Lucene search
K
SusecveMost viewed

59854 matches found

SUSE CVE
SUSE CVE
•added 2025/08/16 11:22 p.m.•11 views

SUSE CVE-2025-38515

In the Linux kernel, the following vulnerability has been resolved: drm/sched: Increment job count before swapping tail spsc queue A small race exists between spscqueuepush and the run-job worker, in which spscqueuepush may return not-first while the run-job worker has already idled due to the jo...

4.7CVSS7AI score0.00141EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2025/07/25 11:23 p.m.•11 views

SUSE CVE-2025-38365

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix a race between renames and directory logging We have a race between a rename and directory inode logging that if it happens and we crash/power fail before the rename completes, the next time the filesystem is mounted,...

6.3CVSS6.6AI score0.00114EPSS
Exploits0References22
SUSE CVE
SUSE CVE
•added 2025/07/25 11:22 p.m.•11 views

SUSE CVE-2025-38456

In the Linux kernel, the following vulnerability has been resolved: ipmi:msghandler: Fix potential memory corruption in ipmicreateuser The "intf" list iterator is an invalid pointer if the correct "intf-intfnum" is not found. Calling atomicdec&intf-nrusers on and invalid pointer will lead to memo...

6.1CVSS6.7AI score0.00155EPSS
Exploits0References22
SUSE CVE
SUSE CVE
•added 2025/07/10 11:22 p.m.•11 views

SUSE CVE-2025-38307

In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: avs: Verify content returned by parseintarray The first element of the returned array stores its length. If it is 0, any manipulation beyond the element at index 0 ends with null-ptr-deref...

5.5CVSS6.5AI score0.00145EPSS
Exploits0References22
SUSE CVE
SUSE CVE
•added 2025/07/10 11:22 p.m.•11 views

SUSE CVE-2025-38312

In the Linux kernel, the following vulnerability has been resolved: fbdev: core: fbcvt: avoid division by 0 in fbcvthperiod In fbfindmodecvt, iff mode-refresh somehow happens to be 0x80000000, cvt.frefresh will become 0 when multiplying it by 2 due to overflow. It's then passed to fbcvthperiod,...

4.4CVSS6.4AI score0.0015EPSS
Exploits0References23
SUSE CVE
SUSE CVE
•added 2025/07/10 11:22 p.m.•11 views

SUSE CVE-2025-38348

In the Linux kernel, the following vulnerability has been resolved: wifi: p54: prevent buffer-overflow in p54rxeepromreadback Robert Morris reported: |If a malicious USB device pretends to be an Intersil p54 wifi |interface and generates an eepromreadback message with a large |eeprom-v1.len,...

4.6CVSS6.5AI score0.00167EPSS
Exploits0References22
SUSE CVE
SUSE CVE
•added 2025/07/09 11:23 p.m.•11 views

SUSE CVE-2025-38239

In the Linux kernel, the following vulnerability has been resolved: scsi: megaraidsas: Fix invalid node index On a system with DRAM interleave enabled, out-of-bound access is detected: megaraidsas 0000:3f:00.0: requested/available msix 128/128 pollqueue 0 ------------ cut here ------------ UBSAN:...

6.1CVSS7.9AI score0.00146EPSS
Exploits0References16
SUSE CVE
SUSE CVE
•added 2025/07/04 11:21 p.m.•11 views

SUSE CVE-2025-38220

In the Linux kernel, the following vulnerability has been resolved: ext4: only dirty folios when data journaling regular files fstest generic/388 occasionally reproduces a crash that looks as follows: BUG: kernel NULL pointer dereference, address: 0000000000000000 ... Call Trace:...

5.3CVSS6.6AI score0.00136EPSS
Exploits0References23
SUSE CVE
SUSE CVE
•added 2025/06/19 3:45 a.m.•11 views

SUSE CVE-2022-49948

In the Linux kernel, the following vulnerability has been resolved: vt: Clear selection before changing the font When changing the console font with ioctlKDFONTOP the new font size can be bigger than the previous font. A previous selection may thus now be outside of the new screen size and thus...

5.5CVSS6.3AI score0.00208EPSS
Exploits0References12
SUSE CVE
SUSE CVE
•added 2025/06/19 3:45 a.m.•11 views

SUSE CVE-2022-49950

In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: fix memory corruption on open The probe session-duplication overflow check incremented the session count also when there were no more available sessions so that memory beyond the fixed-size slab-allocated session...

5.5CVSS6.6AI score0.00201EPSS
Exploits0References11
SUSE CVE
SUSE CVE
•added 2025/06/19 3:43 a.m.•11 views

SUSE CVE-2022-50054

In the Linux kernel, the following vulnerability has been resolved: iavf: Fix NULL pointer dereference in iavfgetlinkksettings Fix possible NULL pointer dereference, due to freeing of adapter-vfres in iavfinitgetresources. Previous commit introduced a regression, where receiving...

5.5CVSS6AI score0.00137EPSS
Exploits0References6
SUSE CVE
SUSE CVE
•added 2025/06/19 3:42 a.m.•11 views

SUSE CVE-2022-50092

In the Linux kernel, the following vulnerability has been resolved: dm thin: fix use-after-free crash in dmsmregisterthresholdcallback Fault inject on pool metadata device reports: BUG: KASAN: use-after-free in dmpoolregistermetadatathreshold+0x40/0x80 Read of size 8 at addr ffff8881b9d50068 by...

5.5CVSS6.3AI score0.002EPSS
Exploits0References12
SUSE CVE
SUSE CVE
•added 2025/06/19 3:40 a.m.•11 views

SUSE CVE-2022-50135

In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix BUG: KASAN: null-ptr-deref in rxeqpdocleanup The function rxecreateqp calls rxeqpfrominit. If some error occurs, the error handler of function rxeqpfrominit will set both scq and rcq to NULL. Then rxecreateqp calls...

5.5CVSS6.3AI score0.00175EPSS
Exploits0References6
SUSE CVE
SUSE CVE
•added 2025/06/19 3:39 a.m.•11 views

SUSE CVE-2022-50198

In the Linux kernel, the following vulnerability has been resolved: ARM: OMAP2+: Fix refcount leak in omap3xxxprmlateinit offindmatchingnode returns a node pointer with refcount incremented, we should use ofnodeput on it when not need anymore. Add missing ofnodeput to avoid refcount leak...

5.5CVSS6.3AI score0.00198EPSS
Exploits0References9
SUSE CVE
SUSE CVE
•added 2025/06/19 3:14 a.m.•11 views

SUSE CVE-2025-38053

In the Linux kernel, the following vulnerability has been resolved: idpf: fix null-ptr-deref in idpffeaturescheck idpffeaturescheck is used to validate the TX packet. skb header length is compared with the hardware supported value received from the device control plane. The value is stored in the...

5.5CVSS7.7AI score0.00154EPSS
Exploits0References16
SUSE CVE
SUSE CVE
•added 2025/06/05 3:23 a.m.•11 views

SUSE CVE-2025-4330

Allows the extraction filter to be ignored, allowing symlink targets to point outside the destination directory, and the modification of some file metadata. You are affected by this vulnerability if using the tarfile module to extract untrusted tar archives using TarFile.extractall or...

8.2CVSS7.6AI score0.00767EPSS
Exploits2References23
SUSE CVE
SUSE CVE
•added 2025/05/21 12:46 a.m.•11 views

SUSE CVE-2025-37957

In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Forcibly leave SMM mode on SHUTDOWN interception Previously, commit ed129ec9057f "KVM: x86: forcibly leave nested mode on vCPU reset" addressed an issue where a triple fault occurring in nested mode could lead to...

5.5CVSS7.5AI score0.00153EPSS
Exploits0References16
SUSE CVE
SUSE CVE
•added 2025/05/21 12:46 a.m.•11 views

SUSE CVE-2025-37958

In the Linux kernel, the following vulnerability has been resolved: mm/hugememory: fix dereferencing invalid pmd migration entry When migrating a THP, concurrent access to the PMD migration entry during a deferred split scan can lead to an invalid address access, as illustrated below. To prevent...

5.5CVSS7.8AI score0.00166EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2025/05/21 12:45 a.m.•11 views

SUSE CVE-2025-37990

In the Linux kernel, the following vulnerability has been resolved: wifi: brcm80211: fmac: Add error handling for brcmfusbdlwriteimage The function brcmfusbdlwriteimage calls the function brcmfusbdlcmd but dose not check its return value. The 'state.state' and the 'state.bytes' are uninitialized ...

5.5CVSS7.7AI score0.00166EPSS
Exploits0References16
SUSE CVE
SUSE CVE
•added 2025/05/09 4:54 a.m.•11 views

SUSE CVE-2022-49902

In the Linux kernel, the following vulnerability has been resolved: block: Fix possible memory leak for rqwb on adddisk failure kmemleak reported memory leaks in deviceadddisk: kmemleak: 3 new suspected memory leaks unreferenced object 0xffff88800f420800 size 512: comm "modprobe", pid 4275, jiffi...

5.5CVSS6.3AI score0.00163EPSS
Exploits0References6
SUSE CVE
SUSE CVE
•added 2025/05/03 2:51 a.m.•11 views

SUSE CVE-2023-53073

In the Linux kernel, the following vulnerability has been resolved: perf/x86/amd/core: Always clear status for idx The variable 'status' which contains the unhandled overflow bits is not being properly masked in some cases, displaying the following warning: WARNING: CPU: 156 PID: 475601 at...

5.5CVSS6.5AI score0.00164EPSS
Exploits0References6
SUSE CVE
SUSE CVE
•added 2025/05/03 2:51 a.m.•11 views

SUSE CVE-2023-53079

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix steering rules cleanup vport's mc, uc and multicast rules are not deleted in teardown path when EEH happens. Since the vport's promisc settingsuc, mc and all in firmware are reset after EEH, mlx5 driver will try to...

5.5CVSS6.2AI score0.00183EPSS
Exploits0References10
SUSE CVE
SUSE CVE
•added 2025/05/02 2:3 a.m.•11 views

SUSE CVE-2025-23159

In the Linux kernel, the following vulnerability has been resolved: media: venus: hfi: add a check to handle OOB in sfr region sfr-bufsize is in shared memory and can be modified by malicious user. OOB write is possible when the size is made higher than actual sfr data buffer. Cap the size to...

5.5CVSS7.7AI score0.00176EPSS
Exploits0References16
SUSE CVE
SUSE CVE
•added 2025/05/02 2:3 a.m.•11 views

SUSE CVE-2025-37740

In the Linux kernel, the following vulnerability has been resolved: jfs: add sanity check for agwidth in dbMount The width in dmapctl of the AG is zero, it trigger a divide error when calculating the control page level in dbAllocAG. To avoid this issue, add a check for agwidth in dbAllocAG...

4.4CVSS7.7AI score0.00164EPSS
Exploits0References16
SUSE CVE
SUSE CVE
•added 2025/05/02 2:3 a.m.•11 views

SUSE CVE-2025-37747

In the Linux kernel, the following vulnerability has been resolved: perf: Fix hang while freeing sigtrap event Perf can hang while freeing a sigtrap event if a related deferred signal hadn't managed to be sent before the file got closed: perfeventoverflow taskworkaddperfpendingtask fput...

5.5CVSS7.5AI score0.00154EPSS
Exploits0References19
SUSE CVE
SUSE CVE
•added 2025/04/23 2:38 a.m.•11 views

SUSE CVE-2025-22093

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: avoid NPD when ASIC does not support DMUB ctx-dmubsrv will de NULL if the ASIC does not support DMUB, which is tested in dmdmubswinit. However, it will be dereferenced in dmubhwlockmgrcmd if shouldusedmublock...

5.5CVSS7.6AI score0.00176EPSS
Exploits0References16
SUSE CVE
SUSE CVE
•added 2025/04/18 11:21 p.m.•11 views

SUSE CVE-2024-58095

In the Linux kernel, the following vulnerability has been resolved: jfs: add check read-only before txBeginAnon call Added a read-only check before calling txBeginAnon in extAlloc and extRecord. This prevents modification attempts on a read-only mounted filesystem, avoiding potential errors or...

5.5CVSS7.7AI score0.00148EPSS
Exploits0References16
SUSE CVE
SUSE CVE
•added 2025/04/05 2:25 a.m.•11 views

SUSE CVE-2025-21966

In the Linux kernel, the following vulnerability has been resolved: dm-flakey: Fix memory corruption in optional corruptbiobyte feature Fix memory corruption due to incorrect parameter being passed to bioinit...

5.5CVSS7.8AI score0.00184EPSS
Exploits0References16
SUSE CVE
SUSE CVE
•added 2025/04/04 2:59 a.m.•11 views

SUSE CVE-2025-21930

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: don't try to talk to a dead firmware This fixes: bad state = 0 WARNING: CPU: 10 PID: 702 at drivers/net/wireless/inel/iwlwifi/iwl-trans.c:178 iwltranssendcmd+0xba/0xe0 iwlwifi Call Trace: ? warn+0xca/0x1c0 ?...

5.5CVSS7.7AI score0.00187EPSS
Exploits0References15
SUSE CVE
SUSE CVE
•added 2025/04/04 2:58 a.m.•11 views

SUSE CVE-2025-21941

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix null check for pipectx-planestate in resourcebuildscalingparams Null pointer dereference issue could occur when pipectx-planestate is null. The fix adds a check to ensure 'pipectx-planestate' is not null befo...

5.5CVSS7.6AI score0.00194EPSS
Exploits0References16
SUSE CVE
SUSE CVE
•added 2025/04/02 1:29 p.m.•11 views

SUSE CVE-2025-21895

In the Linux kernel, the following vulnerability has been resolved: perf/core: Order the PMU list to fix warning about unordered pmuctxlist Syskaller triggers a warning due to prevepc-pmu != nextepc-pmu in perfeventswaptaskctxdata. vmcore shows that two lists have the same perfeventpmucontext, bu...

5.5CVSS7.7AI score0.00135EPSS
Exploits0References15
SUSE CVE
SUSE CVE
•added 2025/04/02 8:57 a.m.•11 views

SUSE CVE-2025-21894

In the Linux kernel, the following vulnerability has been resolved: net: enetc: VFs do not support HWTSTAMPTXONESTEPSYNC Actually ENETC VFs do not support HWTSTAMPTXONESTEPSYNC because only ENETC PF can access PMaSINGLESTEP registers. And there will be a crash if VFs are used to test one-step...

5.5CVSS7.6AI score0.00189EPSS
Exploits0References15
SUSE CVE
SUSE CVE
•added 2025/03/28 3:0 a.m.•11 views

SUSE CVE-2025-21877

In the Linux kernel, the following vulnerability has been resolved: usbnet: gl620a: fix endpoint checking in genelinkbind Syzbot reports 1 a warning in usbsubmiturb triggered by inconsistencies between expected and actually present endpoints in gl620a driver. Since genelinkbind does not properly...

5.5CVSS6.6AI score0.002EPSS
Exploits0References16
SUSE CVE
SUSE CVE
•added 2025/03/12 3:23 p.m.•11 views

SUSE CVE-2025-21854

In the Linux kernel, the following vulnerability has been resolved: sockmap, vsock: For connectible sockets allow only connected sockmap expects all vsocks to have a transport assigned, which is expressed in vsockproto::psockupdateskprot. However, there is an edge case where an unconnected...

5.5CVSS7.6AI score0.00192EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2025/03/07 2:37 a.m.•11 views

SUSE CVE-2025-21829

In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix the warning "rxecleanup+0x12c/0x170 rdmarxe" The Call Trace is as below: " ? showregs.cold+0x1a/0x1f ? rxecleanup+0x12c/0x170 rdmarxe ? warn+0x84/0xd0 ? rxecleanup+0x12c/0x170 rdmarxe ? reportbug+0x105/0x180 ?...

5.5CVSS7.7AI score0.00168EPSS
Exploits0References14
SUSE CVE
SUSE CVE
•added 2025/02/28 2:20 a.m.•11 views

SUSE CVE-2025-21781

In the Linux kernel, the following vulnerability has been resolved: batman-adv: fix panic during interface removal Reference counting is used to ensure that batadvhardifneighnode and batadvhardiface are not freed before/during batadvvelpthroughputmetricupdate work is finished. But there isn't a...

5.5CVSS7.6AI score0.00205EPSS
Exploits0References13
SUSE CVE
SUSE CVE
•added 2025/02/27 3:12 a.m.•11 views

SUSE CVE-2022-49116

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: use memset avoid memory leaks Use memset to initialize structs to prevent memory leaks in l2capecredconnect...

5.5CVSS6.5AI score0.00242EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2025/02/27 3:9 a.m.•11 views

SUSE CVE-2022-49253

In the Linux kernel, the following vulnerability has been resolved: media: usb: go7007: s2250-board: fix leak in probe Call i2cunregisterdeviceaudio on this error path...

5.5CVSS7.5AI score0.00259EPSS
Exploits0References10
SUSE CVE
SUSE CVE
•added 2025/02/27 3:6 a.m.•11 views

SUSE CVE-2022-49434

In the Linux kernel, the following vulnerability has been resolved: PCI: Avoid pcidevlock AB/BA deadlock with sriovnumvfsstore The sysfs sriovnumvfsstore path acquires the device lock before the config space access lock: sriovnumvfsstore devicelock A 1 acquire device lock sriovconfigure...

5.5CVSS6.4AI score0.0021EPSS
Exploits0References8
SUSE CVE
SUSE CVE
•added 2025/02/27 3:5 a.m.•11 views

SUSE CVE-2022-49520

In the Linux kernel, the following vulnerability has been resolved: arm64: compat: Do not treat syscall number as ESRELx for a bad syscall If a compat process tries to execute an unknown system call above the ARMNRCOMPATEND number, the kernel sends a SIGILL signal to the offending process...

3.3CVSS6.6AI score0.00289EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2025/02/27 3:4 a.m.•11 views

SUSE CVE-2022-49592

In the Linux kernel, the following vulnerability has been resolved: net: stmmac: fix dma queue left shift overflow issue When queue number is 4, left shift overflows due to 32 bits integer variable. Mask calculation is wrong for MTLRXQDMAMAP1. If CONFIGUBSAN is enabled, kernel dumps below warning...

5.5CVSS6.4AI score0.00267EPSS
Exploits0References8
SUSE CVE
SUSE CVE
•added 2025/02/27 3:4 a.m.•11 views

SUSE CVE-2022-49604

In the Linux kernel, the following vulnerability has been resolved: ip: Fix data-races around sysctlipfwdusepmtu. While reading sysctlipfwdusepmtu, it can be changed concurrently. Thus, we need to add READONCE to its readers...

5.5CVSS6.5AI score0.00183EPSS
Exploits0References10
SUSE CVE
SUSE CVE
•added 2025/02/14 7:11 a.m.•11 views

SUSE CVE-2022-48921

In the Linux kernel, the following vulnerability has been resolved: sched/fair: Fix fault in reweightentity Syzbot found a GPF in reweightentity. This has been bisected to commit 4ef0c5c6b5ba "kernel/sched: Fix schedfork access an invalid schedtaskgroup" There is a race between schedpostfork and...

5.5CVSS6.1AI score0.00168EPSS
Exploits0References8
SUSE CVE
SUSE CVE
•added 2025/02/14 7:8 a.m.•11 views

SUSE CVE-2023-0045

The current implementation of the prctl syscall does not issue an IBPB immediately during the syscall. The ibprctlset function updates the Thread Information Flags TIFs for the task and updates the SPECCTRL MSR on the function speculationctrlupdate, but the IBPB is only issued on the next schedul...

4.7CVSS7AI score0.02399EPSS
Exploits3References29
SUSE CVE
SUSE CVE
•added 2025/01/21 4:8 a.m.•11 views

SUSE CVE-2023-52923

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: adapt set backend to use GC transaction API Use the GC transaction API to replace the old and buggy gc API and the busy mark approach. No set elements are removed from async garbage collection anymore, instea...

4.7CVSS7.7AI score0.00243EPSS
Exploits0References37
SUSE CVE
SUSE CVE
•added 2025/01/20 3:48 a.m.•11 views

SUSE CVE-2024-57908

In the Linux kernel, the following vulnerability has been resolved: iio: imu: kmx61: fix information leak in triggered buffer The 'buffer' local array is used to push data to user space from a triggered buffer, but it does not set values for inactive channels, as it only uses...

3.3CVSS7.4AI score0.00214EPSS
Exploits0References13
SUSE CVE
SUSE CVE
•added 2025/01/20 3:47 a.m.•11 views

SUSE CVE-2025-21635

In the Linux kernel, the following vulnerability has been resolved: rds: sysctl: rdstcprcv,sndbuf: avoid using current-nsproxy As mentioned in a previous commit of this series, using the 'net' structure via 'current' is not recommended for different reasons: - Inconsistency: getting info from the...

5.5CVSS7.7AI score0.00179EPSS
Exploits0References16
SUSE CVE
SUSE CVE
•added 2025/01/20 3:47 a.m.•11 views

SUSE CVE-2025-21650

In the Linux kernel, the following vulnerability has been resolved: net: hns3: fixed hclgefetchpfreg accesses bar space out of bounds issue The TQP BAR space is divided into two segments. TQPs 0-1023 and TQPs 1024-1279 are in different BAR space addresses. However, hclgefetchpfreg does not...

5.5CVSS7.5AI score0.00197EPSS
Exploits0References13
SUSE CVE
SUSE CVE
•added 2025/01/12 12:18 a.m.•11 views

SUSE CVE-2024-48873

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: check return value of ieee80211probereqget for RNR The return value of ieee80211probereqget might be NULL, so check it before using to avoid NULL pointer access. Addresses-Coverity-ID: 1529805 "Dereference null retur...

5.5CVSS7.7AI score0.0021EPSS
Exploits0References14
SUSE CVE
SUSE CVE
•added 2025/01/10 12:22 a.m.•11 views

SUSE CVE-2024-56616

In the Linux kernel, the following vulnerability has been resolved: drm/dpmst: Fix MST sideband message body length check Fix the MST sideband message body length check, which must be at least 1 byte accounting for the message body CRC aka message data CRC at the end of the message. This fixes a...

5.5CVSS7.7AI score0.00211EPSS
Exploits0References15
Total number of security vulnerabilities5000