22107 matches found
nilfs2: fix missing cleanup on rollforward recovery error
...
HID: cougar: fix slab-out-of-bounds Read in cougar_report_fixup
...
nvmet-tcp: fix kernel crash if commands allocation fails
...
s390/sclp: Prevent release of buffer in I/O
...
pci/hotplug/pnv_php: Fix hotplug driver crash on Powernv
...
HID: amd_sfh: free driver_data after destroying hid device
...
uio_hv_generic: Fix kernel NULL pointer dereference in hv_uio_rescind
...
KVM: arm64: Make ICC_*SGI*_EL1 undef in the absence of a vGICv3
...
usb: dwc3: core: Prevent USB core invalid event buffer address access
...
xhci: Fix Panther point NULL pointer deref at full-speed re-enumeration
...
mptcp: pm: avoid possible UaF when selecting endp
...
net: dsa: bcm_sf2: Fix a possible memory leak in bcm_sf2_mdio_register()
...
soc: qcom: cmd-db: Map shared memory as WC not WB
...
gtp: fix a potential NULL pointer dereference
...
scsi: aacraid: Fix double-free on probe failure
...
mmc: mmc_test: Fix NULL dereference on allocation failure
...
netem: fix return value if duplicate enqueue fails
...
bonding: fix xfrm real_dev null pointer dereference
...
ipv6: prevent UAF in ip6_send_skb()
...
netfilter: flowtable: validate vlan header
...
drm/amd/display: Skip wbscl_set_scaler_filter if filter is null
...
fix bitmap corruption on close_range() with CLOSE_RANGE_UNSHARE
...
memcg_write_event_control(): fix a user-triggerable oops
...
atm: idt77252: prevent use after free in dequeue_rx()
...
binder: fix UAF caused by offsets overwrite
...
drm/amd/pm: fix the Out-of-bounds read warning
...
drm/amdgpu: fix ucode out-of-bounds read warning
...
pinctrl: single: fix potential NULL dereference in pcs_get_function()
...
s390/dasd: fix error recovery leading to data corruption on ESE devices
...
netfilter: flowtable: initialise extack before use
...
mptcp: pm: only decrement add_addr_accepted for MPJ req
...
express vulnerable to XSS via response.redirect()
...
drm/amd/display: Assign linear_pitch_alignment even for VM
...
drm/amdgpu: Fix out-of-bounds read of df_v1_7_channel_number
...
thunderbolt: Mark XDomain as unplugged when router is removed
...
usb: dwc3: st: fix probed platform device ref count on probe error path
...
gtp: pull network headers in gtp_dev_xmit()
...
drm/amdgpu: Fix out-of-bounds write warning
...
apparmor: fix possible NULL pointer dereference
...
usb: typec: ucsi: Fix null pointer dereference in trace
...
ethtool: check device is present when getting link settings
...
nfc: pn533: Add poll mod list filling check
...
bonding: fix null pointer deref in bond_ipsec_offload_ok
...
net: hns3: fix a deadlock problem when config TC during resetting
...
Chromium: CVE-2024-9603 Type Confusion in V8
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Chromium: CVE-2024-9602 Type Confusion in V8
This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...
Unbounded name compression could lead to Denial of Service
...
NVIDIA Container Toolkit 1.16.1 or earlier contains a vulnerability in the default mode of operation allowing a specially crafted container image to create empty files on the host file system. This does not impact use cases where CDI is used. A successful exploit of this vulnerability may lead to data tampering.
...
Unbound: null pointer dereference in unbound
...
The DNS protocol in RFC 1035 and updates allows remote attackers to cause a denial of service (resource consumption) by arranging for DNS queries to be accumulated for seconds such that responses are later sent in a pulsing burst (which can be considered traffic amplification in some cases) aka the "DNSBomb" issue.
...