CVE-2024-26764
- EPSS 0.25%
- Veröffentlicht 03.04.2024 17:15:52
- Zuletzt bearbeitet 18.03.2025 16:36:22
In the Linux kernel, the following vulnerability has been resolved: fs/aio: Restrict kiocb_set_cancel_fn() to I/O submitted via libaio If kiocb_set_cancel_fn() is called for I/O submitted via io_uring, the following kernel warning appears: WARNING...
CVE-2024-26766
- EPSS 0.26%
- Veröffentlicht 03.04.2024 17:15:52
- Zuletzt bearbeitet 27.02.2025 21:59:09
In the Linux kernel, the following vulnerability has been resolved: IB/hfi1: Fix sdma.h tx->num_descs off-by-one error Unfortunately the commit `fd8958efe877` introduced another error causing the `descs` array to overflow. This reults in further cr...
CVE-2024-26733
- EPSS 0.26%
- Veröffentlicht 03.04.2024 17:15:51
- Zuletzt bearbeitet 17.03.2025 16:02:47
In the Linux kernel, the following vulnerability has been resolved: arp: Prevent overflow in arp_req_get(). syzkaller reported an overflown write in arp_req_get(). [0] When ioctl(SIOCGARP) is issued, arp_req_get() looks up an neighbour entry and c...
CVE-2024-26735
- EPSS 0.27%
- Veröffentlicht 03.04.2024 17:15:51
- Zuletzt bearbeitet 17.03.2025 16:05:01
In the Linux kernel, the following vulnerability has been resolved: ipv6: sr: fix possible use-after-free and null-ptr-deref The pernet operations structure for the subsystem must be registered before registering the generic netlink family.
CVE-2024-26736
- EPSS 0.26%
- Veröffentlicht 03.04.2024 17:15:51
- Zuletzt bearbeitet 17.03.2025 16:03:20
In the Linux kernel, the following vulnerability has been resolved: afs: Increase buffer size in afs_update_volume_status() The max length of volume->vid value is 20 characters. So increase idbuf[] size up to 24 to avoid overflow. Found by Linux V...
CVE-2024-26748
- EPSS 0.24%
- Veröffentlicht 03.04.2024 17:15:51
- Zuletzt bearbeitet 14.01.2025 17:27:49
In the Linux kernel, the following vulnerability has been resolved: usb: cdns3: fix memory double free when handle zero packet 829 if (request->complete) { 830 spin_unlock(&priv_dev->lock); 831 usb_gadget_giveback_request(&priv_e...
CVE-2024-26749
- EPSS 0.25%
- Veröffentlicht 03.04.2024 17:15:51
- Zuletzt bearbeitet 14.01.2025 17:28:07
In the Linux kernel, the following vulnerability has been resolved: usb: cdns3: fixed memory use after free at cdns3_gadget_ep_disable() ... cdns3_gadget_ep_free_request(&priv_ep->endpoint, &priv_req->request); list_del_init(&priv_req->list);...
CVE-2024-26751
- EPSS 0.25%
- Veröffentlicht 03.04.2024 17:15:51
- Zuletzt bearbeitet 17.03.2025 16:57:25
In the Linux kernel, the following vulnerability has been resolved: ARM: ep93xx: Add terminator to gpiod_lookup_table Without the terminator, if a con_id is passed to gpio_find() that does not exist in the lookup table the function will not stop lo...
CVE-2024-26752
- EPSS 0.25%
- Veröffentlicht 03.04.2024 17:15:51
- Zuletzt bearbeitet 17.03.2025 16:57:11
In the Linux kernel, the following vulnerability has been resolved: l2tp: pass correct message length to ip6_append_data l2tp_ip6_sendmsg needs to avoid accounting for the transport header twice when splicing more data into an already partially-occ...
CVE-2024-26722
- EPSS 0.18%
- Veröffentlicht 03.04.2024 15:15:54
- Zuletzt bearbeitet 07.01.2025 17:35:32
In the Linux kernel, the following vulnerability has been resolved: ASoC: rt5645: Fix deadlock in rt5645_jack_detect_work() There is a path in rt5645_jack_detect_work(), where rt5645->jd_mutex is left locked forever. That may lead to deadlock when ...