|
304231
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
firmware_loader: Block path traversal
Most firmware names are hardcoded strings, or are constructed from fairly
constrained forma…
|
CWE-22
Path Traversal
|
CVE-2024-47742
|
2024-11-9 01:15 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304232
|
- |
|
-
|
-
|
In the Linux kernel, the following vulnerability has been resolved:
f2fs: Require FMODE_WRITE for atomic write ioctls
The F2FS ioctls for starting and committing atomic writes check for
inode_owner…
|
-
|
CVE-2024-47740
|
2024-11-9 01:15 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304233
|
7.1 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
jfs: fix out-of-bounds in dbNextAG() and diAlloc()
In dbNextAG() , there is no check for the case where bmp->db_numag is
greater …
|
CWE-125
Out-of-bounds Read
|
CVE-2024-47723
|
2024-11-9 01:15 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304234
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
net: dsa: mv88e6xxx: Fix out-of-bound access
If an ATU violation was caused by a CPU Load operation, the SPID could
be larger tha…
|
NVD-CWE-noinfo
|
CVE-2024-44988
|
2024-11-9 01:15 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304235
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
CDC-NCM: avoid overflow in sanity checking
A broken device may give an extreme offset like 0xFFF0
and a reasonable length for a f…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2022-48938
|
2024-11-9 01:15 |
2024-08-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304236
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
wifi: mac80211: use two-phase skb reclamation in ieee80211_do_stop()
Since '__dev_queue_xmit()' should be called with interrupts …
|
NVD-CWE-noinfo
|
CVE-2024-47713
|
2024-11-9 01:15 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304237
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
wifi: wilc1000: fix potential RCU dereference issue in wilc_parse_join_bss_param
In the `wilc_parse_join_bss_param` function, the…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-47712
|
2024-11-9 01:15 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304238
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
ext4: avoid OOB when system.data xattr changes underneath the filesystem
When looking up for an entry in an inlined directory, if…
|
CWE-416
Use After Free
|
CVE-2024-47701
|
2024-11-9 01:15 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304239
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/i915: Fix potential context UAFs
gem_context_register() makes the context visible to userspace, and which
point a separate th…
|
CWE-416
Use After Free
|
CVE-2023-52913
|
2024-11-9 01:15 |
2024-08-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
304240
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
can: bcm: Clear bo->bcm_proc_read after remove_proc_entry().
syzbot reported a warning in bcm_release(). [0]
The blamed change f…
|
NVD-CWE-noinfo
|
CVE-2024-47709
|
2024-11-9 01:15 |
2024-10-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
