2171
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
uprobes: fix kernel info leak via "[uprobes]" vma
xol_add_vma() maps the uninitialized page allocated by __create_xol_area()
into…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2024-49975
|
2024-11-9 01:15 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2172
|
7.0 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
ntb: ntb_hw_switchtec: Fix use after free vulnerability in switchtec_ntb_remove due to race condition
In the switchtec_ntb_add fu…
|
CWE-416
Use After Free
|
CVE-2024-50059
|
2024-11-9 01:15 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2173
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
serial: protect uart_port_dtr_rts() in uart_shutdown() too
Commit af224ca2df29 (serial: core: Prevent unsafe uart port access, pa…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-50058
|
2024-11-9 01:15 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2174
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
netfilter: br_netfilter: fix panic with metadata_dst skb
Fix a kernel panic in the br_netfilter module when sending untagged
traf…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-50045
|
2024-11-9 01:15 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2175
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
r8169: add tally counter fields added with RTL8125
RTL8125 added fields to the tally counter, what may result in the chip
dma'ing…
|
NVD-CWE-noinfo
|
CVE-2024-49973
|
2024-11-9 01:15 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2176
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
ext4: no need to continue when the number of entries is 1
|
NVD-CWE-noinfo
|
CVE-2024-49967
|
2024-11-9 01:15 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2177
|
3.3 |
LOW
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
Bluetooth: RFCOMM: FIX possible deadlock in rfcomm_sk_state_change
rfcomm_sk_state_change attempts to use sock_lock so it must ne…
|
CWE-667
Improper Locking
|
CVE-2024-50044
|
2024-11-9 01:15 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2178
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
igb: Do not bring the device up after non-fatal error
Commit 004d25060c78 ("igb: Fix igb_down hung on surprise removal")
changed …
|
NVD-CWE-noinfo
|
CVE-2024-50040
|
2024-11-9 01:15 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2179
|
7.1 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
ppp: fix ppp_async_encode() illegal access
syzbot reported an issue in ppp_async_encode() [1]
In this case, pppoe_sendmsg() is c…
|
CWE-908
Use of Uninitialized Resource
|
CVE-2024-50035
|
2024-11-9 01:15 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2180
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
net/sched: accept TCA_STAB only for root qdisc
Most qdiscs maintain their backlog using qdisc_pkt_len(skb)
on the assumption it i…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-50039
|
2024-11-9 01:15 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|