|
310151
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In TrustySharedMemoryManager::GetSharedMemory of ondevice/trusty/trusty_shared_memory_manager.cc, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local inf…
|
CWE-125
Out-of-bounds Read
|
CVE-2024-47029
|
2024-10-29 02:57 |
2024-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310152
|
5.5 |
MEDIUM
Local
|
google
|
android
|
there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed fo…
|
CWE-125
Out-of-bounds Read
|
CVE-2024-47034
|
2024-10-29 02:56 |
2024-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310153
|
7.8 |
HIGH
Local
|
google
|
android
|
In ufshc_scsi_cmd of ufs.c, there is a possible stack variable use after free due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed.…
|
CWE-416
Use After Free
|
CVE-2024-47017
|
2024-10-29 02:56 |
2024-10-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310154
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/amd/display: Avoid overflow assignment in link_dp_cts
sampling_rate is an uint8_t but is assigned an unsigned int, and thus i…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2024-50016
|
2024-10-29 02:17 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310155
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
ext4: dax: fix overflowing extents beyond inode size when partially writing
The dax_iomap_rw() does two things in each iteration:…
|
NVD-CWE-noinfo
|
CVE-2024-50015
|
2024-10-29 02:13 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310156
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
ext4: fix access to uninitialised lock in fc replay path
The following kernel trace can be triggered with fstest generic/629 when…
|
CWE-908
Use of Uninitialized Resource
|
CVE-2024-50014
|
2024-10-29 02:12 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310157
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
drm/xe/hdcp: Check GSC structure validity
Sometimes xe_gsc is not initialized when checked at HDCP capability
check. Add gsc stru…
|
CWE-908
Use of Uninitialized Resource
|
CVE-2024-49990
|
2024-10-29 01:42 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310158
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
ksmbd: add refcnt to ksmbd_conn struct
When sending an oplock break request, opinfo->conn is used,
But freed ->conn can be used o…
|
CWE-416
Use After Free
|
CVE-2024-49988
|
2024-10-29 01:38 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310159
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
In the Linux kernel, the following vulnerability has been resolved:
bpftool: Fix undefined behavior in qsort(NULL, 0, ...)
When netfilter has no entry to display, qsort is called with
qsort(NULL, 0…
|
CWE-476
NULL Pointer Dereference
|
CVE-2024-49987
|
2024-10-29 01:23 |
2024-10-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
310160
|
8.8 |
HIGH
Network
|
tenda
|
ac8_firmware
|
A vulnerability classified as critical was found in Tenda AC8 16.03.34.06. This vulnerability affects the function formSetRebootTimer of the file /goform/SetSysAutoRebbotCfg. The manipulation of the …
|
CWE-121
Stack-based Buffer Overflow
|
CVE-2024-10130
|
2024-10-29 01:08 |
2024-10-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
