|
11
|
5.5
-
|
MEDIUM
Local
|
An issue was discovered in psi/zcolor.c in Artifex Ghostscript before 10.04.0. There is an out-of-bounds read when reading color in Indexed color space.
|
CWE-125
Out-of-bounds Read
|
CVE-2024-46955
|
cpe:2.3:o:debian:debian_linux:12.0:*
|
|
|
|
|
2024-11-14 10:53
2024-11-11
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
12
|
7.8
-
|
HIGH
Local
|
An issue was discovered in base/gsdevice.c in Artifex Ghostscript before 10.04.0. An integer overflow when parsing the filename format string (for the output filename) results in path truncation, and…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2024-46953
|
cpe:2.3:o:debian:debian_linux:12.0:*
|
|
|
|
|
2024-11-14 11:01
2024-11-11
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
13
|
7.8
-
|
HIGH
Local
|
An issue was discovered in pdf/pdf_xref.c in Artifex Ghostscript before 10.04.0. There is a buffer overflow during handling of a PDF XRef stream (related to W array values).
|
CWE-120
Classic Buffer Overflow
|
CVE-2024-46952
|
cpe:2.3:o:debian:debian_linux:12.0:*
|
|
|
|
|
2024-11-14 11:01
2024-11-11
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
14
|
7.8
-
|
HIGH
Local
|
An issue was discovered in psi/zfile.c in Artifex Ghostscript before 10.04.0. Out-of-bounds data access in filenameforall can lead to arbitrary code execution.
|
CWE-125
Out-of-bounds Read
|
CVE-2024-46956
|
cpe:2.3:o:debian:debian_linux:12.0:*
|
|
|
|
|
2024-11-15 05:39
2024-11-11
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
15
|
7.8
-
|
HIGH
Local
|
An issue was discovered in psi/zcolor.c in Artifex Ghostscript before 10.04.0. An unchecked Implementation pointer in Pattern color space could lead to arbitrary code execution.
|
CWE-824
Access of Uninitialized Pointer
|
CVE-2024-46951
|
cpe:2.3:o:debian:debian_linux:12.0:*
|
|
|
|
|
2024-11-14 11:13
2024-11-11
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
16
|
7.8
-
|
HIGH
Local
|
In the Linux kernel, the following vulnerability has been resolved:
HID: amd_sfh: free driver_data after destroying hid device
HID driver callbacks aren't called anymore once hid_destroy_device() h…
|
CWE-416
Use After Free
|
CVE-2024-46746
|
cpe:2.3:o:debian:debian_linux:11.0:*
|
|
|
|
|
2026-04-23 22:54
2024-09-18
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
17
|
7.8
-
|
HIGH
Local
|
In the Linux kernel, the following vulnerability has been resolved:
drm/amdgpu: Fix out-of-bounds write warning
Check the ring type value to fix the out-of-bounds
write warning
|
CWE-787
Out-of-bounds Write
|
CVE-2024-46725
|
cpe:2.3:o:debian:debian_linux:11.0:*
|
|
|
|
|
2026-04-22 04:06
2024-09-18
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
18
|
7.8
-
|
HIGH
Local
|
In the Linux kernel, the following vulnerability has been resolved:
ipv6: fix possible UAF in ip6_finish_output2()
If skb_expand_head() returns NULL, skb has been freed
and associated dst/idev coul…
|
CWE-416
Use After Free
|
CVE-2024-44986
|
cpe:2.3:o:debian:debian_linux:11.0:*
|
|
|
|
|
2026-04-10 02:42
2024-09-5
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
19
|
7.8
-
|
HIGH
Local
|
In the Linux kernel, the following vulnerability has been resolved:
drm/amdgpu: Validate TA binary size
Add TA binary size validation to avoid OOB write.
(cherry picked from commit c0a04e3570d72aa…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-44977
|
cpe:2.3:o:debian:debian_linux:11.0:*
|
|
|
|
|
2026-04-10 02:42
2024-09-5
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
20
|
7.8
-
|
HIGH
Local
|
In the Linux kernel, the following vulnerability has been resolved:
mptcp: pm: avoid possible UaF when selecting endp
select_local_address() and select_signal_address() both select an
endpoint entr…
|
CWE-416
Use After Free
|
CVE-2024-44974
|
cpe:2.3:o:debian:debian_linux:11.0:*
|
|
|
|
|
2026-04-10 02:41
2024-09-5
|
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|