CVE-2024-9680
- EPSS 32.57%
- Veröffentlicht 09.10.2024 13:15:12
- Zuletzt bearbeitet 04.11.2025 14:35:50
An attacker was able to achieve code execution in the content process by exploiting a use-after-free in Animation timelines. We have had reports of this vulnerability being exploited in the wild. This vulnerability affects Firefox < 131.0.2, Firefox ...
CVE-2024-8508
- EPSS 0.8%
- Veröffentlicht 03.10.2024 17:15:15
- Zuletzt bearbeitet 17.12.2024 19:28:03
NLnet Labs Unbound up to and including version 1.21.0 contains a vulnerability when handling replies with very large RRsets that it needs to perform name compression for. Malicious upstreams responses with very large RRsets can cause Unbound to spend...
CVE-2024-46859
- EPSS 0.22%
- Veröffentlicht 27.09.2024 13:15:17
- Zuletzt bearbeitet 05.05.2026 15:06:23
In the Linux kernel, the following vulnerability has been resolved: platform/x86: panasonic-laptop: Fix SINF array out of bounds accesses The panasonic laptop code in various places uses the SINF array with index values of 0 - SINF_CUR_BRIGHT(0x0d)...
CVE-2024-46849
- EPSS 0.25%
- Veröffentlicht 27.09.2024 13:15:16
- Zuletzt bearbeitet 05.05.2026 15:21:02
In the Linux kernel, the following vulnerability has been resolved: ASoC: meson: axg-card: fix 'use-after-free' Buffer 'card->dai_link' is reallocated in 'meson_card_reallocate_links()', so move 'pad' pointer initialization after this function when...
CVE-2024-46852
- EPSS 0.22%
- Veröffentlicht 27.09.2024 13:15:16
- Zuletzt bearbeitet 05.05.2026 15:20:17
In the Linux kernel, the following vulnerability has been resolved: dma-buf: heaps: Fix off-by-one in CMA heap fault handler Until VM_DONTEXPAND was added in commit 1c1914d6e8c6 ("dma-buf: heaps: Don't track CMA dma-buf pages under RssFile") it was...
CVE-2024-46853
- EPSS 0.24%
- Veröffentlicht 27.09.2024 13:15:16
- Zuletzt bearbeitet 05.05.2026 15:04:53
In the Linux kernel, the following vulnerability has been resolved: spi: nxp-fspi: fix the KASAN report out-of-bounds bug Change the memcpy length to fix the out-of-bounds issue when writing the data that is not 4 byte aligned to TX FIFO. To repro...
CVE-2024-46830
- EPSS 0.25%
- Veröffentlicht 27.09.2024 13:15:15
- Zuletzt bearbeitet 05.05.2026 15:22:29
In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Acquire kvm->srcu when handling KVM_SET_VCPU_EVENTS Grab kvm->srcu when processing KVM_SET_VCPU_EVENTS, as KVM will forcibly leave nested VMX/SVM if SMM mode is being tog...
CVE-2024-46812
- EPSS 0.26%
- Veröffentlicht 27.09.2024 13:15:14
- Zuletzt bearbeitet 05.05.2026 15:22:44
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Skip inactive planes within ModeSupportAndSystemConfiguration [Why] Coverity reports Memory - illegal accesses. [How] Skip inactive planes.
CVE-2024-46821
- EPSS 0.26%
- Veröffentlicht 27.09.2024 13:15:14
- Zuletzt bearbeitet 05.05.2026 15:28:27
In the Linux kernel, the following vulnerability has been resolved: drm/amd/pm: Fix negative array index read Avoid using the negative values for clk_idex as an index into an array pptable->DpmDescriptor. V2: fix clk_index return check (Tim Huang)
CVE-2024-47175
- EPSS 62.47%
- Veröffentlicht 26.09.2024 22:15:04
- Zuletzt bearbeitet 03.11.2025 23:16:12
CUPS is a standards-based, open-source printing system, and `libppd` can be used for legacy PPD file support. The `libppd` function `ppdCreatePPDFromIPP2` does not sanitize IPP attributes when creating the PPD buffer. When used in combination with ot...