CVE-2024-41041
- EPSS 0.28%
- Veröffentlicht 29.07.2024 15:15:12
- Zuletzt bearbeitet 03.11.2025 22:17:27
In the Linux kernel, the following vulnerability has been resolved: udp: Set SOCK_RCU_FREE earlier in udp_lib_get_port(). syzkaller triggered the warning [0] in udp_v4_early_demux(). In udp_v[46]_early_demux() and sk_lookup(), we do not touch the ...
CVE-2024-41042
- EPSS 0.32%
- Veröffentlicht 29.07.2024 15:15:12
- Zuletzt bearbeitet 03.11.2025 22:17:27
In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: prefer nft_chain_validate nft_chain_validate already performs loop detection because a cycle will result in a call stack overflow (ctx->level >= NFT_JUMP_STAC...
CVE-2024-41044
- EPSS 0.29%
- Veröffentlicht 29.07.2024 15:15:12
- Zuletzt bearbeitet 03.11.2025 22:17:27
In the Linux kernel, the following vulnerability has been resolved: ppp: reject claimed-as-LCP but actually malformed packets Since 'ppp_async_encode()' assumes valid LCP packets (with code from 1 to 7 inclusive), add 'ppp_check_packet()' to ensure...
CVE-2024-41046
- EPSS 0.3%
- Veröffentlicht 29.07.2024 15:15:12
- Zuletzt bearbeitet 03.11.2025 22:17:27
In the Linux kernel, the following vulnerability has been resolved: net: ethernet: lantiq_etop: fix double free in detach The number of the currently released descriptor is never incremented which results in the same skb being released multiple tim...
CVE-2024-41023
- EPSS 0.29%
- Veröffentlicht 29.07.2024 15:15:11
- Zuletzt bearbeitet 21.11.2024 09:32:05
In the Linux kernel, the following vulnerability has been resolved: sched/deadline: Fix task_struct reference leak During the execution of the following stress test with linux-rt: stress-ng --cyclic 30 --timeout 30 --minimize --quiet kmemleak fre...
CVE-2024-41027
- EPSS 0.28%
- Veröffentlicht 29.07.2024 15:15:11
- Zuletzt bearbeitet 03.11.2025 22:17:24
In the Linux kernel, the following vulnerability has been resolved: Fix userfaultfd_api to return EINVAL as expected Currently if we request a feature that is not set in the Kernel config we fail silently and return all the available features. How...
CVE-2024-41034
- EPSS 0.3%
- Veröffentlicht 29.07.2024 15:15:11
- Zuletzt bearbeitet 03.11.2025 22:17:25
In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix kernel bug on rename operation of broken directory Syzbot reported that in rename directory operation on broken directory on nilfs2, __block_write_begin_int() called to...
CVE-2024-41020
- EPSS 0.18%
- Veröffentlicht 29.07.2024 14:15:03
- Zuletzt bearbeitet 03.11.2025 22:17:24
In the Linux kernel, the following vulnerability has been resolved: filelock: Fix fcntl/close race recovery compat path When I wrote commit 3cad1bc01041 ("filelock: Remove locks reliably when fcntl/close race is detected"), I missed that there are ...
CVE-2024-41022
- EPSS 0.24%
- Veröffentlicht 29.07.2024 14:15:03
- Zuletzt bearbeitet 03.11.2025 22:17:24
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix signedness bug in sdma_v4_0_process_trap_irq() The "instance" variable needs to be signed for the error handling to work.
CVE-2024-41090
- EPSS 0.25%
- Veröffentlicht 29.07.2024 07:15:07
- Zuletzt bearbeitet 03.11.2025 22:17:32
In the Linux kernel, the following vulnerability has been resolved: tap: add missing verification for short frame The cited commit missed to check against the validity of the frame length in the tap_get_user_xdp() path, which could cause a corrupte...