CVE-2024-38541
- EPSS 1.48%
- Veröffentlicht 19.06.2024 14:15:14
- Zuletzt bearbeitet 03.11.2025 20:16:20
In the Linux kernel, the following vulnerability has been resolved: of: module: add buffer overflow check in of_modalias() In of_modalias(), if the buffer happens to be too small even for the 1st snprintf() call, the len parameter will become negat...
CVE-2024-38542
- EPSS 0.25%
- Veröffentlicht 19.06.2024 14:15:14
- Zuletzt bearbeitet 01.04.2025 18:36:50
In the Linux kernel, the following vulnerability has been resolved: RDMA/mana_ib: boundary check before installing cq callbacks Add a boundary check inside mana_ib_install_cq_cb to prevent index overflow.
CVE-2024-38544
- EPSS 0.25%
- Veröffentlicht 19.06.2024 14:15:14
- Zuletzt bearbeitet 03.11.2025 21:16:14
In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix seg fault in rxe_comp_queue_pkt In rxe_comp_queue_pkt() an incoming response packet skb is enqueued to the resp_pkts queue and then a decision is made whether to run ...
CVE-2024-36974
- EPSS 0.28%
- Veröffentlicht 18.06.2024 20:15:13
- Zuletzt bearbeitet 12.05.2026 12:16:51
In the Linux kernel, the following vulnerability has been resolved: net/sched: taprio: always validate TCA_TAPRIO_ATTR_PRIOMAP If one TCA_TAPRIO_ATTR_PRIOMAP attribute has been provided, taprio_parse_mqprio_opt() must validate it, or userspace can ...
CVE-2024-36975
- EPSS 0.21%
- Veröffentlicht 18.06.2024 20:15:13
- Zuletzt bearbeitet 01.10.2025 15:16:46
In the Linux kernel, the following vulnerability has been resolved: KEYS: trusted: Do not use WARN when encode fails When asn1_encode_sequence() fails, WARN is not the correct solution. 1. asn1_encode_sequence() is not an internal function (locate...
CVE-2024-36977
- EPSS 0.21%
- Veröffentlicht 18.06.2024 20:15:13
- Zuletzt bearbeitet 01.10.2025 15:53:43
In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: Wait unconditionally after issuing EndXfer command Currently all controller IP/revisions except DWC3_usb3 >= 310a wait 1ms unconditionally for ENDXFER completion when IO...
CVE-2024-36972
- EPSS 0.67%
- Veröffentlicht 10.06.2024 15:15:52
- Zuletzt bearbeitet 01.04.2025 18:36:27
In the Linux kernel, the following vulnerability has been resolved: af_unix: Update unix_sk(sk)->oob_skb under sk_receive_queue lock. Billy Jheng Bing-Jhong reported a race between __unix_gc() and queue_oob(). __unix_gc() tries to garbage-collect ...
CVE-2024-36966
- EPSS 0.21%
- Veröffentlicht 08.06.2024 13:15:57
- Zuletzt bearbeitet 01.10.2025 14:43:52
In the Linux kernel, the following vulnerability has been resolved: erofs: reliably distinguish block based and fscache mode When erofs_kill_sb() is called in block dev based mode, s_bdev may not have been initialised yet, and if CONFIG_EROFS_FS_ON...
CVE-2024-36960
- EPSS 0.29%
- Veröffentlicht 03.06.2024 08:15:09
- Zuletzt bearbeitet 01.04.2025 18:36:15
In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Fix invalid reads in fence signaled events Correctly set the length of the drm_event to the size of the structure that's actually used. The length of the drm_event was...
CVE-2024-36961
- EPSS 0.14%
- Veröffentlicht 03.06.2024 08:15:09
- Zuletzt bearbeitet 17.09.2025 22:22:21
In the Linux kernel, the following vulnerability has been resolved: thermal/debugfs: Fix two locking issues with thermal zone debug With the current thermal zone locking arrangement in the debugfs code, user space can open the "mitigations" file fo...