Lucene search
K
SusecveRecent

59855 matches found

SUSE CVE
SUSE CVE
•added 2025/12/25 1:3 a.m.•2 views

SUSE CVE-2022-50779

In the Linux kernel, the following vulnerability has been resolved: orangefs: Fix kmemleak in orangefspreparedebugfshelpstring When insert and remove the orangefs module, then debughelpstring will be leaked: unreferenced object 0xffff8881652ba000 size 4096: comm "insmod", pid 1701, jiffies...

4.4CVSS6.7AI score0.00244EPSS
Exploits0References8
SUSE CVE
SUSE CVE
•added 2025/12/25 1:3 a.m.•5 views

SUSE CVE-2022-50780

In the Linux kernel, the following vulnerability has been resolved: net: fix UAF issue in nfqnlnfhookdrop when opsinit failed When the opsinit interface is invoked to initialize the net, but ops-init fails, data is released. However, the ptr pointer in net-gen is invalid. In this case, when...

6.5CVSS6.5AI score0.0018EPSS
Exploits0References4
SUSE CVE
SUSE CVE
•added 2025/12/25 1:3 a.m.•3 views

SUSE CVE-2022-50781

In the Linux kernel, the following vulnerability has been resolved: amdgpu/pm: prevent array underflow in vega20odneditdpmtable In the PPODEDITVDDCCURVE case the "inputindex" variable is capped at 2 but not checked for negative values so it results in an out of bounds read. This value comes from...

6.5CVSS6.5AI score0.0018EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2025/12/25 1:3 a.m.•4 views

SUSE CVE-2022-50782

In the Linux kernel, the following vulnerability has been resolved: ext4: fix bugon in estreesearch caused by bad quota inode We got a issue as fllows: ================================================================== kernel BUG at fs/ext4/extentsstatus.c:202! invalid opcode: 0000 1 PREEMPT SMP...

5.5CVSS6.3AI score0.0019EPSS
Exploits0References8
SUSE CVE
SUSE CVE
•added 2025/12/25 1:3 a.m.•3 views

SUSE CVE-2022-50783

In the Linux kernel, the following vulnerability has been resolved: mptcp: use proper req destructor for IPv6 Before, only the destructor from TCP request sock in IPv4 was called even if the subflow was IPv6. It is important to use the right destructor to avoid memory leaks with some advanced IPv...

5.3CVSS6.5AI score0.00209EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/25 12:58 a.m.•2 views

SUSE CVE-2023-53867

In the Linux kernel, the following vulnerability has been resolved: ceph: fix potential use-after-free bug when trimming caps When trimming the caps and just after the 'session-scaplock' is released in cephiteratesessioncaps the cap maybe removed by another thread, and when using the stale cap...

5.5CVSS6.5AI score0.00168EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/25 12:58 a.m.•5 views

SUSE CVE-2023-53986

In the Linux kernel, the following vulnerability has been resolved: mips: bmips: BCM6358: disable RAC flush for TP1 RAC flush causes kernel panics on BCM6358 with EHCI/OHCI when booting from TP1: 3.881739 usb 1-1: new high-speed USB device number 2 using ehci-platform 3.895011 Reserved instructio...

6.4AI score0.00173EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/25 12:58 a.m.•8 views

SUSE CVE-2023-53987

In the Linux kernel, the following vulnerability has been resolved: ping: Fix potentail NULL deref for /proc/net/icmp. After commit dbca1596bbb0 "ping: convert to RCU lookups, get rid of rwlock", we use RCU for ping sockets, but we should use spinlock for /proc/net/icmp to avoid a potential NULL...

6.5AI score0.00167EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/25 12:58 a.m.•5 views

SUSE CVE-2023-53988

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Fix slab-out-of-bounds read in hdrdeletede Here is a BUG report from syzbot: BUG: KASAN: slab-out-of-bounds in hdrdeletede+0xe0/0x150 fs/ntfs3/index.c:806 Read of size 16842960 at addr ffff888079cc0600 by task...

6.5AI score0.00168EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/25 12:58 a.m.•6 views

SUSE CVE-2023-53989

In the Linux kernel, the following vulnerability has been resolved: arm64: mm: fix VA-range sanity check Both createmappingnoalloc and updatemappingprot sanity-check their 'virt' parameter, but the check itself doesn't make much sense. The condition used today appears to be a historical accident...

5.5CVSS6.5AI score0.00173EPSS
Exploits0References19
SUSE CVE
SUSE CVE
•added 2025/12/25 12:58 a.m.•7 views

SUSE CVE-2023-53990

In the Linux kernel, the following vulnerability has been resolved: SMB3: Add missing locks to protect deferred close file list cifsdeldeferredclose function has a critical section which modifies the deferred close file list. We must acquire deferredlock before calling cifsdeldeferredclose functi...

5.5CVSS6.6AI score0.00168EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2025/12/25 12:58 a.m.•5 views

SUSE CVE-2023-53991

In the Linux kernel, the following vulnerability has been resolved: drm/msm/dpu: Disallow unallocated resources to be returned In the event that the topology requests resources that have not been created by the system because they are typically not represented in dpumdsscfg ^1, the resources in...

5.5CVSS6.5AI score0.00168EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2025/12/25 12:58 a.m.•3 views

SUSE CVE-2023-53992

In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: ocb: don't leave if not joined If there's no OCB state, don't ask the driver/mac80211 to leave, since that's just confusing. Since set/clear the chandef state, that's a simple check...

5.5CVSS6.5AI score0.00167EPSS
Exploits0References18
SUSE CVE
SUSE CVE
•added 2025/12/25 12:58 a.m.•3 views

SUSE CVE-2023-53993

In the Linux kernel, the following vulnerability has been resolved: PCI/DOE: Fix memory leak with CONFIGDEBUGOBJECTS=y After a pcidoetask completes, its workstruct needs to be destroyed to avoid a memory leak with CONFIGDEBUGOBJECTS=y...

5.5CVSS6.4AI score0.00167EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/25 12:58 a.m.•4 views

SUSE CVE-2023-53994

In the Linux kernel, the following vulnerability has been resolved: ionic: remove WARNON to prevent paniconwarn Remove unnecessary early code development check and the WARNON that it uses. The irq alloc and free paths have long been cleaned up and this check shouldn't have stuck around so long...

5.5CVSS6.8AI score0.00181EPSS
Exploits0References17
SUSE CVE
SUSE CVE
•added 2025/12/25 12:58 a.m.•6 views

SUSE CVE-2023-53995

In the Linux kernel, the following vulnerability has been resolved: net: ipv4: fix one memleak in inetdelifa I got the below warning when do fuzzing test: unregisternetdevice: waiting for bond0 to become free. Usage count = 2 It can be repoduced via: ip link add bond0 type bond sysctl -w...

7CVSS6.4AI score0.00173EPSS
Exploits0References17
SUSE CVE
SUSE CVE
•added 2025/12/25 12:58 a.m.•10 views

SUSE CVE-2023-53996

In the Linux kernel, the following vulnerability has been resolved: x86/sev: Make encdechypercall accept a size instead of npages encdechypercall accepted a page count instead of a size, which forced its callers to round up. As a result, non-page aligned vaddrs caused pages to be spuriously marke...

5.5CVSS6.3AI score0.00112EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2025/12/25 12:58 a.m.•5 views

SUSE CVE-2023-53997

In the Linux kernel, the following vulnerability has been resolved: thermal: of: fix double-free on unregistration Since commit 3d439b1a2ad3 "thermal/core: Alloc-copy-free the thermal zone parameters structure", thermalzonedeviceregister allocates a copy of the tzp argument and frees it when...

5.5CVSS6.5AI score0.00156EPSS
Exploits0References17
SUSE CVE
SUSE CVE
•added 2025/12/25 12:58 a.m.•5 views

SUSE CVE-2023-53998

In the Linux kernel, the following vulnerability has been resolved: hwrng: virtio - Fix race on dataavail and actual data The virtio rng device kicks off a new entropy request whenever the data available reaches zero. When a new request occurs at the end of a read operation, that is, when the...

5.5CVSS6.4AI score0.00177EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2025/12/25 12:58 a.m.•5 views

SUSE CVE-2023-53999

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: TC, Fix internal port memory leak The flow rule can be splited, and the extra postact rules are added to postact table. It's possible to trigger memleak when the rule forwards packets from internal port and over tunnel...

5.5CVSS6.7AI score0.00159EPSS
Exploits0References17
SUSE CVE
SUSE CVE
•added 2025/12/25 12:58 a.m.•5 views

SUSE CVE-2023-54000

In the Linux kernel, the following vulnerability has been resolved: net: hns3: fix deadlock issue when externellb and reset are executed together When externellb and reset are executed together, a deadlock may occur: 3147.217009 INFO: task kworker/u321:0:7 blocked for more than 120 seconds...

5.5CVSS6.5AI score0.00176EPSS
Exploits0References17
SUSE CVE
SUSE CVE
•added 2025/12/25 12:58 a.m.•4 views

SUSE CVE-2023-54001

In the Linux kernel, the following vulnerability has been resolved: staging: r8712: Fix memory leak in r8712initxmitpriv In the above mentioned routine, memory is allocated in several places. If the first succeeds and a later one fails, the routine will leak memory. This patch fixes commit...

5.5CVSS6.5AI score0.00176EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2025/12/25 12:57 a.m.•1 views

SUSE CVE-2023-54002

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix assertion of exclop condition when starting balance Balance as exclusive state is compatible with paused balance and device add, which makes some things more complicated. The assertion of valid states when starting fro...

6.7AI score0.00168EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/25 12:57 a.m.•14 views

SUSE CVE-2023-54003

In the Linux kernel, the following vulnerability has been resolved: RDMA/core: Fix GID entry ref leak when createah fails If AH create request fails, release sgidattr to avoid GID entry referrence leak reported while releasing GID table...

3.3CVSS6.5AI score0.00173EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2025/12/25 12:57 a.m.•4 views

SUSE CVE-2023-54004

In the Linux kernel, the following vulnerability has been resolved: udplite: Fix NULL pointer dereference in skmemraiseallocated. syzbot reported 0 a null-ptr-deref in skgetrmem0 while using IPPROTOUDPLITE 0x88: 14:25:52 executing program 1: r0 = socket$inet60xa, 0x80002, 0x88 We had a similar...

5.5CVSS6.4AI score0.00173EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/25 12:57 a.m.•4 views

SUSE CVE-2023-54005

In the Linux kernel, the following vulnerability has been resolved: binder: fix memory leak in binderinit In binderinit, the destruction of binderallocshrinkerinit is not performed in the wrong path, which will cause memory leaks. So this commit introduces binderallocshrinkerexit and calls it in...

5.5CVSS6.5AI score0.00177EPSS
Exploits0References17
SUSE CVE
SUSE CVE
•added 2025/12/25 12:57 a.m.•3 views

SUSE CVE-2023-54006

In the Linux kernel, the following vulnerability has been resolved: afunix: Fix data-race around unixtotinflight. unixtotinflight is changed under spinlockunixgclock, but unixreleasesock reads it locklessly. Let's use READONCE for unixtotinflight. Note that the writer side was marked by commit...

5.5CVSS6.5AI score0.00185EPSS
Exploits0References17
SUSE CVE
SUSE CVE
•added 2025/12/25 12:57 a.m.•9 views

SUSE CVE-2023-54007

In the Linux kernel, the following vulnerability has been resolved: vmcihost: fix a race condition in vmcihostpoll causing GPF During fuzzing, a general protection fault is observed in vmcihostpoll. general protection fault, probably for non-canonical address 0xdffffc0000000019: 0000 1 PREEMPT SM...

5.5CVSS6.3AI score0.00185EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2025/12/25 12:57 a.m.•3 views

SUSE CVE-2023-54008

In the Linux kernel, the following vulnerability has been resolved: virtiovdpa: build affinity masks conditionally We try to build affinity mask via createaffinitymasks unconditionally which may lead several issues: - the affinity mask is not used for parent without affinity support only VDUSE...

5.5CVSS6.3AI score0.00167EPSS
Exploits0References17
SUSE CVE
SUSE CVE
•added 2025/12/25 12:57 a.m.•10 views

SUSE CVE-2023-54009

In the Linux kernel, the following vulnerability has been resolved: i2c: cadence: cdnsi2cmasterxfer: Fix runtime PM leak on error path The cdnsi2cmasterxfer function gets a runtime PM reference when the function is entered. This reference is released when the function is exited. There is currentl...

3.3CVSS6.4AI score0.00173EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2025/12/25 12:57 a.m.•5 views

SUSE CVE-2023-54010

In the Linux kernel, the following vulnerability has been resolved: ACPICA: ACPICA: check null return of ACPIALLOCATEZEROED in acpidbdisplayobjects ACPICA commit 0d5f467d6a0ba852ea3aad68663cbcbd43300fd4 ACPIALLOCATEZEROED may fails, objectinfo might be null and will cause null pointer dereference...

5.5CVSS6.5AI score0.00185EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2025/12/25 12:57 a.m.•6 views

SUSE CVE-2023-54011

In the Linux kernel, the following vulnerability has been resolved: scsi: mpi3mr: Fix an issue found by KASAN Write only correct size 32 instead of 64 bytes...

5.5CVSS6.5AI score0.00167EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/25 12:57 a.m.•5 views

SUSE CVE-2023-54012

In the Linux kernel, the following vulnerability has been resolved: net: fix stack overflow when LRO is disabled for virtual interfaces When the virtual interface's feature is updated, it synchronizes the updated feature for its own lower interface. This propagation logic should be worked as the...

5.5CVSS6.7AI score0.00191EPSS
Exploits0References4
SUSE CVE
SUSE CVE
•added 2025/12/25 12:57 a.m.•4 views

SUSE CVE-2023-54013

In the Linux kernel, the following vulnerability has been resolved: interconnect: Fix locking for runpm vs reclaim For cases where iccbwset can be called in callbaths that could deadlock against shrinker/reclaim, such as runpm resume, we need to decouple the icc locking. Introduce a new iccbwlock...

4.7CVSS6.5AI score0.00163EPSS
Exploits0References16
SUSE CVE
SUSE CVE
•added 2025/12/25 12:57 a.m.•3 views

SUSE CVE-2023-54014

In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Check valid rport returned by fcbsgtorport Klocwork reported warning of rport maybe NULL and will be dereferenced. rport returned by call to fcbsgtorport could be NULL and dereferenced. Check valid rport returned b...

5.5CVSS6.5AI score0.00177EPSS
Exploits0References22
SUSE CVE
SUSE CVE
•added 2025/12/25 12:57 a.m.•3 views

SUSE CVE-2023-54015

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Devcom, fix error flow in mlx5devcomregisterdevice In case devcom allocation is failed, mlx5 is always freeing the priv. However, this priv might have been allocated by a different thread, and freeing it might lead to...

5.5CVSS6.6AI score0.00173EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2025/12/25 12:57 a.m.•5 views

SUSE CVE-2023-54016

In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: Fix memory leak in rxdesc and txdesc Currently when ath12kdpccdescinit is called we allocate memory to rxdescs and txdescs. In ath12kdpcccleanup, during descriptor cleanup rxdescs and txdescs memory is not freed. Th...

4.3CVSS6.5AI score0.00156EPSS
Exploits0References17
SUSE CVE
SUSE CVE
•added 2025/12/25 12:57 a.m.•4 views

SUSE CVE-2023-54017

In the Linux kernel, the following vulnerability has been resolved: powerpc/pseries: fix possible memory leak in ibmebusbusinit If deviceregister returns error in ibmebusbusinit, name of kobject which is allocated in devsetname called in deviceadd is leaked. As comment of deviceadd says, it shoul...

3.3CVSS6.5AI score0.00185EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2025/12/25 12:57 a.m.•4 views

SUSE CVE-2023-54018

In the Linux kernel, the following vulnerability has been resolved: drm/msm/hdmi: Add missing check for allocorderedworkqueue Add check for the return value of allocorderedworkqueue as it may return NULL pointer and cause NULL pointer dereference in hdmihdcp.c and hdmihpd.c. Patchwork:...

5.5CVSS6.5AI score0.00177EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2025/12/25 12:57 a.m.•3 views

SUSE CVE-2023-54019

In the Linux kernel, the following vulnerability has been resolved: sched/psi: use kernfs polling functions for PSI trigger polling Destroying psi trigger in cgroupfilerelease causes UAF issues when a cgroup is removed from under a polling process. This is happening because cgroup removal causes ...

5.5CVSS6.6AI score0.00158EPSS
Exploits0References23
SUSE CVE
SUSE CVE
•added 2025/12/25 12:57 a.m.•9 views

SUSE CVE-2023-54020

In the Linux kernel, the following vulnerability has been resolved: dmaengine: sf-pdma: pdmadesc memory leak fix Commit b2cc5c465c2c "dmaengine: sf-pdma: Add multithread support for a DMA channel" changed sfpdmaprepdmamemcpy to unconditionally allocate a new sfpdmadesc each time it is called. The...

5.5CVSS6.4AI score0.00164EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2025/12/25 12:57 a.m.•5 views

SUSE CVE-2023-54021

In the Linux kernel, the following vulnerability has been resolved: ext4: set goal start correctly in ext4mbnormalizerequest We need to set acgex to notify the goal start used in ext4mbfindbygoal. Set acgex instead of acfex in ext4mbnormalizerequest. Besides we should assure goal start is in rang...

5.5CVSS6.4AI score0.00165EPSS
Exploits0References8
SUSE CVE
SUSE CVE
•added 2025/12/25 12:57 a.m.•4 views

SUSE CVE-2023-54022

In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Fix potential memory leaks at error path for UMP open The allocation and initialization errors at allocmidiurbs that is called at MIDI 2.0 / UMP device are supposed to be handled at the caller side by invoking...

5.5CVSS6.4AI score0.00145EPSS
Exploits0References17
SUSE CVE
SUSE CVE
•added 2025/12/25 12:57 a.m.•6 views

SUSE CVE-2023-54023

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix race between balance and cancel/pause Syzbot reported a panic that looks like this: assertion failed: fsinfo-exclusiveoperation == BTRFSEXCLOPBALANCEPAUSED, in fs/btrfs/ioctl.c:465 ------------ cut here ------------...

5.5CVSS6.4AI score0.00155EPSS
Exploits0References17
SUSE CVE
SUSE CVE
•added 2025/12/25 12:57 a.m.•3 views

SUSE CVE-2023-54024

In the Linux kernel, the following vulnerability has been resolved: KVM: Destroy target device if coalesced MMIO unregistration fails Destroy and free the target coalesced MMIO device if unregistering said device fails. As clearly noted in the code, kvmiobusunregisterdev does not destroy the targ...

5.5CVSS6.5AI score0.00161EPSS
Exploits0References9
SUSE CVE
SUSE CVE
•added 2025/12/25 12:57 a.m.•5 views

SUSE CVE-2023-54025

In the Linux kernel, the following vulnerability has been resolved: wifi: rsi: Do not configure WoWlan in shutdown hook if not enabled In case WoWlan was never configured during the operation of the system, the hw-wiphy-wowlanconfig will be NULL. rsiconfigwowlan checks whether wowlanconfig is...

5.5CVSS6.5AI score0.00168EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2025/12/25 12:57 a.m.•5 views

SUSE CVE-2023-54026

In the Linux kernel, the following vulnerability has been resolved: opp: Fix use-after-free in lazyopptables after probe deferral When devpmoppoffindiccpaths in allocateopptable returns -EPROBEDEFER, the opptable is freed again, to wait until all the interconnect paths are available. However, if...

5.5CVSS6.5AI score0.00157EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2025/12/25 12:57 a.m.•3 views

SUSE CVE-2023-54027

In the Linux kernel, the following vulnerability has been resolved: iio: core: Prevent invalid memory access when there is no parent Commit 813665564b3d "iio: core: Convert to use firmware node handle instead of OF node" switched the kind of nodes to use for label retrieval in device registration...

5.5CVSS6.4AI score0.00155EPSS
Exploits0References17
SUSE CVE
SUSE CVE
•added 2025/12/25 12:57 a.m.•4 views

SUSE CVE-2023-54028

In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix the error "trying to register non-static key in rxecleanuptask" In the function rxecreateqp, rxeqpfrominit is called to initialize qp, internally things like rxeinittask are not setup until rxeqpinitreq. If an error...

5.5CVSS6.5AI score0.00164EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2025/12/25 12:57 a.m.•7 views

SUSE CVE-2023-54029

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

6.1AI score0.00022EPSS
Exploits0References3
Total number of security vulnerabilities59855