CVE-2024-41013
- EPSS 0.22%
- Veröffentlicht 29.07.2024 07:15:05
- Zuletzt bearbeitet 03.11.2025 18:15:42
In the Linux kernel, the following vulnerability has been resolved: xfs: don't walk off the end of a directory data block This adds sanity checks for xfs_dir2_data_unused and xfs_dir2_data_entry to make sure don't stray beyond valid memory region. ...
CVE-2024-41014
- EPSS 0.22%
- Veröffentlicht 29.07.2024 07:15:05
- Zuletzt bearbeitet 03.11.2025 21:16:16
In the Linux kernel, the following vulnerability has been resolved: xfs: add bounds checking to xlog_recover_process_data There is a lack of verification of the space occupied by fixed members of xlog_op_header in the xlog_recover_process_data. We...
CVE-2024-41012
- EPSS 0.22%
- Veröffentlicht 23.07.2024 08:15:01
- Zuletzt bearbeitet 03.11.2025 22:17:23
In the Linux kernel, the following vulnerability has been resolved: filelock: Remove locks reliably when fcntl/close race is detected When fcntl_setlk() races with close(), it removes the created lock with do_lock_file_wait(). However, LSMs can all...
CVE-2022-48863
- EPSS 0.25%
- Veröffentlicht 16.07.2024 13:15:13
- Zuletzt bearbeitet 21.11.2024 07:34:14
In the Linux kernel, the following vulnerability has been resolved: mISDN: Fix memory leak in dsp_pipeline_build() dsp_pipeline_build() allocates dup pointer by kstrdup(cfg), but then it updates dup variable by strsep(&dup, "|"). As a result when i...
CVE-2022-48850
- EPSS 0.21%
- Veröffentlicht 16.07.2024 13:15:12
- Zuletzt bearbeitet 21.11.2024 07:34:12
In the Linux kernel, the following vulnerability has been resolved: net-sysfs: add check for netdevice being present to speed_show When bringing down the netdevice or system shutdown, a panic can be triggered while accessing the sysfs path because ...
CVE-2022-48851
- EPSS 0.21%
- Veröffentlicht 16.07.2024 13:15:12
- Zuletzt bearbeitet 21.11.2024 07:34:12
In the Linux kernel, the following vulnerability has been resolved: staging: gdm724x: fix use after free in gdm_lte_rx() The netif_rx_ni() function frees the skb so we can't dereference it to save the skb->len.
CVE-2022-48852
- EPSS 0.2%
- Veröffentlicht 16.07.2024 13:15:12
- Zuletzt bearbeitet 21.11.2024 07:34:12
In the Linux kernel, the following vulnerability has been resolved: drm/vc4: hdmi: Unregister codec device on unbind On bind we will register the HDMI codec device but we don't unregister it on unbind, leading to a device leakage. Unregister our de...
CVE-2022-48853
- EPSS 0.27%
- Veröffentlicht 16.07.2024 13:15:12
- Zuletzt bearbeitet 21.12.2025 12:15:47
In the Linux kernel, the following vulnerability has been resolved: swiotlb: fix info leak with DMA_FROM_DEVICE The problem I'm addressing was discovered by the LTP test covering cve-2018-1000204. A short description of what happens follows: 1) Th...
CVE-2022-48857
- EPSS 0.21%
- Veröffentlicht 16.07.2024 13:15:12
- Zuletzt bearbeitet 21.11.2024 07:34:13
In the Linux kernel, the following vulnerability has been resolved: NFC: port100: fix use-after-free in port100_send_complete Syzbot reported UAF in port100_send_complete(). The root case is in missing usb_kill_urb() calls on error handling path of...
CVE-2022-48860
- EPSS 0.22%
- Veröffentlicht 16.07.2024 13:15:12
- Zuletzt bearbeitet 21.11.2024 07:34:13
In the Linux kernel, the following vulnerability has been resolved: ethernet: Fix error handling in xemaclite_of_probe This node pointer is returned by of_parse_phandle() with refcount incremented in this function. Calling of_node_put() to avoid th...