Lucene search
K
SusecveMost viewed

59854 matches found

SUSE CVE
SUSE CVE
•added 2025/12/08 12:23 a.m.•10 views

SUSE CVE-2025-40280

In the Linux kernel, the following vulnerability has been resolved: tipc: Fix use-after-free in tipcmonreinitself. syzbot reported use-after-free of tipcnetnet-monitors in tipcmonreinitself. 0 The array is protected by RTNL, but tipcmonreinitself iterates over it without RTNL. tipcmonreinitself i...

7CVSS6.5AI score0.00189EPSS
Exploits0References28
SUSE CVE
SUSE CVE
•added 2025/12/05 12:26 a.m.•10 views

SUSE CVE-2025-40214

In the Linux kernel, the following vulnerability has been resolved: afunix: Initialise sccindex in unixaddedge. Quang Le reported that the AFUNIX GC could garbage-collect a receive queue of an alive in-flight socket, with a nice repro. The repro consists of three stages. 1 1-a. Create a single...

7CVSS6.4AI score0.00171EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2025/12/05 12:24 a.m.•10 views

SUSE CVE-2025-66293

LIBPNG is a reference library for use in applications that read, create, and manipulate PNG Portable Network Graphics raster image files. Prior to 1.6.52, an out-of-bounds read vulnerability in libpng's simplified API allows reading up to 1012 bytes beyond the pngsRGBbase512 array when processing...

7.1CVSS6.8AI score0.00299EPSS
Exploits2References16
SUSE CVE
SUSE CVE
•added 2025/11/11 12:23 a.m.•10 views

SUSE CVE-2025-64433

KubeVirt is a virtual machine management add-on for Kubernetes. Prior to 1.5.3 and 1.6.1, a vulnerability was discovered that allows a VM to read arbitrary files from the virt-launcher pod's file system. This issue stems from improper symlink handling when mounting PVC disks into a VM...

6.5CVSS6.7AI score0.00475EPSS
Exploits1References7
SUSE CVE
SUSE CVE
•added 2025/10/16 11:24 p.m.•10 views

SUSE CVE-2025-39967

In the Linux kernel, the following vulnerability has been resolved: fbcon: fix integer overflow in fbcondosetfont Fix integer overflow vulnerabilities in fbcondosetfont where font size calculations could overflow when handling user-controlled font parameters. The vulnerabilities occur when: 1...

6.1CVSS7.1AI score0.00156EPSS
Exploits0References26
SUSE CVE
SUSE CVE
•added 2025/10/05 2:56 a.m.•10 views

SUSE CVE-2023-53559

In the Linux kernel, the following vulnerability has been resolved: ipvti: fix potential slab-use-after-free in decodesession6 When ipvti device is set to the qdisc of the sfb type, the cb field of the sent skb may be modified during enqueuing. Then, slab-use-after-free may occur when ipvti devic...

5.5CVSS6.5AI score0.00139EPSS
Exploits0References22
SUSE CVE
SUSE CVE
•added 2025/10/01 11:30 p.m.•10 views

SUSE CVE-2023-53461

In the Linux kernel, the following vulnerability has been resolved: iouring: wait interruptibly for request completions on exit WHen the ring exits, cleanup is done and the final cancelation and waiting on completions is done by ioringexitwork. That function is invoked by kworker, which doesn't...

5.5CVSS6.2AI score0.00145EPSS
Exploits0References15
SUSE CVE
SUSE CVE
•added 2025/09/24 11:32 p.m.•10 views

SUSE CVE-2023-53275

In the Linux kernel, the following vulnerability has been resolved: ALSA: hda: fix a possible null-pointer dereference due to data race in sndhdacregmapsync The variable codec-regmap is often protected by the lock codec-regmaplock when is accessed. However, it is accessed without holding the lock...

5.5CVSS6.5AI score0.00146EPSS
Exploits0References19
SUSE CVE
SUSE CVE
•added 2025/09/23 11:23 p.m.•10 views

SUSE CVE-2025-39871

In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: Remove improper idxdfree The call to idxdfree introduces a duplicate putdevice leading to a reference count underflow: refcountt: underflow; use-after-free. WARNING: CPU: 15 PID: 4428 at lib/refcount.c:28...

5.5CVSS6.6AI score0.0014EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2025/09/23 11:23 p.m.•10 views

SUSE CVE-2025-39885

In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix recursive semaphore deadlock in fiemap call syzbot detected a OCFS2 hang due to a recursive semaphore on a FSIOCFIEMAP of the extent list on a specially crafted mmap file. contextswitch kernel/sched/core.c:5357 inline...

5.5CVSS6.3AI score0.0011EPSS
Exploits0References22
SUSE CVE
SUSE CVE
•added 2025/09/19 11:24 p.m.•10 views

SUSE CVE-2025-39841

In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix buffer free/clear order in deferred receive path Fix a use-after-free window by correcting the buffer release sequence in the deferred receive path. The code freed the RQ buffer first and only then cleared the...

5.5CVSS6.8AI score0.00167EPSS
Exploits0References24
SUSE CVE
SUSE CVE
•added 2025/09/19 11:23 p.m.•10 views

SUSE CVE-2025-39848

In the Linux kernel, the following vulnerability has been resolved: ax25: properly unshare skbs in ax25kissrcv Bernard Pidoux reported a regression apparently caused by commit c353e8983e0d "net: introduce per netns packet chains". skb-dev becomes NULL and we crash in netifreceiveskbcore. Before...

5.7CVSS6.5AI score0.00149EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2025/09/18 11:38 p.m.•10 views

SUSE CVE-2023-53354

In the Linux kernel, the following vulnerability has been resolved: skbuff: skbsegment, Call zero copy functions before using skbuff frags Commit bf5c25d60861 "skbuff: in skbsegment, call zerocopy functions once per nskb" added the call to zero copy functions in skbsegment. The change introduced ...

5.5CVSS6.7AI score0.00177EPSS
Exploits0References15
SUSE CVE
SUSE CVE
•added 2025/09/18 11:38 p.m.•10 views

SUSE CVE-2023-53356

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: userial: Add null pointer check in gserialsuspend Consider a case where gserialdisconnect has already cleared gser-ioport. And if gserialsuspend gets called afterwards, it will lead to accessing of gser-ioport and th...

5.5CVSS6.4AI score0.00172EPSS
Exploits0References19
SUSE CVE
SUSE CVE
•added 2025/09/18 11:37 p.m.•10 views

SUSE CVE-2023-53438

In the Linux kernel, the following vulnerability has been resolved: x86/MCE: Always save CS register on AMD Zen IF Poison errors The Instruction Fetch IF units on current AMD Zen-based systems do not guarantee a synchronous MC is delivered for poison consumption errors. Therefore,...

5.8CVSS6.5AI score0.00136EPSS
Exploits0References23
SUSE CVE
SUSE CVE
•added 2025/09/16 11:29 p.m.•10 views

SUSE CVE-2023-53313

In the Linux kernel, the following vulnerability has been resolved: md/raid10: fix wrong setting of maxcorrreaderrors There is no input check when echo md/maxreaderrors and overflow might occur. Add check of input number...

5.5CVSS6.8AI score0.0015EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2025/09/16 11:24 p.m.•10 views

SUSE CVE-2025-39817

In the Linux kernel, the following vulnerability has been resolved: efivarfs: Fix slab-out-of-bounds in efivarfsdcompare Observed on kernel 6.6 present on master as well: BUG: KASAN: slab-out-of-bounds in memcmp+0x98/0xd0 Call trace: kasancheckrange+0xe8/0x190 asanloadN+0x1c/0x28 memcmp+0x98/0xd0...

5.5CVSS6.5AI score0.00152EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2025/09/13 11:22 p.m.•10 views

SUSE CVE-2025-39797

In the Linux kernel, the following vulnerability has been resolved: xfrm: Duplicate SPI Handling The issue originates when Strongswan initiates an XFRMMSGALLOCSPI Netlink message, which triggers the kernel function xfrmallocspi. This function is expected to ensure uniqueness of the Security...

5.9CVSS6.8AI score0.00147EPSS
Exploits0References43
SUSE CVE
SUSE CVE
•added 2025/09/11 11:24 p.m.•10 views

SUSE CVE-2025-39742

In the Linux kernel, the following vulnerability has been resolved: RDMA: hfi1: fix possible divide-by-zero in findhwthreadmask The function divides number of online CPUs by numcoresiblings, and later checks the divider by zero. This implies a possibility to get and divide-by-zero runtime error...

5.5CVSS6.5AI score0.0016EPSS
Exploits0References79
SUSE CVE
SUSE CVE
•added 2025/09/11 11:24 p.m.•10 views

SUSE CVE-2025-39764

In the Linux kernel, the following vulnerability has been resolved: netfilter: ctnetlink: remove refcounting in expectation dumpers Same pattern as previous patch: do not keep the expectation object alive via refcount, only store a cookie value and then use that as the skip hint for dump...

5.5CVSS6.5AI score0.00147EPSS
Exploits0References22
SUSE CVE
SUSE CVE
•added 2025/09/07 11:22 p.m.•10 views

SUSE CVE-2025-39730

In the Linux kernel, the following vulnerability has been resolved: NFS: Fix filehandle bounds checking in nfsfhtodentry The function needs to check the minimal filehandle length before it can access the embedded filehandle...

5.5CVSS6.5AI score0.00181EPSS
Exploits0References24
SUSE CVE
SUSE CVE
•added 2025/09/05 11:22 p.m.•10 views

SUSE CVE-2025-39706

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Destroy KFD debugfs after destroy KFD wq Since KFD proc content was moved to kernel debugfs, we can't destroy KFD debugfs before kfdprocessdestroywq. Move kfdprocessdestroywq prior to kfddebugfsfini to fix a kernel NU...

4.4CVSS6.4AI score0.00136EPSS
Exploits0References22
SUSE CVE
SUSE CVE
•added 2025/09/04 11:23 p.m.•10 views

SUSE CVE-2025-38697

In the Linux kernel, the following vulnerability has been resolved: jfs: upper bound check of tree index in dbAllocAG When computing the tree index in dbAllocAG, we never check if we are out of bounds realative to the size of the stree. This could happen in a scenario where the filesystem metadat...

7CVSS6.5AI score0.00167EPSS
Exploits0References16
SUSE CVE
SUSE CVE
•added 2025/09/04 11:23 p.m.•10 views

SUSE CVE-2025-38718

In the Linux kernel, the following vulnerability has been resolved: sctp: linearize cloned gso packets in sctprcv A cloned head skb still shares these frag skbs in fraglist with the original head skb. It's not safe to access these frag skbs. syzbot reported two use-of-uninitialized-memory bugs...

5.5CVSS6.5AI score0.00151EPSS
Exploits0References24
SUSE CVE
SUSE CVE
•added 2025/08/19 11:23 p.m.•10 views

SUSE CVE-2025-38595

In the Linux kernel, the following vulnerability has been resolved: xen: fix UAF in dmabufexpfrompages dmabuffd fixes; no preferences regarding the tree it goes through - up to xen folks As soon as we'd inserted a file reference into descriptor table, another thread could close it. That's fine fo...

4.7CVSS6.4AI score0.00164EPSS
Exploits0References22
SUSE CVE
SUSE CVE
•added 2025/08/16 11:22 p.m.•10 views

SUSE CVE-2025-38520

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Don't call mmput from MMU notifier callback If the process is exiting, the mmput inside mmu notifier callback from compactd or fork or numa balancing could release the last reference of mm struct to call exitmmap and...

4.7CVSS6.4AI score0.00107EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2025/07/28 11:23 p.m.•10 views

SUSE CVE-2025-38467

In the Linux kernel, the following vulnerability has been resolved: drm/exynos: exynos7drmdecon: add vblank check in IRQ handling If there's support for another console device such as a TTY serial, the kernel occasionally panics during boot. The panic message and a relevant snippet of the call...

4.7CVSS6.3AI score0.00161EPSS
Exploits0References22
SUSE CVE
SUSE CVE
•added 2025/07/28 11:22 p.m.•10 views

SUSE CVE-2025-38476

In the Linux kernel, the following vulnerability has been resolved: rpl: Fix use-after-free in rpldosrhinline. Running lwtdstcacherefloop.sh in selftest with KASAN triggers the splat below 0. rpldosrhinline fetches ipv6hdrskb and accesses it after skbcowhead, which is illegal as the header could ...

7.8CVSS6.2AI score0.0015EPSS
Exploits0References78
SUSE CVE
SUSE CVE
•added 2025/07/19 11:21 p.m.•10 views

SUSE CVE-2025-38350

In the Linux kernel, the following vulnerability has been resolved: net/sched: Always pass notifications when child class becomes empty Certain classful qdiscs may invoke their classes' dequeue handler on an enqueue operation. This may unexpectedly empty the child qdisc and thus make an in-flight...

7.3CVSS6.6AI score0.0018EPSS
Exploits0References33
SUSE CVE
SUSE CVE
•added 2025/07/11 11:22 p.m.•10 views

SUSE CVE-2025-38264

In the Linux kernel, the following vulnerability has been resolved: nvme-tcp: sanitize request list handling Validate the request in nvmetcphandler2t to ensure it's not part of any list, otherwise a malicious R2T PDU might inject a loop in request list processing...

5.5CVSS7.9AI score0.00136EPSS
Exploits0References17
SUSE CVE
SUSE CVE
•added 2025/07/10 11:23 p.m.•10 views

SUSE CVE-2025-38299

In the Linux kernel, the following vulnerability has been resolved: ASoC: mediatek: mt8195: Set ETDM1/2 IN/OUT to COMPDUMMY ETDM2INBE and ETDM1OUTBE are defined as COMPEMPTY, in the case the codec dainame will be null. Avoid a crash if the device tree is not assigning a codec to these links...

5.5CVSS6.5AI score0.00143EPSS
Exploits0References12
SUSE CVE
SUSE CVE
•added 2025/07/10 11:22 p.m.•10 views

SUSE CVE-2025-38313

In the Linux kernel, the following vulnerability has been resolved: bus: fsl-mc: fix double-free on mcdev The blamed commit tried to simplify how the deallocations are done but, in the process, introduced a double-free on the mcdev variable. In case the MC device is a DPRC, a new mcbus is allocat...

5.5CVSS6.5AI score0.00157EPSS
Exploits0References23
SUSE CVE
SUSE CVE
•added 2025/07/10 11:22 p.m.•10 views

SUSE CVE-2025-38319

In the Linux kernel, the following vulnerability has been resolved: drm/amd/pp: Fix potential NULL pointer dereference in atomctrlinitializemcregtable The function atomctrlinitializemcregtable and atomctrlinitializemcregtablev22 does not check the return value of smuatomgetdatatable. If...

5.5CVSS6.5AI score0.00145EPSS
Exploits0References23
SUSE CVE
SUSE CVE
•added 2025/07/10 11:22 p.m.•10 views

SUSE CVE-2025-38328

In the Linux kernel, the following vulnerability has been resolved: jffs2: check jffs2preallocrawnoderefs result in few other places Fuzzing hit another invalid pointer dereference due to the lack of checking whether jffs2preallocrawnoderefs completed successfully. Subsequent logic implies that t...

5.5CVSS8AI score0.00178EPSS
Exploits0References16
SUSE CVE
SUSE CVE
•added 2025/07/10 11:22 p.m.•10 views

SUSE CVE-2025-38345

In the Linux kernel, the following vulnerability has been resolved: ACPICA: fix acpi operand cache leak in dswstate.c ACPICA commit 987a3b5cf7175916e2a4b6ea5b8e70f830dfe732 I found an ACPI cache leak in ACPI early termination and boot continuing case. When early termination occurs due to maliciou...

4.4CVSS6.2AI score0.00163EPSS
Exploits0References22
SUSE CVE
SUSE CVE
•added 2025/07/08 11:22 p.m.•10 views

SUSE CVE-2025-38181

In the Linux kernel, the following vulnerability has been resolved: calipso: Fix null-ptr-deref in calipsoreqset,delattr. syzkaller reported a null-ptr-deref in sockomalloc while allocating a CALIPSO option. 0 The NULL is of struct sock, which was fetched by sktofullsk in calipsoreqsetattr. Since...

7.5CVSS6.4AI score0.00171EPSS
Exploits0References96
SUSE CVE
SUSE CVE
•added 2025/07/07 11:24 p.m.•10 views

SUSE CVE-2025-38177

In the Linux kernel, the following vulnerability has been resolved: schhfsc: make hfscqlennotify idempotent hfscqlennotify is not idempotent either and not friendly to its callers, like fqcodeldequeue. Let's make it idempotent to ease qdisctreereducebacklog callers' life: 1. updatevf decreases...

7CVSS6.5AI score0.00151EPSS
Exploits0References87
SUSE CVE
SUSE CVE
•added 2025/07/07 11:24 p.m.•10 views

SUSE CVE-2025-38190

In the Linux kernel, the following vulnerability has been resolved: atm: Revert atmaccounttx if copyfromiterfull fails. In vccsendmsg, we account skb-truesize to sk-skwmemalloc by atmaccounttx. It is expected to be reverted by atmpopraw later called by vcc-dev-ops-sendvcc, skb. However, vccsendms...

5.5CVSS6.4AI score0.00164EPSS
Exploits0References23
SUSE CVE
SUSE CVE
•added 2025/07/07 11:24 p.m.•10 views

SUSE CVE-2025-38200

In the Linux kernel, the following vulnerability has been resolved: i40e: fix MMIO write access to an invalid page in i40eclearhw When the device sends a specific input, an integer underflow can occur, leading to MMIO write access to an invalid page. Prevent the integer underflow by changing the...

6CVSS5.3AI score0.00162EPSS
Exploits0References31
SUSE CVE
SUSE CVE
•added 2025/07/03 11:23 p.m.•10 views

SUSE CVE-2025-38100

In the Linux kernel, the following vulnerability has been resolved: x86/iopl: Cure TIFIOBITMAP inconsistencies iobitmapexit is invoked from exitthread when a task exists or when a fork fails. In the latter case the exitthread cleans up resources which were allocated during fork. iobitmapexit...

4.4CVSS7.8AI score0.00172EPSS
Exploits0References16
SUSE CVE
SUSE CVE
•added 2025/06/19 3:45 a.m.•10 views

SUSE CVE-2022-49972

In the Linux kernel, the following vulnerability has been resolved: xsk: Fix corrupted packets for XDPSHAREDUMEM Fix an issue in XDPSHAREDUMEM mode together with aligned mode where packets are corrupted for the second and any further sockets bound to the same umem. In other words, this does not...

5.5CVSS6.6AI score0.00184EPSS
Exploits0References6
SUSE CVE
SUSE CVE
•added 2025/06/19 3:45 a.m.•10 views

SUSE CVE-2022-49977

In the Linux kernel, the following vulnerability has been resolved: ftrace: Fix NULL pointer dereference in isftracetrampoline when ftrace is dead ftracestartup does not remove ops from ftraceopslist when ftracestartupenable fails: registerftracefunction ftracestartup registerftracefunction...

4.4CVSS6AI score0.00208EPSS
Exploits0References13
SUSE CVE
SUSE CVE
•added 2025/06/19 3:45 a.m.•10 views

SUSE CVE-2022-49978

In the Linux kernel, the following vulnerability has been resolved: fbdev: fbpm2fb: Avoid potential divide by zero error In dofbioctl of fbmem.c, if cmd is FBIOPUTVSCREENINFO, var will be copied from user, then go through fbsetvar and info-fbops-fbcheckvar which could may be pm2fbcheckvar. Along...

5.5CVSS6.2AI score0.00208EPSS
Exploits0References12
SUSE CVE
SUSE CVE
•added 2025/06/19 3:44 a.m.•10 views

SUSE CVE-2022-50006

In the Linux kernel, the following vulnerability has been resolved: NFSv4.2 fix problems with nfs42sscopen A destination server while doing a COPY shouldn't accept using the passed in filehandle if its not a regular filehandle. If allocfilepseudo has failed, we need to decrement a reference on th...

5.5CVSS6.5AI score0.00202EPSS
Exploits0References9
SUSE CVE
SUSE CVE
•added 2025/06/19 3:42 a.m.•10 views

SUSE CVE-2022-50065

In the Linux kernel, the following vulnerability has been resolved: virtionet: fix memory leak inside XPDTX with mergeable When we call xdpconvertbufftoframe to get xdpf, if it returns NULL, we should check if xdppage was allocated by xdplinearizepage. If it is newly allocated, it should be freed...

5.5CVSS6.3AI score0.00159EPSS
Exploits0References12
SUSE CVE
SUSE CVE
•added 2025/06/19 3:42 a.m.•10 views

SUSE CVE-2022-50079

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check correct bounds for stream encoder instances for DCN303 Why & How engid for DCN303 cannot be more than 1, since we have only two instances of stream encoders. Check the correct boundary condition for engine ...

5.5CVSS6.5AI score0.00223EPSS
Exploits0References9
SUSE CVE
SUSE CVE
•added 2025/06/19 3:41 a.m.•10 views

SUSE CVE-2022-50111

In the Linux kernel, the following vulnerability has been resolved: ASoC: mt6359: Fix refcount leak bug In mt6359parsedt and mt6359accdetparsedt, we should call ofnodeput for the reference returned by ofgetchildbyname which has increased the refcount...

5.5CVSS6.3AI score0.00202EPSS
Exploits0References9
SUSE CVE
SUSE CVE
•added 2025/06/19 3:41 a.m.•10 views

SUSE CVE-2022-50126

In the Linux kernel, the following vulnerability has been resolved: jbd2: fix assertion 'jh-bfrozendata == NULL' failure when journal aborted Following process will fail assertion 'jh-bfrozendata == NULL' in jbd2journaldirtymetadata: jbd2journalcommittransaction unlinkdir/a jh-btransaction = tran...

5.5CVSS6.2AI score0.0016EPSS
Exploits0References12
SUSE CVE
SUSE CVE
•added 2025/06/19 3:39 a.m.•10 views

SUSE CVE-2022-50172

In the Linux kernel, the following vulnerability has been resolved: mt76: mt76x02u: fix possible memory leak in mt76x02umcusendmsg Free the skb if mt76ubulkmsg fails in mt76x02umcusendmsg routine...

5.5CVSS6.2AI score0.00202EPSS
Exploits0References11
SUSE CVE
SUSE CVE
•added 2025/06/19 3:16 a.m.•10 views

SUSE CVE-2025-38022

In the Linux kernel, the following vulnerability has been resolved: RDMA/core: Fix "KASAN: slab-use-after-free Read in ibregisterdevice" problem Call Trace: dumpstack lib/dumpstack.c:94 inline dumpstacklvl+0x116/0x1f0 lib/dumpstack.c:120 printaddressdescription mm/kasan/report.c:408 inline...

5.3CVSS7.9AI score0.00165EPSS
Exploits0References20
Total number of security vulnerabilities5000