Lucene search
K

6095 matches found

Debian CVE
Debian CVE
added 2024/02/29 3:52 p.m.17 views

CVE-2024-26619

In the Linux kernel, the following vulnerability has been resolved: riscv: Fix module loading free order Reverse order of kfree calls to resolve use-after-free error...

7.8CVSS6.3AI score0.00275EPSS
Exploits0
OSV
OSV
added 2024/02/29 3:52 p.m.10 views

CVE-2024-26616 btrfs: scrub: avoid use-after-free when chunk length is not 64K aligned

In the Linux kernel, the following vulnerability has been resolved: btrfs: scrub: avoid use-after-free when chunk length is not 64K aligned BUG There is a bug report that, on a ext4-converted btrfs, scrub leads to various problems, including: - "unable to find chunk map" errors BTRFS info device...

7.8CVSS6.1AI score0.00291EPSS
Exploits0References6
Cvelist
Cvelist
added 2024/02/29 3:52 p.m.57 views

CVE-2024-26615 net/smc: fix illegal rmb_desc access in SMC-D connection dump

In the Linux kernel, the following vulnerability has been resolved: net/smc: fix illegal rmbdesc access in SMC-D connection dump A crash was found when dumping SMC-D connections. It can be reproduced by following steps: - run nginx/wrk test: smcrun nginx smcrun wrk -t 16 -c 1000 -d -H 'Connection...

7.5AI score0.00257EPSS
Exploits0References8
Vulnrichment
Vulnrichment
added 2024/02/29 3:52 p.m.33 views

CVE-2024-26615 net/smc: fix illegal rmb_desc access in SMC-D connection dump

In the Linux kernel, the following vulnerability has been resolved: net/smc: fix illegal rmbdesc access in SMC-D connection dump A crash was found when dumping SMC-D connections. It can be reproduced by following steps: - run nginx/wrk test: smcrun nginx smcrun wrk -t 16 -c 1000 -d -H 'Connection...

6.7AI score0.00257EPSS
Exploits0References8
CVE
CVE
added 2024/02/29 3:52 p.m.5952 views

CVE-2024-26614

CVE-2024-26614 : Linux kernel vulnerability where the accept_queue spinlocks were not initialized correctly, enabling a local attacker to trigger a denial of service. The issue surfaces in tcp handling and was observed in syz reproductions showing pvqspinlock corruption during queue operations. C...

5.5CVSS6.4AI score0.00173EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2024/02/29 3:52 p.m.34 views

CVE-2024-26614 tcp: make sure init the accept_queue's spinlocks once

In the Linux kernel, the following vulnerability has been resolved: tcp: make sure init the acceptqueue's spinlocks once When I run syz's reproduction C program locally, it causes the following issue: pvqspinlock: lock 0xffff9d181cd5c660 has corrupted value 0x0! WARNING: CPU: 19 PID: 21160 at...

6AI score0.00173EPSS
Exploits0References6
Cvelist
Cvelist
added 2024/02/29 3:52 p.m.34 views

CVE-2024-26612 netfs, fscache: Prevent Oops in fscache_put_cache()

In the Linux kernel, the following vulnerability has been resolved: netfs, fscache: Prevent Oops in fscacheputcache This function dereferences "cache" and then checks if it's ISERRORNULL. Check first, then dereference...

7.5AI score0.00239EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/02/29 3:52 p.m.23 views

CVE-2024-26611 xsk: fix usage of multi-buffer BPF helpers for ZC XDP

In the Linux kernel, the following vulnerability has been resolved: xsk: fix usage of multi-buffer BPF helpers for ZC XDP Currently when packet is shrunk via bpfxdpadjusttail and memory type is set to MEMTYPEXSKBUFFPOOL, null ptr dereference happens: 1136314.192256 BUG: kernel NULL pointer...

6.4AI score0.00238EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/02/29 3:52 p.m.20 views

CVE-2024-26611 xsk: fix usage of multi-buffer BPF helpers for ZC XDP

In the Linux kernel, the following vulnerability has been resolved: xsk: fix usage of multi-buffer BPF helpers for ZC XDP Currently when packet is shrunk via bpfxdpadjusttail and memory type is set to MEMTYPEXSKBUFFPOOL, null ptr dereference happens: 1136314.192256 BUG: kernel NULL pointer...

6.6AI score0.00238EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/02/29 3:52 p.m.21 views

CVE-2023-52498 PM: sleep: Fix possible deadlocks in core system-wide PM code

In the Linux kernel, the following vulnerability has been resolved: PM: sleep: Fix possible deadlocks in core system-wide PM code It is reported that in low-memory situations the system-wide resume core code deadlocks, because asyncscheduledev executes its argument function synchronously if it...

7.6AI score0.0024EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2024/02/29 3:52 p.m.33 views

CVE-2024-26608 ksmbd: fix global oob in ksmbd_nl_policy

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix global oob in ksmbdnlpolicy Similar to a reported issue check the commit b33fb5b801c6 "net: qualcomm: rmnet: fix global oob in rmnetpolicy", my local fuzzer finds another global out-of-bounds read for policy...

6.5AI score0.00234EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2024/02/29 3:52 p.m.25 views

CVE-2023-52497

In the Linux kernel, the following vulnerability has been resolved: erofs: fix lz4 inplace decompression Currently EROFS can map another compressed buffer for inplace decompression, that was used to handle the cases that some pages of compressed data are actually not in-place I/O. However, like...

6.1CVSS7.5AI score0.00278EPSS
Exploits0
OSV
OSV
added 2024/02/29 3:52 p.m.6 views

CVE-2023-52493 bus: mhi: host: Drop chan lock before queuing buffers

In the Linux kernel, the following vulnerability has been resolved: bus: mhi: host: Drop chan lock before queuing buffers Ensure read and write locks for the channel are not taken in succession by dropping the read lock from parsexferevent such that a callback given to client can potentially queu...

5.5CVSS5.8AI score0.00209EPSS
Exploits0References10
Vulnrichment
Vulnrichment
added 2024/02/29 3:52 p.m.15 views

CVE-2023-52494 bus: mhi: host: Add alignment check for event ring read pointer

In the Linux kernel, the following vulnerability has been resolved: bus: mhi: host: Add alignment check for event ring read pointer Though we do check the event ring read pointer by "isvalidringptr" to make sure it is in the buffer range, but there is another risk the pointer may be not aligned...

6.8AI score0.00279EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2024/02/29 3:52 p.m.29 views

CVE-2023-52494

In the Linux kernel, the following vulnerability has been resolved: bus: mhi: host: Add alignment check for event ring read pointer Though we do check the event ring read pointer by "isvalidringptr" to make sure it is in the buffer range, but there is another risk the pointer may be not aligned...

7.8CVSS6.1AI score0.00279EPSS
Exploits0
Debian CVE
Debian CVE
added 2024/02/29 3:52 p.m.16 views

CVE-2023-52488

In the Linux kernel, the following vulnerability has been resolved: serial: sc16is7xx: convert from raw to noinc regmap functions for FIFO The SC16IS7XX IC supports a burst mode to access the FIFOs where the initial register address is sent $00, followed by all the FIFO data without having to...

5.5CVSS7.3AI score0.00289EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2024/02/29 3:52 p.m.33 views

CVE-2023-52487 net/mlx5e: Fix peer flow lists handling

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix peer flow lists handling The cited change refactored mlx5etcdelfdbpeerflow to only clear DUP flag when list of peer flows has become empty. However, if any concurrent user holds a reference to a peer flow for...

6.6AI score0.00272EPSS
Exploits0References3
NVD
NVD
added 2024/02/29 3:15 p.m.30 views

CVE-2023-52485

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Wake DMCUB before sending a command Why We can hang in place trying to send commands when the DMCUB isn't powered on. How For functions that execute within a DC context or DC lock we can wrap the direct calls to...

5.5CVSS7AI score0.00214EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/02/29 2:57 p.m.17 views

CVE-2023-52485 drm/amd/display: Wake DMCUB before sending a command

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Wake DMCUB before sending a command Why We can hang in place trying to send commands when the DMCUB isn't powered on. How For functions that execute within a DC context or DC lock we can wrap the direct calls to...

7.4AI score0.00214EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/02/29 2:57 p.m.38 views

CVE-2023-52485 drm/amd/display: Wake DMCUB before sending a command

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Wake DMCUB before sending a command Why We can hang in place trying to send commands when the DMCUB isn't powered on. How For functions that execute within a DC context or DC lock we can wrap the direct calls to...

7.3AI score0.00214EPSS
Exploits0References2
Rows per page
Query Builder