CVE-2024-42302
- EPSS 0.23%
- Veröffentlicht 17.08.2024 09:15:10
- Zuletzt bearbeitet 12.05.2026 12:17:06
In the Linux kernel, the following vulnerability has been resolved: PCI/DPC: Fix use-after-free on concurrent DPC and hot-removal Keith reports a use-after-free when a DPC event occurs concurrently to hot-removal of the same portion of the hierarch...
- EPSS 1.28%
- Veröffentlicht 15.08.2024 19:15:19
- Zuletzt bearbeitet 19.08.2025 15:21:28
Flatpak is a Linux application sandboxing and distribution framework. Prior to versions 1.14.0 and 1.15.10, a malicious or compromised Flatpak app using persistent directories could access and write files outside of what it would otherwise have acces...
CVE-2024-42159
- EPSS 0.22%
- Veröffentlicht 30.07.2024 08:15:07
- Zuletzt bearbeitet 25.03.2026 14:27:16
In the Linux kernel, the following vulnerability has been resolved: scsi: mpi3mr: Sanitise num_phys Information is stored in mr_sas_port->phy_mask, values larger then size of this field shouldn't be allowed.
CVE-2024-42160
- EPSS 0.24%
- Veröffentlicht 30.07.2024 08:15:07
- Zuletzt bearbeitet 25.03.2026 14:34:47
In the Linux kernel, the following vulnerability has been resolved: f2fs: check validation of fault attrs in f2fs_build_fault_attr() - It missed to check validation of fault attrs in parse_options(), let's fix to add check condition in f2fs_build_f...
CVE-2024-42136
- EPSS 0.24%
- Veröffentlicht 30.07.2024 08:15:05
- Zuletzt bearbeitet 24.03.2026 14:46:34
In the Linux kernel, the following vulnerability has been resolved: cdrom: rearrange last_media_change check to avoid unintentional overflow When running syzkaller with the newly reintroduced signed integer wrap sanitizer we encounter this splat: ...
CVE-2024-41096
- EPSS 0.24%
- Veröffentlicht 29.07.2024 16:15:04
- Zuletzt bearbeitet 24.03.2026 14:46:53
In the Linux kernel, the following vulnerability has been resolved: PCI/MSI: Fix UAF in msi_capability_init KFENCE reports the following UAF: BUG: KFENCE: use-after-free read in __pci_enable_msi_range+0x2c0/0x488 Use-after-free read at 0x000000...
CVE-2024-41073
- EPSS 0.25%
- Veröffentlicht 29.07.2024 15:15:15
- Zuletzt bearbeitet 14.01.2026 16:24:53
In the Linux kernel, the following vulnerability has been resolved: nvme: avoid double free special payload If a discard request needs to be retried, and that retry may fail before a new special payload is added, a double free will result. Clear th...
CVE-2024-41000
- EPSS 0.3%
- Veröffentlicht 12.07.2024 13:15:20
- Zuletzt bearbeitet 12.05.2026 12:17:02
In the Linux kernel, the following vulnerability has been resolved: block/ioctl: prefer different overflow check Running syzkaller with the newly reintroduced signed integer overflow sanitizer shows this report: [ 62.982337] ------------[ cut he...
CVE-2024-39494
- EPSS 0.31%
- Veröffentlicht 12.07.2024 13:15:12
- Zuletzt bearbeitet 06.01.2026 15:06:55
In the Linux kernel, the following vulnerability has been resolved: ima: Fix use-after-free on a dentry's dname.name ->d_name.name can change on rename and the earlier value can be freed; there are conditions sufficient to stabilize it (->d_lock on...
CVE-2024-39496
- EPSS 0.29%
- Veröffentlicht 12.07.2024 13:15:12
- Zuletzt bearbeitet 06.01.2026 15:07:04
In the Linux kernel, the following vulnerability has been resolved: btrfs: zoned: fix use-after-free due to race with dev replace While loading a zone's info during creation of a block group, we can race with a device replace operation and then tri...