Lucene search
K

11 matches found

RedhatCVE
RedhatCVE
added 2024/08/27 12:11 p.m.17 views

CVE-2024-44931

In the Linux kernel, the following vulnerability has been resolved: gpio: prevent potential speculation leaks in gpiodevicegetdesc Userspace may trigger a speculative read of an address outside the gpio descriptor array. Users can do that by calling gpioioctl with an offset out of range. Offset i...

5.5CVSS6.5AI score0.00248EPSS
Exploits0References4
OSV
OSV
added 2024/08/26 10:11 a.m.24 views

CVE-2024-44931 gpio: prevent potential speculation leaks in gpio_device_get_desc()

In the Linux kernel, the following vulnerability has been resolved: gpio: prevent potential speculation leaks in gpiodevicegetdesc Userspace may trigger a speculative read of an address outside the gpio descriptor array. Users can do that by calling gpioioctl with an offset out of range. Offset i...

5.5CVSS6.3AI score0.00248EPSS
Exploits0References13
UbuntuCve
UbuntuCve
added 2024/07/29 5:15 p.m.16 views

CVE-2024-42090

In the Linux kernel, the following vulnerability has been resolved: pinctrl: fix deadlock in createpinctrl when handling -EPROBEDEFER In createpinctrl, pinctrlmapsmutex is acquired before calling addsetting. If addsetting returns -EPROBEDEFER, createpinctrl calls pinctrlfree. However, pinctrlfree...

5.5CVSS6.3AI score0.00189EPSS
Exploits0References36
Vulnrichment
Vulnrichment
added 2024/07/29 4:26 p.m.12 views

CVE-2024-42090 pinctrl: fix deadlock in create_pinctrl() when handling -EPROBE_DEFER

In the Linux kernel, the following vulnerability has been resolved: pinctrl: fix deadlock in createpinctrl when handling -EPROBEDEFER In createpinctrl, pinctrlmapsmutex is acquired before calling addsetting. If addsetting returns -EPROBEDEFER, createpinctrl calls pinctrlfree. However, pinctrlfree...

6.7AI score0.00189EPSS
Exploits0References8
Cvelist
Cvelist
added 2024/07/29 4:26 p.m.52 views

CVE-2024-42090 pinctrl: fix deadlock in create_pinctrl() when handling -EPROBE_DEFER

In the Linux kernel, the following vulnerability has been resolved: pinctrl: fix deadlock in createpinctrl when handling -EPROBEDEFER In createpinctrl, pinctrlmapsmutex is acquired before calling addsetting. If addsetting returns -EPROBEDEFER, createpinctrl calls pinctrlfree. However, pinctrlfree...

0.00189EPSS
Exploits0References8
CVE
CVE
added 2024/07/29 4:26 p.m.193 views

CVE-2024-42090

The CVE CVE-2024-42090 affects the Linux kernel pinctrl subsystem. Root cause: in create_pinctrl(), pinctrl_maps_mutex is held when add_setting() can return -EPROBE_DEFER, and the code then calls pinctrl_free(), which attempts to re-acquire pinctrl_maps_mutex, risking a deadlock. The patch fixes ...

5.5CVSS6.6AI score0.00189EPSS
Exploits0References10Affected Software1
Vulnrichment
Vulnrichment
added 2024/07/12 12:20 p.m.19 views

CVE-2024-39499 vmci: prevent speculation leaks by sanitizing event in event_deliver()

In the Linux kernel, the following vulnerability has been resolved: vmci: prevent speculation leaks by sanitizing event in eventdeliver Coverity spotted that eventmsg is controlled by user-space, eventmsg-eventdata.event is passed to eventdeliver and used as an index without sanitization. This...

6.5AI score0.00298EPSS
Exploits0References8
NVD
NVD
added 2024/06/21 11:15 a.m.28 views

CVE-2024-33619

In the Linux kernel, the following vulnerability has been resolved: efi: libstub: only free priv.runtimemap when allocated priv.runtimemap is only allocated when efinovamap is not set. Otherwise, it is an uninitialized value. In the error path, it is freed unconditionally. Avoid passing an...

5.5CVSS0.00239EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/06/21 10:18 a.m.29 views

CVE-2024-33619 efi: libstub: only free priv.runtime_map when allocated

In the Linux kernel, the following vulnerability has been resolved: efi: libstub: only free priv.runtimemap when allocated priv.runtimemap is only allocated when efinovamap is not set. Otherwise, it is an uninitialized value. In the error path, it is freed unconditionally. Avoid passing an...

0.00239EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/06/21 10:18 a.m.16 views

CVE-2024-33619 efi: libstub: only free priv.runtime_map when allocated

In the Linux kernel, the following vulnerability has been resolved: efi: libstub: only free priv.runtimemap when allocated priv.runtimemap is only allocated when efinovamap is not set. Otherwise, it is an uninitialized value. In the error path, it is freed unconditionally. Avoid passing an...

6.8AI score0.00239EPSS
Exploits0References4
OSV
OSV
added 2024/06/21 10:18 a.m.19 views

CVE-2024-33619 efi: libstub: only free priv.runtime_map when allocated

In the Linux kernel, the following vulnerability has been resolved: efi: libstub: only free priv.runtimemap when allocated priv.runtimemap is only allocated when efinovamap is not set. Otherwise, it is an uninitialized value. In the error path, it is freed unconditionally. Avoid passing an...

5.5CVSS5.9AI score0.00239EPSS
Exploits0References7
Rows per page
Query Builder