Lucene search
K
SusecveMost viewed

59380 matches found

SUSE CVE
SUSE CVE
•added 2025/09/24 11:32 p.m.•10 views

SUSE CVE-2023-53275

In the Linux kernel, the following vulnerability has been resolved: ALSA: hda: fix a possible null-pointer dereference due to data race in sndhdacregmapsync The variable codec-regmap is often protected by the lock codec-regmaplock when is accessed. However, it is accessed without holding the lock...

5.5CVSS6.5AI score0.00146EPSS
Exploits0References19
SUSE CVE
SUSE CVE
•added 2025/09/23 11:23 p.m.•10 views

SUSE CVE-2025-39885

In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix recursive semaphore deadlock in fiemap call syzbot detected a OCFS2 hang due to a recursive semaphore on a FSIOCFIEMAP of the extent list on a specially crafted mmap file. contextswitch kernel/sched/core.c:5357 inline...

5.5CVSS6.3AI score0.0011EPSS
Exploits0References22
SUSE CVE
SUSE CVE
•added 2025/09/22 11:32 p.m.•10 views

SUSE CVE-2024-47706

In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix possible UAF for bfqq-bic with merge chain 1 initial state, three tasks: Process 1 Process 2 Process 3 BIC1 BIC2 BIC3 | ^ | ^ | ^ | | | | | | V | V | V | bfqq1 bfqq2 bfqq3 process ref: 1 1 1 2 bfqq1 merged to bfqq...

7CVSS6.5AI score0.00236EPSS
Exploits0References48
SUSE CVE
SUSE CVE
•added 2025/09/19 11:24 p.m.•10 views

SUSE CVE-2025-39841

In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix buffer free/clear order in deferred receive path Fix a use-after-free window by correcting the buffer release sequence in the deferred receive path. The code freed the RQ buffer first and only then cleared the...

5.5CVSS6.8AI score0.00167EPSS
Exploits0References24
SUSE CVE
SUSE CVE
•added 2025/09/18 11:37 p.m.•10 views

SUSE CVE-2023-53438

In the Linux kernel, the following vulnerability has been resolved: x86/MCE: Always save CS register on AMD Zen IF Poison errors The Instruction Fetch IF units on current AMD Zen-based systems do not guarantee a synchronous MC is delivered for poison consumption errors. Therefore,...

5.8CVSS6.5AI score0.00136EPSS
Exploits0References23
SUSE CVE
SUSE CVE
•added 2025/09/17 11:29 p.m.•10 views

SUSE CVE-2023-53151

In the Linux kernel, the following vulnerability has been resolved: md/raid10: prevent soft lockup while flush writes Currently, there is no limit for raid1/raid10 plugged bio. While flushing writes, raid1 has condresched while raid10 doesn't, and too many writes can cause soft lockup. Follow up...

5.5CVSS6.4AI score0.00112EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2025/09/16 11:24 p.m.•10 views

SUSE CVE-2025-39817

In the Linux kernel, the following vulnerability has been resolved: efivarfs: Fix slab-out-of-bounds in efivarfsdcompare Observed on kernel 6.6 present on master as well: BUG: KASAN: slab-out-of-bounds in memcmp+0x98/0xd0 Call trace: kasancheckrange+0xe8/0x190 asanloadN+0x1c/0x28 memcmp+0x98/0xd0...

5.5CVSS6.5AI score0.00152EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2025/09/11 11:24 p.m.•10 views

SUSE CVE-2025-39742

In the Linux kernel, the following vulnerability has been resolved: RDMA: hfi1: fix possible divide-by-zero in findhwthreadmask The function divides number of online CPUs by numcoresiblings, and later checks the divider by zero. This implies a possibility to get and divide-by-zero runtime error...

5.5CVSS6.5AI score0.0016EPSS
Exploits0References79
SUSE CVE
SUSE CVE
•added 2025/09/05 11:22 p.m.•10 views

SUSE CVE-2025-39713

In the Linux kernel, the following vulnerability has been resolved: media: rainshadow-cec: fix TOCTOU race condition in raininterrupt In the interrupt handler raininterrupt, the buffer full check on rain-buflen is performed before acquiring rain-buflock. This creates a Time-of-Check to Time-of-Us...

5.5CVSS6.8AI score0.00125EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2025/09/04 11:23 p.m.•10 views

SUSE CVE-2025-38697

In the Linux kernel, the following vulnerability has been resolved: jfs: upper bound check of tree index in dbAllocAG When computing the tree index in dbAllocAG, we never check if we are out of bounds realative to the size of the stree. This could happen in a scenario where the filesystem metadat...

7CVSS6.5AI score0.00167EPSS
Exploits0References16
SUSE CVE
SUSE CVE
•added 2025/09/04 11:23 p.m.•10 views

SUSE CVE-2025-38718

In the Linux kernel, the following vulnerability has been resolved: sctp: linearize cloned gso packets in sctprcv A cloned head skb still shares these frag skbs in fraglist with the original head skb. It's not safe to access these frag skbs. syzbot reported two use-of-uninitialized-memory bugs...

5.5CVSS6.5AI score0.00151EPSS
Exploits0References24
SUSE CVE
SUSE CVE
•added 2025/08/22 11:29 p.m.•10 views

SUSE CVE-2025-38616

In the Linux kernel, the following vulnerability has been resolved: tls: handle data disappearing from under the TLS ULP TLS expects that it owns the receive queue of the TCP socket. This cannot be guaranteed in case the reader of the TCP socket entered before the TLS ULP was installed, or uses...

7.4CVSS6.2AI score0.00178EPSS
Exploits0References81
SUSE CVE
SUSE CVE
•added 2025/08/19 11:23 p.m.•10 views

SUSE CVE-2025-38595

In the Linux kernel, the following vulnerability has been resolved: xen: fix UAF in dmabufexpfrompages dmabuffd fixes; no preferences regarding the tree it goes through - up to xen folks As soon as we'd inserted a file reference into descriptor table, another thread could close it. That's fine fo...

4.7CVSS6.4AI score0.00164EPSS
Exploits0References22
SUSE CVE
SUSE CVE
•added 2025/08/16 11:22 p.m.•10 views

SUSE CVE-2025-38520

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Don't call mmput from MMU notifier callback If the process is exiting, the mmput inside mmu notifier callback from compactd or fork or numa balancing could release the last reference of mm struct to call exitmmap and...

4.7CVSS6.4AI score0.00107EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2025/07/28 11:23 p.m.•10 views

SUSE CVE-2025-38467

In the Linux kernel, the following vulnerability has been resolved: drm/exynos: exynos7drmdecon: add vblank check in IRQ handling If there's support for another console device such as a TTY serial, the kernel occasionally panics during boot. The panic message and a relevant snippet of the call...

4.7CVSS6.3AI score0.00161EPSS
Exploits0References22
SUSE CVE
SUSE CVE
•added 2025/07/25 11:23 p.m.•10 views

SUSE CVE-2025-38365

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix a race between renames and directory logging We have a race between a rename and directory inode logging that if it happens and we crash/power fail before the rename completes, the next time the filesystem is mounted,...

6.3CVSS6.6AI score0.00114EPSS
Exploits0References22
SUSE CVE
SUSE CVE
•added 2025/07/19 11:21 p.m.•10 views

SUSE CVE-2025-38350

In the Linux kernel, the following vulnerability has been resolved: net/sched: Always pass notifications when child class becomes empty Certain classful qdiscs may invoke their classes' dequeue handler on an enqueue operation. This may unexpectedly empty the child qdisc and thus make an in-flight...

7.3CVSS6.6AI score0.0018EPSS
Exploits0References33
SUSE CVE
SUSE CVE
•added 2025/07/11 11:22 p.m.•10 views

SUSE CVE-2025-38264

In the Linux kernel, the following vulnerability has been resolved: nvme-tcp: sanitize request list handling Validate the request in nvmetcphandler2t to ensure it's not part of any list, otherwise a malicious R2T PDU might inject a loop in request list processing...

5.5CVSS7.9AI score0.00136EPSS
Exploits0References17
SUSE CVE
SUSE CVE
•added 2025/07/10 11:23 p.m.•10 views

SUSE CVE-2025-38300

In the Linux kernel, the following vulnerability has been resolved: crypto: sun8i-ce-cipher - fix error handling in sun8icecipherprepare Fix two DMA cleanup issues on the error path in sun8icecipherprepare: 1 If dmamapsg fails for areq-dst, the device driver would try to free DMA memory it has no...

6.3CVSS6.6AI score0.00147EPSS
Exploits0References22
SUSE CVE
SUSE CVE
•added 2025/07/10 11:22 p.m.•10 views

SUSE CVE-2025-38319

In the Linux kernel, the following vulnerability has been resolved: drm/amd/pp: Fix potential NULL pointer dereference in atomctrlinitializemcregtable The function atomctrlinitializemcregtable and atomctrlinitializemcregtablev22 does not check the return value of smuatomgetdatatable. If...

5.5CVSS6.5AI score0.00145EPSS
Exploits0References23
SUSE CVE
SUSE CVE
•added 2025/07/10 11:22 p.m.•10 views

SUSE CVE-2025-38328

In the Linux kernel, the following vulnerability has been resolved: jffs2: check jffs2preallocrawnoderefs result in few other places Fuzzing hit another invalid pointer dereference due to the lack of checking whether jffs2preallocrawnoderefs completed successfully. Subsequent logic implies that t...

5.5CVSS8AI score0.00178EPSS
Exploits0References16
SUSE CVE
SUSE CVE
•added 2025/07/10 11:22 p.m.•10 views

SUSE CVE-2025-38345

In the Linux kernel, the following vulnerability has been resolved: ACPICA: fix acpi operand cache leak in dswstate.c ACPICA commit 987a3b5cf7175916e2a4b6ea5b8e70f830dfe732 I found an ACPI cache leak in ACPI early termination and boot continuing case. When early termination occurs due to maliciou...

4.4CVSS6.2AI score0.00163EPSS
Exploits0References22
SUSE CVE
SUSE CVE
•added 2025/07/08 11:22 p.m.•10 views

SUSE CVE-2025-38181

In the Linux kernel, the following vulnerability has been resolved: calipso: Fix null-ptr-deref in calipsoreqset,delattr. syzkaller reported a null-ptr-deref in sockomalloc while allocating a CALIPSO option. 0 The NULL is of struct sock, which was fetched by sktofullsk in calipsoreqsetattr. Since...

7.5CVSS6.4AI score0.00171EPSS
Exploits0References96
SUSE CVE
SUSE CVE
•added 2025/07/07 11:24 p.m.•10 views

SUSE CVE-2025-38177

In the Linux kernel, the following vulnerability has been resolved: schhfsc: make hfscqlennotify idempotent hfscqlennotify is not idempotent either and not friendly to its callers, like fqcodeldequeue. Let's make it idempotent to ease qdisctreereducebacklog callers' life: 1. updatevf decreases...

7CVSS6.5AI score0.00151EPSS
Exploits0References87
SUSE CVE
SUSE CVE
•added 2025/07/07 11:24 p.m.•10 views

SUSE CVE-2025-38190

In the Linux kernel, the following vulnerability has been resolved: atm: Revert atmaccounttx if copyfromiterfull fails. In vccsendmsg, we account skb-truesize to sk-skwmemalloc by atmaccounttx. It is expected to be reverted by atmpopraw later called by vcc-dev-ops-sendvcc, skb. However, vccsendms...

5.5CVSS6.4AI score0.00164EPSS
Exploits0References23
SUSE CVE
SUSE CVE
•added 2025/07/07 11:24 p.m.•10 views

SUSE CVE-2025-38200

In the Linux kernel, the following vulnerability has been resolved: i40e: fix MMIO write access to an invalid page in i40eclearhw When the device sends a specific input, an integer underflow can occur, leading to MMIO write access to an invalid page. Prevent the integer underflow by changing the...

6CVSS5.3AI score0.00162EPSS
Exploits0References31
SUSE CVE
SUSE CVE
•added 2025/07/03 11:23 p.m.•10 views

SUSE CVE-2025-38100

In the Linux kernel, the following vulnerability has been resolved: x86/iopl: Cure TIFIOBITMAP inconsistencies iobitmapexit is invoked from exitthread when a task exists or when a fork fails. In the latter case the exitthread cleans up resources which were allocated during fork. iobitmapexit...

4.4CVSS7.8AI score0.00172EPSS
Exploits0References16
SUSE CVE
SUSE CVE
•added 2025/06/19 3:45 a.m.•10 views

SUSE CVE-2022-49977

In the Linux kernel, the following vulnerability has been resolved: ftrace: Fix NULL pointer dereference in isftracetrampoline when ftrace is dead ftracestartup does not remove ops from ftraceopslist when ftracestartupenable fails: registerftracefunction ftracestartup registerftracefunction...

4.4CVSS6AI score0.00204EPSS
Exploits0References13
SUSE CVE
SUSE CVE
•added 2025/06/19 3:44 a.m.•10 views

SUSE CVE-2022-49990

In the Linux kernel, the following vulnerability has been resolved: s390: fix double free of GS and RI CBs on fork failure The pointers for guarded storage and runtime instrumentation control blocks are stored in the threadstruct of the associated task. These pointers are initially copied on fork...

5.5CVSS6.3AI score0.00215EPSS
Exploits0References12
SUSE CVE
SUSE CVE
•added 2025/06/19 3:44 a.m.•10 views

SUSE CVE-2022-50006

In the Linux kernel, the following vulnerability has been resolved: NFSv4.2 fix problems with nfs42sscopen A destination server while doing a COPY shouldn't accept using the passed in filehandle if its not a regular filehandle. If allocfilepseudo has failed, we need to decrement a reference on th...

5.5CVSS6.5AI score0.00197EPSS
Exploits0References9
SUSE CVE
SUSE CVE
•added 2025/06/19 3:42 a.m.•10 views

SUSE CVE-2022-50065

In the Linux kernel, the following vulnerability has been resolved: virtionet: fix memory leak inside XPDTX with mergeable When we call xdpconvertbufftoframe to get xdpf, if it returns NULL, we should check if xdppage was allocated by xdplinearizepage. If it is newly allocated, it should be freed...

5.5CVSS6.3AI score0.00155EPSS
Exploits0References12
SUSE CVE
SUSE CVE
•added 2025/06/19 3:41 a.m.•10 views

SUSE CVE-2022-50111

In the Linux kernel, the following vulnerability has been resolved: ASoC: mt6359: Fix refcount leak bug In mt6359parsedt and mt6359accdetparsedt, we should call ofnodeput for the reference returned by ofgetchildbyname which has increased the refcount...

5.5CVSS6.3AI score0.00197EPSS
Exploits0References9
SUSE CVE
SUSE CVE
•added 2025/06/19 3:41 a.m.•10 views

SUSE CVE-2022-50126

In the Linux kernel, the following vulnerability has been resolved: jbd2: fix assertion 'jh-bfrozendata == NULL' failure when journal aborted Following process will fail assertion 'jh-bfrozendata == NULL' in jbd2journaldirtymetadata: jbd2journalcommittransaction unlinkdir/a jh-btransaction = tran...

5.5CVSS6.2AI score0.00156EPSS
Exploits0References12
SUSE CVE
SUSE CVE
•added 2025/06/19 3:40 a.m.•10 views

SUSE CVE-2022-50135

In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix BUG: KASAN: null-ptr-deref in rxeqpdocleanup The function rxecreateqp calls rxeqpfrominit. If some error occurs, the error handler of function rxeqpfrominit will set both scq and rcq to NULL. Then rxecreateqp calls...

5.5CVSS6.3AI score0.00175EPSS
Exploits0References6
SUSE CVE
SUSE CVE
•added 2025/06/19 3:40 a.m.•10 views

SUSE CVE-2022-50155

In the Linux kernel, the following vulnerability has been resolved: mtd: parsers: ofpart: Fix refcount leak in bcm4908partitionsfwoffset offindnodebypath returns a node pointer with refcount incremented, we should use ofnodeput on it when not need anymore. Add missing ofnodeput to avoid refcount...

5.5CVSS6.3AI score0.00155EPSS
Exploits0References9
SUSE CVE
SUSE CVE
•added 2025/06/19 3:16 a.m.•10 views

SUSE CVE-2025-38022

In the Linux kernel, the following vulnerability has been resolved: RDMA/core: Fix "KASAN: slab-use-after-free Read in ibregisterdevice" problem Call Trace: dumpstack lib/dumpstack.c:94 inline dumpstacklvl+0x116/0x1f0 lib/dumpstack.c:120 printaddressdescription mm/kasan/report.c:408 inline...

5.3CVSS7.9AI score0.00161EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2025/06/05 4:23 a.m.•10 views

SUSE CVE-2024-12718

Allows modifying some file metadata e.g. last modified with filter="data" or file permissions chmod with filter="tar" of files outside the extraction directory. You are affected by this vulnerability if using the tarfile module to extract untrusted tar archives using TarFile.extractall or...

5.3CVSS7.6AI score0.00607EPSS
Exploits1References21
SUSE CVE
SUSE CVE
•added 2025/06/04 3:2 a.m.•10 views

SUSE CVE-2025-4517

Allows arbitrary filesystem writes outside the extraction directory during extraction with filter="data". You are affected by this vulnerability if using the tarfile module to extract untrusted tar archives using TarFile.extractall or TarFile.extract using the filter= parameter with a value of...

8.4CVSS7.7AI score0.01184EPSS
Exploits11References22
SUSE CVE
SUSE CVE
•added 2025/05/21 12:46 a.m.•10 views

SUSE CVE-2025-37932

In the Linux kernel, the following vulnerability has been resolved: schhtb: make htbqlennotify idempotent htbqlennotify always deactivates the HTB class and in fact could trigger a warning if it is already deactivated. Therefore, it is not idempotent and not friendly to its callers, like...

6.3AI score0.00174EPSS
Exploits0References25
SUSE CVE
SUSE CVE
•added 2025/05/21 12:46 a.m.•10 views

SUSE CVE-2025-37958

In the Linux kernel, the following vulnerability has been resolved: mm/hugememory: fix dereferencing invalid pmd migration entry When migrating a THP, concurrent access to the PMD migration entry during a deferred split scan can lead to an invalid address access, as illustrated below. To prevent...

5.5CVSS7.8AI score0.00166EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2025/05/21 12:45 a.m.•10 views

SUSE CVE-2025-37987

In the Linux kernel, the following vulnerability has been resolved: pdscore: Prevent possible adminq overflow/stuck condition The pdscore's adminq is protected by the adminqlock, which prevents more than 1 command to be posted onto it at any one time. This makes it so the client drivers cannot...

5.5CVSS8AI score0.00151EPSS
Exploits0References13
SUSE CVE
SUSE CVE
•added 2025/05/10 2:53 a.m.•10 views

SUSE CVE-2025-37840

In the Linux kernel, the following vulnerability has been resolved: mtd: rawnand: brcmnand: fix PM resume warning Fixed warning on PM resume as shown below caused due to uninitialized struct nandoperation that checks chip select field : WARNONop-cs = nanddevntargets&chip-base 14.588522 ----------...

5.5CVSS7.7AI score0.00265EPSS
Exploits0References16
SUSE CVE
SUSE CVE
•added 2025/05/10 2:52 a.m.•10 views

SUSE CVE-2025-37870

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: prevent hang on link training fail Why When link training fails, the phy clock will be disabled. However, in enablestreams, it is assumed that link training succeeded and the mux selects the phy clock, causing a...

5.5CVSS7.7AI score0.00217EPSS
Exploits0References16
SUSE CVE
SUSE CVE
•added 2025/05/10 2:52 a.m.•10 views

SUSE CVE-2025-37887

In the Linux kernel, the following vulnerability has been resolved: pdscore: handle unsupported PDSCORECMDFWCONTROL result If the FW doesn't support the PDSCORECMDFWCONTROL command the driver might at the least print garbage and at the worst crash when the user runs the "devlink dev info" devlink...

5.5CVSS7.7AI score0.0022EPSS
Exploits0References16
SUSE CVE
SUSE CVE
•added 2025/05/09 4:54 a.m.•10 views

SUSE CVE-2022-49889

In the Linux kernel, the following vulnerability has been resolved: ring-buffer: Check for NULL cpubuffer in ringbufferwakewaiters On some machines the number of listed CPUs may be bigger than the actual CPUs that exist. The tracing subsystem allocates a percpu directory with access to the per CP...

5.5CVSS6.4AI score0.00164EPSS
Exploits0References12
SUSE CVE
SUSE CVE
•added 2025/05/09 4:54 a.m.•10 views

SUSE CVE-2022-49902

In the Linux kernel, the following vulnerability has been resolved: block: Fix possible memory leak for rqwb on adddisk failure kmemleak reported memory leaks in deviceadddisk: kmemleak: 3 new suspected memory leaks unreferenced object 0xffff88800f420800 size 512: comm "modprobe", pid 4275, jiffi...

5.5CVSS6.3AI score0.00163EPSS
Exploits0References6
SUSE CVE
SUSE CVE
•added 2025/05/08 11:40 a.m.•10 views

SUSE CVE-2025-37817

In the Linux kernel, the following vulnerability has been resolved: mcb: fix a double free bug in chameleonparsegdd In chameleonparsegdd, if mcbdeviceregister fails, 'mdev' would be released in mcbdeviceregister via putdevice. Thus, goto 'err' label and free 'mdev' again causes a double free. Jus...

7.8CVSS7.8AI score0.00172EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/05/07 2:10 a.m.•10 views

SUSE CVE-2025-37797

In the Linux kernel, the following vulnerability has been resolved: netsched: hfsc: Fix a UAF vulnerability in class handling This patch fixes a Use-After-Free vulnerability in the HFSC qdisc class handling. The issue occurs due to a time-of-check/time-of-use condition in hfscchangeclass when...

7.8CVSS6.4AI score0.00174EPSS
Exploits0References92
SUSE CVE
SUSE CVE
•added 2025/05/03 2:51 a.m.•10 views

SUSE CVE-2023-53073

In the Linux kernel, the following vulnerability has been resolved: perf/x86/amd/core: Always clear status for idx The variable 'status' which contains the unhandled overflow bits is not being properly masked in some cases, displaying the following warning: WARNING: CPU: 156 PID: 475601 at...

5.5CVSS6.5AI score0.00164EPSS
Exploits0References6
SUSE CVE
SUSE CVE
•added 2025/05/02 2:3 a.m.•10 views

SUSE CVE-2025-23149

In the Linux kernel, the following vulnerability has been resolved: tpm: do not start chip while suspended Checking TPMCHIPFLAGSUSPENDED after the call to tpmfindgetops can lead to a spurious tpmchipstart call: 35985.503771 i2c i2c-1: Transfer while suspended 35985.503796 WARNING: CPU: 0 PID: 74 ...

5.5CVSS7.6AI score0.00167EPSS
Exploits0References17
Total number of security vulnerabilities5000