|
303201
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/amd/display: Run DC_LOG_DC after checking link->link_enc
[WHAT]
The DC_LOG_DC should be run after link->link_enc is checked, …
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-46776
|
2024-11-21 02:56 |
2024-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303202
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/amd/display: Stop amdgpu_dm initialize when stream nums greater than 6
[Why]
Coverity reports OVERRUN warning. Should abort a…
|
NVD-CWE-noinfo
|
CVE-2024-46817
|
2024-11-21 02:45 |
2024-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303203
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/amd/display: Check UnboundedRequestEnabled's value
CalculateSwathAndDETConfiguration_params_st's UnboundedRequestEnabled
is a…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-46778
|
2024-11-21 02:40 |
2024-09-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303204
|
- |
|
-
|
-
|
In restorePermissionState of PermissionManagerServiceImpl.java, there is a possible way for an app to keep permissions that should be revoked due to incorrect permission flags cleared during an updat…
|
-
|
CVE-2023-21270
|
2024-11-21 02:35 |
2024-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303205
|
- |
|
-
|
-
|
In writeToParcel and createFromParcel of DcParamObject.java, there is a permission bypass due to a write size mismatch. This could lead to an elevation of privileges where the user can start an activ…
|
-
|
CVE-2017-13315
|
2024-11-21 02:35 |
2024-11-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303206
|
5.5 |
MEDIUM
Local
|
justdan96
|
tsmuxer
|
A heap-based buffer under-read in tsMuxer version nightly-2024-05-12-02-01-18 allows attackers to cause Denial of Service (DoS) via a crafted MOV video file.
|
CWE-125
Out-of-bounds Read
|
CVE-2024-52613
|
2024-11-21 02:35 |
2024-11-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303207
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In the autofill service, the package name that is provided by the app process is trusted inappropriately. This could lead to information disclosure with no additional execution privileges needed. U…
|
NVD-CWE-noinfo
|
CVE-2017-13227
|
2024-11-21 02:35 |
2024-11-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303208
|
7.5 |
HIGH
Network
|
adonesevangelista
|
agri-trading_online_shopping_system
|
A business logic vulnerability exists in the Add to Cart function of itsourcecode Agri-Trading Online Shopping System 1.0, which allows remote attackers to manipulate the quant parameter when adding …
|
NVD-CWE-noinfo
|
CVE-2024-50968
|
2024-11-21 02:35 |
2024-11-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303209
|
7.8 |
HIGH
Local
|
google
|
android
|
In PMRWritePMPageList of pmr.c, there is a possible out of bounds write due to a logic error in the code. This could lead to local escalation of privilege in the kernel with no additional execution p…
|
CWE-787
Out-of-bounds Write
|
CVE-2024-23715
|
2024-11-21 02:35 |
2024-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
303210
|
7.8 |
HIGH
Local
|
google
|
android
|
In PVRSRVRGXKickTA3DKM of rgxta3d.c, there is a possible arbitrary code execution due to improper input validation. This could lead to local escalation of privilege in the kernel with no additional e…
|
NVD-CWE-noinfo
|
CVE-2023-35686
|
2024-11-21 02:35 |
2024-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
