Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-53198)

xen: issue of resource not being properly released in xenbusdevprobe. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504533; scriptversion"1.2";...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-56781)

powerpc/prominit: missing powermac size-cells. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504722; scriptversion"1.2";...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-49969)

drm/amd/display: index out of bounds in DCN30 color transformation. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504753; scriptversion"1.3";...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-43880)

mlxsw: spectrumaclerp: object nesting warning. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504732; scriptversion"1.3";...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-53097)

mm: krealloc: MTE false alarm in dokrealloc. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504721; scriptversion"1.3";...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-56728)

octeontx2-pf: handle otx2mboxgetrsp errors in otx2ethtool.c. Add error pointer check after calling otx2mboxgetrsp. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-46828)

sched: schcake: fix bulk flow accounting logic for host fairness In schcake, we keep track of the count of active bulk flows per host, when running in dst/src host fairness mode, which is used as the round-robin weight when iterating through flows. This plugin only works with Tenable.ot. Please...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-47668)

lib/generic-radix-tree.c: race in genradixptralloc. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504685; scriptversion"1.3";...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-47659)

smack: tcp: vulnerability in Smack's TCP/IPv4 labeling allows packets to be incorrectly labeled, enabling unauthorized data writing from one label to another. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-46731)

drm/amd/pm: vulnerability caused by an out-of-bounds read warning where the index i - 1U can exceed the bounds of the mcdata array when i is zero. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable,...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-49963)

mailbox: bcm2835: timeout during suspend mode. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504800; scriptversion"1.3";...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-42077)

ocfs2: DIO failure due to insufficient transaction credits. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504618; scriptversion"1.3";...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-42084)

ftruncate: passing a negative length accidentally succeeds in truncating to file size between 2GiB and 4GiB. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if descripti...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-46675)

usb: dwc3: core: A vulnerability where the USB core could access an invalid event buffer address during runtime suspend, potentially causing SMMU faults and other memory issues in Exynos platforms. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot fo...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-46738)

VMCI: use-after-free when removing resource in vmciresourceremove. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504738; scriptversion"1.3";...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-49863)

vhost/scsi: null-ptr-dereference in vhostscsigetreq. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504486; scriptversion"1.2";...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-46829)

rtmutex: Drop rtmutex::waitlock before scheduling. rtmutexhandledeadlock is called with rtmutex::waitlock held. In the good case it returns with the lock held and in the deadlock case it emits a warning and goes into an endless scheduling loop with the lock held, which triggers the 'scheduling in...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-41015)

ocfs2: add bounds checking to ocfs2checkdirentry. This adds sanity checks for ocfs2direntry to make sure all members of ocfs2direntry don't stray beyond valid memory region. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-56568)

iommu/arm-smmu: Defer probe of clients after smmu device bound Null pointer dereference occurs due to a race between smmu driver probe and client driver probe, when ofdmaconfigure for client is called after the iommudeviceregister for smmu driver probe has executed but before the driverbound for...

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-40976)

drm/lima: There is a race condition in which a rendering job might take just long enough to trigger the drm sched job timeout handler but also still complete before the hard reset is done by the timeout handler. This runs into race conditions not expected by the timeout handler. In some very...