CVE-2024-49877
- EPSS 0.25%
- Veröffentlicht 21.10.2024 18:15:09
- Zuletzt bearbeitet 03.11.2025 23:16:27
In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix possible null-ptr-deref in ocfs2_set_buffer_uptodate When doing cleanup, if flags without OCFS2_BH_READAHEAD, it may trigger NULL pointer dereference in the following oc...
CVE-2024-49878
- EPSS 0.3%
- Veröffentlicht 21.10.2024 18:15:09
- Zuletzt bearbeitet 03.11.2025 23:16:27
In the Linux kernel, the following vulnerability has been resolved: resource: fix region_intersects() vs add_memory_driver_managed() On a system with CXL memory, the resource tree (/proc/iomem) related to CXL memory may look like something as follo...
CVE-2024-49863
- EPSS 0.29%
- Veröffentlicht 21.10.2024 18:15:06
- Zuletzt bearbeitet 03.11.2025 23:16:26
In the Linux kernel, the following vulnerability has been resolved: vhost/scsi: null-ptr-dereference in vhost_scsi_get_req() Since commit 3f8ca2e115e5 ("vhost/scsi: Extract common handling code from control queue handler") a null pointer dereferenc...
CVE-2024-49867
- EPSS 0.29%
- Veröffentlicht 21.10.2024 18:15:06
- Zuletzt bearbeitet 05.01.2026 11:17:19
In the Linux kernel, the following vulnerability has been resolved: btrfs: wait for fixup workers before stopping cleaner kthread during umount During unmount, at close_ctree(), we have the following steps in this order: 1) Park the cleaner kthrea...
CVE-2024-49868
- EPSS 0.29%
- Veröffentlicht 21.10.2024 18:15:06
- Zuletzt bearbeitet 03.11.2025 23:16:27
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix a NULL pointer dereference when failed to start a new trasacntion [BUG] Syzbot reported a NULL pointer dereference with the following crash: FAULT_INJECTION: forcing ...
CVE-2024-49854
- EPSS 0.22%
- Veröffentlicht 21.10.2024 13:15:06
- Zuletzt bearbeitet 03.11.2025 23:16:25
In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix uaf for accessing waker_bfqq after splitting After commit 42c306ed7233 ("block, bfq: don't break merge chain in bfq_split_bfqq()"), if the current procress is the l...
CVE-2024-49858
- EPSS 0.21%
- Veröffentlicht 21.10.2024 13:15:06
- Zuletzt bearbeitet 03.11.2025 23:16:26
In the Linux kernel, the following vulnerability has been resolved: efistub/tpm: Use ACPI reclaim memory for event log to avoid corruption The TPM event log table is a Linux specific construct, where the data produced by the GetEventLog() boot serv...
CVE-2024-49859
- EPSS 0.16%
- Veröffentlicht 21.10.2024 13:15:06
- Zuletzt bearbeitet 03.11.2025 23:16:26
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to check atomic_file in f2fs ioctl interfaces Some f2fs ioctl interfaces like f2fs_ioc_set_pin_file(), f2fs_move_file_range(), and f2fs_defragment_range() missed to check...
CVE-2024-49860
- EPSS 0.25%
- Veröffentlicht 21.10.2024 13:15:06
- Zuletzt bearbeitet 03.11.2025 23:16:26
In the Linux kernel, the following vulnerability has been resolved: ACPI: sysfs: validate return type of _STR method Only buffer objects are valid return values of _STR. If something else is returned description_show() will access invalid memory.
CVE-2024-49861
- EPSS 0.22%
- Veröffentlicht 21.10.2024 13:15:06
- Zuletzt bearbeitet 03.11.2025 21:16:32
In the Linux kernel, the following vulnerability has been resolved: bpf: Fix helper writes to read-only maps Lonial found an issue that despite user- and BPF-side frozen BPF map (like in case of .rodata), it was still possible to write into it from...