CVE-2021-47183: Fixed a null pointer dereference during link down processing in scsi lpfc (bsc#1192145, bsc#1222664).
CVE-2021-47184: Fixed NULL pointer dereference on VSI filter sync (bsc#1222666).
CVE-2021-47185: Fixed a softlockup issue in flushtoldisc in tty tty_buffer (bsc#1222669).
CVE-2021-47189: Fixed denial of service due to memory ordering issues between normal and ordered work functions in btrfs (bsc#1222706).
CVE-2021-47202: Fixed NULL pointer dereferences in ofthermal functions in thermal (bsc#1222878)
CVE-2021-47205: Unregistered clocks/resets when unbinding in sunxi-ng (bsc#1222888).
CVE-2021-47207: Fixed a null pointer dereference on pointer block in gus (bsc#1222790).
CVE-2021-47211: Fixed a null pointer dereference on pointer cs_desc in usb-audio (bsc#1222869).
CVE-2022-0487: Fixed an use-after-free vulnerability in rtsxusbmsdrvremove() in drivers/memstick/host/rtsxusbms.c (bsc#1194516).
CVE-2022-48619: Fixed a denial-of-service issue in drivers/input/input.c (bsc#1218220).
CVE-2022-48626: Fixed a potential use-after-free on remove path moxart (bsc#1220366).
CVE-2022-48651: Fixed an out-of-bound bug in ipvlan caused by unset skb->mac_header (bsc#1223513).
CVE-2022-48672: Fixed off-by-one error in unflattendtnodes() (bsc#1223931).
CVE-2022-48701: Fixed an out-of-bounds bug in _sndusbparseaudio_interface() (bsc#1223921).
CVE-2022-48702: Fixed out of bounds access in sndemu10k1pcmchannelalloc() (bsc#1223923).
CVE-2023-0160: Fixed deadlock flaw in BPF that could allow a local user to potentially crash the system (bsc#1209657).
CVE-2023-28746: Fixed Register File Data Sampling (bsc#1213456).
CVE-2023-35827: Fixed a use-after-free issue in ravbtxtimeout_work() (bsc#1212514).
CVE-2023-4881: Fixed a out-of-bounds write flaw in the netfilter subsystem that could lead to potential information disclosure or a denial of service (bsc#1215221).
CVE-2023-52454: Fixed a kernel panic when host sends an invalid H2C PDU length (bsc#1220320).
CVE-2023-52469: Fixed a use-after-free in kvparsepower_table (bsc#1220411).
CVE-2023-52470: Fixed null-ptr-deref in radeoncrtcinit() (bsc#1220413).
CVE-2023-52474: Fixed a vulnerability with non-PAGE_SIZE-end multi-iovec user SDMA requests (bsc#1220445).
CVE-2023-52476: Fixed possible unhandled page fault via perf sampling NMI during vsyscall (bsc#1220703).
CVE-2023-52477: Fixed USB Hub accesses to uninitialized BOS descriptors (bsc#1220790).
CVE-2023-52486: Fixed possible use-after-free in drm (bsc#1221277).
CVE-2023-52488: Fixed serial/sc16is7xx convert from raw to noinc regmap functions for FIFO (bsc#1221162).
CVE-2023-52509: Fixed a use-after-free issue in ravbtxtimeout_work() (bsc#1220836).
CVE-2023-52515: Fixed possible use-after-free in RDMA/srp (bsc#1221048).
CVE-2023-52524: Fixed possible corruption in nfc/llcp (bsc#1220927).
CVE-2023-52528: Fixed uninit-value access in _smsc75xxread_reg() (bsc#1220843).
CVE-2023-52575: Fixed SBPB enablement for specrstackoverflow=off (bsc#1220871).
CVE-2023-52583: Fixed deadlock or deadcode of misusing dget() inside ceph (bsc#1221058).
CVE-2023-52587: Fixed mcast list locking in IB/ipoib (bsc#1221082).
CVE-2023-52590: Fixed a possible ocfs2 filesystem corruption via directory renaming (bsc#1221088).
CVE-2023-52591: Fixed a possible reiserfs filesystem corruption via directory renaming (bsc#1221044).
CVE-2023-52595: Fixed possible deadlock in wifi/rt2x00 (bsc#1221046).
CVE-2023-52598: Fixed wrong setting of fpc register in s390/ptrace (bsc#1221060).
CVE-2023-52607: Fixed a null-pointer-dereference in pgtablecacheadd kasprintf() (bsc#1221061).
CVE-2023-52614: Fixed PM/devfreq buffer overflow in transstatshow (bsc#1221617).
CVE-2023-52620: Fixed netfilter/nf_tables to disallow timeout for anonymous sets never used from userspace (bsc#1221825).
CVE-2023-52628: Fixed 4-byte stack OOB write in nftables (bsc#1222117).
CVE-2023-52635: Fixed PM/devfreq to synchronize devfreqmonitor[start/stop] (bsc#1222294).
CVE-2023-52639: Fixed race during shadow creation in KVM/s390/vsie Fixed (bsc#1222300).
CVE-2023-52644: Stop/wake correct queue in DMA Tx path when QoS is disabled in b43 (bsc#1222961).
CVE-2023-52650: Added missing check for offinddevicebynode() (bsc#1223770)
CVE-2023-52652: Fixed NTB for possible name leak in ntbregisterdevice() (bsc#1223686).
CVE-2023-6270: Fixed a use-after-free issue in aoecmdcfgpkts (bsc#1218562).
CVE-2023-6356: Fixed a NULL pointer dereference in nvmettcpbuildpduiovec (bsc#1217987).
CVE-2023-6535: Fixed a NULL pointer dereference in nvmettcpexecute_request (bsc#1217988).
CVE-2023-6536: Fixed a NULL pointer dereference in _nvmetreq_complete (bsc#1217989).
CVE-2023-7042: Fixed a null-pointer-dereference in ath10kwmitlvoppullmgmttxcomplev() (bsc#1218336).
CVE-2023-7192: Fixed a memory leak problem in ctnetlinkcreateconntrack in net/netfilter/nfconntracknetlink.c (bsc#1218479).
CVE-2024-0639: Fixed a denial-of-service vulnerability due to a deadlock found in sctpautoasconf_init in net/sctp/socket.c (bsc#1218917).
CVE-2024-2201: Fixed information leak in x86/BHI (bsc#1217339).
CVE-2024-22099: Fixed a null-pointer-dereference in rfcommchecksecurity (bsc#1219170).
CVE-2024-23307: Fixed Integer Overflow or Wraparound vulnerability in x86 and ARM md, raid, raid5 modules (bsc#1219169).
CVE-2024-23848: Fixed media/cec for possible use-after-free in cecqueuemsg_fh (bsc#1219104).
CVE-2024-24855: Fixed race condition in lpfcunregisterfcf_rescan() that could lead to a kernel panic or denial of service issue (bsc#1219618).
CVE-2024-24861: Fixed race condition in xc4000getfrequency() that could lead to malfunction or denial of service issue (bsc#1219623).
CVE-2024-26614: Fixed the initialization of accept_queue's spinlocks (bsc#1221293).
CVE-2024-26642: Fixed the set of anonymous timeout flag in netfilter nf_tables (bsc#1221830).
CVE-2024-26671: Fixed blk-mq IO hang from sbitmap wakeup race (bsc#1222357).
CVE-2024-26675: Fixed ppp_async to limit MRU to 64K (bsc#1222379).
CVE-2024-26689: Fixed a use-after-free in encodecapmsg() (bsc#1222503).
CVE-2024-26704: fixed double-free of blocks due to wrong extents moved_len in ext4 (bsc#1222422).
CVE-2024-26733: Fixed an overflow in arpreqget() in arp (bsc#1222585).
CVE-2024-26743: Fixed memory leak in qedrcreateuser_qp error flow in rdma/qedr (bsc#1222677)
CVE-2024-26744: Fixed null pointer dereference in srptserviceguid parameter in rdma/srpt (bsc#1222449)
CVE-2024-26747: Fixed a NULL pointer issue with USB parent module's reference (bsc#1222609).
CVE-2024-26754: Fixed ab use-after-free and null-ptr-deref in gtpgenldump_pdp() in gtp (bsc#1222632).
CVE-2024-26763: Fixed user corruption via by writing data with O_DIRECT on device in dm-crypt (bsc#1222720).
CVE-2024-26771: Fixed a null pointer dereference on edma_probe in dmaengine ti edma (bsc#1222610)
CVE-2024-26772: Fixed ext4 to avoid allocating blocks from corrupted group in ext4mbfindbygoal() (bsc#1222613).
CVE-2024-26773: Fixed ext4 block allocation from corrupted group in ext4mbtrybestfound() (bsc#1222618).
CVE-2024-26777: Error out if pixclock equals zero in fbdev/sis (bsc#1222765)
CVE-2024-26778: Error out if pixclock equals zero in fbdev/savage (bsc#1222770)
CVE-2024-26779: Fixed a race condition on enabling fast-xmit in mac80211 (bsc#1222772).
CVE-2024-26791: Properly validated device names in btrfs dev-replace (bsc#1222793)
CVE-2024-26793: fixed use-after-free and null-ptr-deref in gtp_newlink() (bsc#1222428).
CVE-2024-26805: Fixed a kernel-infoleak-after-free in _skbdatagram_iter in netlink (bsc#1222630).
CVE-2024-26816: Fixed relocations in .notes section when building with CONFIGXENPV=y by ignoring them (bsc#1222624).
CVE-2024-26817: Fixed amdkfd to use calloc instead of kzalloc to avoid integer overflow (bsc#1222812).
CVE-2024-26839: Fixed a memory leak in initcreditreturn() (bsc#1222975)
CVE-2024-26840: Fixed a memory leak in cachefilesaddcache() (bsc#1222976).
CVE-2024-26852: Fixed net/ipv6 to avoid possible UAF in ip6routempath_notify() (bsc#1223057).
CVE-2024-26855: Fixed net/ice potential NULL pointer dereference in icebridgesetlink() (bsc#1223051).
CVE-2024-26857: Fixed geneve to make sure to pull inner header in geneve_rx() (bsc#1223058).
CVE-2024-26859: Prevent access to a freed page in page_pool in bnx2x (bsc#1223049).
CVE-2024-26876: Fixed crash on irq during probe, related to adv7511_probe() (bsc#1223119).
CVE-2024-26878: Fixed quota for potential NULL pointer dereference (bsc#1223060).
CVE-2024-26883: Fixed bpf stackmap overflow check on 32-bit arches (bsc#1223035).
CVE-2024-26884: Fixed bpf hashtab overflow check on 32-bit arches (bsc#1223189).
CVE-2024-26901: Fixed dosysnametohandle() to use kzalloc() to prevent kernel-infoleak (bsc#1223198).
CVE-2024-26907: Fixed a fortify source warning while accessing Eth segment in mlx5 (bsc#1223203).
CVE-2024-26922: Validated the parameters of bo mapping operations more clearly (bsc#1223315).
CVE-2024-26948: Fixed drm/amd/display by adding dcstate NULL check in dcstate_release (bsc#1223664).
CVE-2024-26993: Fixed fs/sysfs reference leak in sysfsbreakactive_protection() (bsc#1223693).
CVE-2024-27008: Fixed out of bounds access in nv04 (CVE-2024-27008 bsc#1223802).
CVE-2024-27013: Fixed tun limit printing rate when illegal packet received by tun device (bsc#1223745).
CVE-2024-27014: Fixed net/mlx5e to prevent deadlock while disabling aRFS (bsc#1223735).
CVE-2024-27043: Fixed a use-after-free in edia/dvbdev in different places (bsc#1223824).