Lucene search
K

297 matches found

Vulnrichment
Vulnrichment
added 2024/10/21 11:53 a.m.13 views

CVE-2024-47688 driver core: Fix a potential null-ptr-deref in module_add_driver()

In the Linux kernel, the following vulnerability has been resolved: driver core: Fix a potential null-ptr-deref in moduleadddriver Inject fault while probing of-fpga-region, if kasprintf fails in moduleadddriver, the second sysfsremovelink in exit path will cause null-ptr-deref as below because...

6.9AI score0.00234EPSS
Exploits0References4
CVE
CVE
added 2024/10/21 11:53 a.m.113 views

CVE-2024-47688

CVE-2024-47688 (Linux kernel) involves a potential null-pointer dereference in driver core during module_add_driver() probing for of-fpga-region. If kasprintf() fails, the exit path’s second sysfs_remove_link() could dereference a NULL driver_name because kernfs_name_hash() calls strlen() on NULL...

5.5CVSS6.8AI score0.00234EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2024/10/21 11:53 a.m.14 views

CVE-2024-47688 driver core: Fix a potential null-ptr-deref in module_add_driver()

In the Linux kernel, the following vulnerability has been resolved: driver core: Fix a potential null-ptr-deref in moduleadddriver Inject fault while probing of-fpga-region, if kasprintf fails in moduleadddriver, the second sysfsremovelink in exit path will cause null-ptr-deref as below because...

5.5CVSS6.2AI score0.00234EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2024/10/13 12:0 a.m.19 views

CBL Mariner 2.0 Security Update: kernel (CVE-2024-42270)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-42270 advisory. - In the Linux kernel, the following vulnerability has been resolved: netfilter: iptables: Fix null-ptr- deref...

5.5CVSS5.9AI score0.00226EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/10/13 12:0 a.m.17 views

CBL Mariner 2.0 Security Update: kernel (CVE-2024-44935)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-44935 advisory. - In the Linux kernel, the following vulnerability has been resolved: sctp: Fix null-ptr-deref in...

5.5CVSS5.9AI score0.00226EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2024/09/18 9:46 a.m.18 views

CVE-2024-46742

In the Linux kernel, the following vulnerability has been resolved: smb/server: fix potential null-ptr-deref of leasectxinfo in smb2open null-ptr-deref will occur when reqoplevel == SMB2OPLOCKLEVELLEASE and parseleasestate return NULL. Fix this by check if 'leasectxinfo' is NULL. Additionally,...

5.5CVSS6.8AI score0.00238EPSS
Exploits0References4
NVD
NVD
added 2024/09/18 8:15 a.m.17 views

CVE-2024-46763

In the Linux kernel, the following vulnerability has been resolved: fou: Fix null-ptr-deref in GRO. We observed a null-ptr-deref in fougroreceive while shutting down a host. 0 The NULL pointer is sk-skuserdata, and the offset 8 is of protocol in struct fou. When fourelease is called due to netns...

5.5CVSS0.00238EPSS
Exploits0References8
NVD
NVD
added 2024/09/18 8:15 a.m.18 views

CVE-2024-46742

In the Linux kernel, the following vulnerability has been resolved: smb/server: fix potential null-ptr-deref of leasectxinfo in smb2open null-ptr-deref will occur when reqoplevel == SMB2OPLOCKLEVELLEASE and parseleasestate return NULL. Fix this by check if 'leasectxinfo' is NULL. Additionally,...

5.5CVSS0.00238EPSS
Exploits0References6
Cvelist
Cvelist
added 2024/09/18 7:12 a.m.21 views

CVE-2024-46763 fou: Fix null-ptr-deref in GRO.

In the Linux kernel, the following vulnerability has been resolved: fou: Fix null-ptr-deref in GRO. We observed a null-ptr-deref in fougroreceive while shutting down a host. 0 The NULL pointer is sk-skuserdata, and the offset 8 is of protocol in struct fou. When fourelease is called due to netns...

0.00238EPSS
Exploits0References6
OSV
OSV
added 2024/09/18 7:12 a.m.12 views

CVE-2024-46763 fou: Fix null-ptr-deref in GRO.

In the Linux kernel, the following vulnerability has been resolved: fou: Fix null-ptr-deref in GRO. We observed a null-ptr-deref in fougroreceive while shutting down a host. 0 The NULL pointer is sk-skuserdata, and the offset 8 is of protocol in struct fou. When fourelease is called due to netns...

5.5CVSS6.1AI score0.00238EPSS
Exploits0References11
CVE
CVE
added 2024/09/18 7:12 a.m.138 views

CVE-2024-46742

CVE-2024-46742 is a Linux kernel vulnerability affecting the SMB server path where a potential null pointer dereference in smb2_open() could occur when lease_ctx_info is NULL (SMB2_OPLOCK_LEVEL_LEASE). The fix adds a NULL check for lease_ctx_info and also removes redundant parentheses in parse_du...

5.5CVSS5.2AI score0.00238EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2024/09/18 7:12 a.m.28 views

CVE-2024-46742 smb/server: fix potential null-ptr-deref of lease_ctx_info in smb2_open()

In the Linux kernel, the following vulnerability has been resolved: smb/server: fix potential null-ptr-deref of leasectxinfo in smb2open null-ptr-deref will occur when reqoplevel == SMB2OPLOCKLEVELLEASE and parseleasestate return NULL. Fix this by check if 'leasectxinfo' is NULL. Additionally,...

0.00238EPSS
Exploits0References5
OSV
OSV
added 2024/09/18 7:12 a.m.20 views

CVE-2024-46742 smb/server: fix potential null-ptr-deref of lease_ctx_info in smb2_open()

In the Linux kernel, the following vulnerability has been resolved: smb/server: fix potential null-ptr-deref of leasectxinfo in smb2open null-ptr-deref will occur when reqoplevel == SMB2OPLOCKLEVELLEASE and parseleasestate return NULL. Fix this by check if 'leasectxinfo' is NULL. Additionally,...

5.5CVSS6.1AI score0.00238EPSS
Exploits0References9
OSV
OSV
added 2024/09/13 5:29 a.m.18 views

CVE-2024-46688 erofs: fix out-of-bound access when z_erofs_gbuf_growsize() partially fails

In the Linux kernel, the following vulnerability has been resolved: erofs: fix out-of-bound access when zerofsgbufgrowsize partially fails If zerofsgbufgrowsize partially fails on a global buffer due to memory allocation failure or fault injection as reported by syzbot 1, new pages need to be fre...

5.5CVSS6.4AI score0.002EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2024/09/06 10:47 a.m.23 views

CVE-2023-52915

A NULL pointer dereference vulnerability was found in the af9035i2cmasterxfer function of the dvb-usb-v2 driver in the Linux kernel. This issue occurred because the function did not adequately check the msgi.buf and msgi.len fields, allowing a NULL pointer dereference if msgi.buf was NULL and...

5.5CVSS5.3AI score0.00211EPSS
Exploits0References4
NVD
NVD
added 2024/09/06 9:15 a.m.25 views

CVE-2023-52915

In the Linux kernel, the following vulnerability has been resolved: media: dvb-usb-v2: af9035: Fix null-ptr-deref in af9035i2cmasterxfer In af9035i2cmasterxfer, msg is controlled by user. When msgi.buf is null and msgi.len is zero, former checks on msgi.buf would be passed. Malicious data finally...

5.5CVSS0.00211EPSS
Exploits0References8
Cvelist
Cvelist
added 2024/09/06 9:7 a.m.30 views

CVE-2023-52915 media: dvb-usb-v2: af9035: Fix null-ptr-deref in af9035_i2c_master_xfer

In the Linux kernel, the following vulnerability has been resolved: media: dvb-usb-v2: af9035: Fix null-ptr-deref in af9035i2cmasterxfer In af9035i2cmasterxfer, msg is controlled by user. When msgi.buf is null and msgi.len is zero, former checks on msgi.buf would be passed. Malicious data finally...

0.00211EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2024/09/06 9:7 a.m.12 views

CVE-2023-52915

In the Linux kernel, the following vulnerability has been resolved: media: dvb-usb-v2: af9035: Fix null-ptr-deref in af9035i2cmasterxfer In af9035i2cmasterxfer, msg is controlled by user. When msgi.buf is null and msgi.len is zero, former checks on msgi.buf would be passed. Malicious data finally...

5.5CVSS5.4AI score0.00211EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2024/08/27 12:43 p.m.18 views

CVE-2024-44939

In the Linux kernel, the following vulnerability has been resolved: jfs: fix null ptr deref in dtInsertEntry syzbot reported general protection fault, probably for non-canonical address 0xdffffc0000000001: 0000 1 PREEMPT SMP KASAN PTI KASAN: null-ptr-deref in range...

5.5CVSS6.9AI score0.00225EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2024/08/27 12:42 p.m.15 views

CVE-2024-44935

In the Linux kernel, the following vulnerability has been resolved: sctp: Fix null-ptr-deref in reuseportaddsock. syzbot reported a null-ptr-deref while accessing sk2-skreuseportcb in reuseportaddsock. 0 The repro first creates a listener with SOREUSEPORT. Then, it creates another listener on the...

5.5CVSS6.8AI score0.00226EPSS
Exploits0References4
Rows per page
Query Builder