Lucene search
K
SusecveRecent

59855 matches found

SUSE CVE
SUSE CVE
•added 2025/12/17 12:25 a.m.•5 views

SUSE CVE-2025-68187

In the Linux kernel, the following vulnerability has been resolved: net: mdio: Check regmap pointer returned by devicenodetoregmap The call to devicenodetoregmap in airohamdioprobe can return an ERRPTR if regmap initialization fails. Currently, the driver stores the pointer without validation,...

6.6AI score0.00155EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/17 12:25 a.m.•3 views

SUSE CVE-2025-68188

In the Linux kernel, the following vulnerability has been resolved: tcp: use dstdevrcu in tcpfastopenactivedisableofocheck Use RCU to avoid a pair of atomic operations and a potential UAF on dstdev-flags...

6.3CVSS6.5AI score0.00166EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2025/12/17 12:25 a.m.•3 views

SUSE CVE-2025-68189

In the Linux kernel, the following vulnerability has been resolved: drm/msm: Fix GEM free for imported dma-bufs Imported dma-bufs also have obj-resv != &obj-resv. So we should check both this condition in addition to flags for handling the NOSHARE case. Fixes this splat that was reported with IRI...

6.5AI score0.00155EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/17 12:25 a.m.•2 views

SUSE CVE-2025-68190

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/atom: Check kcalloc for WS buffer in amdgpuatomexecutetablelocked kcalloc may fail. When WS is non-zero and allocation fails, ectx.ws remains NULL while ectx.wssize is set, leading to a potential NULL pointer dereferen...

5.5CVSS6.7AI score0.00166EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2025/12/17 12:25 a.m.•4 views

SUSE CVE-2025-68191

In the Linux kernel, the following vulnerability has been resolved: udptunnel: use netdevwarn instead of netdevWARN netdevWARN uses WARN/WARNON to print a backtrace along with file and line information. In this case, udptunnelnicregister returning an error is just a failed operation, not a kernel...

6.4AI score0.00173EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/17 12:25 a.m.•6 views

SUSE CVE-2025-68192

In the Linux kernel, the following vulnerability has been resolved: net: usb: qmiwwan: initialize MAC header offset in qmimuxrxfixup Raw IP packets have no MAC header, leaving skb-macheader uninitialized. This can trigger kernel panics on ARM64 when xfrm or other subsystems access the offset due ...

5.5CVSS6.5AI score0.00177EPSS
Exploits0References22
SUSE CVE
SUSE CVE
•added 2025/12/17 12:25 a.m.•5 views

SUSE CVE-2025-68193

In the Linux kernel, the following vulnerability has been resolved: drm/xe/guc: Add devm release action to safely tear down CT When a buffer object BO is allocated with the XEBOFLAGGGTTINVALIDATE flag, the driver initiates TLB invalidation requests via the CTB mechanism while releasing the BO...

6.7AI score0.00155EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/17 12:25 a.m.•6 views

SUSE CVE-2025-68194

In the Linux kernel, the following vulnerability has been resolved: media: imon: make sendpacket more robust syzbot is reporting that imon has three problems which result in hung tasks due to forever holding device lock 1. First problem is that when usbrxcallbackintf0 once got -EPROTO error after...

5.5CVSS6.3AI score0.00177EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2025/12/17 12:25 a.m.•3 views

SUSE CVE-2025-68195

In the Linux kernel, the following vulnerability has been resolved: x86/CPU/AMD: Add missing terminator for zen5rdseedmicrocode Running x86matchminmicrocoderev on a Zen5 CPU trips up KASAN for an out of bounds access...

5.5CVSS6.5AI score0.00155EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2025/12/17 12:25 a.m.•4 views

SUSE CVE-2025-68196

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Cache streams targeting link when performing LT automation WHY Last LT automation update can cause crash by referencing currentstate and calling into dcupdateplanesandstream which may clobber currentstate. HOW...

6.6AI score0.00155EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/17 12:25 a.m.•3 views

SUSE CVE-2025-68197

In the Linux kernel, the following vulnerability has been resolved: bnxten: Fix null pointer dereference in bnxtbstracecheckwrap With older FW, we may get the ASYNCEVENTCMPLEVENTIDDBGBUFPRODUCER for FW trace data type that has not been initialized. This will result in a crash in...

5.5CVSS6.4AI score0.00155EPSS
Exploits0References10
SUSE CVE
SUSE CVE
•added 2025/12/17 12:25 a.m.•5 views

SUSE CVE-2025-68198

In the Linux kernel, the following vulnerability has been resolved: crash: fix crashkernel resource shrink When crashkernel is configured with a high reservation, shrinking its value below the low crashkernel reservation causes two issues: 1. Invalid crashkernel resource objects 2. Kernel crash i...

5.5CVSS6.4AI score0.00168EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2025/12/17 12:25 a.m.•2 views

SUSE CVE-2025-68199

In the Linux kernel, the following vulnerability has been resolved: codetag: debug: handle existing CODETAGEMPTY in markobjextsempty for slabobjext When allocslabobjexts fails and then later succeeds in allocating a slab extension vector, it calls handlefailedobjextsalloc to mark all objects in t...

6.3AI score0.00166EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/17 12:25 a.m.•3 views

SUSE CVE-2025-68200

In the Linux kernel, the following vulnerability has been resolved: bpf: Add bpfprogrundatapointers syzbot found that clsbpfclassify is able to change tcskbcbskb-dropreason triggering a warning in skskbreasondrop. WARNING: CPU: 0 PID: 5965 at net/core/skbuff.c:1192 skskbreasondrop...

5.5CVSS6.5AI score0.00173EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2025/12/17 12:25 a.m.•3 views

SUSE CVE-2025-68201

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: remove two invalid BUGONs Those can be triggered trivially by userspace...

5.5CVSS6.6AI score0.00168EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2025/12/17 12:25 a.m.•4 views

SUSE CVE-2025-68202

In the Linux kernel, the following vulnerability has been resolved: schedext: Fix unsafe locking in the scxdumpstate For built with CONFIGPREEMPTRT=y kernels, the dumplock will be converted sleepable spinlock and not disable-irq, so the following scenarios occur: inconsistent IN-HARDIRQ-W -...

5.5CVSS6.5AI score0.00166EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2025/12/17 12:25 a.m.•14 views

SUSE CVE-2025-68203

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

6.1AI score0.00024EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/17 12:25 a.m.•6 views

SUSE CVE-2025-68204

In the Linux kernel, the following vulnerability has been resolved: pmdomain: arm: scmi: Fix genpd leak on provider registration failure If ofgenpdaddprovideronecell fails during probe, the previously created generic power domains are not removed, leading to a memory leak and potential kernel cra...

5.5CVSS6.3AI score0.00177EPSS
Exploits0References16
SUSE CVE
SUSE CVE
•added 2025/12/17 12:25 a.m.•4 views

SUSE CVE-2025-68205

In the Linux kernel, the following vulnerability has been resolved: ALSA: hda/hdmi: Fix breakage at probing nvhdmi-mcp driver After restructuring and splitting the HDMI codec driver code, each HDMI codec driver contains the own buildcontrols and buildpcms ops. A copy-n-paste error put the wrong...

6.5AI score0.00155EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/17 12:25 a.m.•4 views

SUSE CVE-2025-68206

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftct: add seqadj extension for natted connections Sequence adjustment may be required for FTP traffic with PASV/EPSV modes. due to need to re-write packet payload IP, port on the ftp control connection. This can requi...

5.5CVSS6.5AI score0.00173EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2025/12/17 12:25 a.m.•3 views

SUSE CVE-2025-68207

In the Linux kernel, the following vulnerability has been resolved: drm/xe/guc: Synchronize Dead CT worker with unbind Cancel and wait for any Dead CT worker to complete before continuing with device unbinding. Else the worker will end up using resources freed by the undind operation. cherry pick...

5.5CVSS6.5AI score0.00166EPSS
Exploits0References10
SUSE CVE
SUSE CVE
•added 2025/12/17 12:25 a.m.•5 views

SUSE CVE-2025-68208

In the Linux kernel, the following vulnerability has been resolved: bpf: account for current allocated stack depth in widenimprecisescalars The usage pattern for widenimprecisescalars looks as follows: prevst = findpreventryenv, ...; queuedst = pushstack...; widenimprecisescalarsenv, prevst,...

6CVSS6.5AI score0.00168EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2025/12/17 12:25 a.m.•5 views

SUSE CVE-2025-68209

In the Linux kernel, the following vulnerability has been resolved: mlx5: Fix default values in create CQ Currently, CQs without a completion function are assigned the mlx5addcqtotasklet function by default. This is problematic since only user CQs created through the mlx5ib driver are intended to...

5.5CVSS6.2AI score0.00155EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2025/12/17 12:25 a.m.•6 views

SUSE CVE-2025-68210

In the Linux kernel, the following vulnerability has been resolved: erofs: avoid infinite loop due to incomplete zstd-compressed data Currently, the decompression logic incorrectly spins if compressed data is truncated in crafted deliberately corrupted images...

5.5CVSS6.5AI score0.00166EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2025/12/17 12:25 a.m.•3 views

SUSE CVE-2025-68211

In the Linux kernel, the following vulnerability has been resolved: ksm: use range-walk function to jump over holes in scangetnextrmapitem Currently, scangetnextrmapitem walks every page address in a VMA to locate mergeable pages. This becomes highly inefficient when scanning large virtual memory...

5.5CVSS6.4AI score0.00123EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2025/12/17 12:25 a.m.•3 views

SUSE CVE-2025-68212

In the Linux kernel, the following vulnerability has been resolved: fs: Fix uninitialized 'offp' in statmountstring In statmountstring, most flags assign an output offset pointer offp which is later updated with the string offset. However, the STATMOUNTMNTUIDMAP and STATMOUNTMNTGIDMAP cases...

6.4AI score0.00155EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/17 12:25 a.m.•2 views

SUSE CVE-2025-68213

In the Linux kernel, the following vulnerability has been resolved: idpf: fix possible vportconfig NULL pointer deref in remove Attempting to remove the driver will cause a crash in cases where the vport failed to initialize. Following trace is from an instance where the driver failed during an...

5.5CVSS6.4AI score0.00173EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2025/12/17 12:25 a.m.•7 views

SUSE CVE-2025-68214

In the Linux kernel, the following vulnerability has been resolved: timers: Fix NULL function pointer race in timershutdownsync There is a race condition between timershutdownsync and timer expiration that can lead to hitting a WARNON in expiretimers. The issue occurs when timershutdownsync clear...

4.7CVSS6.3AI score0.00117EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/17 12:25 a.m.•3 views

SUSE CVE-2025-68215

In the Linux kernel, the following vulnerability has been resolved: ice: fix PTP cleanup on driver removal in error path Improve the cleanup on releasing PTP resources in error path. The error case might happen either at the driver probe and PTP feature initialization or on PTP restart errors in...

5.5CVSS6.5AI score0.00166EPSS
Exploits0References10
SUSE CVE
SUSE CVE
•added 2025/12/17 12:25 a.m.•3 views

SUSE CVE-2025-68216

In the Linux kernel, the following vulnerability has been resolved: LoongArch: BPF: Disable trampoline for kernel module function trace The current LoongArch BPF trampoline implementation is incompatible with tracing functions in kernel modules. This causes several severe and user-visible problem...

6.4AI score0.00155EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/17 12:25 a.m.•4 views

SUSE CVE-2025-68217

In the Linux kernel, the following vulnerability has been resolved: Input: pegasus-notetaker - fix potential out-of-bounds access In the pegasusnotetaker driver, the pegasusprobe function allocates the URB transfer buffer using the wMaxPacketSize value from the endpoint descriptor. An attacker ca...

5.5CVSS6.7AI score0.00184EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2025/12/17 12:25 a.m.•8 views

SUSE CVE-2025-68218

In the Linux kernel, the following vulnerability has been resolved: nvme-multipath: fix lockdep WARN due to partition scan work Blktests test cases nvme/014, 057 and 058 fail occasionally due to a lockdep WARN. As reported in the Closes tag URL, the WARN indicates that a deadlock can happen due t...

5.5CVSS6.5AI score0.00168EPSS
Exploits0References23
SUSE CVE
SUSE CVE
•added 2025/12/17 12:25 a.m.•4 views

SUSE CVE-2025-68219

In the Linux kernel, the following vulnerability has been resolved: cifs: fix memory leak in smb3fscontextparseparam error path Add proper cleanup of ctx-source and fc-source to the cifsparsemounterr error handler. This ensures that memory allocated for the source strings is correctly freed on al...

6.3AI score0.00168EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/17 12:25 a.m.•4 views

SUSE CVE-2025-68220

In the Linux kernel, the following vulnerability has been resolved: net: ethernet: ti: netcp: Standardize knavdmaopenchannel to return NULL on error Make knavdmaopenchannel consistently return NULL on error instead of ERRPTR. Currently the header include/linux/soc/ti/knavdma.h returns NULL when t...

6.4AI score0.00177EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/17 12:25 a.m.•3 views

SUSE CVE-2025-68221

In the Linux kernel, the following vulnerability has been resolved: mptcp: fix address removal logic in mptcppmnlrmaddr Fix inverted WARNONONCE condition that prevented normal address removal counter updates. The current code only executes decrement logic when the counter is already 0 abnormal...

6.8AI score0.00173EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/17 12:25 a.m.•5 views

SUSE CVE-2025-68222

In the Linux kernel, the following vulnerability has been resolved: pinctrl: s32cc: fix uninitialized memory in s32pinctrldesc s32pinctrldesc is allocated with devmkmalloc, but not all of its fields are initialized. Notably, numcustomparams is used in pinconfgenericparsedtconfig, resulting in...

5.5CVSS6.5AI score0.00175EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2025/12/17 12:25 a.m.•5 views

SUSE CVE-2025-68223

In the Linux kernel, the following vulnerability has been resolved: drm/radeon: delete radeonfenceprocess in issignaled, no deadlock Delete the attempt to progress the queue when checking if fence is signaled. This avoids deadlock. dma-fenceops::signaled can be called with the fence lock in unkno...

4.7CVSS6.4AI score0.00099EPSS
Exploits0References12
SUSE CVE
SUSE CVE
•added 2025/12/17 12:25 a.m.•4 views

SUSE CVE-2025-68224

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

6.1AI score0.00032EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/17 12:25 a.m.•4 views

SUSE CVE-2025-68225

In the Linux kernel, the following vulnerability has been resolved: lib/testkho: check if KHO is enabled We must check whether KHO is enabled prior to issuing KHO commands, otherwise KHO internal data structures are not initialized...

6.5AI score0.00162EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/17 12:25 a.m.•5 views

SUSE CVE-2025-68226

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix incomplete backport in cfidsinvalidationworker The previous commit bdb596ceb4b7 "smb: client: fix potential UAF in smb2closecachedfid" was an incomplete backport and missed one krefput call in...

6.6AI score0.0015EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/17 12:24 a.m.•3 views

SUSE CVE-2025-68227

In the Linux kernel, the following vulnerability has been resolved: mptcp: Fix proto fallback detection with BPF The sockmap feature allows bpf syscall from userspace, or based on bpf sockops, replacing the skprot of sockets during protocol stack processing with sockmap's custom read/write...

5.5CVSS6.5AI score0.0018EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2025/12/17 12:24 a.m.•6 views

SUSE CVE-2025-68228

In the Linux kernel, the following vulnerability has been resolved: drm/plane: Fix createinformatblob return value createinformatblob is either supposed to return a valid pointer or an error, but never NULL. The caller will dereference the blob when it is not an error, and thus will oops if NULL...

6.5AI score0.00155EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/17 12:24 a.m.•6 views

SUSE CVE-2025-68229

In the Linux kernel, the following vulnerability has been resolved: scsi: target: tcmloop: Fix segfault in tcmlooptpgaddressshow If the allocation of tlhba-sh fails in tcmloopdriverprobe and we attempt to dereference it in tcmlooptpgaddressshow we will get a segfault, see below for an example. So...

6.2AI score0.00172EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/17 12:24 a.m.•3 views

SUSE CVE-2025-68230

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix gpu page fault after hibernation on PF passthrough On PF passthrough environment, after hibernate and then resume, coralgemm will cause gpu page fault. Mode1 reset happens during hibernate, but partition mode is n...

5.5CVSS6.5AI score0.00162EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2025/12/17 12:24 a.m.•2 views

SUSE CVE-2025-68231

In the Linux kernel, the following vulnerability has been resolved: mm/mempool: fix poisoning order0 pages with HIGHMEM The kernel test has reported: BUG: unable to handle page fault for address: fffba000 PF: supervisor write access in kernel mode PF: errorcode0x0002 - not-present page pde =...

6.5AI score0.00156EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/17 12:24 a.m.•6 views

SUSE CVE-2025-68232

In the Linux kernel, the following vulnerability has been resolved: veth: more robust handing of race to avoid txq getting stuck Commit dc82a33297fc "veth: apply qdisc backpressure on full ptrring to reduce TX drops" introduced a race condition that can lead to a permanently stalled TXQ. This was...

6.3AI score0.00155EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/17 12:24 a.m.•3 views

SUSE CVE-2025-68233

In the Linux kernel, the following vulnerability has been resolved: drm/tegra: Add call to putpid Add a call to putpid corresponding to gettaskpid. host1xmemorycontextalloc does not take ownership of the PID so we need to free it here to avoid leaking. [email protected]: reword commit message...

5.5CVSS6.5AI score0.00156EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2025/12/17 12:24 a.m.•4 views

SUSE CVE-2025-68234

In the Linux kernel, the following vulnerability has been resolved: iouring/cmdnet: fix wrong argument types for skbqueuesplice If timestamp retriving needs to be retried and the local list of SKB's already has entries, then it's spliced back into the socket queue. However, the arguments for the...

5.5CVSS6.3AI score0.00145EPSS
Exploits0References4
SUSE CVE
SUSE CVE
•added 2025/12/17 12:24 a.m.•5 views

SUSE CVE-2025-68235

In the Linux kernel, the following vulnerability has been resolved: nouveau/firmware: Add missing kfree of nvkmfalconfw::boot nvkmfalconfw::boot is allocated, but no one frees it. This causes a kmemleak warning. Make sure this data is deallocated...

5.5CVSS6.5AI score0.00156EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2025/12/17 12:24 a.m.•6 views

SUSE CVE-2025-68236

In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: ufs-qcom: Fix UFS OCP issue during UFS power down PC=3 According to UFS specifications, the power-off sequence for a UFS device includes: - Sending an SSU command with PowerCondition=3 and await a response. - Asserting...

6.7AI score0.00145EPSS
Exploits0References3
Total number of security vulnerabilities59855