13684 matches found
CVE-2024-53127 Revert "mmc: dw_mmc: Fix IDMAC operation with pages bigger than 4K"
In the Linux kernel, the following vulnerability has been resolved: Revert "mmc: dwmmc: Fix IDMAC operation with pages bigger than 4K" The commit 8396c793ffdf "mmc: dwmmc: Fix IDMAC operation with pages bigger than 4K" increased the maxreqsize, even for 4K pages, causing various issues: - Panic...
CVE-2024-53127
CVE-2024-53127 involves the Linux kernel where the fix was to revert the change that raised max_req_size for IDMAC operations with pages bigger than 4K. Affected behavior includes panics booting kernel/rootfs from SD on Rockchip RK3566 and StarFive JH7100, and swiotlb buffer/full data corruption ...
kernel: ext4: regenerate buddy after block freeing failed if under fc replay
A flaw was found in the Linux kernel's ext4 filesystem related to the fast commit replay process. During this process, blocks that are already marked as free can be incorrectly marked as free again, leading to the corruption of the buddy bitmap, which is used to track free and allocated blocks...
CVE-2024-53103
In the Linux kernel, the following vulnerability has been resolved: hvsock: Initializing vsk-trans to NULL to prevent a dangling pointer When hvs is released, there is a possibility that vsk-trans may not be initialized to NULL, which could lead to a dangling pointer. This issue is resolved by...
CVE-2024-53848
The CVE-2024-53848 issue affects the check-jsonschema tool (and related advisories) where the default caching uses the remote schema basename (e.g., https://example.org/schema.json) as the cache filename. This can allow a malicious schema URL to overwrite or be substituted in the cache leading to...
DEBIAN-CVE-2024-11407
There exists a denial of service through Data corruption in gRPC-C++ - gRPC-C++ servers with transmit zero copy enabled through the channel arg GRPCARGTCPTXZEROCOPYENABLED can experience data corruption issues. The data sent by the application may be corrupted before transmission over the network...
UBUNTU-CVE-2024-11407
There exists a denial of service through Data corruption in gRPC-C++ - gRPC-C++ servers with transmit zero copy enabled through the channel arg GRPCARGTCPTXZEROCOPYENABLED can experience data corruption issues. The data sent by the application may be corrupted before transmission over the network...
CVE-2024-11407
CVE-2024-11407 describes a denial-of-service in gRPC-C++ servers when transmit zero copy is enabled via GRPC_ARG_TCP_TX_ZEROCOPY_ENABLED, where data may become corrupted before network transmission. Connected advisories referencing grpc (ALAS2023-2025-1357, ALAS2ECS-2025-093, ALAS2023-2025-819, A...
CVE-2024-53258 download_all_submissions allows student to download another student's submissions in Autolab
Autolab is a course management service that enables auto-graded programming assignments. From Autolab versions v.3.0.0 onward students can download all assignments from another student, as long as they are logged in, using the downloadallsubmissions feature. This can allow for leakage of...
DEBIAN-CVE-2024-11498
There exists a stack buffer overflow in libjxl. A specifically-crafted file can cause the JPEG XL decoder to use large amounts of stack space up to 256mb is possible, maybe 512mb, potentially exhausting the stack. An attacker can craft a file that will cause excessive memory usage. We recommend...
CVE-2024-11498
There exists a stack buffer overflow in libjxl. A specifically-crafted file can cause the JPEG XL decoder to use large amounts of stack space up to 256mb is possible, maybe 512mb, potentially exhausting the stack. An attacker can craft a file that will cause excessive memory usage. We recommend...
UBUNTU-CVE-2024-11498
There exists a stack buffer overflow in libjxl. A specifically-crafted file can cause the JPEG XL decoder to use large amounts of stack space up to 256mb is possible, maybe 512mb, potentially exhausting the stack. An attacker can craft a file that will cause excessive memory usage. We recommend...
CVE-2024-11498 Resource exhaustion via Stack overflow in libjxl
There exists a stack buffer overflow in libjxl. A specifically-crafted file can cause the JPEG XL decoder to use large amounts of stack space up to 256mb is possible, maybe 512mb, potentially exhausting the stack. An attacker can craft a file that will cause excessive memory usage. We recommend...
CVE-2024-11498
CVE-2024-11498 affects the libjxl (JPEG XL) library. A crafted file can trigger a stack-based overflow, causing the decoder to allocate large stack space (up to 256–512 MB) and potentially exhaust stack memory, leading to denial of service. Multiple advisories and deployable updates reference thi...
CVE-2024-11498 Resource exhaustion via Stack overflow in libjxl
There exists a stack buffer overflow in libjxl. A specifically-crafted file can cause the JPEG XL decoder to use large amounts of stack space up to 256mb is possible, maybe 512mb, potentially exhausting the stack. An attacker can craft a file that will cause excessive memory usage. We recommend...
GO-2024-3259 CometBFT Vote Extensions: Panic when receiving a Pre-commit with an invalid data in github.com/cometbft/cometbft
CometBFT Vote Extensions: Panic when receiving a Pre-commit with an invalid data in github.com/cometbft/cometbft...
An issue in bytecodealliance wasm-micro-runtime before v.b3f728c and fixed in commit 06df58f allows a remote attacker to escalate privileges via a crafted file to the check_was_abi_compatibility function.
...
CVE-2024-53080 drm/panthor: Lock XArray when getting entries for the VM
In the Linux kernel, the following vulnerability has been resolved: drm/panthor: Lock XArray when getting entries for the VM Similar to commit cac075706f29 "drm/panthor: Fix race when converting group handle to group object" we need to use the XArray's internal locking when retrieving a vm pointe...
CVE-2024-53065 mm/slab: fix warning caused by duplicate kmem_cache creation in kmem_buckets_create
In the Linux kernel, the following vulnerability has been resolved: mm/slab: fix warning caused by duplicate kmemcache creation in kmembucketscreate Commit b035f5a6d852 "mm: slab: reduce the kmalloc minimum alignment if DMA bouncing possible" reduced ARCHKMALLOCMINALIGN to 8 on arm64. However, wi...
SUSE CVE-2024-50269
In the Linux kernel, the following vulnerability has been resolved: usb: musb: sunxi: Fix accessing an released usb phy Commit 6ed05c68cbca "usb: musb: sunxi: Explicitly release USB PHY on exit" will cause that usb phy @glue-xceiv is accessed after released. 1 register platform driver...