CVE-2024-35924
- EPSS 0.21%
- Veröffentlicht 19.05.2024 11:15:48
- Zuletzt bearbeitet 24.09.2025 18:47:47
In the Linux kernel, the following vulnerability has been resolved: usb: typec: ucsi: Limit read size on v1.2 Between UCSI 1.2 and UCSI 2.0, the size of the MESSAGE_IN region was increased from 16 to 256. In order to avoid overflowing reads for old...
CVE-2024-35925
- EPSS 0.23%
- Veröffentlicht 19.05.2024 11:15:48
- Zuletzt bearbeitet 12.05.2026 12:16:41
In the Linux kernel, the following vulnerability has been resolved: block: prevent division by zero in blk_rq_stat_sum() The expression dst->nr_samples + src->nr_samples may have zero value on overflow. It is necessary to add a check to avoid divis...
CVE-2024-35926
- EPSS 0.18%
- Veröffentlicht 19.05.2024 11:15:48
- Zuletzt bearbeitet 23.09.2025 15:31:48
In the Linux kernel, the following vulnerability has been resolved: crypto: iaa - Fix async_disable descriptor leak The disable_async paths of iaa_compress/decompress() don't free idxd descriptors in the async_disable case. Currently this only happ...
CVE-2024-35927
- EPSS 0.21%
- Veröffentlicht 19.05.2024 11:15:48
- Zuletzt bearbeitet 24.09.2025 18:38:59
In the Linux kernel, the following vulnerability has been resolved: drm: Check output polling initialized before disabling In drm_kms_helper_poll_disable() check if output polling support is initialized before disabling polling. If not flag this as...
- EPSS 0.04%
- Veröffentlicht 19.05.2024 11:15:48
- Zuletzt bearbeitet 19.12.2024 12:15:06
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
CVE-2023-52699
- EPSS 0.97%
- Veröffentlicht 19.05.2024 11:15:47
- Zuletzt bearbeitet 04.04.2025 14:24:16
In the Linux kernel, the following vulnerability has been resolved: sysv: don't call sb_bread() with pointers_lock held syzbot is reporting sleep in atomic context in SysV filesystem [1], for sb_bread() is called with rw_spinlock held. A "write_lo...
CVE-2024-35910
- EPSS 0.23%
- Veröffentlicht 19.05.2024 09:15:11
- Zuletzt bearbeitet 12.05.2026 12:16:40
In the Linux kernel, the following vulnerability has been resolved: tcp: properly terminate timers for kernel sockets We had various syzbot reports about tcp timers firing after the corresponding netns has been dismantled. Fortunately Josef Bacik ...
CVE-2024-35915
- EPSS 0.22%
- Veröffentlicht 19.05.2024 09:15:11
- Zuletzt bearbeitet 12.05.2026 12:16:41
In the Linux kernel, the following vulnerability has been resolved: nfc: nci: Fix uninit-value in nci_dev_up and nci_ntf_packet syzbot reported the following uninit-value access issue [1][2]: nci_rx_work() parses and processes received packet. Whe...
CVE-2024-35896
- EPSS 0.23%
- Veröffentlicht 19.05.2024 09:15:10
- Zuletzt bearbeitet 12.05.2026 12:16:39
In the Linux kernel, the following vulnerability has been resolved: netfilter: validate user input for expected length I got multiple syzbot reports showing old bugs exposed by BPF after commit 20f2505fb436 ("bpf: Try to avoid kzalloc in cgroup/{s,...
CVE-2024-35878
- EPSS 0.79%
- Veröffentlicht 19.05.2024 09:15:09
- Zuletzt bearbeitet 07.04.2025 18:57:06
In the Linux kernel, the following vulnerability has been resolved: of: module: prevent NULL pointer dereference in vsnprintf() In of_modalias(), we can get passed the str and len parameters which would cause a kernel oops in vsnprintf() since it o...