CVE-2024-26622
- EPSS 0.24%
- Veröffentlicht 04.03.2024 07:15:11
- Zuletzt bearbeitet 04.11.2025 19:17:02
In the Linux kernel, the following vulnerability has been resolved: tomoyo: fix UAF write bug in tomoyo_write_control() Since tomoyo_write_control() updates head->write_buf when write() of long lines is requested, we need to fetch head->write_buf a...
CVE-2023-52566
- EPSS 0.22%
- Veröffentlicht 02.03.2024 22:15:49
- Zuletzt bearbeitet 08.04.2025 15:08:55
In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix potential use after free in nilfs_gccache_submit_read_data() In nilfs_gccache_submit_read_data(), brelse(bh) is called to drop the reference count of bh when the call t...
CVE-2023-52569
- EPSS 0.24%
- Veröffentlicht 02.03.2024 22:15:49
- Zuletzt bearbeitet 19.06.2025 13:15:25
In the Linux kernel, the following vulnerability has been resolved: btrfs: remove BUG() after failure to insert delayed dir index item Instead of calling BUG() when we fail to insert a delayed dir index item into the delayed node's tree, we can jus...
CVE-2023-52572
- EPSS 0.23%
- Veröffentlicht 02.03.2024 22:15:49
- Zuletzt bearbeitet 25.11.2025 17:23:30
In the Linux kernel, the following vulnerability has been resolved: cifs: Fix UAF in cifs_demultiplex_thread() There is a UAF when xfstests on cifs: BUG: KASAN: use-after-free in smb2_is_network_name_deleted+0x27/0x160 Read of size 4 at addr f...
CVE-2023-52574
- EPSS 0.23%
- Veröffentlicht 02.03.2024 22:15:49
- Zuletzt bearbeitet 11.12.2024 15:30:26
In the Linux kernel, the following vulnerability has been resolved: team: fix null-ptr-deref when team device type is changed Get a null-ptr-deref bug as follows with reproducer [1]. BUG: kernel NULL pointer dereference, address: 0000000000000228 ...
- EPSS 0.19%
- Veröffentlicht 02.03.2024 22:15:49
- Zuletzt bearbeitet 11.12.2024 17:44:23
In the Linux kernel, the following vulnerability has been resolved: net: bridge: use DEV_STATS_INC() syzbot/KCSAN reported data-races in br_handle_frame_finish() [1] This function can run from multiple cpus without mutual exclusion. Adopt SMP safe...
CVE-2023-52522
- EPSS 0.23%
- Veröffentlicht 02.03.2024 22:15:48
- Zuletzt bearbeitet 16.09.2025 16:25:47
In the Linux kernel, the following vulnerability has been resolved: net: fix possible store tearing in neigh_periodic_work() While looking at a related syzbot report involving neigh_periodic_work(), I found that I forgot to add an annotation when d...
CVE-2023-52524
- EPSS 0.18%
- Veröffentlicht 02.03.2024 22:15:48
- Zuletzt bearbeitet 13.01.2025 20:00:51
In the Linux kernel, the following vulnerability has been resolved: net: nfc: llcp: Add lock when modifying device list The device list needs its associated lock held when modifying it, or the list could become corrupted, as syzbot discovered.
CVE-2023-52527
- EPSS 0.23%
- Veröffentlicht 02.03.2024 22:15:48
- Zuletzt bearbeitet 13.01.2025 20:39:56
In the Linux kernel, the following vulnerability has been resolved: ipv4, ipv6: Fix handling of transhdrlen in __ip{,6}_append_data() Including the transhdrlen in length is a problem when the packet is partially filled (e.g. something like send(MSG...
CVE-2023-52528
- EPSS 0.23%
- Veröffentlicht 02.03.2024 22:15:48
- Zuletzt bearbeitet 11.12.2024 16:27:49
In the Linux kernel, the following vulnerability has been resolved: net: usb: smsc75xx: Fix uninit-value access in __smsc75xx_read_reg syzbot reported the following uninit-value access issue: ===================================================== B...