Lucene search

K
LinuxLinux Kernel

10741 matches found

CVE
CVE
added 2024/08/17 9:15 a.m.63 views

CVE-2024-42299

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Update log->page_{mask,bits} if log->page_size changed If an NTFS file system is mounted to another system with differentPAGE_SIZE from the original system, log->page_size will change inlog_replay(), but log->...

6.5AI score0.00103EPSS
CVE
CVE
added 2024/08/17 10:15 a.m.63 views

CVE-2024-43824

In the Linux kernel, the following vulnerability has been resolved: PCI: endpoint: pci-epf-test: Make use of cached 'epc_features' in pci_epf_test_core_init() Instead of getting the epc_features from pci_epc_get_features() API, usethe cached pci_epf_test::epc_features value to avoid the NULL check....

5.5CVSS6.3AI score0.00072EPSS
CVE
CVE
added 2024/08/17 10:15 a.m.63 views

CVE-2024-43825

In the Linux kernel, the following vulnerability has been resolved: iio: Fix the sorting functionality in iio_gts_build_avail_time_table The sorting in iio_gts_build_avail_time_table is not working as intended.It could result in an out-of-bounds access when the time is zero. Here are more details: ...

7.8CVSS6.4AI score0.00041EPSS
CVE
CVE
added 2024/08/17 10:15 a.m.63 views

CVE-2024-43829

In the Linux kernel, the following vulnerability has been resolved: drm/qxl: Add check for drm_cvt_mode Add check for the return value of drm_cvt_mode() and return the error ifit fails in order to avoid NULL pointer dereference.

5.5CVSS6.5AI score0.00076EPSS
CVE
CVE
added 2024/08/17 10:15 a.m.63 views

CVE-2024-43831

In the Linux kernel, the following vulnerability has been resolved: media: mediatek: vcodec: Handle invalid decoder vsi Handle an invalid decoder vsi in vpu_dec_init to ensure the decoder vsiis valid for future use.

6.5AI score0.0012EPSS
CVE
CVE
added 2024/08/17 10:15 a.m.63 views

CVE-2024-43837

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix null pointer dereference in resolve_prog_type() for BPF_PROG_TYPE_EXT When loading a EXT program without specifying attr->attach_prog_fd,the prog->aux->dst_prog will be null. At this time, callingresolve_prog_type...

5.5CVSS6.5AI score0.00058EPSS
CVE
CVE
added 2024/08/20 10:15 p.m.63 views

CVE-2024-43861

In the Linux kernel, the following vulnerability has been resolved: net: usb: qmi_wwan: fix memory leak for not ip packets Free the unused skb when not ip packets arrive.

5.5CVSS6.6AI score0.0007EPSS
CVE
CVE
added 2024/08/26 11:15 a.m.63 views

CVE-2024-43886

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add null check in resource_log_pipe_topology_update [WHY]When switching from "Extend" to "Second Display Only" we sometimescall resource_get_otg_master_for_stream on a stream for the eDP,which is disconnected. This...

5.5CVSS6.9AI score0.00047EPSS
CVE
CVE
added 2024/08/26 11:15 a.m.63 views

CVE-2024-43894

In the Linux kernel, the following vulnerability has been resolved: drm/client: fix null pointer dereference in drm_client_modeset_probe In drm_client_modeset_probe(), the return value of drm_mode_duplicate() isassigned to modeset->mode, which will lead to a possible NULL pointerdereference on f...

5.5CVSS6.9AI score0.0007EPSS
CVE
CVE
added 2024/09/18 7:15 a.m.63 views

CVE-2024-46719

In the Linux kernel, the following vulnerability has been resolved: usb: typec: ucsi: Fix null pointer dereference in trace ucsi_register_altmode checks IS_ERR for the alt pointer and treatsNULL as valid. When CONFIG_TYPEC_DP_ALTMODE is not enabled,ucsi_register_displayport returns NULL which cause...

5.5CVSS6AI score0.00067EPSS
CVE
CVE
added 2024/09/27 1:15 p.m.63 views

CVE-2024-46813

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check link_index before accessing dc->links[] [WHY & HOW]dc->links[] has max size of MAX_LINKS and NULL is return when trying toaccess with out-of-bound index. This fixes 3 OVERRUN and 1 RESOURCE_LEAK issues ...

7.8CVSS7.4AI score0.00064EPSS
CVE
CVE
added 2024/10/09 3:15 p.m.63 views

CVE-2024-47665

In the Linux kernel, the following vulnerability has been resolved: i3c: mipi-i3c-hci: Error out instead on BUG_ON() in IBI DMA setup Definitely condition dma_get_cache_alignment * defined value > 256during driver initialization is not reason to BUG_ON(). Turn that tograceful error out with -EIN...

5.5CVSS5.2AI score0.00045EPSS
CVE
CVE
added 2024/10/21 12:15 p.m.63 views

CVE-2024-47677

In the Linux kernel, the following vulnerability has been resolved: exfat: resolve memory leak from exfat_create_upcase_table() If exfat_load_upcase_table reaches end and returns -EINVAL,allocated memory doesn't get freed and whileexfat_load_default_upcase_table allocates more memory, leading to am...

5.5CVSS5.3AI score0.00028EPSS
CVE
CVE
added 2024/10/21 12:15 p.m.63 views

CVE-2024-47681

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7996: fix NULL pointer dereference in mt7996_mcu_sta_bfer_he Fix the NULL pointer dereference in mt7996_mcu_sta_bfer_heroutine adding an sta interface to the mt7996 driver. Found by code review.

5.5CVSS5.3AI score0.00046EPSS
CVE
CVE
added 2024/10/21 1:15 p.m.63 views

CVE-2024-47741

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix race setting file private on concurrent lseek using same fd When doing concurrent lseek(2) system calls against the same filedescriptor, using multiple threads belonging to the same process, we havea short time window wh...

7CVSS7.6AI score0.00037EPSS
CVE
CVE
added 2024/10/21 1:15 p.m.63 views

CVE-2024-49852

In the Linux kernel, the following vulnerability has been resolved: scsi: elx: libefc: Fix potential use after free in efc_nport_vport_del() The kref_put() function will call nport->release if the refcount drops tozero. The nport->release release function is _efc_nport_free() which frees"npor...

7.8CVSS8.3AI score0.00045EPSS
CVE
CVE
added 2024/10/21 6:15 p.m.63 views

CVE-2024-49865

In the Linux kernel, the following vulnerability has been resolved: drm/xe/vm: move xa_alloc to prevent UAF Evil user can guess the next id of the vm before the ioctl completes andthen call vm destroy ioctl to trigger UAF since create ioctl is stillreferencing the same vm. Move the xa_alloc all the...

7.8CVSS7.4AI score0.00047EPSS
CVE
CVE
added 2024/10/21 6:15 p.m.63 views

CVE-2024-49906

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check null pointer before try to access it [why & how]Change the order of the pipe_ctx->plane_state check to ensure thatplane_state is not null before accessing it.

5.5CVSS6.5AI score0.0005EPSS
CVE
CVE
added 2024/10/21 6:15 p.m.63 views

CVE-2024-49917

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add NULL check for clk_mgr and clk_mgr->funcs in dcn30_init_hw This commit addresses a potential null pointer dereference issue in thedcn30_init_hw function. The issue could occur when dc->clk_mgr ordc->cl...

5.5CVSS6.5AI score0.00044EPSS
CVE
CVE
added 2024/10/21 6:15 p.m.63 views

CVE-2024-49922

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check null pointers before using them [WHAT & HOW]These pointers are null checked previously in the same function,indicating they might be null as reported by Coverity. As a result,they need to be checked when used...

5.5CVSS5.1AI score0.00037EPSS
CVE
CVE
added 2024/10/21 6:15 p.m.63 views

CVE-2024-49931

In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: fix array out-of-bound access in SoC stats Currently, the ath12k_soc_dp_stats::hal_reo_error array is defined with amaximum size of DP_REO_DST_RING_MAX. However, the ath12k_dp_rx_process()function access ath12k_soc_dp...

7.8CVSS7.3AI score0.00047EPSS
CVE
CVE
added 2024/10/21 6:15 p.m.63 views

CVE-2024-49972

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Deallocate DML memory if allocation fails [Why]When DC state create DML memory allocation fails, memory is notdeallocated subsequently, resulting in uninitialized structurethat is not NULL. [How]Deallocate memory i...

5.5CVSS5.2AI score0.00044EPSS
CVE
CVE
added 2024/10/21 8:15 p.m.63 views

CVE-2024-50042

In the Linux kernel, the following vulnerability has been resolved: ice: Fix increasing MSI-X on VF Increasing MSI-X value on a VF leads to invalid memory operations. Thisis caused by not reallocating some arrays. Reproducer:modprobe iceecho 0 > /sys/bus/pci/devices/$PF_PCI/sriov_drivers_autopro...

7.1CVSS6.6AI score0.00035EPSS
CVE
CVE
added 2024/11/07 10:15 a.m.63 views

CVE-2024-50158

In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxt_re: Fix out of bound check Driver exports pacing stats only on GenP5 and P7 adapters. But whileparsing the pacing stats, driver has a check for "rdev->dbr_pacing". Thiscaused a trace when KASAN is enabled. BUG: KASAN: ...

7.8CVSS7.3AI score0.0003EPSS
CVE
CVE
added 2024/11/08 6:15 a.m.63 views

CVE-2024-50210

In the Linux kernel, the following vulnerability has been resolved: posix-clock: posix-clock: Fix unbalanced locking in pc_clock_settime() If get_clock_desc() succeeds, it calls fget() for the clockid's fd,and get the clk->rwsem read lock, so the error path should releasethe lock to make the loc...

5.5CVSS5.2AI score0.00031EPSS
CVE
CVE
added 2024/11/09 11:15 a.m.63 views

CVE-2024-50243

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Fix general protection fault in run_is_mapped_full Fixed deleating of a non-resident attribute in ntfs_create_inode()rollback.

5.5CVSS5.2AI score0.00051EPSS
CVE
CVE
added 2024/11/19 2:16 a.m.63 views

CVE-2024-50285

In the Linux kernel, the following vulnerability has been resolved: ksmbd: check outstanding simultaneous SMB operations If Client send simultaneous SMB operations to ksmbd, It exhausts too muchmemory through the "ksmbd_work_cache”. It will cause OOM issue.ksmbd has a credit mechanism but it can't ...

5.5CVSS6.5AI score0.00024EPSS
CVE
CVE
added 2024/12/27 2:15 p.m.63 views

CVE-2024-53185

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix NULL ptr deref in crypto_aead_setkey() Neither SMB3.0 or SMB3.02 supports encryption negotiate context, sowhen SMB2_GLOBAL_CAP_ENCRYPTION flag is set in the negotiate response,the client uses AES-128-CCM as the def...

7.8CVSS6.3AI score0.0002EPSS
CVE
CVE
added 2024/12/27 2:15 p.m.63 views

CVE-2024-53188

In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: fix crash when unbinding If there is an error during some initialization related to firmware,the function ath12k_dp_cc_cleanup is called to release resources.However this is released again when the device is unbinded ...

5.5CVSS6.8AI score0.00029EPSS
CVE
CVE
added 2024/12/27 2:15 p.m.63 views

CVE-2024-53189

In the Linux kernel, the following vulnerability has been resolved: wifi: nl80211: fix bounds checker error in nl80211_parse_sched_scan The channels array in the cfg80211_scan_request has a __counted_byattribute attached to it, which points to the n_channels variable. Thisattribute is used in bound...

7AI score0.00048EPSS
CVE
CVE
added 2024/12/27 2:15 p.m.63 views

CVE-2024-53202

In the Linux kernel, the following vulnerability has been resolved: firmware_loader: Fix possible resource leak in fw_log_firmware_info() The alg instance should be released under the exception path, otherwisethere may be resource leak here. To mitigate this, free the alg instance with crypto_free_...

5.5CVSS6.5AI score0.00029EPSS
CVE
CVE
added 2024/12/27 3:15 p.m.63 views

CVE-2024-56555

In the Linux kernel, the following vulnerability has been resolved: binder: fix OOB in binder_add_freeze_work() In binder_add_freeze_work() we iterate over the proc->nodes with theproc->inner_lock held. However, this lock is temporarily dropped toacquire the node->lock first (lock nesting ...

7.1CVSS6.4AI score0.0003EPSS
CVE
CVE
added 2024/12/27 3:15 p.m.63 views

CVE-2024-56556

In the Linux kernel, the following vulnerability has been resolved: binder: fix node UAF in binder_add_freeze_work() In binder_add_freeze_work() we iterate over the proc->nodes with theproc->inner_lock held. However, this lock is temporarily dropped inorder to acquire the node->lock first ...

7.8CVSS6.5AI score0.0002EPSS
CVE
CVE
added 2024/12/27 3:15 p.m.63 views

CVE-2024-56588

In the Linux kernel, the following vulnerability has been resolved: scsi: hisi_sas: Create all dump files during debugfs initialization For the current debugfs of hisi_sas, after user triggers dump, thedriver allocate memory space to save the register information and createdebugfs files to display ...

5.5CVSS6.1AI score0.00032EPSS
CVE
CVE
added 2024/12/27 3:15 p.m.63 views

CVE-2024-56622

In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: core: sysfs: Prevent div by zero Prevent a division by 0 when monitoring is not enabled.

5.5CVSS6.6AI score0.00037EPSS
CVE
CVE
added 2024/12/28 10:15 a.m.63 views

CVE-2024-56695

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Use dynamic allocation for CU occupancy array in 'kfd_get_cu_occupancy()' The kfd_get_cu_occupancy function previously declared a largecu_occupancy array as a local variable, which could lead to stackoverflows due to ex...

7.8CVSS6.3AI score0.00034EPSS
CVE
CVE
added 2025/01/08 6:15 p.m.63 views

CVE-2024-56784

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Adding array index check to prevent memory corruption [Why & How]Array indices out of bound caused memory corruption. Adding checks toensure that array index stays in bound.

7.8CVSS6.5AI score0.00041EPSS
CVE
CVE
added 2025/01/15 1:15 p.m.63 views

CVE-2024-57844

In the Linux kernel, the following vulnerability has been resolved: drm/xe: Fix fault on fd close after unbind If userspace holds an fd open, unbinds the device and then closes it,the driver shouldn't try to access the hardware. Protect it by usingdrm_dev_enter()/drm_dev_exit(). This fixes the foll...

6.3AI score0.00035EPSS
CVE
CVE
added 2025/03/06 4:15 p.m.63 views

CVE-2024-58053

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix handling of received connection abort Fix the handling of a connection abort that we've received. Though theabort is at the connection level, it needs propagating to the calls on thatconnection. Whilst the propagation bi...

7.2AI score0.00033EPSS
CVE
CVE
added 2025/01/19 11:15 a.m.63 views

CVE-2025-21641

In the Linux kernel, the following vulnerability has been resolved: mptcp: sysctl: blackhole timeout: avoid using current->nsproxy As mentioned in the previous commit, using the 'net' structure via'current' is not recommended for different reasons: Inconsistency: getting info from the reader's/w...

5.5CVSS7AI score0.00026EPSS
CVE
CVE
added 2025/03/27 3:15 p.m.63 views

CVE-2025-21872

In the Linux kernel, the following vulnerability has been resolved: efi: Don't map the entire mokvar table to determine its size Currently, when validating the mokvar table, we (re)map the entire tableon each iteration of the loop, adding space as we discover new entries.If the table grows over a c...

7.2AI score0.0005EPSS
CVE
CVE
added 2025/04/01 4:15 p.m.63 views

CVE-2025-21978

In the Linux kernel, the following vulnerability has been resolved: drm/hyperv: Fix address space leak when Hyper-V DRM device is removed When a Hyper-V DRM device is probed, the driver allocates MMIO space forthe vram, and maps it cacheable. If the device removed, or in the errorpath for device pr...

7.1AI score0.0005EPSS
CVE
CVE
added 2025/04/03 8:15 a.m.63 views

CVE-2025-21998

In the Linux kernel, the following vulnerability has been resolved: firmware: qcom: uefisecapp: fix efivars registration race Since the conversion to using the TZ allocator, the efivars service isregistered before the memory pool has been allocated, something whichcan lead to a NULL-pointer derefer...

4.7CVSS7.2AI score0.00017EPSS
CVE
CVE
added 2025/04/16 3:16 p.m.63 views

CVE-2025-22072

In the Linux kernel, the following vulnerability has been resolved: spufs: fix gang directory lifetimes prior to "[POWERPC] spufs: Fix gang destroy leaks" we used to havea problem with gang lifetimes - creation of a gang returns openedgang directory, which normally gets removed when that gets close...

6.4AI score0.00053EPSS
CVE
CVE
added 2025/04/16 3:16 p.m.63 views

CVE-2025-22083

In the Linux kernel, the following vulnerability has been resolved: vhost-scsi: Fix handling of multiple calls to vhost_scsi_set_endpoint If vhost_scsi_set_endpoint is called multiple times without avhost_scsi_clear_endpoint between them, we can hit multiple bugsfound by Haoran Zhang: Use-after-fre...

6.4AI score0.00027EPSS
CVE
CVE
added 2025/04/16 3:16 p.m.63 views

CVE-2025-22093

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: avoid NPD when ASIC does not support DMUB ctx->dmub_srv will de NULL if the ASIC does not support DMUB, which istested in dm_dmub_sw_init. However, it will be dereferenced in dmub_hw_lock_mgr_cmd ifshould_use_dm...

6.3AI score0.00053EPSS
CVE
CVE
added 2025/04/16 3:16 p.m.63 views

CVE-2025-22120

In the Linux kernel, the following vulnerability has been resolved: ext4: goto right label 'out_mmap_sem' in ext4_setattr() Otherwise, if ext4_inode_attach_jinode() fails, a hung task willhappen because filemap_invalidate_unlock() isn't called to unlockmapping->invalidate_lock. Like this: EXT4-f...

6.5AI score0.00033EPSS
CVE
CVE
added 2025/05/01 1:15 p.m.63 views

CVE-2025-23144

In the Linux kernel, the following vulnerability has been resolved: backlight: led_bl: Hold led_access lock when calling led_sysfs_disable() Lockdep detects the following issue on led-backlight removal:[ 142.315935] ------------[ cut here ]------------[ 142.315954] WARNING: CPU: 2 PID: 292 at drive...

6.9AI score0.00053EPSS
CVE
CVE
added 2025/05/01 1:15 p.m.63 views

CVE-2025-37739

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid out-of-bounds access in f2fs_truncate_inode_blocks() syzbot reports an UBSAN issue as below: ------------[ cut here ]------------UBSAN: array-index-out-of-bounds in fs/f2fs/node.h:381:10index 18446744073709550692...

6.5AI score0.00036EPSS
CVE
CVE
added 2025/04/18 7:15 a.m.63 views

CVE-2025-39688

In the Linux kernel, the following vulnerability has been resolved: nfsd: allow SC_STATUS_FREEABLE when searching via nfs4_lookup_stateid() The pynfs DELEG8 test fails when run against nfsd. It acquires adelegation and then lets the lease time out. It then tries to use thedeleg stateid and expects ...

5.4AI score0.00026EPSS
Total number of security vulnerabilities10741