CVE-2024-50278
- EPSS 0.26%
- Veröffentlicht 19.11.2024 02:16:30
- Zuletzt bearbeitet 03.11.2025 23:17:09
In the Linux kernel, the following vulnerability has been resolved: dm cache: fix potential out-of-bounds access on the first resume Out-of-bounds access occurs if the fast device is expanded unexpectedly before the first-time resume of the cache t...
CVE-2024-50279
- EPSS 0.26%
- Veröffentlicht 19.11.2024 02:16:30
- Zuletzt bearbeitet 03.11.2025 23:17:10
In the Linux kernel, the following vulnerability has been resolved: dm cache: fix out-of-bounds access to the dirty bitset when resizing dm-cache checks the dirty bits of the cache blocks to be dropped when shrinking the fast device, but an index b...
CVE-2024-50282
- EPSS 0.27%
- Veröffentlicht 19.11.2024 02:16:30
- Zuletzt bearbeitet 03.11.2025 23:17:10
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: add missing size check in amdgpu_debugfs_gprwave_read() Avoid a possible buffer overflow if size is larger than 4K. (cherry picked from commit f5d873f5825b40d886d03bd2...
CVE-2024-50283
- EPSS 0.24%
- Veröffentlicht 19.11.2024 02:16:30
- Zuletzt bearbeitet 03.11.2025 23:17:10
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix slab-use-after-free in smb3_preauth_hash_rsp ksmbd_user_session_put should be called under smb3_preauth_hash_rsp(). It will avoid freeing session before calling smb3_pre...
CVE-2024-50285
- EPSS 0.26%
- Veröffentlicht 19.11.2024 02:16:30
- Zuletzt bearbeitet 01.10.2025 21:16:17
In the Linux kernel, the following vulnerability has been resolved: ksmbd: check outstanding simultaneous SMB operations If Client send simultaneous SMB operations to ksmbd, It exhausts too much memory through the "ksmbd_work_cache”. It will cause ...
- EPSS 0.27%
- Veröffentlicht 19.11.2024 02:16:30
- Zuletzt bearbeitet 03.11.2025 23:17:11
In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix slab-use-after-free in ksmbd_smb2_session_create There is a race condition between ksmbd_smb2_session_create and ksmbd_expire_session. This patch add missing sessions_ta...
CVE-2024-50265
- EPSS 0.31%
- Veröffentlicht 19.11.2024 02:16:28
- Zuletzt bearbeitet 03.11.2025 23:17:08
In the Linux kernel, the following vulnerability has been resolved: ocfs2: remove entry once instead of null-ptr-dereference in ocfs2_xa_remove() Syzkaller is able to provoke null-ptr-dereference in ocfs2_xa_remove(): [ 57.319872] (a.out,1161,7)...
CVE-2024-50267
- EPSS 0.28%
- Veröffentlicht 19.11.2024 02:16:28
- Zuletzt bearbeitet 03.11.2025 23:17:08
In the Linux kernel, the following vulnerability has been resolved: USB: serial: io_edgeport: fix use after free in debug printk The "dev_dbg(&urb->dev->dev, ..." which happens after usb_free_urb(urb) is a use after free of the "urb" pointer. Stor...
CVE-2023-52921
- EPSS 0.23%
- Veröffentlicht 19.11.2024 02:15:09
- Zuletzt bearbeitet 19.06.2025 13:15:30
In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix possible UAF in amdgpu_cs_pass1() Since the gang_size check is outside of chunk parsing loop, we need to reset i before we free the chunk data. Suggested by Ye Zha...
CVE-2023-39180
- EPSS 1.38%
- Veröffentlicht 18.11.2024 10:15:05
- Zuletzt bearbeitet 06.08.2025 13:34:08
A flaw was found within the handling of SMB2_READ commands in the kernel ksmbd module. The issue results from not releasing memory after its effective lifetime. An attacker can leverage this to create a denial-of-service condition on affected install...