|
2871
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
tipc: guard against string buffer overrun
Smatch reports that copying media_name and if_name to name_parts may
overwrite the dest…
|
NVD-CWE-noinfo
|
CVE-2024-49995
|
2024-11-9 01:15 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2872
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
i2c: stm32f7: Do not prepare/unprepare clock during runtime suspend/resume
In case there is any sort of clock controller attached…
|
CWE-667
Improper Locking
|
CVE-2024-49985
|
2024-11-9 01:15 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2873
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
aoe: fix the potential use-after-free problem in more places
For fixing CVE-2023-6270, f98364e92662 ("aoe: fix the potential
use-…
|
CWE-416
Use After Free
|
CVE-2024-49982
|
2024-11-9 01:15 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2874
|
7.0 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
media: venus: fix use after free bug in venus_remove due to race condition
in venus_probe, core->work is bound with venus_sys_err…
|
CWE-362
CWE-416
Race Condition
Use After Free
|
CVE-2024-49981
|
2024-11-9 01:15 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2875
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
ocfs2: cancel dqi_sync_work before freeing oinfo
ocfs2_global_read_info() will initialize and schedule dqi_sync_work at the
end, …
|
CWE-416
Use After Free
|
CVE-2024-49966
|
2024-11-9 01:15 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2876
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm: omapdrm: Add missing check for alloc_ordered_workqueue
As it may return NULL pointer and cause NULL pointer dereference. Add…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-49879
|
2024-11-9 01:15 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2877
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
ocfs2: fix possible null-ptr-deref in ocfs2_set_buffer_uptodate
When doing cleanup, if flags without OCFS2_BH_READAHEAD, it may t…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-49877
|
2024-11-9 01:15 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2878
|
7.1 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
ACPI: sysfs: validate return type of _STR method
Only buffer objects are valid return values of _STR.
If something else is retur…
|
CWE-843
Type Confusion
|
CVE-2024-49860
|
2024-11-9 01:15 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2879
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
tpm: Clean up TPM space after command failure
tpm_dev_transmit prepares the TPM space before attempting command
transmission. How…
|
CWE-459
Incomplete Cleanup
|
CVE-2024-49851
|
2024-11-9 01:15 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
2880
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
PCI: keystone: Fix if-statement expression in ks_pcie_quirk()
This code accidentally uses && where || was intended. It potential…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-47756
|
2024-11-9 01:15 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
