CVE-2024-35887
- EPSS 0.23%
- Veröffentlicht 19.05.2024 09:15:09
- Zuletzt bearbeitet 31.12.2024 18:48:10
In the Linux kernel, the following vulnerability has been resolved: ax25: fix use-after-free bugs caused by ax25_ds_del_timer When the ax25 device is detaching, the ax25_dev_device_down() calls ax25_ds_del_timer() to cleanup the slave_timer. When t...
CVE-2024-35888
- EPSS 0.25%
- Veröffentlicht 19.05.2024 09:15:09
- Zuletzt bearbeitet 12.05.2026 12:16:38
In the Linux kernel, the following vulnerability has been resolved: erspan: make sure erspan_base_hdr is present in skb->head syzbot reported a problem in ip6erspan_rcv() [1] Issue is that ip6erspan_rcv() (and erspan_rcv()) no longer make sure ers...
CVE-2024-35889
- EPSS 0.19%
- Veröffentlicht 19.05.2024 09:15:09
- Zuletzt bearbeitet 31.12.2024 18:50:40
In the Linux kernel, the following vulnerability has been resolved: idpf: fix kernel panic on unknown packet types In the very rare case where a packet type is unknown to the driver, idpf_rx_process_skb_fields would return early without calling eth...
CVE-2024-35865
- EPSS 0.23%
- Veröffentlicht 19.05.2024 09:15:08
- Zuletzt bearbeitet 01.06.2026 17:16:28
In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF in smb2_is_valid_oplock_break() Skip sessions that are being teared down (status == SES_EXITING) to avoid UAF.
CVE-2024-35866
- EPSS 0.24%
- Veröffentlicht 19.05.2024 09:15:08
- Zuletzt bearbeitet 21.04.2026 19:07:47
In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF in cifs_dump_full_key() Skip sessions that are being teared down (status == SES_EXITING) to avoid UAF.
CVE-2024-35867
- EPSS 0.27%
- Veröffentlicht 19.05.2024 09:15:08
- Zuletzt bearbeitet 23.12.2025 15:03:47
In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF in cifs_stats_proc_show() Skip sessions that are being teared down (status == SES_EXITING) to avoid UAF.
CVE-2024-35868
- EPSS 0.24%
- Veröffentlicht 19.05.2024 09:15:08
- Zuletzt bearbeitet 30.12.2024 17:37:00
In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF in cifs_stats_proc_write() Skip sessions that are being teared down (status == SES_EXITING) to avoid UAF.
CVE-2024-35869
- EPSS 0.25%
- Veröffentlicht 19.05.2024 09:15:08
- Zuletzt bearbeitet 18.11.2025 15:46:37
In the Linux kernel, the following vulnerability has been resolved: smb: client: guarantee refcounted children from parent session Avoid potential use-after-free bugs when walking DFS referrals, mounting and performing DFS failover by ensuring that...
CVE-2024-35870
- EPSS 0.23%
- Veröffentlicht 19.05.2024 09:15:08
- Zuletzt bearbeitet 03.11.2025 21:16:11
In the Linux kernel, the following vulnerability has been resolved: smb: client: fix UAF in smb2_reconnect_server() The UAF bug is due to smb2_reconnect_server() accessing a session that is already being teared down by another thread that is execut...
CVE-2024-35871
- EPSS 0.26%
- Veröffentlicht 19.05.2024 09:15:08
- Zuletzt bearbeitet 22.01.2026 20:21:18
In the Linux kernel, the following vulnerability has been resolved: riscv: process: Fix kernel gp leakage childregs represents the registers which are active for the new thread in user context. For a kernel thread, childregs->gp is never used since...