Lucene search
K
SusecveMost viewed

59854 matches found

SUSE CVE
SUSE CVE
•added 2025/03/12 3:23 p.m.•11 views

SUSE CVE-2025-21865

In the Linux kernel, the following vulnerability has been resolved: gtp: Suppress list corruption splat in gtpnetexitbatchrtnl. Brad Spengler reported the listdel corruption splat in gtpnetexitbatchrtnl. 0 Commit eb28fd76c0a0 "gtp: Destroy device along with udp socket's netns dismantle." added th...

5.5CVSS6.8AI score0.00209EPSS
Exploits0References16
SUSE CVE
SUSE CVE
•added 2025/03/07 2:38 a.m.•11 views

SUSE CVE-2024-58072

In the Linux kernel, the following vulnerability has been resolved: wifi: rtlwifi: remove unused checkbuddypriv Commit 2461c7d60f9f "rtlwifi: Update header file" introduced a global list of private data structures. Later on, commit 26634c4b1868 "rtlwifi Modify existing bits to match vendor versio...

5.5CVSS6.7AI score0.00188EPSS
Exploits0References16
SUSE CVE
SUSE CVE
•added 2025/03/07 2:37 a.m.•11 views

SUSE CVE-2025-21829

In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix the warning "rxecleanup+0x12c/0x170 rdmarxe" The Call Trace is as below: " ? showregs.cold+0x1a/0x1f ? rxecleanup+0x12c/0x170 rdmarxe ? warn+0x84/0xd0 ? rxecleanup+0x12c/0x170 rdmarxe ? reportbug+0x105/0x180 ?...

5.5CVSS7.7AI score0.00172EPSS
Exploits0References14
SUSE CVE
SUSE CVE
•added 2025/02/28 2:20 a.m.•11 views

SUSE CVE-2025-21781

In the Linux kernel, the following vulnerability has been resolved: batman-adv: fix panic during interface removal Reference counting is used to ensure that batadvhardifneighnode and batadvhardiface are not freed before/during batadvvelpthroughputmetricupdate work is finished. But there isn't a...

5.5CVSS7.6AI score0.00205EPSS
Exploits0References13
SUSE CVE
SUSE CVE
•added 2025/02/27 3:14 a.m.•11 views

SUSE CVE-2021-47654

In the Linux kernel, the following vulnerability has been resolved: samples/landlock: Fix pathlist memory leak Clang static analysis reports this error sandboxer.c:134:8: warning: Potential leak of memory pointed to by 'pathlist' ret = 0; ^ pathlist is allocated in parsepath but never freed...

3.3CVSS6.5AI score0.00245EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2025/02/27 3:12 a.m.•11 views

SUSE CVE-2022-49116

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: use memset avoid memory leaks Use memset to initialize structs to prevent memory leaks in l2capecredconnect...

5.5CVSS6.5AI score0.00242EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2025/02/27 3:9 a.m.•11 views

SUSE CVE-2022-49253

In the Linux kernel, the following vulnerability has been resolved: media: usb: go7007: s2250-board: fix leak in probe Call i2cunregisterdeviceaudio on this error path...

5.5CVSS7.5AI score0.00259EPSS
Exploits0References10
SUSE CVE
SUSE CVE
•added 2025/02/27 3:6 a.m.•11 views

SUSE CVE-2022-49434

In the Linux kernel, the following vulnerability has been resolved: PCI: Avoid pcidevlock AB/BA deadlock with sriovnumvfsstore The sysfs sriovnumvfsstore path acquires the device lock before the config space access lock: sriovnumvfsstore devicelock A 1 acquire device lock sriovconfigure...

5.5CVSS6.4AI score0.0021EPSS
Exploits0References8
SUSE CVE
SUSE CVE
•added 2025/02/27 3:5 a.m.•11 views

SUSE CVE-2022-49520

In the Linux kernel, the following vulnerability has been resolved: arm64: compat: Do not treat syscall number as ESRELx for a bad syscall If a compat process tries to execute an unknown system call above the ARMNRCOMPATEND number, the kernel sends a SIGILL signal to the offending process...

3.3CVSS6.6AI score0.00289EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2025/02/27 3:4 a.m.•11 views

SUSE CVE-2022-49604

In the Linux kernel, the following vulnerability has been resolved: ip: Fix data-races around sysctlipfwdusepmtu. While reading sysctlipfwdusepmtu, it can be changed concurrently. Thus, we need to add READONCE to its readers...

5.5CVSS6.5AI score0.00183EPSS
Exploits0References10
SUSE CVE
SUSE CVE
•added 2025/02/27 3:2 a.m.•11 views

SUSE CVE-2022-49726

In the Linux kernel, the following vulnerability has been resolved: clocksource: hyper-v: unexport init-annotated hvinitclocksource EXPORTSYMBOL and init is a bad combination because the .init.text section is freed up after the initialization. Hence, modules cannot use symbols annotated init. The...

5.5CVSS6.2AI score0.00266EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2025/02/14 7:8 a.m.•11 views

SUSE CVE-2023-0045

The current implementation of the prctl syscall does not issue an IBPB immediately during the syscall. The ibprctlset function updates the Thread Information Flags TIFs for the task and updates the SPECCTRL MSR on the function speculationctrlupdate, but the IBPB is only issued on the next schedul...

4.7CVSS7AI score0.02399EPSS
Exploits3References29
SUSE CVE
SUSE CVE
•added 2025/01/21 4:8 a.m.•11 views

SUSE CVE-2023-52923

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: adapt set backend to use GC transaction API Use the GC transaction API to replace the old and buggy gc API and the busy mark approach. No set elements are removed from async garbage collection anymore, instea...

4.7CVSS7.7AI score0.00243EPSS
Exploits0References37
SUSE CVE
SUSE CVE
•added 2025/01/20 3:48 a.m.•11 views

SUSE CVE-2024-57908

In the Linux kernel, the following vulnerability has been resolved: iio: imu: kmx61: fix information leak in triggered buffer The 'buffer' local array is used to push data to user space from a triggered buffer, but it does not set values for inactive channels, as it only uses...

3.3CVSS7.4AI score0.00214EPSS
Exploits0References13
SUSE CVE
SUSE CVE
•added 2025/01/20 3:48 a.m.•11 views

SUSE CVE-2024-57924

In the Linux kernel, the following vulnerability has been resolved: fs: relax assertions on failure to encode file handles Encoding file handles is usually performed by a filesystem encodefh method that may fail for various reasons. The legacy users of exportfsencodefh, namely, nfsd and...

5.5CVSS7.7AI score0.002EPSS
Exploits0References16
SUSE CVE
SUSE CVE
•added 2025/01/20 3:47 a.m.•11 views

SUSE CVE-2025-21635

In the Linux kernel, the following vulnerability has been resolved: rds: sysctl: rdstcprcv,sndbuf: avoid using current-nsproxy As mentioned in a previous commit of this series, using the 'net' structure via 'current' is not recommended for different reasons: - Inconsistency: getting info from the...

5.5CVSS7.7AI score0.00179EPSS
Exploits0References16
SUSE CVE
SUSE CVE
•added 2025/01/20 3:47 a.m.•11 views

SUSE CVE-2025-21650

In the Linux kernel, the following vulnerability has been resolved: net: hns3: fixed hclgefetchpfreg accesses bar space out of bounds issue The TQP BAR space is divided into two segments. TQPs 0-1023 and TQPs 1024-1279 are in different BAR space addresses. However, hclgefetchpfreg does not...

5.5CVSS7.5AI score0.00197EPSS
Exploits0References13
SUSE CVE
SUSE CVE
•added 2025/01/12 12:17 a.m.•11 views

SUSE CVE-2024-48881

In the Linux kernel, the following vulnerability has been resolved: bcache: revert replacing ISERRORNULL with ISERR again Commit 028ddcac477b "bcache: Remove unnecessary NULL point check in node allocations" leads a NULL pointer deference in cachesetflush. 1721 if !ISERRORNULLc-root 1722...

5.5CVSS7.6AI score0.00246EPSS
Exploits0References14
SUSE CVE
SUSE CVE
•added 2025/01/12 12:14 a.m.•11 views

SUSE CVE-2024-57807

In the Linux kernel, the following vulnerability has been resolved: scsi: megaraidsas: Fix for a potential deadlock This fixes a 'possible circular locking dependency detected' warning CPU0 CPU1 ---- ---- lock&instance-resetmutex; lock&shost-scanmutex; lock&instance-resetmutex;...

5.5CVSS7.7AI score0.00171EPSS
Exploits0References14
SUSE CVE
SUSE CVE
•added 2025/01/10 12:22 a.m.•11 views

SUSE CVE-2024-56616

In the Linux kernel, the following vulnerability has been resolved: drm/dpmst: Fix MST sideband message body length check Fix the MST sideband message body length check, which must be at least 1 byte accounting for the message body CRC aka message data CRC at the end of the message. This fixes a...

5.5CVSS7.7AI score0.00211EPSS
Exploits0References15
SUSE CVE
SUSE CVE
•added 2025/01/07 3:49 a.m.•11 views

SUSE CVE-2024-56587

In the Linux kernel, the following vulnerability has been resolved: leds: class: Protect brightnessshow with ledcdev-ledaccess mutex There is NULL pointer issue observed if from Process A where hid device being added which results in adding a ledcdev addition and later a another call to access of...

4.7CVSS7.7AI score0.00249EPSS
Exploits0References14
SUSE CVE
SUSE CVE
•added 2024/12/28 3:50 a.m.•11 views

SUSE CVE-2024-53214

In the Linux kernel, the following vulnerability has been resolved: vfio/pci: Properly hide first-in-list PCIe extended capability There are cases where a PCIe extended capability should be hidden from the user. For example, an unknown capability i.e., capability with ID greater than PCIEXTCAPIDM...

7.8CVSS7.6AI score0.0025EPSS
Exploits0References63
SUSE CVE
SUSE CVE
•added 2024/12/28 3:49 a.m.•11 views

SUSE CVE-2024-53224

In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Move events notifier registration to be after device registration Move pkey change work initialization and cleanup from device resources stage to notifier stage, since this is the stage which handles this work events...

4.7CVSS7.3AI score0.00217EPSS
Exploits0References18
SUSE CVE
SUSE CVE
•added 2024/12/05 12:16 a.m.•11 views

SUSE CVE-2024-53127

In the Linux kernel, the following vulnerability has been resolved: Revert "mmc: dwmmc: Fix IDMAC operation with pages bigger than 4K" The commit 8396c793ffdf "mmc: dwmmc: Fix IDMAC operation with pages bigger than 4K" increased the maxreqsize, even for 4K pages, causing various issues: - Panic...

5.5CVSS8.1AI score0.00223EPSS
Exploits0References16
SUSE CVE
SUSE CVE
•added 2024/11/20 3:48 a.m.•11 views

SUSE CVE-2024-53088

In the Linux kernel, the following vulnerability has been resolved: i40e: fix race condition by adding filter's intermediate sync state Fix a race condition in the i40e driver that leads to MAC/VLAN filters becoming corrupted and leaking. Address the issue that occurs under heavy load when multip...

6.3CVSS7.6AI score0.00175EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2024/11/10 3:49 a.m.•11 views

SUSE CVE-2024-50230

In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix kernel bug due to missing clearing of checked flag Syzbot reported that in directory operations after nilfs2 detects filesystem corruption and degrades to read-only, blockwritebeginint, which is called to prepare bloc...

5.5CVSS7.6AI score0.0027EPSS
Exploits0References18
SUSE CVE
SUSE CVE
•added 2024/11/09 3:49 a.m.•11 views

SUSE CVE-2024-50184

In the Linux kernel, the following vulnerability has been resolved: virtiopmem: Check device status before requesting flush If a pmem device is in a bad status, the driver side could wait for host ack forever in virtiopmemflush, causing the system to hang. So add a status check in the beginning o...

4.7CVSS7.3AI score0.00227EPSS
Exploits0References18
SUSE CVE
SUSE CVE
•added 2024/11/06 3:48 a.m.•11 views

SUSE CVE-2024-50115

In the Linux kernel, the following vulnerability has been resolved: KVM: nSVM: Ignore nCR34:0 when loading PDPTEs from memory Ignore nCR34:0 when loading PDPTEs from memory for nested SVM, as bits 4:0 of CR3 are ignored when PAE paging is used, and thus VMRUN doesn't enforce 32-byte alignment of...

7.2CVSS6.3AI score0.00243EPSS
Exploits0References69
SUSE CVE
SUSE CVE
•added 2024/10/26 3:1 a.m.•11 views

SUSE CVE-2024-49945

In the Linux kernel, the following vulnerability has been resolved: net/ncsi: Disable the ncsi work before freeing the associated structure The work function can run after the ncsi device is freed, resulting in use-after-free bugs or kernel panic...

5.5CVSS7.2AI score0.00228EPSS
Exploits0References22
SUSE CVE
SUSE CVE
•added 2024/10/24 3:18 a.m.•11 views

SUSE CVE-2024-49948

In the Linux kernel, the following vulnerability has been resolved: net: add more sanity checks to qdiscpktleninit One path takes care of SKBGSODODGY, assuming skb-len is bigger than hdrlen. virtionethdrtoskb does not fully dissect TCP headers, it only make sure it is at least 20 bytes. It is...

5.5CVSS6.3AI score0.00291EPSS
Exploits0References17
SUSE CVE
SUSE CVE
•added 2024/10/22 2:50 a.m.•11 views

SUSE CVE-2024-50015

In the Linux kernel, the following vulnerability has been resolved: ext4: dax: fix overflowing extents beyond inode size when partially writing The daxiomaprw does two things in each iteration: map written blocks and copy user data to blocks. If the process is killed by userSee signal handling in...

5.5CVSS6.4AI score0.00239EPSS
Exploits0References16
SUSE CVE
SUSE CVE
•added 2024/10/21 3:47 p.m.•11 views

SUSE CVE-2024-47709

In the Linux kernel, the following vulnerability has been resolved: can: bcm: Clear bo-bcmprocread after removeprocentry. syzbot reported a warning in bcmrelease. 0 The blamed change fixed another warning that is triggered when connect is issued again for a socket whose connected device has been...

5.5CVSS6.3AI score0.00248EPSS
Exploits0References19
SUSE CVE
SUSE CVE
•added 2024/10/21 3:46 p.m.•11 views

SUSE CVE-2024-47737

In the Linux kernel, the following vulnerability has been resolved: nfsd: call cacheput if xdrreservespace returns NULL If not enough buffer space available, but idmaplookup has triggered lookupfn which calls cacheget and returns successfully. Then we missed to call cacheput here which pairs with...

3.3CVSS6.7AI score0.00277EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2024/10/21 3:45 p.m.•11 views

SUSE CVE-2024-49855

In the Linux kernel, the following vulnerability has been resolved: nbd: fix race between timeout and normal completion If request timetout is handled by nbdrequeuecmd, normal completion has to be stopped for avoiding to complete this requeued request, other use-after-free can be triggered. Fix t...

7CVSS6.3AI score0.00201EPSS
Exploits0References31
SUSE CVE
SUSE CVE
•added 2024/09/28 2:51 a.m.•11 views

SUSE CVE-2024-46857

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix bridge mode operations when there are no VFs Currently, trying to set the bridge mode attribute when numvfs=0 leads to a crash: bridge link set dev eth2 hwmode vepa 168.967392 BUG: kernel NULL pointer dereference,...

5.5CVSS6.3AI score0.00207EPSS
Exploits0References16
SUSE CVE
SUSE CVE
•added 2024/09/19 3:10 a.m.•11 views

SUSE CVE-2024-46743

In the Linux kernel, the following vulnerability has been resolved: of/irq: Prevent device address out-of-bounds read in interrupt map walk When ofirqparseraw is invoked with a device address smaller than the interrupt parent node from address-cells property, KASAN detects the following...

4.4CVSS6.2AI score0.00295EPSS
Exploits0References18
SUSE CVE
SUSE CVE
•added 2024/09/19 3:10 a.m.•11 views

SUSE CVE-2024-46782

In the Linux kernel, the following vulnerability has been resolved: ila: call nfunregisternethooks sooner syzbot found an use-after-free Read in ilanfinput 1 Issue here is that ilaxlatexitnet frees the rhashtable, then call nfunregisternethooks. It should be done in the reverse way, with a...

5.5CVSS6.2AI score0.00233EPSS
Exploits0References15
SUSE CVE
SUSE CVE
•added 2024/08/27 2:24 a.m.•11 views

SUSE CVE-2024-43897

In the Linux kernel, the following vulnerability has been resolved: net: drop bad gso csumstart and offset in virtionethdr Tighten csumstart and csumoffset checks in virtionethdrtoskb for GSO packets. The function already checks that a checksum requested with VIRTIONETHDRFNEEDSCSUM is in skb...

5.5CVSS6.4AI score0.00212EPSS
Exploits0References13
SUSE CVE
SUSE CVE
•added 2024/08/23 2:53 a.m.•11 views

SUSE CVE-2022-48931

In the Linux kernel, the following vulnerability has been resolved: configfs: fix a race in configfs,unregistersubsystem When configfsregistersubsystem or configfsunregistersubsystem is executing linkgroup or unlinkgroup, it is possible that two processes add or delete list concurrently. Some...

5.5CVSS6.3AI score0.00165EPSS
Exploits0References11
SUSE CVE
SUSE CVE
•added 2024/08/22 2:58 a.m.•11 views

SUSE CVE-2024-43873

In the Linux kernel, the following vulnerability has been resolved: vhost/vsock: always initialize seqpacketallow There are two issues around seqpacketallow: 1. seqpacketallow is not initialized when socket is created. Thus if features are never set, it will be read uninitialized. 2. if...

5.5CVSS6.5AI score0.00216EPSS
Exploits0References14
SUSE CVE
SUSE CVE
•added 2024/08/18 2:2 a.m.•11 views

SUSE CVE-2024-42265

In the Linux kernel, the following vulnerability has been resolved: protect the fetch of -fdfd in dodup2 from mispredictions both callers have verified that fd is not greater than -maxfds; however, misprediction might end up with tofree = fdt-fdfd; being speculatively executed. That's wrong for t...

5.3CVSS6.5AI score0.00281EPSS
Exploits0References24
SUSE CVE
SUSE CVE
•added 2024/08/18 2:1 a.m.•11 views

SUSE CVE-2024-43834

In the Linux kernel, the following vulnerability has been resolved: xdp: fix invalid wait context of pagepooldestroy If the driver uses a page pool, it creates a page pool with pagepoolcreate. The reference count of page pool is 1 as default. A page pool will be destroyed only when a reference...

5.5CVSS6.3AI score0.00247EPSS
Exploits0References14
SUSE CVE
SUSE CVE
•added 2024/08/06 2:1 a.m.•11 views

SUSE CVE-2024-41072

In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: wext: add extra SIOCSIWSCAN data check In 'cfg80211wextsiwscan', add extra check whether number of channels passed via 'ioctlsock, SIOCSIWSCAN, ...' doesn't exceed IWMAXFREQUENCIES and reject invalid request with...

4.4CVSS6.6AI score0.00233EPSS
Exploits0References16
SUSE CVE
SUSE CVE
•added 2024/08/06 1:59 a.m.•11 views

SUSE CVE-2024-42142

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: E-switch, Create ingress ACL when needed Currently, ingress acl is used for three features. It is created only when vport metadata match and prio tag are enabled. But active-backup lag mode also uses it. It is independe...

5.5CVSS6.5AI score0.00225EPSS
Exploits0References13
SUSE CVE
SUSE CVE
•added 2024/08/06 1:59 a.m.•11 views

SUSE CVE-2024-42156

In the Linux kernel, the following vulnerability has been resolved: s390/pkey: Wipe copies of clear-key structures on failure Wipe all sensitive data from stack for all IOCTLs, which convert a clear-key into a protected- or secure-key...

5.5CVSS6.4AI score0.00214EPSS
Exploits0References13
SUSE CVE
SUSE CVE
•added 2024/07/16 2:34 a.m.•11 views

SUSE CVE-2024-40932

In the Linux kernel, the following vulnerability has been resolved: drm/exynos/vidi: fix memory leak in .getmodes The duplicated EDID is never freed. Fix it...

4.4CVSS6.5AI score0.00258EPSS
Exploits0References16
SUSE CVE
SUSE CVE
•added 2024/07/16 2:34 a.m.•11 views

SUSE CVE-2024-40990

In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Add check for srq maxsge attribute maxsge attribute is passed by the user, and is inserted and used unchecked, so verify that the value doesn't exceed maximum allowed value before using it...

5.5CVSS6.6AI score0.0027EPSS
Exploits0References16
SUSE CVE
SUSE CVE
•added 2024/07/16 2:33 a.m.•11 views

SUSE CVE-2024-41006

In the Linux kernel, the following vulnerability has been resolved: netrom: Fix a memory leak in nrheartbeatexpiry syzbot reported a memory leak in nrcreate 0. Commit 409db27e3a2e "netrom: Fix use-after-free of a listening socket." added sockhold to the nrheartbeatexpiry function, where a a socke...

4.4CVSS6.3AI score0.00242EPSS
Exploits0References13
SUSE CVE
SUSE CVE
•added 2024/06/22 3:36 a.m.•11 views

SUSE CVE-2024-36270

In the Linux kernel, the following vulnerability has been resolved: netfilter: tproxy: bail out if IP has been disabled on the device syzbot reports: general protection fault, probably for non-canonical address 0xdffffc0000000003: 0000 1 PREEMPT SMP KASAN PTI KASAN: null-ptr-deref in range...

5.5CVSS6.5AI score0.00258EPSS
Exploits0References16
SUSE CVE
SUSE CVE
•added 2024/06/22 3:35 a.m.•11 views

SUSE CVE-2024-38567

In the Linux kernel, the following vulnerability has been resolved: wifi: carl9170: add a proper sanity check for endpoints Syzkaller reports 1 hitting a warning which is caused by presence of a wrong endpoint type at the URB sumbitting stage. While there was a check for a specific 4th endpoint,...

5.5CVSS6.3AI score0.00254EPSS
Exploits0References16
Total number of security vulnerabilities5000