- EPSS 0.17%
- Veröffentlicht 27.12.2024 15:15:26
- Zuletzt bearbeitet 03.11.2025 21:18:17
In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Fix race between element replace and close() Element replace (with a socket different from the one stored) may race with socket's close() link popping & unlinking. __...
CVE-2024-56670
- EPSS 0.22%
- Veröffentlicht 27.12.2024 15:15:26
- Zuletzt bearbeitet 03.11.2025 21:18:17
In the Linux kernel, the following vulnerability has been resolved: usb: gadget: u_serial: Fix the issue that gs_start_io crashed due to accessing null pointer Considering that in some extreme cases, when u_serial driver is accessed by multiple thr...
CVE-2024-56658
- EPSS 0.23%
- Veröffentlicht 27.12.2024 15:15:25
- Zuletzt bearbeitet 03.11.2025 21:18:15
In the Linux kernel, the following vulnerability has been resolved: net: defer final 'struct net' free in netns dismantle Ilya reported a slab-use-after-free in dst_destroy [1] Issue is in xfrm6_net_init() and xfrm4_net_init() : They copy xfrm[46...
CVE-2024-56659
- EPSS 0.22%
- Veröffentlicht 27.12.2024 15:15:25
- Zuletzt bearbeitet 03.11.2025 21:18:15
In the Linux kernel, the following vulnerability has been resolved: net: lapb: increase LAPB_HEADER_LEN It is unclear if net/lapb code is supposed to be ready for 8021q. We can at least avoid crashes like the following : skbuff: skb_under_panic: ...
CVE-2024-56661
- EPSS 0.22%
- Veröffentlicht 27.12.2024 15:15:25
- Zuletzt bearbeitet 03.11.2025 21:18:16
In the Linux kernel, the following vulnerability has been resolved: tipc: fix NULL deref in cleanup_bearer() syzbot found [1] that after blamed commit, ub->ubsock->sk was NULL when attempting the atomic_dec() : atomic_dec(&tipc_net(sock_net(ub->ub...
CVE-2024-56643
- EPSS 0.22%
- Veröffentlicht 27.12.2024 15:15:24
- Zuletzt bearbeitet 03.11.2025 21:18:13
In the Linux kernel, the following vulnerability has been resolved: dccp: Fix memory leak in dccp_feat_change_recv If dccp_feat_push_confirm() fails after new value for SP feature was accepted without reconciliation ('entry == NULL' branch), memory...
CVE-2024-56644
- EPSS 0.23%
- Veröffentlicht 27.12.2024 15:15:24
- Zuletzt bearbeitet 12.01.2026 13:10:13
In the Linux kernel, the following vulnerability has been resolved: net/ipv6: release expired exception dst cached in socket Dst objects get leaked in ip6_negative_advice() when this function is executed for an expired IPv6 route located in the exc...
CVE-2024-56645
- EPSS 0.22%
- Veröffentlicht 27.12.2024 15:15:24
- Zuletzt bearbeitet 03.11.2025 21:18:13
In the Linux kernel, the following vulnerability has been resolved: can: j1939: j1939_session_new(): fix skb reference counting Since j1939_session_skb_queue() does an extra skb_get() for each new skb, do the same for the initial one in j1939_sessi...
CVE-2024-56647
- EPSS 0.22%
- Veröffentlicht 27.12.2024 15:15:24
- Zuletzt bearbeitet 01.06.2026 17:16:31
In the Linux kernel, the following vulnerability has been resolved: net: Fix icmp host relookup triggering ip_rt_bug arp link failure may trigger ip_rt_bug while xfrm enabled, call trace is: WARNING: CPU: 0 PID: 0 at net/ipv4/route.c:1241 ip_rt_bu...
CVE-2024-56648
- EPSS 0.24%
- Veröffentlicht 27.12.2024 15:15:24
- Zuletzt bearbeitet 03.11.2025 21:18:14
In the Linux kernel, the following vulnerability has been resolved: net: hsr: avoid potential out-of-bound access in fill_frame_info() syzbot is able to feed a packet with 14 bytes, pretending it is a vlan one. Since fill_frame_info() is relying o...