2861
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
net/sched: accept TCA_STAB only for root qdisc
Most qdiscs maintain their backlog using qdisc_pkt_len(skb)
on the assumption it i…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-50039
|
2024-11-9 01:15 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2862
|
7.1 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
slip: make slhc_remember() more robust against malicious packets
syzbot found that slhc_remember() was missing checks against
mal…
|
CWE-908
Use of Uninitialized Resource
|
CVE-2024-50033
|
2024-11-9 01:15 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2863
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
net: Fix an unsafe loop on the list
The kernel may crash when deleting a genetlink family if there are still
listeners for that f…
|
NVD-CWE-noinfo
|
CVE-2024-50024
|
2024-11-9 01:15 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2864
|
4.7 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
exec: don't WARN for racy path_noexec check
Both i_mode and noexec checks wrapped in WARN_ON stem from an artifact
of the previou…
|
NVD-CWE-noinfo
|
CVE-2024-50010
|
2024-11-9 01:15 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2865
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
wifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_cmd_802_11_scan_ext()
Replace one-element array with a flexib…
|
NVD-CWE-noinfo
|
CVE-2024-50008
|
2024-11-9 01:15 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2866
|
4.7 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
ext4: fix i_data_sem unlock order in ext4_ind_migrate()
Fuzzing reports a possible deadlock in jbd2_log_wait_commit.
This issue …
|
CWE-667
Improper Locking
|
CVE-2024-50006
|
2024-11-9 01:15 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2867
|
7.5 |
HIGH
Network
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
net: ethernet: lantiq_etop: fix memory disclosure
When applying padding, the buffer is not zeroed, which results in memory
disclo…
|
CWE-212
Improper Removal of Sensitive Information Before Storage or Transfer
|
CVE-2024-49997
|
2024-11-9 01:15 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
2868
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
ACPI: battery: Fix possible crash when unregistering a battery hook
When a battery hook returns an error when adding a new batter…
|
CWE-672
Operation on a Resource after Expiration or Release
|
CVE-2024-49955
|
2024-11-9 01:15 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2869
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/amd/display: Check stream before comparing them
[WHAT & HOW]
amdgpu_dm can pass a null stream to dc_is_stream_unchanged. It i…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-49896
|
2024-11-9 01:15 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
2870
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/amd/display: Initialize get_bytes_per_element's default to 1
Variables, used as denominators and maybe not assigned to other …
|
CWE-369
Divide By Zero
|
CVE-2024-49892
|
2024-11-9 01:15 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|