CVE-2024-35901
- EPSS 0.21%
- Veröffentlicht 19.05.2024 09:15:10
- Zuletzt bearbeitet 23.09.2025 13:35:47
In the Linux kernel, the following vulnerability has been resolved: net: mana: Fix Rx DMA datasize and skb_over_panic mana_get_rxbuf_cfg() aligns the RX buffer's DMA datasize to be multiple of 64. So a packet slightly bigger than mtu+14, say 1536, ...
CVE-2024-35878
- EPSS 0.79%
- Veröffentlicht 19.05.2024 09:15:09
- Zuletzt bearbeitet 07.04.2025 18:57:06
In the Linux kernel, the following vulnerability has been resolved: of: module: prevent NULL pointer dereference in vsnprintf() In of_modalias(), we can get passed the str and len parameters which would cause a kernel oops in vsnprintf() since it o...
CVE-2024-35879
- EPSS 0.23%
- Veröffentlicht 19.05.2024 09:15:09
- Zuletzt bearbeitet 23.12.2025 19:29:03
In the Linux kernel, the following vulnerability has been resolved: of: dynamic: Synchronize of_changeset_destroy() with the devlink removals In the following sequence: 1) of_platform_depopulate() 2) of_overlay_remove() During the step 1, devi...
CVE-2024-35880
- EPSS 0.65%
- Veröffentlicht 19.05.2024 09:15:09
- Zuletzt bearbeitet 24.09.2025 21:09:03
In the Linux kernel, the following vulnerability has been resolved: io_uring/kbuf: hold io_buffer_list reference over mmap If we look up the kbuf, ensure that it doesn't get unregistered until after we're done with it. Since we're inside mmap, we c...
CVE-2024-35884
- EPSS 0.67%
- Veröffentlicht 19.05.2024 09:15:09
- Zuletzt bearbeitet 12.05.2026 12:16:38
In the Linux kernel, the following vulnerability has been resolved: udp: do not accept non-tunnel GSO skbs landing in a tunnel When rx-udp-gro-forwarding is enabled UDP packets might be GROed when being forwarded. If such packets might land in a tu...
CVE-2024-35886
- EPSS 0.28%
- Veröffentlicht 19.05.2024 09:15:09
- Zuletzt bearbeitet 12.05.2026 12:16:38
In the Linux kernel, the following vulnerability has been resolved: ipv6: Fix infinite recursion in fib6_dump_done(). syzkaller reported infinite recursive calls of fib6_dump_done() during netlink socket destruction. [1] From the log, syzkaller s...
CVE-2024-35888
- EPSS 0.25%
- Veröffentlicht 19.05.2024 09:15:09
- Zuletzt bearbeitet 12.05.2026 12:16:38
In the Linux kernel, the following vulnerability has been resolved: erspan: make sure erspan_base_hdr is present in skb->head syzbot reported a problem in ip6erspan_rcv() [1] Issue is that ip6erspan_rcv() (and erspan_rcv()) no longer make sure ers...
CVE-2024-35865
- EPSS 0.23%
- Veröffentlicht 19.05.2024 09:15:08
- Zuletzt bearbeitet 01.06.2026 17:16:28
In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF in smb2_is_valid_oplock_break() Skip sessions that are being teared down (status == SES_EXITING) to avoid UAF.
CVE-2024-35869
- EPSS 0.25%
- Veröffentlicht 19.05.2024 09:15:08
- Zuletzt bearbeitet 18.11.2025 15:46:37
In the Linux kernel, the following vulnerability has been resolved: smb: client: guarantee refcounted children from parent session Avoid potential use-after-free bugs when walking DFS referrals, mounting and performing DFS failover by ensuring that...
CVE-2024-35870
- EPSS 0.23%
- Veröffentlicht 19.05.2024 09:15:08
- Zuletzt bearbeitet 03.11.2025 21:16:11
In the Linux kernel, the following vulnerability has been resolved: smb: client: fix UAF in smb2_reconnect_server() The UAF bug is due to smb2_reconnect_server() accessing a session that is already being teared down by another thread that is execut...