Lucene search
K

1028 matches found

SUSE CVE
SUSE CVE
added 2024/12/28 3:49 a.m.2 views

SUSE CVE-2024-56549

In the Linux kernel, the following vulnerability has been resolved: cachefiles: Fix NULL pointer dereference in object-file At present, the object-file has the NULL pointer dereference problem in ondemand-mode. The root cause is that the allocated fd and object-file lifetime are inconsistent, and...

4.7CVSS7.7AI score0.00216EPSS
Exploits0References16
NVD
NVD
added 2024/12/27 3:15 p.m.14 views

CVE-2024-56645

In the Linux kernel, the following vulnerability has been resolved: can: j1939: j1939sessionnew: fix skb reference counting Since j1939sessionskbqueue does an extra skbget for each new skb, do the same for the initial one in j1939sessionnew to avoid refcount underflow. mkl: clean up commit messag...

5.5CVSS0.00224EPSS
Exploits0References9
OSV
OSV
added 2024/12/27 3:15 p.m.1 views

DEBIAN-CVE-2024-56645

In the Linux kernel, the following vulnerability has been resolved: can: j1939: j1939sessionnew: fix skb reference counting Since j1939sessionskbqueue does an extra skbget for each new skb, do the same for the initial one in j1939sessionnew to avoid refcount underflow. mkl: clean up commit messag...

5.5CVSS5.6AI score0.00224EPSS
Exploits0References1
OSV
OSV
added 2024/12/27 3:15 p.m.2 views

UBUNTU-CVE-2024-56645

In the Linux kernel, the following vulnerability has been resolved: can: j1939: j1939sessionnew: fix skb reference counting Since j1939sessionskbqueue does an extra skbget for each new skb, do the same for the initial one in j1939sessionnew to avoid refcount underflow. mkl: clean up commit messag...

5.5CVSS6.2AI score0.00224EPSS
Exploits0References46
CVE
CVE
added 2024/12/27 3:2 p.m.1481 views

CVE-2024-56645

CVE-2024-56645 affects the Linux kernel CAN j1939 implementation. The fix in j1939_session_new() adds an extra skb_get() for the initial skb to match j1939_session_skb_queue() and prevent skb refcount underflow. Connected advisories (Astra Linux, AlmaLinux errata, etc.) reiterate the same, confir...

5.5CVSS6.5AI score0.00224EPSS
Exploits0References9Affected Software1
Cvelist
Cvelist
added 2024/12/27 3:2 p.m.17 views

CVE-2024-56645 can: j1939: j1939_session_new(): fix skb reference counting

In the Linux kernel, the following vulnerability has been resolved: can: j1939: j1939sessionnew: fix skb reference counting Since j1939sessionskbqueue does an extra skbget for each new skb, do the same for the initial one in j1939sessionnew to avoid refcount underflow. mkl: clean up commit messag...

0.00224EPSS
Exploits0References7
OSV
OSV
added 2024/12/27 3:2 p.m.8 views

CVE-2024-56645 can: j1939: j1939_session_new(): fix skb reference counting

In the Linux kernel, the following vulnerability has been resolved: can: j1939: j1939sessionnew: fix skb reference counting Since j1939sessionskbqueue does an extra skbget for each new skb, do the same for the initial one in j1939sessionnew to avoid refcount underflow. mkl: clean up commit messag...

5.5CVSS6.1AI score0.00224EPSS
Exploits0References12
OSV
OSV
added 2024/12/27 2:15 p.m.1 views

DEBIAN-CVE-2024-56549

In the Linux kernel, the following vulnerability has been resolved: cachefiles: Fix NULL pointer dereference in object-file At present, the object-file has the NULL pointer dereference problem in ondemand-mode. The root cause is that the allocated fd and object-file lifetime are inconsistent, and...

5.5CVSS5.7AI score0.00216EPSS
Exploits0References1
OSV
OSV
added 2024/12/27 2:15 p.m.5 views

AZL-55195 CVE-2024-56549 affecting package kernel for versions less than 6.6.78.1-1

In the Linux kernel, the following vulnerability has been resolved: cachefiles: Fix NULL pointer dereference in object-file At present, the object-file has the NULL pointer dereference problem in ondemand-mode. The root cause is that the allocated fd and object-file lifetime are inconsistent, and...

5.5CVSS6.7AI score0.00216EPSS
Exploits0References1
OSV
OSV
added 2024/12/27 2:15 p.m.1 views

DEBIAN-CVE-2024-53177

In the Linux kernel, the following vulnerability has been resolved: smb: prevent use-after-free due to opencacheddir error paths If opencacheddir encounters an error parsing the lease from the server, the error handling may race with receiving a lease break, resulting in opencacheddir freeing the...

7.8CVSS5.8AI score0.00229EPSS
Exploits0References1
OSV
OSV
added 2024/12/27 2:15 p.m.2 views

UBUNTU-CVE-2024-53177

In the Linux kernel, the following vulnerability has been resolved: smb: prevent use-after-free due to opencacheddir error paths If opencacheddir encounters an error parsing the lease from the server, the error handling may race with receiving a lease break, resulting in opencacheddir freeing the...

7.8CVSS6.4AI score0.00229EPSS
Exploits0References19
CVE
CVE
added 2024/12/27 1:49 p.m.139 views

CVE-2024-53177

CVE-2024-53177 relates to the Linux kernel SMB/CIFS implementation. The issue is a use-after-free in smb2_cached_lease_break/open_cached_dir race: when open_cached_dir() errors parsing a lease, a race with a lease-break can free a cfid while pending work remains. The fix drops references instead ...

7.8CVSS7AI score0.00229EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2024/12/04 3:15 p.m.13 views

AZL-54135 CVE-2024-53138 affecting package kernel for versions less than 6.6.64.2-1

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: kTLS, Fix incorrect page refcounting The kTLS tx handling code is using a mix of getpage and pagerefinc APIs to increment the page reference. But on the release path mlx5ektlstxhandleresyncdumpcomp, only putpage is use...

5.5CVSS6.8AI score0.00217EPSS
Exploits0References1
OSV
OSV
added 2024/12/04 3:15 p.m.7 views

UBUNTU-CVE-2024-53138

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: kTLS, Fix incorrect page refcounting The kTLS tx handling code is using a mix of getpage and pagerefinc APIs to increment the page reference. But on the release path mlx5ektlstxhandleresyncdumpcomp, only putpage is use...

5.5CVSS6.2AI score0.00217EPSS
Exploits0References41
RedHat Linux
RedHat Linux
added 2024/12/04 12:56 a.m.2 views

kernel: drm/amdgpu: change vm->task_info handling

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: change vm-taskinfo handling This patch changes the handling and lifecycle of vm-taskinfo object. The major changes are: - vm-taskinfo is a dynamically allocated ptr now, and its uasge is reference counted. - introduci...

5.5CVSS6.8AI score0.0018EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2024/11/22 3:48 a.m.1 views

SUSE CVE-2024-53095

In the Linux kernel, the following vulnerability has been resolved: smb: client: Fix use-after-free of network namespace. Recently, we got a customer report that CIFS triggers oops while reconnecting to a server. 0 The workload runs on Kubernetes, and some pods mount CIFS servers in non-root...

5.5CVSS7.6AI score0.00223EPSS
Exploits0References33
OSV
OSV
added 2024/11/21 7:15 p.m.1 views

DEBIAN-CVE-2024-53095

In the Linux kernel, the following vulnerability has been resolved: smb: client: Fix use-after-free of network namespace. Recently, we got a customer report that CIFS triggers oops while reconnecting to a server. 0 The workload runs on Kubernetes, and some pods mount CIFS servers in non-root...

7.8CVSS5.8AI score0.00223EPSS
Exploits0References1
OSV
OSV
added 2024/11/21 7:15 p.m.4 views

UBUNTU-CVE-2024-53095

In the Linux kernel, the following vulnerability has been resolved: smb: client: Fix use-after-free of network namespace. Recently, we got a customer report that CIFS triggers oops while reconnecting to a server. 0 The workload runs on Kubernetes, and some pods mount CIFS servers in non-root...

7.8CVSS6.2AI score0.00223EPSS
Exploits0References15
OSV
OSV
added 2024/11/21 6:17 p.m.25 views

CVE-2024-53095 smb: client: Fix use-after-free of network namespace.

In the Linux kernel, the following vulnerability has been resolved: smb: client: Fix use-after-free of network namespace. Recently, we got a customer report that CIFS triggers oops while reconnecting to a server. 0 The workload runs on Kubernetes, and some pods mount CIFS servers in non-root...

7.8CVSS6.1AI score0.00223EPSS
Exploits0References6
CNVD
CNVD
added 2024/11/13 12:0 a.m.6 views

Unspecified vulnerability in Linux kernel (CNVD-2024-46400)

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from improper handling of reference counting in the macprobe function, leading to reference disclosure. No detail...

5.5CVSS6.5AI score0.00215EPSS
Exploits0References1
Rows per page
Query Builder