|
314471
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/xe/preempt_fence: enlarge the fence critical section
It is really easy to introduce subtle deadlocks in
preempt_fence_work_fu…
|
CWE-667
Improper Locking
|
CVE-2024-44956
|
2024-09-7 01:37 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314472
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
idpf: fix memory leaks and crashes while performing a soft reset
The second tagged commit introduced a UAF, as it removed restori…
|
CWE-416
CWE-401
Use After Free
Missing Release of Memory after Effective Lifetime
|
CVE-2024-44964
|
2024-09-7 01:36 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314473
|
9.1 |
CRITICAL
Network
|
bitapps
|
bit_form
|
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Bit Apps Bit Form Pro allows File Manipulation.This issue affects Bit Form Pro: from n/a through 2.6.4.
|
CWE-22
Path Traversal
|
CVE-2024-43248
|
2024-09-7 01:32 |
2024-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314474
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
bonding: fix null pointer deref in bond_ipsec_offload_ok
We must check if there is an active slave before dereferencing the point…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-44990
|
2024-09-7 01:31 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314475
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
bonding: fix xfrm real_dev null pointer dereference
We shouldn't set real_dev to NULL because packets can be in transit and
xfrm …
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-44989
|
2024-09-7 01:31 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314476
|
5.9 |
MEDIUM
Network
|
dlink
|
dns-320_firmware
|
A vulnerability, which was classified as problematic, has been found in D-Link DNS-320 2.02b01. Affected by this issue is some unknown functionality of the file /cgi-bin/widget_api.cgi of the compone…
|
NVD-CWE-noinfo
|
CVE-2024-8460
|
2024-09-7 01:30 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314477
|
8.8 |
HIGH
Network
|
bitapps
|
bit_form
|
Unrestricted Upload of File with Dangerous Type vulnerability in Bit Apps Bit Form Pro allows Command Injection.This issue affects Bit Form Pro: from n/a through 2.6.4.
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2024-43249
|
2024-09-7 01:30 |
2024-08-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314478
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
smb/client: avoid possible NULL dereference in cifs_free_subrequest()
Clang static checker (scan-build) warning:
cifsglob.h:line…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-44992
|
2024-09-7 01:29 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314479
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
atm: idt77252: prevent use after free in dequeue_rx()
We can't dereference "skb" after calling vcc->push() because the skb
is rel…
|
CWE-416
Use After Free
|
CVE-2024-44998
|
2024-09-7 01:28 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314480
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
net: ethernet: mtk_wed: fix use-after-free panic in mtk_wed_setup_tc_block_cb()
When there are multiple ap interfaces on one band…
|
CWE-416
Use After Free
|
CVE-2024-44997
|
2024-09-7 01:28 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
