CVE-2024-45021
- EPSS 0.25%
- Veröffentlicht 11.09.2024 16:15:07
- Zuletzt bearbeitet 03.11.2025 23:15:50
In the Linux kernel, the following vulnerability has been resolved: memcg_write_event_control(): fix a user-triggerable oops we are *not* guaranteed that anything past the terminating NUL is mapped (let alone initialized with anything sane).
CVE-2024-45025
- EPSS 0.23%
- Veröffentlicht 11.09.2024 16:15:07
- Zuletzt bearbeitet 03.11.2025 23:15:50
In the Linux kernel, the following vulnerability has been resolved: fix bitmap corruption on close_range() with CLOSE_RANGE_UNSHARE copy_fd_bitmaps(new, old, count) is expected to copy the first count/BITS_PER_LONG bits from old->full_fds_bits[] an...
CVE-2023-52916
- EPSS 0.22%
- Veröffentlicht 06.09.2024 09:15:03
- Zuletzt bearbeitet 03.11.2025 21:16:03
In the Linux kernel, the following vulnerability has been resolved: media: aspeed: Fix memory overwrite if timing is 1600x900 When capturing 1600x900, system could crash when system memory usage is tight. The way to reproduce this issue: 1. Use 16...
CVE-2023-52915
- EPSS 0.21%
- Veröffentlicht 06.09.2024 09:15:02
- Zuletzt bearbeitet 10.09.2024 17:12:41
In the Linux kernel, the following vulnerability has been resolved: media: dvb-usb-v2: af9035: Fix null-ptr-deref in af9035_i2c_master_xfer In af9035_i2c_master_xfer, msg is controlled by user. When msg[i].buf is null and msg[i].len is zero, former...
CVE-2024-45007
- EPSS 0.22%
- Veröffentlicht 04.09.2024 20:15:09
- Zuletzt bearbeitet 03.11.2025 23:15:48
In the Linux kernel, the following vulnerability has been resolved: char: xillybus: Don't destroy workqueue from work item running on it Triggered by a kref decrement, destroy_workqueue() may be called from within a work item for destroying its own...
CVE-2024-45008
- EPSS 0.24%
- Veröffentlicht 04.09.2024 20:15:09
- Zuletzt bearbeitet 03.11.2025 23:15:49
In the Linux kernel, the following vulnerability has been resolved: Input: MT - limit max slots syzbot is reporting too large allocation at input_mt_init_slots(), for num_slots is supplied from userspace using ioctl(UI_DEV_CREATE). Since nobody kn...
CVE-2024-44998
- EPSS 0.25%
- Veröffentlicht 04.09.2024 20:15:08
- Zuletzt bearbeitet 03.11.2025 23:15:47
In the Linux kernel, the following vulnerability has been resolved: atm: idt77252: prevent use after free in dequeue_rx() We can't dereference "skb" after calling vcc->push() because the skb is released.
CVE-2024-44987
- EPSS 0.26%
- Veröffentlicht 04.09.2024 20:15:07
- Zuletzt bearbeitet 12.05.2026 12:17:09
In the Linux kernel, the following vulnerability has been resolved: ipv6: prevent UAF in ip6_send_skb() syzbot reported an UAF in ip6_send_skb() [1] After ip6_local_out() has returned, we no longer can safely dereference rt, unless we hold rcu_rea...
CVE-2024-44969
- EPSS 0.22%
- Veröffentlicht 04.09.2024 19:15:31
- Zuletzt bearbeitet 03.11.2025 23:15:45
In the Linux kernel, the following vulnerability has been resolved: s390/sclp: Prevent release of buffer in I/O When a task waiting for completion of a Store Data operation is interrupted, an attempt is made to halt this operation. If this attempt ...
CVE-2024-44970
- EPSS 0.21%
- Veröffentlicht 04.09.2024 19:15:31
- Zuletzt bearbeitet 03.11.2025 23:15:45
In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: SHAMPO, Fix invalid WQ linked list unlink When all the strides in a WQE have been consumed, the WQE is unlinked from the WQ linked list (mlx5_wq_ll_pop()). For SHAMPO, i...