[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-OPENSUSE-SU-2021:1477-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T02:53:27.892Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":44,"duplicates":45,"related":46,"reserved_at":9,"published_at":62,"modified_at":63,"state":9,"summary":64,"references_raw":66,"kevs":359,"epss":9,"epss_history":360,"metrics":361,"affected":362},"OPENSUSE-SU-2021:1477-1","Security update for the Linux Kernel\n\n\n\nThe openSUSE Leap 15.2 kernel was updated to receive various security and bugfixes.\n\nThe following security bugs were fixed:\n\n- CVE-2018-13405: The inode_init_owner function in fs/inode.c allowed local users to create files with an unintended group ownership, in a scenario where a directory is SGID to a certain group and is writable by a user who is not a member of that group. Here, the non-member can trigger creation of a plain file whose group ownership is that group. The intended behavior was that the non-member can trigger creation of a directory (but not a plain file) whose group ownership is that group. The non-member can escalate privileges by making the plain file executable and SGID (bnc#1100416 bnc#1129735).\n- CVE-2021-33033: The Linux kernel had a use-after-free in cipso_v4_genopt in net/ipv4/cipso_ipv4.c because the CIPSO and CALIPSO refcounting for the DOI definitions is mishandled, aka CID-ad5d07f4a9cd. This leads to writing an arbitrary value (bnc#1186109 bnc#1188876).\n- CVE-2021-34556: An unprivileged BPF program can obtain sensitive information from kernel memory via a Speculative Store Bypass side-channel attack because the protection mechanism neglects the possibility of uninitialized memory locations on the BPF stack (bnc#1188983).\n- CVE-2021-35477: An unprivileged BPF program can obtain sensitive information from kernel memory via a Speculative Store Bypass side-channel attack because a certain preempting store operation did not necessarily occur before a store operation that has an attacker-controlled value (bnc#1188985).\n- CVE-2021-3655: Missing size validations on inbound SCTP packets may have allowed the kernel to read uninitialized memory (bnc#1188563 bnc#1192267).\n- CVE-2021-3715: Fixed a use-after-free in route4_change() in net/sched/cls_route.c (bsc#1190349).\n- CVE-2021-3760: Fixed a use-after-free vulnerability with the ndev->rf_conn_info object (bsc#1190067).\n- CVE-2021-3772: Invalid chunks may be used to remotely remove existing associations (bsc#1190351).\n- CVE-2021-3896: Fixed a array-index-out-bounds in detach_capi_ctr in drivers/isdn/capi/kcapi.c (bsc#1191958).\n- CVE-2021-41864: prealloc_elems_and_freelist in kernel/bpf/stackmap.c allowed unprivileged users to trigger an eBPF multiplication integer overflow with a resultant out-of-bounds write (bnc#1191317).\n- CVE-2021-42008: The decode_data function in drivers/net/hamradio/6pack.c had a slab out-of-bounds write. Input from a process that has the CAP_NET_ADMIN capability can lead to root access (bnc#1191315).\n- CVE-2021-42252: An issue was discovered in aspeed_lpc_ctrl_mmap in drivers/soc/aspeed/aspeed-lpc-ctrl.c where local attackers were able to access the Aspeed LPC control interface could overwrite memory in the kernel and potentially execute privileges, aka CID-b49a0e69a7b1. This occurs because a certain comparison uses values that are not memory sizes (bnc#1190479).\n- CVE-2021-42739: The firewire subsystem had a buffer overflow related to drivers/media/firewire/firedtv-avc.c and drivers/media/firewire/firedtv-ci.c, because avc_ca_pmt mishandled bounds checking (bnc#1184673 bnc#1192036).\n- CVE-2021-42739: The firewire subsystem had a buffer overflow related to drivers/media/firewire/firedtv-avc.c and drivers/media/firewire/firedtv-ci.c, because avc_ca_pmt mishandled bounds checking (bsc#1184673).\n- CVE-2021-43056: It allowed a malicious KVM guest to crash the host, when the host is running on Power8, due to an arch/powerpc/kvm/book3s_hv_rmhandlers.S implementation bug in the handling of the SRR1 register values (bnc#1192107).\n\nThe following non-security bugs were fixed:\n\n- acpi/arm64: fix next_platform_timer() section mismatch error (git-fixes).\n- ACPI: bgrt: Fix CFI violation (git-fixes).\n- ACPI: fix NULL pointer dereference (git-fixes).\n- ACPI: Use DEVICE_ATTR_\u003CRW|RO|WO> macros (git-fixes).\n- Add cherry-picked commit id to the usb hso fix (git-fixes)\n- Add obsolete_rebuilds_subpackage (boo#1172073 bsc#1191731).\n- ALSA: hda: avoid write to STATESTS if controller is in reset (git-fixes).\n- ALSA: hda/realtek: Add quirk for Clevo PC50HS (git-fixes).\n- ALSA: hda/realtek: Add quirk for Clevo X170KM-G (git-fixes).\n- ALSA: hda/realtek - ALC236 headset MIC recording issue (git-fixes).\n- ALSA: hda/realtek: Complete partial device name to avoid ambiguity (git-fixes).\n- ALSA: hda/realtek: Fix the mic type detection issue for ASUS G551JW (git-fixes).\n- ALSA: seq: Fix a potential UAF by wrong private_free call order (git-fixes).\n- ALSA: usb-audio: Add quirk for VF0770 (git-fixes).\n- ALSA: usb-audio: Provide quirk for Sennheiser GSP670 Headset (git-fixes).\n- ASoC: DAPM: Fix missing kctl change notifications (git-fixes).\n- ASoC: wm8960: Fix clock configuration on slave mode (git-fixes).\n- ata: ahci_platform: fix null-ptr-deref in ahci_platform_enable_regulators() (git-fixes).\n- ata: sata_dwc_460ex: No need to call phy_exit() befre phy_init() (git-fixes).\n- audit: fix possible null-pointer dereference in audit_filter_rules (git-fixes).\n- bfq: Remove merged request already in bfq_requests_merged() (bsc#1191456).\n- blk: Fix lock inversion between ioc lock and bfqd lock (bsc#1191456).\n- blktrace: Fix uaf in blk_trace access after removing by sysfs (bsc#1191452).\n- block: bfq: fix bfq_set_next_ioprio_data() (bsc#1191451).\n- bnxt_en: Fix TX timeout when TX ring size is set to the smallest (git-fixes).\n- bpf: Add bpf_patch_call_args prototype to include/linux/bpf.h (git-fixes).\n- bpf: Fix a typo of reuseport map in bpf.h (git-fixes).\n- bpf: Fix up bpf_skb_adjust_room helper's skb csum setting (git-fixes).\n- can: dev: can_restart: fix use after free bug (git-fixes).\n- can: peak_pci: peak_pci_remove(): fix UAF (git-fixes).\n- can: peak_usb: fix use after free bugs (git-fixes).\n- can: peak_usb: pcan_usb_fd_decode_status(): fix back to ERROR_ACTIVE state notification (git-fixes).\n- can: rcar_can: fix suspend/resume (git-fixes).\n- can: ti_hecc: ti_hecc_probe(): add missed clk_disable_unprepare() in error path (git-fixes).\n- can: xilinx_can: handle failure cases of pm_runtime_get_sync (git-fixes).\n- cb710: avoid NULL pointer subtraction (git-fixes).\n- ceph: fix handling of 'meta' errors (bsc#1192041).\n- ceph: skip existing superblocks that are blocklisted or shut down when mounting (bsc#1192040).\n- cfg80211: scan: fix RCU in cfg80211_add_nontrans_list() (git-fixes).\n- drm/amd/display: Pass PCI deviceid into DC (git-fixes).\n- drm/amdgpu: fix gart.bo pin_count leak (git-fixes).\n- drm/msm/dsi: Fix an error code in msm_dsi_modeset_init() (git-fixes).\n- drm/msm/dsi: fix off by one in dsi_bus_clk_enable error handling (git-fixes).\n- drm/msm: Fix null pointer dereference on pointer edp (git-fixes).\n- drm/nouveau/debugfs: fix file release memory leak (git-fixes).\n- drm/panel: olimex-lcd-olinuxino: select CRC32 (git-fixes).\n- e1000e: Fix packet loss on Tiger Lake and later (git-fixes).\n- e100: fix buffer overrun in e100_get_regs (git-fixes).\n- e100: fix length calculation in e100_get_regs_len (git-fixes).\n- e100: handle eeprom as little endian (git-fixes).\n- ext4: fix reserved space counter leakage (bsc#1191450).\n- ext4: report correct st_size for encrypted symlinks (bsc#1191449).\n- fscrypt: add fscrypt_symlink_getattr() for computing st_size (bsc#1191449).\n- fs, mm: fix race in unlinking swapfile (bsc#1191455).\n- gpio: pca953x: Improve bias setting (git-fixes).\n- gve: Avoid freeing NULL pointer (git-fixes).\n- gve: Correct available tx qpl check (git-fixes).\n- gve: fix gve_get_stats() (git-fixes).\n- gve: Properly handle errors in gve_assign_qpl (bsc#1176940).\n- gve: report 64bit tx_bytes counter from gve_handle_report_stats() (bsc#1176940).\n- HID: apple: Fix logical maximum and usage maximum of Magic Keyboard JIS (git-fixes).\n- HID: betop: fix slab-out-of-bounds Write in betop_probe (git-fixes).\n- HID: u2fzero: ignore incomplete packets without data (git-fixes).\n- HID: usbhid: free raw_report buffers in usbhid_stop (git-fixes).\n- HID: wacom: Add new Intuos BT (CTL-4100WL/CTL-6100WL) device IDs (git-fixes).\n- hso: fix bailout in error case of probe (git-fixes).\n- i2c: acpi: fix resource leak in reconfiguration device addition (git-fixes).\n- i40e: Fix ATR queue selection (git-fixes).\n- i40e: fix endless loop under rtnl (git-fixes).\n- i40e: Fix freeing of uninitialized misc IRQ vector (git-fixes).\n- iavf: fix double unlock of crit_lock (git-fixes).\n- ice: Add missing E810 device ids (jsc#SLE-7966 bsc#1157177).\n- ICMPv6: Add ICMPv6 Parameter Problem, code 3 definition (bsc#1191241).\n- iio: adc128s052: Fix the error handling path of 'adc128_probe()' (git-fixes).\n- iio: adc: aspeed: set driver data when adc probe (git-fixes).\n- iio: dac: ti-dac5571: fix an error code in probe() (git-fixes).\n- iio: light: opt3001: Fixed timeout error when 0 lux (git-fixes).\n- iio: mtk-auxadc: fix case IIO_CHAN_INFO_PROCESSED (git-fixes).\n- iio: ssp_sensors: add more range checking in ssp_parse_dataframe() (git-fixes).\n- iio: ssp_sensors: fix error code in ssp_print_mcu_debug() (git-fixes).\n- Input: snvs_pwrkey - add clk handling (git-fixes).\n- Input: xpad - add support for another USB ID of Nacon GC-100 (git-fixes).\n- ionic: do not remove netdev->dev_addr when syncing uc list (bsc#1167773).\n- ipv6/netfilter: Discard first fragment not including all headers (bsc#1191241).\n- IPv6: reply ICMP error if the first fragment do not include all headers (bsc#1191241).\n- isdn: cpai: check ctr->cnr to avoid array index out of bound (git-fixes).\n- isdn: mISDN: Fix sleeping function called from invalid context (git-fixes).\n- ixgbe: Fix NULL pointer dereference in ixgbe_xdp_setup (git-fixes).\n- kabi: block: Fix kabi of blk_mq_sched_try_insert_merge() (bsc#1191456).\n- kernel-binary.spec: Do not sign kernel when no key provided (bsc#1187167).\n- KVM: PPC: Book3S HV Nested: Reflect guest PMU in-use to L0 when guest SPRs are live (bsc#1156395).\n- KVM: PPC: Book3S HV Nested: Sanitise H_ENTER_NESTED TM state (bsc#1156395).\n- KVM: PPC: Book3S HV: Save host FSCR in the P7/8 path (bsc#1065729).\n- KVM: PPC: Book3S HV: Tolerate treclaim. in fake-suspend mode changing registers (bsc#1156395).\n- KVM: PPC: Fix clearing never mapped TCEs in realmode (bsc#1156395).\n- KVM: PPC: Fix kvm_arch_vcpu_ioctl vcpu_load leak (bsc#1156395).\n- lan78xx: select CRC32 (git-fixes).\n- libata: Add ATA_HORKAGE_NO_NCQ_ON_ATI for Samsung 860 and 870 SSD (git-fixes).\n- mac80211: check return value of rhashtable_init (git-fixes).\n- mac80211: Drop frames from invalid MAC address in ad-hoc mode (git-fixes).\n- mei: me: add Ice Lake-N device id (git-fixes).\n- mlx5: count all link events (git-fixes).\n- mlxsw: thermal: Fix out-of-bounds memory accesses (git-fixes).\n- mmc: dw_mmc: exynos: fix the finding clock sample value (git-fixes).\n- mmc: meson-gx: do not use memcpy_to/fromio for dram-access-quirk (git-fixes).\n- mmc: vub300: fix control-message timeouts (git-fixes).\n- net/af_unix: fix a data-race in unix_dgram_poll (bsc#1154353).\n- net: batman-adv: fix error handling (git-fixes).\n- net: bridge: use nla_total_size_64bit() in br_get_linkxstats_size() (git-fixes).\n- net: can: ems_usb: fix use-after-free in ems_usb_disconnect() (git-fixes).\n- net: cdc_eem: fix tx fixup skb leak (git-fixes).\n- net: cdc_ncm: correct overhead in delayed_ndp_size (git-fixes).\n- netfilter: conntrack: collect all entries in one cycle (bsc#1173604).\n- net: hns3: fix vf reset workqueue cannot exit (bsc#1154353).\n- net: hso: add failure handler for add_net_device (git-fixes).\n- net: hso: fix NULL-deref on disconnect regression (git-fixes).\n- net: hso: fix null-ptr-deref during tty device unregistration (git-fixes).\n- net: ipv6: Discard next-hop MTU less than minimum link MTU (bsc#1191241).\n- net: lan78xx: fix division by zero in send path (git-fixes).\n- net: mana: Fix error handling in mana_create_rxq() (git-fixes, bsc#1191800).\n- net/mlx4_en: Do not allow aRFS for encapsulated packets (git-fixes).\n- net/mlx4_en: Resolve bad operstate value (git-fixes).\n- net/mlx5e: Mutually exclude RX-FCS and RX-port-timestamp (git-fixes).\n- net/mlx5: Fix unpublish devlink parameters (jsc#SLE-8464).\n- net/mlx5: FWTrace, cancel work on alloc pd error flow (git-fixes).\n- net: usb: Fix uninit-was-stored issue in asix_read_phy_addr() (git-fixes).\n- NFC: digital: fix possible memory leak in digital_in_send_sdd_req() (git-fixes).\n- NFC: digital: fix possible memory leak in digital_tg_listen_mdaa() (git-fixes).\n- nfc: fix error handling of nfc_proto_register() (git-fixes).\n- nfc: port100: fix using -ERRNO as command type mask (git-fixes).\n- nfs: dir_cookie is a pointer to the cookie in older kernels, not the cookie itself. (bsc#1191628 bsc#1192549).\n- NFS: Do uncached readdir when we're seeking a cookie in an empty page cache (bsc#1191628).\n- nvme: add command id quirk for apple controllers (git-fixes).\n- nvme-fc: avoid race between time out and tear down (bsc#1185762).\n- nvme-fc: remove freeze/unfreeze around update_nr_hw_queues (bsc#1185762).\n- nvme-fc: update hardware queues before using them (bsc#1185762).\n- nvme-pci: Fix abort command id (git-fixes).\n- nvme-pci: fix error unwind in nvme_map_data (bsc#1191934).\n- nvme-pci: refactor nvme_unmap_data (bsc#1191934).\n- ocfs2: fix data corruption after conversion from inline format (bsc#1190795).\n- pata_legacy: fix a couple uninitialized variable bugs (git-fixes).\n- PCI: Fix pci_host_bridge struct device release/free handling (git-fixes).\n- phy: mdio: fix memory leak (git-fixes).\n- platform/mellanox: mlxreg-io: Fix argument base in kstrtou32() call (git-fixes).\n- platform/x86: dell-smbios-wmi: Add missing kfree in error-exit from run_smbios_call (git-fixes).\n- platform/x86: intel_scu_ipc: Update timeout value in comment (git-fixes).\n- powerpc/bpf: Fix BPF_MOD when imm == 1 (bsc#1065729).\n- powerpc/bpf: Fix BPF_SUB when imm == 0x80000000 (bsc#1065729).\n- powerpc/bpf: Use bctrl for making function calls (bsc#1065729).\n- powerpc/lib: Fix emulate_step() std test (bsc#1065729).\n- powerpc/pseries: Fix build error when NUMA=n (bsc#1190620 ltc#194498 git-fixes).\n- powerpc/xive: Discard disabled interrupts in get_irqchip_state() (bsc#1085030 git-fixes).\n- pseries/eeh: Fix the kdump kernel crash during eeh_pseries_init (git-fixes).\n- ptp_pch: Load module automatically if ID matches (git-fixes).\n- ptp_pch: Restore dependency on PCI (git-fixes).\n- qed: Fix missing error code in qed_slowpath_start() (git-fixes).\n- qed: Handle management FW error (git-fixes).\n- qed: rdma - do not wait for resources under hw error recovery flow (git-fixes).\n- regmap: Fix possible double-free in regcache_rbtree_exit() (git-fixes).\n- rpm: use _rpmmacrodir (boo#1191384)\n- scsi: lpfc: Allow fabric node recovery if recovery is in progress before devloss (bsc#1192145).\n- scsi: lpfc: Allow PLOGI retry if previous PLOGI was aborted (bsc#1192145).\n- scsi: lpfc: Correct sysfs reporting of loop support after SFP status change (bsc#1192145).\n- scsi: lpfc: Fix link down processing to address NULL pointer dereference (bsc#1192145).\n- scsi: lpfc: Fix memory overwrite during FC-GS I/O abort handling (bsc#1191349).\n- scsi: lpfc: Fix use-after-free in lpfc_unreg_rpi() routine (bsc#1192145).\n- scsi: lpfc: Revert LOG_TRACE_EVENT back to LOG_INIT prior to driver_resource_setup() (bsc#1192145).\n- scsi: lpfc: Update lpfc version to 14.0.0.3 (bsc#1192145).\n- scsi: lpfc: Wait for successful restart of SLI3 adapter during host sg_reset (bsc#1192145).\n- scsi: qla2xxx: Add debug print of 64G link speed (bsc#1190941).\n- scsi: qla2xxx: Add host attribute to trigger MPI hang (bsc#1190941).\n- scsi: qla2xxx: Add support for mailbox passthru (bsc#1190941).\n- scsi: qla2xxx: Adjust request/response queue size for 28xx (bsc#1190941).\n- scsi: qla2xxx: Call process_response_queue() in Tx path (bsc#1190941).\n- scsi: qla2xxx: Changes to support FCP2 Target (bsc#1190941).\n- scsi: qla2xxx: Changes to support kdump kernel (bsc#1190941).\n- scsi: qla2xxx: Changes to support kdump kernel for NVMe BFS (bsc#1190941).\n- scsi: qla2xxx: Check for firmware capability before creating QPair (bsc#1190941).\n- scsi: qla2xxx: Display 16G only as supported speeds for 3830c card (bsc#1190941).\n- scsi: qla2xxx: Do not call fc_block_scsi_eh() during bus reset (bsc#1190941).\n- scsi: qla2xxx: edif: Add N2N support for EDIF (bsc#1190941).\n- scsi: qla2xxx: edif: Do secure PLOGI when auth app is present (bsc#1190941).\n- scsi: qla2xxx: edif: Fix EDIF enable flag (bsc#1190941).\n- scsi: qla2xxx: edif: Fix returnvar.cocci warnings (bsc#1190941).\n- scsi: qla2xxx: edif: Fix stale session (bsc#1190941).\n- scsi: qla2xxx: edif: Reject AUTH ELS on session down (bsc#1190941).\n- scsi: qla2xxx: edif: Use link event to wake up app (bsc#1190941).\n- scsi: qla2xxx: Fix crash in NVMe abort path (bsc#1190941).\n- scsi: qla2xxx: Fix excessive messages during device logout (bsc#1190941).\n- scsi: qla2xxx: Fix hang during NVMe session tear down (bsc#1190941).\n- scsi: qla2xxx: Fix hang on NVMe command timeouts (bsc#1190941).\n- scsi: qla2xxx: Fix kernel crash when accessing port_speed sysfs file (bsc#1190941).\n- scsi: qla2xxx: Fix NPIV create erroneous error (bsc#1190941).\n- scsi: qla2xxx: Fix NVMe | FCP personality change (bsc#1190941).\n- scsi: qla2xxx: Fix NVMe retry (bsc#1190941).\n- scsi: qla2xxx: Fix NVMe session down detection (bsc#1190941).\n- scsi: qla2xxx: Fix port type info (bsc#1190941).\n- scsi: qla2xxx: Fix unsafe removal from linked list (bsc#1190941).\n- scsi: qla2xxx: Fix use after free in eh_abort path (bsc#1190941).\n- scsi: qla2xxx: Move heartbeat handling from DPC thread to workqueue (bsc#1190941).\n- scsi: qla2xxx: Open-code qla2xxx_eh_device_reset() (bsc#1190941).\n- scsi: qla2xxx: Open-code qla2xxx_eh_target_reset() (bsc#1190941).\n- scsi: qla2xxx: Remove redundant initialization of pointer req (bsc#1190941).\n- scsi: qla2xxx: Restore initiator in dual mode (bsc#1190941).\n- scsi: qla2xxx: Show OS name and version in FDMI-1 (bsc#1190941).\n- scsi: qla2xxx: Suppress unnecessary log messages during login (bsc#1190941).\n- scsi: qla2xxx: Sync queue idx with queue_pair_map idx (bsc#1190941).\n- scsi: qla2xxx: Update version to 10.02.06.100-k (bsc#1190941).\n- scsi: qla2xxx: Update version to 10.02.06.200-k (bsc#1190941).\n- scsi: qla2xxx: Update version to 10.02.07.100-k (bsc#1190941).\n- scsi: qla2xxx: Use scsi_cmd_to_rq() instead of scsi_cmnd.request (bsc#1190941).\n- sctp: check asoc peer.asconf_capable before processing asconf (bsc#1190351).\n- soc: qcom: mdt_loader: Drop PT_LOAD check on hash segment (git-fixes).\n- spi: spi-nxp-fspi: do not depend on a specific node name erratum workaround (git-fixes).\n- tpm: ibmvtpm: Avoid error message when process gets signal while waiting (bsc#1065729).\n- USB: cdc-acm: clean up probe error labels (git-fixes).\n- USB: cdc-acm: fix minor-number release (git-fixes).\n- usb: hso: fix error handling code of hso_create_net_device (git-fixes).\n- usb: hso: remove the bailout parameter (git-fixes).\n- usb: musb: dsps: Fix the probe error path (git-fixes).\n- USB: serial: option: add prod. id for Quectel EG91 (git-fixes).\n- USB: serial: option: add Quectel EC200S-CN module support (git-fixes).\n- USB: serial: option: add Telit LE910Cx composition 0x1204 (git-fixes).\n- USB: serial: qcserial: add EM9191 QDL support (git-fixes).\n- USB: xhci: dbc: fix tty registration race (git-fixes).\n- video: fbdev: gbefb: Only instantiate device when built for IP32 (git-fixes).\n- virtio: write back F_VERSION_1 before validate (git-fixes).\n- watchdog: orion: use 0 for unset heartbeat (git-fixes).\n- x86/pat: Pass valid address to sanitize_phys() (bsc#1152489).\n- x86/reboot: Limit Dell Optiplex 990 quirk to early BIOS versions (bsc#1152489).\n- x86/resctrl: Free the ctrlval arrays when domain_setup_mon_state() fails (bsc#1152489).\n- xen: fix setting of max_pfn in shared_info (git-fixes).\n- xen: reset legacy rtc flag for PV domU (git-fixes).\n- xfs: ensure that the inode uid/gid match values match the icdinode ones (bsc#1190006).\n- xfs: fix log intent recovery ENOSPC shutdowns when inactivating inodes (bsc#1190642).\n- xfs: merge the projid fields in struct xfs_icdinode (bsc#1190006).\n- xfs: remove the icdinode di_uid/di_gid members (bsc#1190006).\n- xhci: Enable trust tx length quirk for Fresco FL11 USB controller (git-fixes).\n- xhci: Fix command ring pointer corruption while aborting a command (git-fixes).\n- xhci: guard accesses to ep_state in xhci_endpoint_reset() (git-fixes).\n- xhci: guard accesses to ep_state in xhci_endpoint_reset() (git-fixes).\n",null,[],[],[],[14,16,18,20,22,24,26,28,30,32,34,36,38,40,42],{"_key":15},"CVE-2018-13405",{"_key":17},"CVE-2021-33033",{"_key":19},"CVE-2021-34556",{"_key":21},"CVE-2021-3542",{"_key":23},"CVE-2021-35477",{"_key":25},"CVE-2021-3655",{"_key":27},"CVE-2021-3715",{"_key":29},"CVE-2021-3760",{"_key":31},"CVE-2021-3772",{"_key":33},"CVE-2021-3896",{"_key":35},"CVE-2021-41864",{"_key":37},"CVE-2021-42008",{"_key":39},"CVE-2021-42252",{"_key":41},"CVE-2021-42739",{"_key":43},"CVE-2021-43056",[],[],[47,48,49,50,51,52,53,54,55,56,57,58,59,60,61],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},{"_key":25},{"_key":27},{"_key":29},{"_key":31},{"_key":33},{"_key":35},{"_key":37},{"_key":39},{"_key":41},{"_key":43},"2021-11-15T12:24:45Z","2026-02-04T03:39:35.980015Z",{"cisa_kev":65,"cisa_ransomware":65,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[67,73,78,82,86,90,94,98,102,106,110,114,118,122,126,130,134,138,142,146,150,154,158,162,166,170,174,178,182,186,190,194,198,202,206,210,214,218,222,226,230,234,238,242,246,250,254,258,262,266,270,274,278,282,286,290,294,298,303,307,311,315,319,323,327,331,335,339,343,347,351,355],{"url":68,"sources":69,"tags":71},"https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/J325P6NPH7BF7P7B3LO6FGQNCTFNGKEW/",[70],"osv_opensuse",[72],"Advisory",{"url":74,"sources":75,"tags":76},"https://bugzilla.suse.com/1065729",[70],[77],"REPORT",{"url":79,"sources":80,"tags":81},"https://bugzilla.suse.com/1085030",[70],[77],{"url":83,"sources":84,"tags":85},"https://bugzilla.suse.com/1100416",[70],[77],{"url":87,"sources":88,"tags":89},"https://bugzilla.suse.com/1129735",[70],[77],{"url":91,"sources":92,"tags":93},"https://bugzilla.suse.com/1152489",[70],[77],{"url":95,"sources":96,"tags":97},"https://bugzilla.suse.com/1154353",[70],[77],{"url":99,"sources":100,"tags":101},"https://bugzilla.suse.com/1156395",[70],[77],{"url":103,"sources":104,"tags":105},"https://bugzilla.suse.com/1157177",[70],[77],{"url":107,"sources":108,"tags":109},"https://bugzilla.suse.com/1167773",[70],[77],{"url":111,"sources":112,"tags":113},"https://bugzilla.suse.com/1172073",[70],[77],{"url":115,"sources":116,"tags":117},"https://bugzilla.suse.com/1173604",[70],[77],{"url":119,"sources":120,"tags":121},"https://bugzilla.suse.com/1176940",[70],[77],{"url":123,"sources":124,"tags":125},"https://bugzilla.suse.com/1184673",[70],[77],{"url":127,"sources":128,"tags":129},"https://bugzilla.suse.com/1185762",[70],[77],{"url":131,"sources":132,"tags":133},"https://bugzilla.suse.com/1186109",[70],[77],{"url":135,"sources":136,"tags":137},"https://bugzilla.suse.com/1187167",[70],[77],{"url":139,"sources":140,"tags":141},"https://bugzilla.suse.com/1188563",[70],[77],{"url":143,"sources":144,"tags":145},"https://bugzilla.suse.com/1188876",[70],[77],{"url":147,"sources":148,"tags":149},"https://bugzilla.suse.com/1188983",[70],[77],{"url":151,"sources":152,"tags":153},"https://bugzilla.suse.com/1188985",[70],[77],{"url":155,"sources":156,"tags":157},"https://bugzilla.suse.com/1189841",[70],[77],{"url":159,"sources":160,"tags":161},"https://bugzilla.suse.com/1190006",[70],[77],{"url":163,"sources":164,"tags":165},"https://bugzilla.suse.com/1190067",[70],[77],{"url":167,"sources":168,"tags":169},"https://bugzilla.suse.com/1190349",[70],[77],{"url":171,"sources":172,"tags":173},"https://bugzilla.suse.com/1190351",[70],[77],{"url":175,"sources":176,"tags":177},"https://bugzilla.suse.com/1190479",[70],[77],{"url":179,"sources":180,"tags":181},"https://bugzilla.suse.com/1190620",[70],[77],{"url":183,"sources":184,"tags":185},"https://bugzilla.suse.com/1190642",[70],[77],{"url":187,"sources":188,"tags":189},"https://bugzilla.suse.com/1190795",[70],[77],{"url":191,"sources":192,"tags":193},"https://bugzilla.suse.com/1190941",[70],[77],{"url":195,"sources":196,"tags":197},"https://bugzilla.suse.com/1191229",[70],[77],{"url":199,"sources":200,"tags":201},"https://bugzilla.suse.com/1191238",[70],[77],{"url":203,"sources":204,"tags":205},"https://bugzilla.suse.com/1191241",[70],[77],{"url":207,"sources":208,"tags":209},"https://bugzilla.suse.com/1191315",[70],[77],{"url":211,"sources":212,"tags":213},"https://bugzilla.suse.com/1191317",[70],[77],{"url":215,"sources":216,"tags":217},"https://bugzilla.suse.com/1191343",[70],[77],{"url":219,"sources":220,"tags":221},"https://bugzilla.suse.com/1191349",[70],[77],{"url":223,"sources":224,"tags":225},"https://bugzilla.suse.com/1191384",[70],[77],{"url":227,"sources":228,"tags":229},"https://bugzilla.suse.com/1191449",[70],[77],{"url":231,"sources":232,"tags":233},"https://bugzilla.suse.com/1191450",[70],[77],{"url":235,"sources":236,"tags":237},"https://bugzilla.suse.com/1191451",[70],[77],{"url":239,"sources":240,"tags":241},"https://bugzilla.suse.com/1191452",[70],[77],{"url":243,"sources":244,"tags":245},"https://bugzilla.suse.com/1191455",[70],[77],{"url":247,"sources":248,"tags":249},"https://bugzilla.suse.com/1191456",[70],[77],{"url":251,"sources":252,"tags":253},"https://bugzilla.suse.com/1191628",[70],[77],{"url":255,"sources":256,"tags":257},"https://bugzilla.suse.com/1191731",[70],[77],{"url":259,"sources":260,"tags":261},"https://bugzilla.suse.com/1191800",[70],[77],{"url":263,"sources":264,"tags":265},"https://bugzilla.suse.com/1191934",[70],[77],{"url":267,"sources":268,"tags":269},"https://bugzilla.suse.com/1191958",[70],[77],{"url":271,"sources":272,"tags":273},"https://bugzilla.suse.com/1192036",[70],[77],{"url":275,"sources":276,"tags":277},"https://bugzilla.suse.com/1192040",[70],[77],{"url":279,"sources":280,"tags":281},"https://bugzilla.suse.com/1192041",[70],[77],{"url":283,"sources":284,"tags":285},"https://bugzilla.suse.com/1192107",[70],[77],{"url":287,"sources":288,"tags":289},"https://bugzilla.suse.com/1192145",[70],[77],{"url":291,"sources":292,"tags":293},"https://bugzilla.suse.com/1192267",[70],[77],{"url":295,"sources":296,"tags":297},"https://bugzilla.suse.com/1192549",[70],[77],{"url":299,"sources":300,"tags":301},"https://www.suse.com/security/cve/CVE-2018-13405",[70],[302],"WEB",{"url":304,"sources":305,"tags":306},"https://www.suse.com/security/cve/CVE-2021-33033",[70],[302],{"url":308,"sources":309,"tags":310},"https://www.suse.com/security/cve/CVE-2021-34556",[70],[302],{"url":312,"sources":313,"tags":314},"https://www.suse.com/security/cve/CVE-2021-3542",[70],[302],{"url":316,"sources":317,"tags":318},"https://www.suse.com/security/cve/CVE-2021-35477",[70],[302],{"url":320,"sources":321,"tags":322},"https://www.suse.com/security/cve/CVE-2021-3655",[70],[302],{"url":324,"sources":325,"tags":326},"https://www.suse.com/security/cve/CVE-2021-3715",[70],[302],{"url":328,"sources":329,"tags":330},"https://www.suse.com/security/cve/CVE-2021-3760",[70],[302],{"url":332,"sources":333,"tags":334},"https://www.suse.com/security/cve/CVE-2021-3772",[70],[302],{"url":336,"sources":337,"tags":338},"https://www.suse.com/security/cve/CVE-2021-3896",[70],[302],{"url":340,"sources":341,"tags":342},"https://www.suse.com/security/cve/CVE-2021-41864",[70],[302],{"url":344,"sources":345,"tags":346},"https://www.suse.com/security/cve/CVE-2021-42008",[70],[302],{"url":348,"sources":349,"tags":350},"https://www.suse.com/security/cve/CVE-2021-42252",[70],[302],{"url":352,"sources":353,"tags":354},"https://www.suse.com/security/cve/CVE-2021-42739",[70],[302],{"url":356,"sources":357,"tags":358},"https://www.suse.com/security/cve/CVE-2021-43056",[70],[302],[],[],[],[363,376,383,388,393,398,403,408,413,418],{"ecosystem":364,"name":365,"vendor":366,"product":367,"cpe_part":9,"purl_type":368,"purl_namespace":366,"purl_name":367,"source":9,"versions":369},"openSUSE","kernel-debug","opensuse","kernel-debug&distro=openSUSE Leap 15.2","rpm",[370],{"version":371,"is_range":372,"range_type":373,"version_start":9,"version_start_type":9,"version_end":374,"version_end_type":375,"fixed_in":9},"lt5_3_18_lp152_102_1",true,"ecosystem","5.3.18-lp152.102.1","excluding",{"ecosystem":364,"name":377,"vendor":366,"product":378,"cpe_part":9,"purl_type":368,"purl_namespace":366,"purl_name":378,"source":9,"versions":379},"kernel-default-base","kernel-default-base&distro=openSUSE Leap 15.2",[380],{"version":381,"is_range":372,"range_type":373,"version_start":9,"version_start_type":9,"version_end":382,"version_end_type":375,"fixed_in":9},"lt5_3_18_lp152_102_1_lp152_8_49_1","5.3.18-lp152.102.1.lp152.8.49.1",{"ecosystem":364,"name":384,"vendor":366,"product":385,"cpe_part":9,"purl_type":368,"purl_namespace":366,"purl_name":385,"source":9,"versions":386},"kernel-default","kernel-default&distro=openSUSE Leap 15.2",[387],{"version":371,"is_range":372,"range_type":373,"version_start":9,"version_start_type":9,"version_end":374,"version_end_type":375,"fixed_in":9},{"ecosystem":364,"name":389,"vendor":366,"product":390,"cpe_part":9,"purl_type":368,"purl_namespace":366,"purl_name":390,"source":9,"versions":391},"kernel-docs","kernel-docs&distro=openSUSE Leap 15.2",[392],{"version":371,"is_range":372,"range_type":373,"version_start":9,"version_start_type":9,"version_end":374,"version_end_type":375,"fixed_in":9},{"ecosystem":364,"name":394,"vendor":366,"product":395,"cpe_part":9,"purl_type":368,"purl_namespace":366,"purl_name":395,"source":9,"versions":396},"kernel-kvmsmall","kernel-kvmsmall&distro=openSUSE Leap 15.2",[397],{"version":371,"is_range":372,"range_type":373,"version_start":9,"version_start_type":9,"version_end":374,"version_end_type":375,"fixed_in":9},{"ecosystem":364,"name":399,"vendor":366,"product":400,"cpe_part":9,"purl_type":368,"purl_namespace":366,"purl_name":400,"source":9,"versions":401},"kernel-obs-build","kernel-obs-build&distro=openSUSE Leap 15.2",[402],{"version":371,"is_range":372,"range_type":373,"version_start":9,"version_start_type":9,"version_end":374,"version_end_type":375,"fixed_in":9},{"ecosystem":364,"name":404,"vendor":366,"product":405,"cpe_part":9,"purl_type":368,"purl_namespace":366,"purl_name":405,"source":9,"versions":406},"kernel-obs-qa","kernel-obs-qa&distro=openSUSE Leap 15.2",[407],{"version":371,"is_range":372,"range_type":373,"version_start":9,"version_start_type":9,"version_end":374,"version_end_type":375,"fixed_in":9},{"ecosystem":364,"name":409,"vendor":366,"product":410,"cpe_part":9,"purl_type":368,"purl_namespace":366,"purl_name":410,"source":9,"versions":411},"kernel-preempt","kernel-preempt&distro=openSUSE Leap 15.2",[412],{"version":371,"is_range":372,"range_type":373,"version_start":9,"version_start_type":9,"version_end":374,"version_end_type":375,"fixed_in":9},{"ecosystem":364,"name":414,"vendor":366,"product":415,"cpe_part":9,"purl_type":368,"purl_namespace":366,"purl_name":415,"source":9,"versions":416},"kernel-source","kernel-source&distro=openSUSE Leap 15.2",[417],{"version":371,"is_range":372,"range_type":373,"version_start":9,"version_start_type":9,"version_end":374,"version_end_type":375,"fixed_in":9},{"ecosystem":364,"name":419,"vendor":366,"product":420,"cpe_part":9,"purl_type":368,"purl_namespace":366,"purl_name":420,"source":9,"versions":421},"kernel-syms","kernel-syms&distro=openSUSE Leap 15.2",[422],{"version":371,"is_range":372,"range_type":373,"version_start":9,"version_start_type":9,"version_end":374,"version_end_type":375,"fixed_in":9}]