|
2361
|
- |
|
-
|
-
|
A flaw was found in the cockpit package. This flaw allows an authenticated user to kill any process when enabling the pam_env's user_readenv option, which leads to a denial of service (DoS) attack.
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2024-6126
|
2024-11-13 00:15 |
2024-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2362
|
- |
|
-
|
-
|
A flaw was found in the github.com/containers/image library. This flaw allows attackers to trigger unexpected authenticated registry accesses on behalf of a victim user, causing resource exhaustion, …
|
CWE-354
Improper Validation of Integrity Check Value
|
CVE-2024-3727
|
2024-11-13 00:15 |
2024-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2363
|
- |
|
-
|
-
|
A use-after-free vulnerability was found in the ProcRenderAddGlyphs() function of Xorg servers. This issue occurs when AllocateGlyph() is called to store new glyphs sent by the client to the X server…
|
CWE-416
Use After Free
|
CVE-2024-31083
|
2024-11-13 00:15 |
2024-04-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2364
|
- |
|
-
|
-
|
A heap-based buffer over-read vulnerability was found in the X.org server's ProcXIPassiveGrabDevice() function. This issue occurs when byte-swapped length values are used in replies, potentially lead…
|
CWE-126
Buffer Over-read
|
CVE-2024-31081
|
2024-11-13 00:15 |
2024-04-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2365
|
- |
|
-
|
-
|
A heap-based buffer over-read vulnerability was found in the X.org server's ProcXIGetSelectedEvents() function. This issue occurs when byte-swapped length values are used in replies, potentially lead…
|
CWE-126
Buffer Over-read
|
CVE-2024-31080
|
2024-11-13 00:15 |
2024-04-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2366
|
4.6 |
MEDIUM
Physics
|
samsung
|
android
|
Improper input validation in Dressroom prior to SMR Nov-2024 Release 1 allow physical attackers to access data across multiple user profiles.
|
NVD-CWE-noinfo
|
CVE-2024-49402
|
2024-11-13 00:09 |
2024-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2367
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
x86: fix user address masking non-canonical speculation issue
It turns out that AMD has a "Meltdown Lite(tm)" issue with non-cano…
|
CWE-203
Information Exposure Through Discrepancy
|
CVE-2024-50102
|
2024-11-13 00:08 |
2024-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2368
|
7.0 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
nfsd: fix race between laundromat and free_stateid
There is a race between laundromat handling of revoked delegations
and a clien…
|
CWE-416
Use After Free
|
CVE-2024-50106
|
2024-11-13 00:07 |
2024-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2369
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
ASoC: qcom: sc7280: Fix missing Soundwire runtime stream alloc
Commit 15c7fab0e047 ("ASoC: qcom: Move Soundwire runtime stream al…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-50105
|
2024-11-13 00:06 |
2024-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2370
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
ASoC: qcom: sdm845: add missing soundwire runtime stream alloc
During the migration of Soundwire runtime stream allocation from
t…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-50104
|
2024-11-13 00:05 |
2024-11-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
