CVE-2024-42244
- EPSS 0.23%
- Veröffentlicht 07.08.2024 16:15:47
- Zuletzt bearbeitet 03.11.2025 22:17:49
In the Linux kernel, the following vulnerability has been resolved: USB: serial: mos7840: fix crash on resume Since commit c49cfa917025 ("USB: serial: use generic method if no alternative is provided in usb serial layer"), USB serial core calls the...
CVE-2024-42232
- EPSS 0.23%
- Veröffentlicht 07.08.2024 16:15:46
- Zuletzt bearbeitet 03.11.2025 22:17:46
In the Linux kernel, the following vulnerability has been resolved: libceph: fix race between delayed_work() and ceph_monc_stop() The way the delayed work is handled in ceph_monc_stop() is prone to races with mon_fault() and possibly also finish_hu...
CVE-2024-42236
- EPSS 0.23%
- Veröffentlicht 07.08.2024 16:15:46
- Zuletzt bearbeitet 03.11.2025 22:17:47
In the Linux kernel, the following vulnerability has been resolved: usb: gadget: configfs: Prevent OOB read/write in usb_string_copy() Userspace provided string 's' could trivially have the length zero. Left unchecked this will firstly result in an...
CVE-2024-42240
- EPSS 0.22%
- Veröffentlicht 07.08.2024 16:15:46
- Zuletzt bearbeitet 03.11.2025 22:17:49
In the Linux kernel, the following vulnerability has been resolved: x86/bhi: Avoid warning in #DB handler due to BHI mitigation When BHI mitigation is enabled, if SYSENTER is invoked with the TF flag set then entry_SYSENTER_compat() uses CLEAR_BRAN...
CVE-2024-42229
- EPSS 0.23%
- Veröffentlicht 30.07.2024 08:15:08
- Zuletzt bearbeitet 03.11.2025 22:17:45
In the Linux kernel, the following vulnerability has been resolved: crypto: aead,cipher - zeroize key buffer after use I.G 9.7.B for FIPS 140-3 specifies that variables temporarily holding cryptographic information should be zeroized once they are ...
CVE-2024-42155
- EPSS 0.19%
- Veröffentlicht 30.07.2024 08:15:07
- Zuletzt bearbeitet 21.11.2024 09:33:42
In the Linux kernel, the following vulnerability has been resolved: s390/pkey: Wipe copies of protected- and secure-keys Although the clear-key of neither protected- nor secure-keys is accessible, this key material should only be visible to the cal...
CVE-2024-42156
- EPSS 0.21%
- Veröffentlicht 30.07.2024 08:15:07
- Zuletzt bearbeitet 09.12.2024 13:10:02
In the Linux kernel, the following vulnerability has been resolved: s390/pkey: Wipe copies of clear-key structures on failure Wipe all sensitive data from stack for all IOCTLs, which convert a clear-key into a protected- or secure-key.
CVE-2024-42157
- EPSS 0.22%
- Veröffentlicht 30.07.2024 08:15:07
- Zuletzt bearbeitet 03.11.2025 22:17:43
In the Linux kernel, the following vulnerability has been resolved: s390/pkey: Wipe sensitive data on failure Wipe sensitive data from stack also if the copy_to_user() fails.
CVE-2024-42160
- EPSS 0.24%
- Veröffentlicht 30.07.2024 08:15:07
- Zuletzt bearbeitet 25.03.2026 14:34:47
In the Linux kernel, the following vulnerability has been resolved: f2fs: check validation of fault attrs in f2fs_build_fault_attr() - It missed to check validation of fault attrs in parse_options(), let's fix to add check condition in f2fs_build_f...
CVE-2024-42223
- EPSS 0.23%
- Veröffentlicht 30.07.2024 08:15:07
- Zuletzt bearbeitet 03.11.2025 22:17:44
In the Linux kernel, the following vulnerability has been resolved: media: dvb-frontends: tda10048: Fix integer overflow state->xtal_hz can be up to 16M, so it can overflow a 32 bit integer when multiplied by pll_mfactor. Create a new 64 bit varia...