|
311571
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
usb: gadget: aspeed_udc: validate endpoint index for ast udc
We should verify the bound of the array to assure that host
may not …
|
CWE-129
Improper Validation of Array Index
|
CVE-2024-46836
|
2024-10-10 00:47 |
2024-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311572
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/panthor: Restrict high priorities on group_create
We were allowing any users to create a high priority group without any
perm…
|
NVD-CWE-noinfo
|
CVE-2024-46837
|
2024-10-10 00:37 |
2024-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311573
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
userfaultfd: don't BUG_ON() if khugepaged yanks our page table
Since khugepaged was changed to allow retracting page tables in fi…
|
NVD-CWE-noinfo
|
CVE-2024-46838
|
2024-10-10 00:35 |
2024-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311574
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
KVM: s390: fix validity interception issue when gisa is switched off
We might run into a SIE validity if gisa has been disabled e…
|
CWE-908
Use of Uninitialized Resource
|
CVE-2024-45005
|
2024-10-10 00:30 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311575
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
KEYS: trusted: dcp: fix leak of blob encryption key
Trusted keys unseal the key blob on load, but keep the sealed payload in
the …
|
CWE-312
Cleartext Storage of Sensitive Information
|
CVE-2024-45004
|
2024-10-10 00:19 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311576
|
7.8 |
HIGH
Local
|
authenticator
|
authenticator
|
Authenticator is a browser extension that generates two-step verification codes. In versions 7.0.0 and below, encryption keys for user data were stored encrypted at-rest using only AES-256 and the EV…
|
CWE-326
CWE-327
Inadequate Encryption Strength
Use of a Broken or Risky Cryptographic Algorithm
|
CVE-2024-45394
|
2024-10-10 00:15 |
2024-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311577
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
net: mana: Fix RX buf alloc_size alignment and atomic op panic
The MANA driver's RX buffer alloc_size is passed into napi_build_s…
|
NVD-CWE-noinfo
|
CVE-2024-45001
|
2024-10-9 23:49 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311578
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
tcp: prevent concurrent execution of tcp_sk_exit_batch
Its possible that two threads call tcp_sk_exit_batch() concurrently,
once …
|
NVD-CWE-noinfo
|
CVE-2024-44991
|
2024-10-9 23:36 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311579
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
serial: sc16is7xx: fix TX fifo corruption
Sometimes, when a packet is received on channel A at almost the same time
as a packet i…
|
CWE-667
Improper Locking
|
CVE-2024-44951
|
2024-10-9 23:27 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
311580
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
serial: sc16is7xx: fix invalid FIFO access with special register set
When enabling access to the special register set, Receiver t…
|
NVD-CWE-noinfo
|
CVE-2024-44950
|
2024-10-9 23:21 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
