|
981
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
btrfs: don't readahead the relocation inode on RST
On relocation we're doing readahead on the relocation inode, but if the
filesy…
Update
|
CWE-617
Reachable Assertion
|
CVE-2024-49932
|
2024-11-14 00:01 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
982
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
x86/ioapic: Handle allocation failures gracefully
Breno observed panics when using failslab under certain conditions during
runti…
Update
|
NVD-CWE-noinfo
|
CVE-2024-49927
|
2024-11-13 23:58 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
983
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
rcu-tasks: Fix access non-existent percpu rtpcp variable in rcu_tasks_need_gpcb()
For kernels built with CONFIG_FORCE_NR_CPUS=y, …
Update
|
NVD-CWE-noinfo
|
CVE-2024-49926
|
2024-11-13 23:57 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
984
|
8.1 |
HIGH
Network
|
lifplatforms
|
lif_authentication_server
|
Lif Authentication Server is a server used by Lif to do various tasks regarding Lif accounts. This vulnerability has to do with the account recovery system where there does not appear to be a check t…
Update
|
CWE-862
Missing Authorization
|
CVE-2024-47768
|
2024-11-13 23:55 |
2024-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
985
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
bpf: Fix a sdiv overflow issue
Zac Ecob reported a problem where a bpf program may cause kernel crash due
to the following error:…
Update
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2024-49888
|
2024-11-13 23:54 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
986
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
f2fs: fix to don't panic system for no free segment fault injection
f2fs: fix to don't panic system for no free segment fault inj…
Update
|
NVD-CWE-noinfo
|
CVE-2024-49887
|
2024-11-13 23:50 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
987
|
6.1 |
MEDIUM
Network
|
jgniecki
|
minecraft_motd_parser
|
Minecraft MOTD Parser is a PHP library to parse minecraft server motd. The HtmlGenerator class is subject to potential cross-site scripting (XSS) attack through a parsed malformed Minecraft server MO…
Update
|
CWE-79
CWE-80
Cross-site Scripting
Basic XSS
|
CVE-2024-47765
|
2024-11-13 23:48 |
2024-10-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
988
|
9.8 |
CRITICAL
Network
mudler
|
localai
|
mudler/LocalAI version 2.17.1 allows for arbitrary file write due to improper handling of automatic archive extraction. When model configurations specify additional files as archives (e.g., .tar), th…
Update
|
NVD-CWE-noinfo
|
CVE-2024-6868
|
2024-11-13 23:43 |
2024-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
|
989
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
platform/x86: ISST: Fix the KASAN report slab-out-of-bounds bug
Attaching SST PCI device to VM causes "BUG: KASAN: slab-out-of-bo…
Update
|
NVD-CWE-noinfo
|
CVE-2024-49886
|
2024-11-13 23:39 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
990
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
mm, slub: avoid zeroing kmalloc redzone
Since commit 946fa0dbf2d8 ("mm/slub: extend redzone check to extra
allocated kmalloc spac…
Update
|
NVD-CWE-noinfo
|
CVE-2024-49885
|
2024-11-13 23:36 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
