|
306011
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
scsi: elx: libefc: Fix potential use after free in efc_nport_vport_del()
The kref_put() function will call nport->release if the …
|
CWE-416
Use After Free
|
CVE-2024-49852
|
2024-10-24 01:14 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306012
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
crypto: stm32/cryp - call finalize with bh disabled
The finalize operation in interrupt mode produce a produces a spinlock
recurs…
|
NVD-CWE-noinfo
|
CVE-2024-47658
|
2024-10-24 01:14 |
2024-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306013
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/amd/display: Correct the defined value for AMDGPU_DMUB_NOTIFICATION_MAX
[Why & How]
It actually exposes '6' types in enum dmu…
|
CWE-129
Improper Validation of Array Index
|
CVE-2024-46871
|
2024-10-24 01:10 |
2024-10-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306014
|
5.3 |
MEDIUM
Network
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
f2fs: fix to don't set SB_RDONLY in f2fs_handle_critical_error()
syzbot reports a f2fs bug as below:
------------[ cut here ]---…
|
CWE-362
Race Condition
|
CVE-2024-47689
|
2024-10-24 00:53 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306015
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
driver core: Fix a potential null-ptr-deref in module_add_driver()
Inject fault while probing of-fpga-region, if kasprintf() fail…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-47688
|
2024-10-24 00:36 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306016
|
7.1 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
ep93xx: clock: Fix off by one in ep93xx_div_recalc_rate()
The psc->div[] array has psc->num_div elements. These values come from…
|
CWE-193
Off-by-one Error
|
CVE-2024-47686
|
2024-10-24 00:34 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306017
|
4.7 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
lib/generic-radix-tree.c: Fix rare race in __genradix_ptr_alloc()
If we need to increase the tree depth, allocate a new node, and…
|
CWE-362
Race Condition
|
CVE-2024-47668
|
2024-10-24 00:30 |
2024-10-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306018
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
vdpa/mlx5: Fix invalid mr resource destroy
Certain error paths from mlx5_vdpa_dev_add() can end up releasing mr
resources which n…
|
CWE-908
Use of Uninitialized Resource
|
CVE-2024-47687
|
2024-10-24 00:22 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306019
|
- |
|
-
|
-
|
CodeAstro Membership Management System v1.0 is vulnerable to Cross Site Scripting (XSS) via the membershipType parameter in edit_type.php
|
-
|
CVE-2024-48709
|
2024-10-24 00:13 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
306020
|
- |
|
-
|
-
|
Cilium is a networking, observability, and security solution with an eBPF-based dataplane. Starting in version 1.14.0 and prior to versions 1.14.16 and 1.15.10, a policy rule denying a prefix that is…
|
CWE-276
Incorrect Default Permissions
|
CVE-2024-47825
|
2024-10-24 00:13 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
