Exploits0References11
SUSE CVE
SUSE CVE
•added 2025/09/08 11:22 p.m.•11 views

SUSE CVE-2025-39732

In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: fix sleeping-in-atomic in ath11kmacopsetbitratemask ath11kmacdisablepeerfixedrate is passed as the iterator to ieee80211iteratestationsatomic. Note in this case the iterator is required to be atomic, however...

5.5CVSS6.5AI score0.00135EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2025/09/04 11:23 p.m.•11 views

SUSE CVE-2025-38729

In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Validate UAC3 power domain descriptors, too UAC3 power domain descriptors need to be verified with its variable bLength for avoiding the unexpected OOB accesses by malicious firmware, too...

5.5CVSS6.5AI score0.00175EPSS
Exploits0References23
SUSE CVE
SUSE CVE
•added 2025/08/22 11:28 p.m.•11 views

SUSE CVE-2025-38660

In the Linux kernel, the following vulnerability has been resolved: ceph parselongname: strrchr expects NUL-terminated string ... and parselongname is not guaranteed that. That's the reason why it uses kmemdupnul to build the argument for kstrtou64; the problem is, kstrtou64 is not the only thing...

5.5CVSS6.5AI score0.00145EPSS
Exploits0References22
SUSE CVE
SUSE CVE
•added 2025/08/22 11:28 p.m.•11 views

SUSE CVE-2025-38663

In the Linux kernel, the following vulnerability has been resolved: nilfs2: reject invalid file types when reading inodes To prevent inodes with invalid file types from tripping through the vfs and causing malfunctions or assertion failures, add a missing sanity check when reading an inode from a...

5.5CVSS6.4AI score0.00159EPSS
Exploits0References16
SUSE CVE
SUSE CVE
•added 2025/08/16 11:22 p.m.•11 views

SUSE CVE-2025-38515

In the Linux kernel, the following vulnerability has been resolved: drm/sched: Increment job count before swapping tail spsc queue A small race exists between spscqueuepush and the run-job worker, in which spscqueuepush may return not-first while the run-job worker has already idled due to the jo...

4.7CVSS7AI score0.00141EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2025/07/25 11:22 p.m.•11 views

SUSE CVE-2025-38456

In the Linux kernel, the following vulnerability has been resolved: ipmi:msghandler: Fix potential memory corruption in ipmicreateuser The "intf" list iterator is an invalid pointer if the correct "intf-intfnum" is not found. Calling atomicdec&intf-nrusers on and invalid pointer will lead to memo...

6.1CVSS6.7AI score0.00155EPSS
Exploits0References22
SUSE CVE
SUSE CVE
•added 2025/07/10 11:22 p.m.•11 views

SUSE CVE-2025-38307

In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: avs: Verify content returned by parseintarray The first element of the returned array stores its length. If it is 0, any manipulation beyond the element at index 0 ends with null-ptr-deref...

5.5CVSS6.5AI score0.00145EPSS
Exploits0References22
SUSE CVE
SUSE CVE
•added 2025/07/10 11:22 p.m.•11 views

SUSE CVE-2025-38312

In the Linux kernel, the following vulnerability has been resolved: fbdev: core: fbcvt: avoid division by 0 in fbcvthperiod In fbfindmodecvt, iff mode-refresh somehow happens to be 0x80000000, cvt.frefresh will become 0 when multiplying it by 2 due to overflow. It's then passed to fbcvthperiod,...

4.4CVSS6.4AI score0.0015EPSS
Exploits0References23
SUSE CVE
SUSE CVE
•added 2025/07/10 11:22 p.m.•11 views

SUSE CVE-2025-38348

In the Linux kernel, the following vulnerability has been resolved: wifi: p54: prevent buffer-overflow in p54rxeepromreadback Robert Morris reported: |If a malicious USB device pretends to be an Intersil p54 wifi |interface and generates an eepromreadback message with a large |eeprom-v1.len,...

4.6CVSS6.5AI score0.00167EPSS
Exploits0References22
SUSE CVE
SUSE CVE
•added 2025/07/09 11:23 p.m.•11 views

SUSE CVE-2025-38239

In the Linux kernel, the following vulnerability has been resolved: scsi: megaraidsas: Fix invalid node index On a system with DRAM interleave enabled, out-of-bound access is detected: megaraidsas 0000:3f:00.0: requested/available msix 128/128 pollqueue 0 ------------ cut here ------------ UBSAN:...

6.1CVSS7.9AI score0.00146EPSS
Exploits0References16
SUSE CVE
SUSE CVE
•added 2025/07/04 11:21 p.m.•11 views

SUSE CVE-2025-38220

In the Linux kernel, the following vulnerability has been resolved: ext4: only dirty folios when data journaling regular files fstest generic/388 occasionally reproduces a crash that looks as follows: BUG: kernel NULL pointer dereference, address: 0000000000000000 ... Call Trace:...

5.3CVSS6.6AI score0.00136EPSS
Exploits0References23
SUSE CVE
SUSE CVE
•added 2025/07/04 11:21 p.m.•11 views

SUSE CVE-2025-38234

In the Linux kernel, the following vulnerability has been resolved: sched/rt: Fix race in pushrttask Overview ======== When a CPU chooses to call pushrttask and picks a task to push to another CPU's runqueue then it will call findlocklowestrq method which would take a double lock on both CPUs'...

4.7CVSS6.3AI score0.0013EPSS
Exploits0References30
Total number of security vulnerabilities5000