NVD Vulnerability Information Top

Show Search Menu

Vendor Name
プロダクト・サービス名
Title
CRITICAL
HIGH
MEDIUM
LOW
CVE
CWE
In descending order of publication date
In descending order of update date
Number of items displayed

NVD Vulnerability Information Top

You can search the list of vulnerabilities managed by the NVD (National Vulnerability Database).
Since vulnerability information is often updated before JVN (Japan Vulnerability Note), vulnerabilities that are not listed in JVN may be updated.

If there is a vulnerability related to JVN (Japan Vulnerability Note), the information will be displayed on the detail page.

To search by CWE, please refer to the CWE Overview and check the CWE number.

CRITICAL
HIGH
MEDIUM
LOW

Update Date:Dec. 29, 2024, 4:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
251	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: phy: realtek: usb: fix NULL deref in rtk_usb2phy_probe In rtk_usb2phy_probe() devm_kzalloc() may return NULL but this returned va… New	-	CVE-2024-53205	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

252	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: phy: realtek: usb: fix NULL deref in rtk_usb3phy_probe In rtk_usb3phy_probe() devm_kzalloc() may return NULL but this returned va… New	-	CVE-2024-53204	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

253	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: usb: typec: fix potential array underflow in ucsi_ccg_sync_control() The "command" variable can be controlled by the user via deb… New	-	CVE-2024-53203	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

254	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: firmware_loader: Fix possible resource leak in fw_log_firmware_info() The alg instance should be released under the exception pat… New	-	CVE-2024-53202	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

255	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix null check for pipe_ctx->plane_state in dcn20_program_pipe This commit addresses a null pointer dereference … New	-	CVE-2024-53201	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

256	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix null check for pipe_ctx->plane_state in hwss_setup_dpp This commit addresses a null pointer dereference issu… New	-	CVE-2024-53200	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

257	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: ASoC: imx-audmix: Add NULL check in imx_audmix_probe devm_kasprintf() can return a NULL pointer on failure,but this returned valu… New	-	CVE-2024-53199	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

258	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Fix potential out-of-bound accesses for Extigy and Mbox devices A bogus device can provide a bNumConfigurations … New	-	CVE-2024-53197	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

259	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: fix warning when unbinding If there is an error during some initialization related to firmware, the buffers dp->tx_… New	-	CVE-2024-53191	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

260	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: wifi: nl80211: fix bounds checker error in nl80211_parse_sched_scan The channels array in the cfg80211_scan_request has a __count… New	-	CVE-2024-53189	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

261	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: io_uring: check for overflows in io_pin_pages WARNING: CPU: 0 PID: 5834 at io_uring/memmap.c:144 io_pin_pages+0x149/0x180 io_urin… New	-	CVE-2024-53187	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

262	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: ALSA: pcm: Add sanity NULL check for the default mmap fault handler A driver might allow the mmap access before initializing its … New	-	CVE-2024-53180	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

263	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: NFSv4.0: Fix a use-after-free problem in the asynchronous open() Yang Erkun reports that when two threads are opening files at th… New	-	CVE-2024-53173	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

264	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: sh: intc: Fix use-after-free bug in register_intc_controller() In the error handling for this function, d is freed without ever r… New	-	CVE-2024-53165	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

265	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: net: sched: fix ordering of qlen adjustment Changes to sch->q.qlen around qdisc_tree_reduce_backlog() need to happen _before_ a c… New	-	CVE-2024-53164	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

266	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: cachefiles: Fix NULL pointer dereference in object->file At present, the object->file has the NULL pointer dereference problem in… New	-	CVE-2024-56549	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

267	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: hfsplus: don't query the device logical block size multiple times Devices block sizes may change. One of these cases is a loop de… New	-	CVE-2024-56548	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

268	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: HID: hyperv: streamline driver probe to avoid devres issues It was found that unloading 'hid_hyperv' module results in a devres c… New	-	CVE-2024-56545	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

269	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: rcu/nocb: Fix missed RCU barrier on deoffloading Currently, running rcutorture test with torture_type=rcu fwd_progress=8 n_barrie… New	-	CVE-2024-56547	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

270	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: udmabuf: change folios array from kmalloc to kvmalloc When PAGE_SIZE 4096, MAX_PAGE_ORDER 10, 64bit machine, page_alloc only supp… New	-	CVE-2024-56544	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

271	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: Skip Rx TID cleanup for self peer During peer create, dp setup for the peer is done where Rx TID is updated for all… New	-	CVE-2024-56543	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

272	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: fix a memleak issue when driver is removed Running "modprobe amdgpu" the second time (followed by a modprobe -r … New	-	CVE-2024-56542	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

273	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: fix use-after-free in ath12k_dp_cc_cleanup() During ath12k module removal, in ath12k_core_deinit(), ath12k_mac_dest… New	-	CVE-2024-56541	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

274	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: accel/ivpu: Prevent recovery invocation during probe and resume Refactor IPC send and receive functions to allow correct handling… New	-	CVE-2024-56540	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

275	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: wifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_config_scan() Replace one-element array with a flexible-array… New	-	CVE-2024-56539	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

276	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: isofs: avoid memory leak in iocharset A memleak was found as below: unreferenced object 0xffff0000d10164d8 (size 8): comm "poo… New	-	CVE-2024-56534	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

277	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: ALSA: us122l: Use snd_card_free_when_closed() at disconnection The USB disconnect callback is supposed to be short and not too-lo… New	-	CVE-2024-56532	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

278	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: ALSA: caiaq: Use snd_card_free_when_closed() at disconnection The USB disconnect callback is supposed to be short and not too-lon… New	-	CVE-2024-56531	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

279	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btmtk: adjust the position to init iso data anchor MediaTek iso data anchor init should be moved to where MediaTek cla… New	-	CVE-2024-53238	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

280	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: Bluetooth: fix use-after-free in device_for_each_child() Syzbot has reported the following KASAN splat: BUG: KASAN: slab-use-aft… New	-	CVE-2024-53237	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

281	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: erofs: fix file-backed mounts over FUSE syzbot reported a null-ptr-deref in fuse_read_args_fill: fuse_read_folio+0xb0/0x100 fs/f… New	-	CVE-2024-53235	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

282	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: unicode: Fix utf8_load() error path utf8_load() requests the symbol "utf8_data_table" and then checks if the requested UTF-8 vers… New	-	CVE-2024-53233	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

283	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: iommu/s390: Implement blocking domain This fixes a crash when surprise hot-unplugging a PCI device. This crash happens because du… New	-	CVE-2024-53232	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

284	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Fix the qp flush warnings in req When the qp is in error state, the status of WQEs in the queue should be set to error.… New	-	CVE-2024-53229	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

285	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: scsi: bfa: Fix use-after-free in bfad_im_module_exit() BUG: KASAN: slab-use-after-free in __lock_acquire+0x2aca/0x3a20 Read of si… New	-	CVE-2024-53227	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

286	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Move events notifier registration to be after device registration Move pkey change work initialization and cleanup fro… New	-	CVE-2024-53224	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

287	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: clk: ralink: mtmips: fix clocks probe order in oldest ralink SoCs Base clocks are the first in being probed and are real dependen… New	-	CVE-2024-53223	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

288	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: zram: fix NULL pointer in comp_algorithm_show() LTP reported a NULL pointer dereference as followed: CPU: 7 UID: 0 PID: 5995 Co… New	-	CVE-2024-53222	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

289	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: f2fs: fix null-ptr-deref in f2fs_submit_page_bio() There's issue as follows when concurrently installing the f2fs.ko module and m… New	-	CVE-2024-53221	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

290	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to account dirty data in __get_secs_required() It will trigger system panic w/ testcase in [1]: ------------[ cut here… New	-	CVE-2024-53220	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

291	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: f2fs: fix race in concurrent f2fs_stop_gc_thread In my test case, concurrent calls to f2fs shutdown report the following stack tr… New	-	CVE-2024-53218	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

292	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: virtiofs: use pages instead of pointer for kernel direct IO When trying to insert a 10MB kernel module kept in a virtio-fs with c… New	-	CVE-2024-53219	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

293	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: svcrdma: fix miss destroy percpu_counter in svc_rdma_proc_init() There's issue as follows: RPC: Registered rdma transport module.… New	-	CVE-2024-53215	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

294	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: nfsd: release svc_expkey/svc_export with rcu_work The last reference for `cache_head` can be reduced to zero in `c_show` and `e_s… New	-	CVE-2024-53216	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

295	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: vfio/pci: Properly hide first-in-list PCIe extended capability There are cases where a PCIe extended capability should be hidden … New	-	CVE-2024-53214	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

296	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: netlink: fix false positive warning in extack during dumps Commit under fixes extended extack reporting to dumps. It works under … New	-	CVE-2024-53212	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

297	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: net/l2tp: fix warning in l2tp_exit_net found by syzbot In l2tp's net exit handler, we check that an IDR is empty before destroyin… New	-	CVE-2024-53211	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

298	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: s390/iucv: MSG_PEEK causes memory leak in iucv_sock_destruct() Passing MSG_PEEK flag to skb_recv_datagram() increments skb refcou… New	-	CVE-2024-53210	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

299	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: bnxt_en: Fix receive ring space parameters when XDP is active The MTU setting at the time an XDP multi-buffer is attached determi… New	-	CVE-2024-53209	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm

300	-	-	-	-	In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: Fix slab-use-after-free Read in set_powered_sync This fixes the following crash: ==============================… New	-	CVE-2024-53208	2024-12-27 23:15	2024-12-27	Show	GitHub Exploit DB Packet Storm