CVE-2024-56558
- EPSS 0.22%
- Veröffentlicht 27.12.2024 15:15:14
- Zuletzt bearbeitet 03.11.2025 21:17:54
In the Linux kernel, the following vulnerability has been resolved: nfsd: make sure exp active before svc_export_show The function `e_show` was called with protection from RCU. This only ensures that `exp` will not be freed. Therefore, the referenc...
CVE-2024-56548
- EPSS 0.24%
- Veröffentlicht 27.12.2024 14:15:34
- Zuletzt bearbeitet 03.11.2025 21:17:53
In the Linux kernel, the following vulnerability has been resolved: hfsplus: don't query the device logical block size multiple times Devices block sizes may change. One of these cases is a loop device by using ioctl LOOP_SET_BLOCK_SIZE. While thi...
CVE-2024-56539
- EPSS 0.29%
- Veröffentlicht 27.12.2024 14:15:33
- Zuletzt bearbeitet 03.11.2025 21:17:52
In the Linux kernel, the following vulnerability has been resolved: wifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_config_scan() Replace one-element array with a flexible-array member in `struct mwifiex_ie_types_wildcard_ssid_p...
CVE-2024-53237
- EPSS 0.22%
- Veröffentlicht 27.12.2024 14:15:32
- Zuletzt bearbeitet 03.11.2025 21:17:45
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: fix use-after-free in device_for_each_child() Syzbot has reported the following KASAN splat: BUG: KASAN: slab-use-after-free in device_for_each_child+0x18f/0x1a0 Read o...
CVE-2024-53239
- EPSS 0.28%
- Veröffentlicht 27.12.2024 14:15:32
- Zuletzt bearbeitet 03.11.2025 21:17:45
In the Linux kernel, the following vulnerability has been resolved: ALSA: 6fire: Release resources at card release The current 6fire code tries to release the resources right after the call of usb6fire_chip_abort(). But at this moment, the card ob...
CVE-2024-56531
- EPSS 0.21%
- Veröffentlicht 27.12.2024 14:15:32
- Zuletzt bearbeitet 03.11.2025 21:17:51
In the Linux kernel, the following vulnerability has been resolved: ALSA: caiaq: Use snd_card_free_when_closed() at disconnection The USB disconnect callback is supposed to be short and not too-long waiting. OTOH, the current code uses snd_card_fr...
CVE-2024-56532
- EPSS 0.21%
- Veröffentlicht 27.12.2024 14:15:32
- Zuletzt bearbeitet 03.11.2025 21:17:51
In the Linux kernel, the following vulnerability has been resolved: ALSA: us122l: Use snd_card_free_when_closed() at disconnection The USB disconnect callback is supposed to be short and not too-long waiting. OTOH, the current code uses snd_card_f...
CVE-2024-53227
- EPSS 0.27%
- Veröffentlicht 27.12.2024 14:15:30
- Zuletzt bearbeitet 03.11.2025 21:17:44
In the Linux kernel, the following vulnerability has been resolved: scsi: bfa: Fix use-after-free in bfad_im_module_exit() BUG: KASAN: slab-use-after-free in __lock_acquire+0x2aca/0x3a20 Read of size 8 at addr ffff8881082d80c8 by task modprobe/2530...
CVE-2024-53214
- EPSS 0.25%
- Veröffentlicht 27.12.2024 14:15:29
- Zuletzt bearbeitet 03.11.2025 21:17:42
In the Linux kernel, the following vulnerability has been resolved: vfio/pci: Properly hide first-in-list PCIe extended capability There are cases where a PCIe extended capability should be hidden from the user. For example, an unknown capability (...
CVE-2024-53217
- EPSS 0.24%
- Veröffentlicht 27.12.2024 14:15:29
- Zuletzt bearbeitet 03.11.2025 21:17:43
In the Linux kernel, the following vulnerability has been resolved: NFSD: Prevent NULL dereference in nfsd4_process_cb_update() @ses is initialized to NULL. If __nfsd4_find_backchannel() finds no available backchannel session, setup_callback_client...