CVE-2024-38543
- EPSS 0.24%
- Veröffentlicht 19.06.2024 14:15:14
- Zuletzt bearbeitet 21.11.2024 09:26:18
In the Linux kernel, the following vulnerability has been resolved: lib/test_hmm.c: handle src_pfns and dst_pfns allocation failure The kcalloc() in dmirror_device_evict_chunk() will return null if the physical memory has run out. As a result, if ...
CVE-2024-38544
- EPSS 0.25%
- Veröffentlicht 19.06.2024 14:15:14
- Zuletzt bearbeitet 03.11.2025 21:16:14
In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix seg fault in rxe_comp_queue_pkt In rxe_comp_queue_pkt() an incoming response packet skb is enqueued to the resp_pkts queue and then a decision is made whether to run ...
CVE-2024-38545
- EPSS 0.25%
- Veröffentlicht 19.06.2024 14:15:14
- Zuletzt bearbeitet 23.12.2025 15:03:38
In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: Fix UAF for cq async event The refcount of CQ is not protected by locks. When CQ asynchronous events and CQ destruction are concurrent, CQ may have been released, which w...
CVE-2024-38546
- EPSS 0.25%
- Veröffentlicht 19.06.2024 14:15:14
- Zuletzt bearbeitet 21.11.2024 09:26:18
In the Linux kernel, the following vulnerability has been resolved: drm: vc4: Fix possible null pointer dereference In vc4_hdmi_audio_init() of_get_address() may return NULL which is later dereferenced. Fix this bug by adding NULL check. Found by ...
CVE-2024-38547
- EPSS 0.26%
- Veröffentlicht 19.06.2024 14:15:14
- Zuletzt bearbeitet 12.05.2026 12:16:52
In the Linux kernel, the following vulnerability has been resolved: media: atomisp: ssh_css: Fix a null-pointer dereference in load_video_binaries The allocation failure of mycs->yuv_scaler_binary in load_video_binaries() is followed with a derefer...
CVE-2024-36979
- EPSS 0.26%
- Veröffentlicht 19.06.2024 14:15:13
- Zuletzt bearbeitet 21.11.2024 09:22:57
In the Linux kernel, the following vulnerability has been resolved: net: bridge: mst: fix vlan use-after-free syzbot reported a suspicious rcu usage[1] in bridge's mst code. While fixing it I noticed that nothing prevents a vlan to be freed while w...
CVE-2024-36978
- EPSS 0.28%
- Veröffentlicht 19.06.2024 07:15:46
- Zuletzt bearbeitet 12.05.2026 12:16:51
In the Linux kernel, the following vulnerability has been resolved: net: sched: sch_multiq: fix possible OOB write in multiq_tune() q->bands will be assigned to qopt->bands to execute subsequent code logic after kmalloc. So the old q->bands should ...
CVE-2024-36974
- EPSS 0.28%
- Veröffentlicht 18.06.2024 20:15:13
- Zuletzt bearbeitet 12.05.2026 12:16:51
In the Linux kernel, the following vulnerability has been resolved: net/sched: taprio: always validate TCA_TAPRIO_ATTR_PRIOMAP If one TCA_TAPRIO_ATTR_PRIOMAP attribute has been provided, taprio_parse_mqprio_opt() must validate it, or userspace can ...
CVE-2024-36975
- EPSS 0.21%
- Veröffentlicht 18.06.2024 20:15:13
- Zuletzt bearbeitet 01.10.2025 15:16:46
In the Linux kernel, the following vulnerability has been resolved: KEYS: trusted: Do not use WARN when encode fails When asn1_encode_sequence() fails, WARN is not the correct solution. 1. asn1_encode_sequence() is not an internal function (locate...
CVE-2024-36977
- EPSS 0.21%
- Veröffentlicht 18.06.2024 20:15:13
- Zuletzt bearbeitet 01.10.2025 15:53:43
In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: Wait unconditionally after issuing EndXfer command Currently all controller IP/revisions except DWC3_usb3 >= 310a wait 1ms unconditionally for ENDXFER completion when IO...