|
250861
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
spi: hisi-kunpeng: Add verification for the max_frequency provided by the firmware
If the value of max_speed_hz is 0, it may caus…
|
CWE-369
Divide By Zero
|
CVE-2024-47664
|
2024-10-24 01:47 |
2024-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250862
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
i3c: mipi-i3c-hci: Error out instead on BUG_ON() in IBI DMA setup
Definitely condition dma_get_cache_alignment * defined value > …
|
NVD-CWE-noinfo
|
CVE-2024-47665
|
2024-10-24 01:44 |
2024-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250863
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
efistub/tpm: Use ACPI reclaim memory for event log to avoid corruption
The TPM event log table is a Linux specific construct, whe…
|
NVD-CWE-noinfo
|
CVE-2024-49858
|
2024-10-24 01:35 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250864
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
scsi: pm80xx: Set phy->enable_completion only when we wait for it
pm8001_phy_control() populates the enable_completion pointer wi…
|
CWE-416
Use After Free
|
CVE-2024-47666
|
2024-10-24 01:34 |
2024-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250865
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
x86/sgx: Fix deadlock in SGX NUMA node search
When the current node doesn't have an EPC section configured by firmware
and all ot…
|
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
|
CVE-2024-49856
|
2024-10-24 01:33 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250866
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
crypto: iaa - Fix potential use after free bug
The free_device_compression_mode(iaa_device, device_mode) function frees
"device_m…
|
CWE-416
Use After Free
|
CVE-2024-47732
|
2024-10-24 01:31 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250867
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
PCI: keystone: Add workaround for Errata #i2037 (AM65x SR 1.0)
Errata #i2037 in AM65x/DRA80xM Processors Silicon Revision 1.0
(SP…
|
NVD-CWE-noinfo
|
CVE-2024-47667
|
2024-10-24 01:31 |
2024-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250868
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
block, bfq: fix uaf for accessing waker_bfqq after splitting
After commit 42c306ed7233 ("block, bfq: don't break merge chain in
b…
|
CWE-416
Use After Free
|
CVE-2024-49854
|
2024-10-24 01:29 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250869
|
8.8 |
HIGH
Network
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
smack: tcp: ipv4, fix incorrect labeling
Currently, Smack mirrors the label of incoming tcp/ipv4 connections:
when a label 'foo' …
|
NVD-CWE-noinfo
|
CVE-2024-47659
|
2024-10-24 01:29 |
2024-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
250870
|
8.8 |
HIGH
Adjacent
|
wavlink
|
wn530h4_firmware
wn530hg4_firmware
wn572hg3_firmware
|
A vulnerability was found in WAVLINK WN530H4, WN530HG4 and WN572HG3 up to 20221028. It has been classified as critical. Affected is the function Goto_chidx of the file login.cgi of the component Fron…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-10194
|
2024-10-24 01:16 |
2024-10-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
