1911
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
net/mlx5: Fix IPsec RoCE MPV trace call
Prevent the call trace below from happening, by not allowing IPsec
creation over a slave,…
|
NVD-CWE-noinfo
|
CVE-2024-45017
|
2024-09-14 01:36 |
2024-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1912
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
char: xillybus: Check USB endpoints when probing device
Ensure, as the driver probes the device, that all endpoints that the
driv…
|
NVD-CWE-noinfo
|
CVE-2024-45011
|
2024-09-14 01:36 |
2024-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1913
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
mptcp: pm: only decrement add_addr_accepted for MPJ req
Adding the following warning ...
WARN_ON_ONCE(msk->pm.add_addr_accepte…
|
NVD-CWE-noinfo
|
CVE-2024-45009
|
2024-09-14 01:36 |
2024-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1914
|
- |
|
-
|
-
|
An External XML Entity (XXE) vulnerability in the provisioning web service of Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote unauthenticated attacker to leak API secrets.
|
-
|
CVE-2024-37397
|
2024-09-14 01:35 |
2024-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1915
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
s390/boot: Avoid possible physmem_info segment corruption
When physical memory for the kernel image is allocated it does not
cons…
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2024-45014
|
2024-09-14 01:35 |
2024-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1916
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/msm/dpu: move dpu_encoder's connector assignment to atomic_enable()
For cases where the crtc's connectors_changed was set wit…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-45015
|
2024-09-14 01:35 |
2024-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1917
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
nvme: move stopping keep-alive into nvme_uninit_ctrl()
Commit 4733b65d82bd ("nvme: start keep-alive after admin queue setup")
mov…
|
CWE-416
Use After Free
|
CVE-2024-45013
|
2024-09-14 01:35 |
2024-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1918
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
nouveau/firmware: use dma non-coherent allocator
Currently, enabling SG_DEBUG in the kernel will cause nouveau to hit a
BUG() on …
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2024-45012
|
2024-09-14 01:35 |
2024-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1919
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
mptcp: pm: only mark 'subflow' endp as available
Adding the following warning ...
WARN_ON_ONCE(msk->pm.local_addr_used == 0)
…
|
NVD-CWE-noinfo
|
CVE-2024-45010
|
2024-09-14 01:35 |
2024-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
1920
|
8.2 |
HIGH
Local
|
oracle
|
vm_virtualbox
|
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are Prior to 7.0.12. Easily exploitable vulnerability allows high p…
|
NVD-CWE-noinfo
|
CVE-2023-22099
|
2024-09-14 01:35 |
2023-10-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|