171
|
- |
|
-
|
-
|
In the Linux kernel, the following vulnerability has been resolved:
USB: usbtmc: prevent kernel-usb-infoleak
The syzbot reported a kernel-usb-infoleak in usbtmc_write,
we need to clear the structur…
Update
|
-
|
CVE-2024-47671
|
2024-10-17 23:15 |
2024-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
172
|
- |
|
-
|
-
|
In the Linux kernel, the following vulnerability has been resolved:
ocfs2: add bounds checking to ocfs2_xattr_find_entry()
Add a paranoia check to make sure it doesn't stray beyond valid memory
reg…
Update
|
-
|
CVE-2024-47670
|
2024-10-17 23:15 |
2024-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
173
|
7.1 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
fou: fix initialization of grc
The grc must be initialize first. There can be a condition where if
fou is NULL, goto out will be …
Update
|
CWE-908
Use of Uninitialized Resource
|
CVE-2024-46865
|
2024-10-17 23:15 |
2024-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
174
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
platform/x86: panasonic-laptop: Fix SINF array out of bounds accesses
The panasonic laptop code in various places uses the SINF a…
Update
|
CWE-129
Improper Validation of Array Index
|
CVE-2024-46859
|
2024-10-17 23:15 |
2024-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
175
|
7.0 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
mptcp: pm: Fix uaf in __timer_delete_sync
There are two paths to access mptcp_pm_del_add_timer, result in a race
condition:
…
Update
|
CWE-416
Use After Free
|
CVE-2024-46858
|
2024-10-17 23:15 |
2024-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
176
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
netfilter: nft_socket: fix sk refcount leaks
We must put 'sk' reference before returning.
Update
|
NVD-CWE-Other
|
CVE-2024-46855
|
2024-10-17 23:15 |
2024-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
177
|
7.1 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
net: dpaa: Pad packets to ETH_ZLEN
When sending packets under 60 bytes, up to three bytes of the buffer
following the data may be…
Update
|
NVD-CWE-noinfo
|
CVE-2024-46854
|
2024-10-17 23:15 |
2024-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
178
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
spi: nxp-fspi: fix the KASAN report out-of-bounds bug
Change the memcpy length to fix the out-of-bounds issue when writing the
da…
Update
|
CWE-787
Out-of-bounds Write
|
CVE-2024-46853
|
2024-10-17 23:15 |
2024-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
179
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
dma-buf: heaps: Fix off-by-one in CMA heap fault handler
Until VM_DONTEXPAND was added in commit 1c1914d6e8c6 ("dma-buf: heaps:
D…
Update
|
CWE-193
Off-by-one Error
|
CVE-2024-46852
|
2024-10-17 23:15 |
2024-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
180
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
ASoC: meson: axg-card: fix 'use-after-free'
Buffer 'card->dai_link' is reallocated in 'meson_card_reallocate_links()',
so move 'p…
Update
|
CWE-416
Use After Free
|
CVE-2024-46849
|
2024-10-17 23:15 |
2024-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|