CVE-2024-26810
- EPSS 0.19%
- Veröffentlicht 05.04.2024 09:15:09
- Zuletzt bearbeitet 12.05.2026 12:16:19
In the Linux kernel, the following vulnerability has been resolved: vfio/pci: Lock external INTx masking ops Mask operations through config space changes to DisINTx may race INTx configuration changes via ioctl. Create wrappers that add locking fo...
CVE-2024-26812
- EPSS 0.24%
- Veröffentlicht 05.04.2024 09:15:09
- Zuletzt bearbeitet 12.05.2026 12:16:20
In the Linux kernel, the following vulnerability has been resolved: vfio/pci: Create persistent INTx handler A vulnerability exists where the eventfd for INTx signaling can be deconfigured, which unregisters the IRQ handler but still allows eventfd...
CVE-2024-26813
- EPSS 0.23%
- Veröffentlicht 05.04.2024 09:15:09
- Zuletzt bearbeitet 20.12.2024 14:30:24
In the Linux kernel, the following vulnerability has been resolved: vfio/platform: Create persistent IRQ handlers The vfio-platform SET_IRQS ioctl currently allows loopback triggering of an interrupt before a signaling eventfd has been configured b...
CVE-2024-27437
- EPSS 0.24%
- Veröffentlicht 05.04.2024 09:15:09
- Zuletzt bearbeitet 12.05.2026 12:16:33
In the Linux kernel, the following vulnerability has been resolved: vfio/pci: Disable auto-enable of exclusive INTx IRQ Currently for devices requiring masking at the irqchip for INTx, ie. devices without DisINTx support, the IRQ is enabled in requ...
CVE-2024-26801
- EPSS 0.28%
- Veröffentlicht 04.04.2024 09:15:09
- Zuletzt bearbeitet 20.12.2024 15:52:36
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: Avoid potential use-after-free in hci_error_reset While handling the HCI_EV_HARDWARE_ERROR event, if the underlying BT controller is not responding, the GPIO reset mecha...
CVE-2024-26804
- EPSS 0.98%
- Veröffentlicht 04.04.2024 09:15:09
- Zuletzt bearbeitet 21.03.2025 14:58:15
In the Linux kernel, the following vulnerability has been resolved: net: ip_tunnel: prevent perpetual headroom growth syzkaller triggered following kasan splat: BUG: KASAN: use-after-free in __skb_flow_dissect+0x19d1/0x7a50 net/core/flow_dissector....
CVE-2024-26805
- EPSS 0.24%
- Veröffentlicht 04.04.2024 09:15:09
- Zuletzt bearbeitet 27.02.2025 14:35:09
In the Linux kernel, the following vulnerability has been resolved: netlink: Fix kernel-infoleak-after-free in __skb_datagram_iter syzbot reported the following uninit-value access issue [1]: netlink_to_full_skb() creates a new `skb` and puts the ...
CVE-2024-26791
- EPSS 0.25%
- Veröffentlicht 04.04.2024 09:15:08
- Zuletzt bearbeitet 20.12.2024 14:35:01
In the Linux kernel, the following vulnerability has been resolved: btrfs: dev-replace: properly validate device names There's a syzbot report that device name buffers passed to device replace are not properly checked for string termination which c...
CVE-2024-26772
- EPSS 0.26%
- Veröffentlicht 03.04.2024 17:15:53
- Zuletzt bearbeitet 04.04.2025 14:16:47
In the Linux kernel, the following vulnerability has been resolved: ext4: avoid allocating blocks from corrupted group in ext4_mb_find_by_goal() Places the logic for checking if the group's block bitmap is corrupt under the protection of the group ...
CVE-2024-26773
- EPSS 0.3%
- Veröffentlicht 03.04.2024 17:15:53
- Zuletzt bearbeitet 18.03.2025 16:47:14
In the Linux kernel, the following vulnerability has been resolved: ext4: avoid allocating blocks from corrupted group in ext4_mb_try_best_found() Determine if the group block bitmap is corrupted before using ac_b_ex in ext4_mb_try_best_found() to ...