Lucene search
K
SusecveRecent

59855 matches found

SUSE CVE
SUSE CVE
•added 2025/12/10 12:34 a.m.•8 views

SUSE CVE-2023-53855

In the Linux kernel, the following vulnerability has been resolved: net: dsa: ocelot: call dsatag8021qunregister under rtnllock on driver remove When the tagging protocol in current use is "ocelot-8021q" and we unbind the driver, we see this splat: $ echo '0000:00:00.2'...

5.5CVSS6.5AI score0.00192EPSS
Exploits0References17
SUSE CVE
SUSE CVE
•added 2025/12/10 12:34 a.m.•5 views

SUSE CVE-2023-53856

In the Linux kernel, the following vulnerability has been resolved: of: overlay: Call ofchangesetinit early When ofoverlayfdtapply fails, the changeset may be partially applied, and the caller is still expected to call ofoverlayremove to clean up this partial state. However, ofoverlayapply calls...

5.5CVSS6.3AI score0.00199EPSS
Exploits0References17
SUSE CVE
SUSE CVE
•added 2025/12/10 12:34 a.m.•6 views

SUSE CVE-2023-53857

In the Linux kernel, the following vulnerability has been resolved: bpf: bpfskstorage: Fix invalid wait context lockdep report './testprogs -t testlocalstorage' reported a splat: 27.137569 ============================= 27.138122 BUG: Invalid wait context 27.138650 6.5.0-03980-gd11ae1b16b0a 247...

5.5CVSS6.1AI score0.00183EPSS
Exploits0References17
SUSE CVE
SUSE CVE
•added 2025/12/10 12:34 a.m.•6 views

SUSE CVE-2023-53858

In the Linux kernel, the following vulnerability has been resolved: tty: serial: samsungtty: Fix a memory leak in s3c24xxserialgetclk in case of error If clkgetrate fails, the clk that has just been allocated needs to be freed...

5.5CVSS6.4AI score0.00209EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2025/12/10 12:34 a.m.•6 views

SUSE CVE-2023-53859

In the Linux kernel, the following vulnerability has been resolved: s390/idle: mark archcpuidle noinstr linux-next commit "cpuidle: tracing: Warn about !rcuiswatching" adds a new warning which hits on s390's archcpuidle function: RCU not on for: archcpuidle+0x0/0x28 WARNING: CPU: 2 PID: 0 at...

4.4CVSS6.4AI score0.00194EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/10 12:34 a.m.•3 views

SUSE CVE-2023-53860

In the Linux kernel, the following vulnerability has been resolved: dm: don't attempt to queue IO under RCU protection dm looks up the table for IO based on the request type, with an assumption that if the request is marked REQNOWAIT, it's fine to attempt to submit that IO while under RCU read lo...

5.5CVSS6.3AI score0.00197EPSS
Exploits0References19
SUSE CVE
SUSE CVE
•added 2025/12/10 12:34 a.m.•4 views

SUSE CVE-2023-53861

In the Linux kernel, the following vulnerability has been resolved: ext4: correct grp validation in ext4mbgoodgroup Group corruption check will access memory of grp and will trigger kernel crash if grp is NULL. So do NULL check before corruption check...

5.5CVSS6.6AI score0.00199EPSS
Exploits0References17
SUSE CVE
SUSE CVE
•added 2025/12/10 12:34 a.m.•5 views

SUSE CVE-2023-53862

In the Linux kernel, the following vulnerability has been resolved: hfs: fix missing hfsbnodeget in hfsbnodecreate Syzbot found a kernel BUG in hfsbnodeput: kernel BUG at fs/hfs/bnode.c:466! invalid opcode: 0000 1 PREEMPT SMP KASAN CPU: 0 PID: 3634 Comm: kworker/u4:5 Not tainted...

5.5CVSS6.4AI score0.00209EPSS
Exploits0References8
SUSE CVE
SUSE CVE
•added 2025/12/10 12:34 a.m.•7 views

SUSE CVE-2023-53863

In the Linux kernel, the following vulnerability has been resolved: netlink: do not hard code device address lenth in fdb dumps syzbot reports that some netdev devices do not have a six bytes address 1 Replace ETHALEN by dev-addrlen. 1 Case of a device where dev-addrlen = 4 BUG: KMSAN:...

5.5CVSS6.5AI score0.00231EPSS
Exploits0References18
SUSE CVE
SUSE CVE
•added 2025/12/10 12:34 a.m.•6 views

SUSE CVE-2023-53864

In the Linux kernel, the following vulnerability has been resolved: drm/mxsfb: Disable overlay plane in mxsfbplaneoverlayatomicdisable When disabling overlay plane in mxsfbplaneoverlayatomicupdate, overlay plane's framebuffer pointer is NULL. So, dereferencing it would cause a kernel OopsNULL...

5.5CVSS6.4AI score0.00192EPSS
Exploits0References19
SUSE CVE
SUSE CVE
•added 2025/12/10 12:34 a.m.•6 views

SUSE CVE-2023-53865

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix warning when putting transaction with qgroups enabled after abort If we have a transaction abort with qgroups enabled we get a warning triggered when doing the final put on the transaction, like this: 552.6789...

5.5CVSS6.5AI score0.00199EPSS
Exploits0References17
SUSE CVE
SUSE CVE
•added 2025/12/10 12:34 a.m.•3 views

SUSE CVE-2023-53866

In the Linux kernel, the following vulnerability has been resolved: ASoC: soc-compress: Reposition and add pcmmutex If paniconwarn is set and compress streamDPCM is started, then kernel panic occurred because card-pcmmutex isn't held appropriately. In the following functions, warning were issued ...

5.5CVSS6.5AI score0.00192EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2025/12/10 12:26 a.m.•5 views

SUSE CVE-2025-40327

In the Linux kernel, the following vulnerability has been resolved: perf/core: Fix system hang caused by cpu-clock usage cpu-clock usage by the async-profiler tool can trigger a system hang, which got bisected back to the following commit by Octavia Togami: 18dbcbfabfff "perf: Fix the POLLHUP...

6.7AI score0.00183EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/10 12:26 a.m.•2 views

SUSE CVE-2025-40328

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF in smb2closecachedfid findorcreatecacheddir could grab a new reference after krefput had seen the refcount drop to zero but before cfidlistlock is acquired in smb2closecachedfid, leading to...

5.5CVSS6.4AI score0.00199EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2025/12/10 12:26 a.m.•2 views

SUSE CVE-2025-40329

In the Linux kernel, the following vulnerability has been resolved: drm/sched: Fix deadlock in drmschedentitykilljobscb The Mesa issue referenced below pointed out a possible deadlock: 1231.611031 Possible interrupt unsafe locking scenario: 1231.611033 CPU0 CPU1 1231.611034 ---- ---- 1231.611035...

5.5CVSS6.7AI score0.00194EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2025/12/10 12:26 a.m.•4 views

SUSE CVE-2025-40330

In the Linux kernel, the following vulnerability has been resolved: bnxten: Shutdown FW DMA in bnxtshutdown The netifclose call in bnxtshutdown only stops packet DMA. There may be FW DMA for trace logging recently added that will continue. If we kexec to a new kernel, the DMA will corrupt memory ...

5.5CVSS6.5AI score0.00188EPSS
Exploits0References10
SUSE CVE
SUSE CVE
•added 2025/12/10 12:26 a.m.•4 views

SUSE CVE-2025-40331

In the Linux kernel, the following vulnerability has been resolved: sctp: Prevent TOCTOU out-of-bounds write For the following path not holding the sock lock, sctpdiagdump - sctpforeachendpoint - sctpepdump make sure not to exceed bounds in case the address list has grown between buffer allocatio...

5.5CVSS6.8AI score0.00209EPSS
Exploits0References28
SUSE CVE
SUSE CVE
•added 2025/12/10 12:26 a.m.•4 views

SUSE CVE-2025-40332

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix mmap write lock not release If mmap write lock is taken while draining retry fault, mmap write lock is not released because svmrangerestorepages calls mmapreadunlock then returns. This causes deadlock and system...

5.5CVSS6.5AI score0.00192EPSS
Exploits0References10
SUSE CVE
SUSE CVE
•added 2025/12/10 12:26 a.m.•6 views

SUSE CVE-2025-40333

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix infinite loop in insertextenttree When we get wrong extent info data, and look up extentnode in rb tree, it will cause infinite loop CONFIGF2FSCHECKFS=n. Avoiding this by return NULL and print some kernel messages in th...

6.5AI score0.00194EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/10 12:26 a.m.•4 views

SUSE CVE-2025-40334

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: validate userq buffer virtual address and size It needs to validate the userq object virtual address to determine whether it is residented in a valid vm mapping...

6.7AI score0.00183EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/10 12:26 a.m.•5 views

SUSE CVE-2025-40335

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: validate userq input args This will help on validating the userq input args, and rejecting for the invalid userq request at the IOCTLs first place...

6.6AI score0.00183EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/10 12:26 a.m.•5 views

SUSE CVE-2025-40336

In the Linux kernel, the following vulnerability has been resolved: drm/gpusvm: fix hmmpfntomaporder usage Handle the case where the hmm range partially covers a huge page like 2M, otherwise we can potentially end up doing something nasty like mapping memory which is outside the range, and maybe...

6.6AI score0.00183EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/10 12:26 a.m.•4 views

SUSE CVE-2025-40337

In the Linux kernel, the following vulnerability has been resolved: net: stmmac: Correctly handle Rx checksum offload errors The stmmacrx function would previously set skb-ipsummed to CHECKSUMUNNECESSARY if hardware checksum offload CoE was enabled and the packet was of a known IP ethertype...

5.5CVSS6.5AI score0.00199EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2025/12/10 12:26 a.m.•7 views

SUSE CVE-2025-40338

In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: avs: Do not share the name pointer between components By sharing 'name' directly, tearing down components may lead to use-after-free errors. Duplicate the name to avoid that. At the same time, update the order of...

5.2CVSS6.6AI score0.00188EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2025/12/10 12:26 a.m.•9 views

SUSE CVE-2025-40339

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix nullptr err of vmhandlemoved If a amdgpubova is fpriv-prtva, the bo of this one is always NULL. So, such kind of amdgpubova should be updated separately before amdgpuvmhandlemoved...

4.4CVSS6.5AI score0.00197EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2025/12/10 12:26 a.m.•4 views

SUSE CVE-2025-40340

In the Linux kernel, the following vulnerability has been resolved: drm/xe: Fix oops in xegemfault when running corehotunplug test. I saw an oops in xegemfault when running the xe-fast-feedback testlist against the realtime kernel without debug options enabled. The panic happens after corehotunpl...

5.8CVSS6.4AI score0.00192EPSS
Exploits0References10
SUSE CVE
SUSE CVE
•added 2025/12/10 12:26 a.m.•7 views

SUSE CVE-2025-40341

In the Linux kernel, the following vulnerability has been resolved: futex: Don't leak robustlist pointer on exec race sysgetrobustlist and compatgetrobustlist use ptracemayaccess to check if the calling task is allowed to access another task's robustlist pointer. This check is racy against a...

6.2AI score0.00199EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/10 12:26 a.m.•6 views

SUSE CVE-2025-40342

In the Linux kernel, the following vulnerability has been resolved: nvme-fc: use lock accessing portstate and rport state nvmefcunregisterremote removes the remote port on a lport object at any point in time when there is no active association. This races with with the reconnect logic, because...

6.4CVSS6.5AI score0.00205EPSS
Exploits0References23
SUSE CVE
SUSE CVE
•added 2025/12/10 12:26 a.m.•3 views

SUSE CVE-2025-40343

In the Linux kernel, the following vulnerability has been resolved: nvmet-fc: avoid scheduling association deletion twice When forcefully shutting down a port via the configfs interface, nvmetportsubsysdroplink first calls nvmetportdelctrls and then nvmetdisableport. Both functions will eventuall...

6.4CVSS6.3AI score0.00205EPSS
Exploits0References22
SUSE CVE
SUSE CVE
•added 2025/12/10 12:26 a.m.•3 views

SUSE CVE-2025-40344

In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: avs: Disable periods-elapsed work when closing PCM avsdaifeshutdown handles the shutdown procedure for HOST HDAudio stream while period-elapsed work services its IRQs. As the former frees the DAI's private context,...

5.5CVSS6.6AI score0.00192EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2025/12/09 12:31 a.m.•3 views

SUSE CVE-2022-50583

In the Linux kernel, the following vulnerability has been resolved: md/raid0, raid10: Don't set discard sectors for request queue It should use diskstacklimits to get a proper maxdiscardsectors rather than setting a value by stack drivers. And there is a bug. If all member disks are rotational...

1.9CVSS6.5AI score0.00172EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/09 12:31 a.m.•4 views

SUSE CVE-2022-50614

In the Linux kernel, the following vulnerability has been resolved: misc: pciendpointtest: Fix pciendpointtestcopy,write,read panic The dmamapsingle doesn't permit zero length mapping. It causes a follow panic. A panic was reported on arm64: 60.137988 ------------ cut here ------------ 60.142630...

7CVSS6.5AI score0.00174EPSS
Exploits0References8
SUSE CVE
SUSE CVE
•added 2025/12/09 12:31 a.m.•4 views

SUSE CVE-2022-50615

In the Linux kernel, the following vulnerability has been resolved: perf/x86/intel/uncore: Fix reference count leak in snruncoremmiomap pcigetdevice will increase the reference count for the returned pcidev, so snruncoregetmcdev will return a pcidev with its reference count increased. We need to...

5.5CVSS6.4AI score0.00174EPSS
Exploits0References8
SUSE CVE
SUSE CVE
•added 2025/12/09 12:31 a.m.•4 views

SUSE CVE-2022-50616

In the Linux kernel, the following vulnerability has been resolved: regulator: core: Use different devices for resource allocation and DT lookup Following by the below discussion, there's the potential UAF issue between regulator and mfd...

6.4CVSS6.5AI score0.00172EPSS
Exploits0References4
SUSE CVE
SUSE CVE
•added 2025/12/09 12:31 a.m.•11 views

SUSE CVE-2022-50617

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu/powerplay/psm: Fix memory leak in power state init Commit 902bc65de0b3 "drm/amdgpu/powerplay/psm: return an error in power state init" made the power state init function return early in case of failure to get an entry...

4.4CVSS6.5AI score0.00174EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2025/12/09 12:31 a.m.•3 views

SUSE CVE-2022-50618

In the Linux kernel, the following vulnerability has been resolved: mmc: meson-gx: fix return value check of mmcaddhost mmcaddhost may return error, if we ignore its return value, it will lead two issues: 1. The memory that allocated in mmcallochost is leaked. 2. In the remove path, mmcremovehost...

5.5CVSS6.5AI score0.00179EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2025/12/09 12:31 a.m.•8 views

SUSE CVE-2022-50619

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix memory leak in kfdmemdmamapuserptr If the number of pages from the userptr BO differs from the SG BO then the allocated memory for the SG table doesn't get freed before returning -EINVAL, which may lead to a memor...

5.5CVSS6.4AI score0.00172EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2025/12/09 12:31 a.m.•5 views

SUSE CVE-2022-50620

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to invalidate dcc-f2fsissuediscard in error path Syzbot reports a NULL pointer dereference issue as below: refcountadd include/linux/refcount.h:193 inline refcountinc include/linux/refcount.h:250 inline refcountinc...

6.5AI score0.00174EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/09 12:31 a.m.•5 views

SUSE CVE-2022-50621

In the Linux kernel, the following vulnerability has been resolved: dm: verity-loadpin: Only trust verity targets with enforcement Verity targets can be configured to ignore corrupted data blocks. LoadPin must only trust verity targets that are configured to perform some kind of enforcement when...

5.5CVSS6.6AI score0.00165EPSS
Exploits0References5
SUSE CVE
SUSE CVE
•added 2025/12/09 12:31 a.m.•5 views

SUSE CVE-2022-50622

In the Linux kernel, the following vulnerability has been resolved: ext4: fix potential memory leak in ext4fcrecordmodifiedinode As krealloc may return NULL, in this case 'state-fcmodifiedinodes' may not be freed by krealloc, but 'state-fcmodifiedinodes' already set NULL. Then will lead to...

4.7CVSS6.5AI score0.00174EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2025/12/09 12:31 a.m.•6 views

SUSE CVE-2022-50623

In the Linux kernel, the following vulnerability has been resolved: fpga: prevent integer overflow in dflfeatureioctlsetirq The "hdr.count sizeofs32" multiplication can overflow on 32 bit systems leading to memory corruption. Use arraysize to fix that...

5.5CVSS6.8AI score0.00174EPSS
Exploits0References9
SUSE CVE
SUSE CVE
•added 2025/12/09 12:31 a.m.•5 views

SUSE CVE-2022-50624

In the Linux kernel, the following vulnerability has been resolved: net: netsec: fix error handling in netsecregistermdio If phydeviceregister fails, phydevicefree need be called to put refcount, so memory of phy device and device name can be freed in callback function. If getphydevice fails,...

6.5AI score0.00179EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/09 12:31 a.m.•6 views

SUSE CVE-2022-50625

In the Linux kernel, the following vulnerability has been resolved: serial: amba-pl011: avoid SBSA UART accessing DMACR register Chapter "B Generic UART" in "ARM Server Base System Architecture" 1 documentation describes a generic UART interface. Such generic UART does not support DMA. In current...

2.3CVSS6.2AI score0.00207EPSS
Exploits0References8
SUSE CVE
SUSE CVE
•added 2025/12/09 12:31 a.m.•13 views

SUSE CVE-2022-50626

In the Linux kernel, the following vulnerability has been resolved: media: dvb-usb: fix memory leak in dvbusbadapterinit Syzbot reports a memory leak in "dvbusbadapterinit". The leak is due to not accounting for and freeing current iteration's adapter-priv in case of an error. Currently if an err...

4.1CVSS6.6AI score0.00203EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2025/12/09 12:31 a.m.•3 views

SUSE CVE-2022-50627

In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: fix monitor mode bringup crash When the interface is brought up in monitor mode, it leads to NULL pointer dereference crash. This crash happens when the packet type is extracted for a SKB. This extraction which is...

7CVSS6.4AI score0.00172EPSS
Exploits0References4
SUSE CVE
SUSE CVE
•added 2025/12/09 12:31 a.m.•6 views

SUSE CVE-2022-50628

In the Linux kernel, the following vulnerability has been resolved: drm/gud: Fix UBSAN warning UBSAN complains about invalid value for bool: 101.165172 drm Initialized gud 1.0.0 20200422 for 2-3.2:1.0 on minor 1 101.213360 gud 2-3.2:1.0: drm fb1: guddrmfb frame buffer device 101.213426 usbcore:...

5.5CVSS6.6AI score0.00172EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/09 12:31 a.m.•5 views

SUSE CVE-2022-50629

In the Linux kernel, the following vulnerability has been resolved: wifi: rsi: Fix memory leak in rsicoexattach The coexcb needs to be freed when rsicreatekthread failed in rsicoexattach...

5.5CVSS6.5AI score0.00183EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2025/12/09 12:31 a.m.•4 views

SUSE CVE-2022-50630

In the Linux kernel, the following vulnerability has been resolved: mm: hugetlb: fix UAF in hugetlbhandleuserfault The vmalock and hugetlbfaultmutex are dropped before handling userfault and reacquire them again after handleuserfault, but reacquire the vmalock could lead to UAF1,2 due to the...

5.5CVSS6.4AI score0.00174EPSS
Exploits0References10
SUSE CVE
SUSE CVE
•added 2025/12/09 12:29 a.m.•4 views

SUSE CVE-2023-53742

In the Linux kernel, the following vulnerability has been resolved: kcsan: Avoid READONCE in readinstrumentedmemory Haibo Li reported: | Unable to handle kernel paging request at virtual address | ffffff802a0d8d7171 | Mem abort info:o: | ESR = 0x9600002121 | EC = 0x25: DABT current EL, IL = 32...

6.6AI score0.00174EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2025/12/09 12:29 a.m.•7 views

SUSE CVE-2023-53743

In the Linux kernel, the following vulnerability has been resolved: PCI: Free released resource after coalescing releaseresource doesn't actually free the resource or resource list entry so free the resource list entry to avoid a leak...

5.5CVSS6.5AI score0.00174EPSS
Exploits0References21
Total number of security vulnerabilities59855