CVE-2024-50150
- EPSS 0.24%
- Veröffentlicht 07.11.2024 10:15:06
- Zuletzt bearbeitet 12.05.2026 13:16:18
In the Linux kernel, the following vulnerability has been resolved: usb: typec: altmode should keep reference to parent The altmode device release refers to its parent device, but without keeping a reference to it. When registering the altmode, ge...
CVE-2024-50151
- EPSS 0.28%
- Veröffentlicht 07.11.2024 10:15:06
- Zuletzt bearbeitet 12.05.2026 13:16:18
In the Linux kernel, the following vulnerability has been resolved: smb: client: fix OOBs when building SMB2_IOCTL request When using encryption, either enforced by the server or when using 'seal' mount option, the client will squash all compound r...
CVE-2024-50153
- EPSS 0.26%
- Veröffentlicht 07.11.2024 10:15:06
- Zuletzt bearbeitet 12.05.2026 13:16:19
In the Linux kernel, the following vulnerability has been resolved: scsi: target: core: Fix null-ptr-deref in target_alloc_device() There is a null-ptr-deref issue reported by KASAN: BUG: KASAN: null-ptr-deref in target_alloc_device+0xbc4/0xbe0 [t...
- EPSS 0.24%
- Veröffentlicht 07.11.2024 10:15:06
- Zuletzt bearbeitet 03.11.2025 23:16:56
In the Linux kernel, the following vulnerability has been resolved: tcp/dccp: Don't use timer_pending() in reqsk_queue_unlink(). Martin KaFai Lau reported use-after-free [0] in reqsk_timer_handler(). """ We are seeing a use-after-free from a b...
CVE-2024-50134
- EPSS 0.25%
- Veröffentlicht 05.11.2024 18:15:16
- Zuletzt bearbeitet 12.05.2026 13:16:17
In the Linux kernel, the following vulnerability has been resolved: drm/vboxvideo: Replace fake VLA at end of vbva_mouse_pointer_shape with real VLA Replace the fake VLA at end of the vbva_mouse_pointer_shape shape with a real VLA to fix a "memcpy:...
CVE-2024-50135
- EPSS 0.17%
- Veröffentlicht 05.11.2024 18:15:16
- Zuletzt bearbeitet 01.10.2025 21:15:51
In the Linux kernel, the following vulnerability has been resolved: nvme-pci: fix race condition between reset and nvme_dev_disable() nvme_dev_disable() modifies the dev->online_queues field, therefore nvme_pci_update_nr_queues() should avoid racin...
CVE-2024-50138
- EPSS 0.22%
- Veröffentlicht 05.11.2024 18:15:16
- Zuletzt bearbeitet 03.11.2025 23:16:54
In the Linux kernel, the following vulnerability has been resolved: bpf: Use raw_spinlock_t in ringbuf The function __bpf_ringbuf_reserve is invoked from a tracepoint, which disables preemption. Using spinlock_t in this context can lead to a "sleep...
CVE-2024-50121
- EPSS 0.23%
- Veröffentlicht 05.11.2024 18:15:15
- Zuletzt bearbeitet 12.05.2026 13:16:17
In the Linux kernel, the following vulnerability has been resolved: nfsd: cancel nfsd_shrinker_work using sync mode in nfs4_state_shutdown_net In the normal case, when we excute `echo 0 > /proc/fs/nfsd/threads`, the function `nfs4_state_destroy_net...
CVE-2024-50125
- EPSS 0.23%
- Veröffentlicht 05.11.2024 18:15:15
- Zuletzt bearbeitet 03.11.2025 23:16:52
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: SCO: Fix UAF on sco_sock_timeout conn->sk maybe have been unlinked/freed while waiting for sco_conn_lock so this checks if the conn->sk is still valid by checking if it ...
CVE-2024-50127
- EPSS 0.25%
- Veröffentlicht 05.11.2024 18:15:15
- Zuletzt bearbeitet 12.05.2026 13:16:17
In the Linux kernel, the following vulnerability has been resolved: net: sched: fix use-after-free in taprio_change() In 'taprio_change()', 'admin' pointer may become dangling due to sched switch / removal caused by 'advance_sched()', and critical ...