| CVE-2021-47171 |
Linux kernel: Syzbot reported memory leak in smsc75xx_bind() |
High |
| CVE-2021-47289 |
Linux kernel: ACPI: fix NULL pointer dereference |
High |
| CVE-2021-47556 |
Linux kernel: ethtool: ioctl: fix potential NULL deref in ethtool_set_coalesce() |
High |
| CVE-2021-47580 |
Linux kernel: scsi: scsi_debug: Fix type in min_t to avoid stack OOB |
High |
| CVE-2022-48912 |
Linux kernel: netfilter: fix use-after-free in __nf_register_net_hook() |
High |
| CVE-2023-52439 |
Linux kernel: uio: Fix use-after-free in uio_open |
High |
| CVE-2023-52445 |
Linux kernel: media: pvrusb2: fix use after free on context disconnection |
High |
| CVE-2023-52470 |
Linux kernel: drm/radeon: check the alloc_workqueue return value in
radeon_crtc_init() |
High |
| CVE-2023-52530 |
Linux kernel: wifi: mac80211: fix potential key use-after-free |
Critical |
| CVE-2023-52560 |
Linux kernel: mm/damon/vaddr-test: fix memory leak in
damon_do_test_apply_three_regions() |
Critical |
| CVE-2023-52581 |
Linux kernel: netfilter: nf_tables: fix memleak when more than 255 elements expired |
Critical |
| CVE-2023-52594 |
Linux kernel: wifi: ath9k: Fix potential array-index-out-of-bounds read in
ath9k_htc_txstatus() |
High |
| CVE-2023-52597 |
Linux kernel: KVM: s390: fix setting of fpc register |
Critical |
| CVE-2023-52598 |
Linux kernel: s390/ptrace: handle setting of fpc register correctly |
Critical |
| CVE-2023-52606 |
Linux kernel: powerpc/lib: Validate size for vector operations |
Critical |
| CVE-2023-52607 |
Linux kernel: powerpc/mm: Fix null-pointer dereference in pgtable_cache_add |
Critical |
| CVE-2023-52610 |
Linux kernel: net/sched: act_ct: fix skb leak and crash on ooo frags |
Critical |
| CVE-2023-52615 |
Linux Kernel : hwrng: core - Fix page fault dead lock on mmap-ed hwrng |
High |
| CVE-2023-52622 |
Linux kernel: ext4: avoid online resizing failures due to oversized flex bg |
Critical |
| CVE-2023-52623 |
Linux kernel: SUNRPC: Fix a suspicious RCU usage warning |
Critical |
| CVE-2023-52626 |
Linux kernel: net/mlx5e: Fix operation precedence bug in port timestamping napi_poll
context |
High |
| CVE-2023-52648 |
Linux kernel: drm/vmwgfx: Unmap the surface before resetting it on a plane state |
Critical |
| CVE-2023-52653 |
Linux kernel: SUNRPC: fix a memleak in gss_import_v2_context |
Critical |
| CVE-2023-52662 |
Linux kernel: drm/vmwgfx: fix a memleak in vmw_gmrid_man_get_node |
Critical |
| CVE-2023-52667 |
Linux kernel: net/mlx5e: fix a potential double-free in fs_any_create_groups |
High |
| CVE-2023-52679 |
Linux kernel: of: Fix double free in of_parse_phandle_with_args_map |
Critical |
| CVE-2023-52683 |
Linux kernel: ACPI: LPIT: Avoid u32 multiplication overflow |
Critical |
| CVE-2023-52730 |
Linux kernel: mmc: sdio: fix possible resource leaks in some error paths |
Critical |
| CVE-2023-52775 |
Linux kernel: net/smc: avoid data corruption caused by decline |
Critical |
| CVE-2023-52777 |
Linux kernel: wifi: ath11k: fix gtk offload status event locking |
Critical |
| CVE-2023-52784 |
Linux kernel: bonding: stop the device in bond_setup_by_slave() |
Critical |
| CVE-2023-52791 |
Linux kernel: i2c: core: Run atomic i2c xfer when !preemptible |
Critical |
| CVE-2023-52796 |
Linux kernel: ipvlan: add ipvlan_route_v6_outbound() helper |
Critical |
| CVE-2023-52798 |
Linux kernel: wifi: ath11k: fix dfs radar event locking |
Critical |
| CVE-2023-52800 |
Linux kernel: wifi: ath11k: fix htt pktlog locking |
Critical |
| CVE-2023-52803 |
Linux kernel: SUNRPC: Fix RPC client cleaned up the freed pipefs dentries |
Critical |
| CVE-2023-52811 |
Linux kernel: scsi: ibmvfc: Remove BUG_ON in the case of an empty event pool |
Critical |
| CVE-2023-52813 |
Linux kernel: crypto: pcrypt - Fix hungtask for PADATA_RESET |
Critical |
| CVE-2023-52817 |
Linux kernel: drm/amdgpu: Fix a null pointer access when the smc_rreg pointer is NULL |
Critical |
| CVE-2023-52832 |
Linux kernel: wifi: mac80211: don't return unset power in ieee80211_get_tx_power() |
Critical |
| CVE-2023-52834 |
Linux kernel: atl1c: Work around the DMA RX overflow issue |
Critical |
| CVE-2023-52847 |
Linux kernel: media: bttv: fix use after free error due to btv->timeout timer |
Critical |
| CVE-2023-52864 |
Linux kernel: platform/x86: wmi: Fix opening of char device |
Critical |
| CVE-2024-25710 |
Apache Commons Compress is vulnerable to a denial of service, caused by an infinite loop
flaw. By persuading a victim to open a specially crafted DUMP file, a remote attacker could exploit
this vulnerability to cause a denial of service condition. |
Medium |
| CVE-2024-26308 |
Apache Commons Compress is vulnerable to a denial of service, caused by an infinite loop
flaw. By persuading a victim to open a specially crafted DUMP file, a remote attacker could exploit
this vulnerability to cause a denial of service condition. |
Medium |
| CVE-2024-26615 |
Linux kernel: net/smc: fix illegal rmb_desc access in SMC-D connection dump |
High |
| CVE-2024-26649 |
Linux kernel: drm/amdgpu: Fix the null pointer when load rlc firmware |
High |
| CVE-2024-26660 |
Linux kernel: drm/amd/display: Implement bounds check for stream encoder creation in
DCN301 |
High |
| CVE-2024-26664 |
Linux kernel: hwmon: (coretemp) Fix out-of-bounds memory access |
High |
| CVE-2024-26665 |
Linux kernel: tunnels: fix out of bounds access when building IPv6 PMTU error |
High |
| CVE-2024-26671 |
Linux kernel: blk-mq: fix IO hang from sbitmap wakeup race |
High |
| CVE-2024-26675 |
Linux kernel: ppp_async: limit MRU to 64K |
High |
| CVE-2024-26704 |
Linux kernel: ext4: fix double-free of blocks due to wrong extents moved_len |
High |
| CVE-2024-26717 |
Linux kernel: HID: i2c-hid-of: fix NULL-deref on failed power up |
High |
| CVE-2024-26733 |
Linux kernel: arp: Prevent overflow in arp_req_get(). |
High |
| CVE-2024-26740 |
Linux kernel: net/sched: act_mirred: use the backlog for mirred ingress |
High |
| CVE-2024-26759 |
Linux kernel: mm/swap: fix race when skipping swapcache |
High |
| CVE-2024-26769 |
Linux kernel: nvmet-fc: avoid deadlock on delete association path |
High |
| CVE-2024-26773 |
Linux kernel: ext4: avoid allocating blocks from corrupted group in
ext4_mb_try_best_found() |
High |
| CVE-2024-26779 |
Linux kernel: wifi: mac80211: fix race condition on enabling fast-xmit |
High |
| CVE-2024-26801 |
Linux kernel: Bluetooth: Avoid potential use-after-free in hci_error_reset |
High |
| CVE-2024-26802 |
Linux kernel: stmmac: Clear variable when destroying workqueue |
High |
| CVE-2024-26804 |
Linux kernel: net: ip_tunnel: prevent perpetual headroom growth |
High |
| CVE-2024-26810 |
Linux kernel: vfio/pci: Lock external INTx masking ops |
High |
| CVE-2024-26837 |
Linux kernel: net: bridge: switchdev: Skip MDB replays of deferred events on offload |
High |
| CVE-2024-26840 |
Linux kernel: cachefiles: fix memory leak in cachefiles_add_cache() |
High |
| CVE-2024-26843 |
Linux kernel: efi: runtime: Fix potential overflow of soft-reserved region size |
High |
| CVE-2024-26846 |
Linux kernel: nvme-fc: do not wait in vain when unloading module |
High |
| CVE-2024-26852 |
Linux kernel: net/ipv6: avoid possible UAF in ip6_route_mpath_notify() |
High |
| CVE-2024-26853 |
Linux kernel: igc: avoid returning frame twice in XDP_REDIRECT |
High |
| CVE-2024-26855 |
Linux kernel: net: ice: Fix potential NULL pointer dereference in
ice_bridge_setlink() |
High |
| CVE-2024-26859 |
Linux kernel: net/bnx2x: Prevent access to a freed page in page_pool |
High |
| CVE-2024-26870 |
Linux kernel: NFSv4.2: fix nfs4_listxattr kernel BUG at mm/usercopy.c:102 |
High |
| CVE-2024-26872 |
Linux kernel: RDMA/srpt: Do not register event handler until srpt device is fully
setup |
High |
| CVE-2024-26878 |
Linux kernel: quota: Fix potential NULL pointer dereference |
High |
| CVE-2024-26892 |
Linux kernel: wifi: mt76: mt7921e: fix use-after-free in free_irq() |
High |
| CVE-2024-26894 |
Linux kernel: ACPI: processor_idle: Fix memory leak in acpi_processor_power_exit() |
High |
| CVE-2024-26897 |
Linux kernel: wifi: ath9k: delay all of ath9k_wmi_event_tasklet() until init is
complete |
High |
| CVE-2024-26901 |
Linux kernel: do_sys_name_to_handle(): use kzalloc() to fix kernel-infoleak |
High |
| CVE-2024-26906 |
Linux kernel: x86/mm: Disallow vsyscall page read for copy_from_kernel_nofault() |
Medium |
| CVE-2024-26907 |
Linux kernel: RDMA/mlx5: Fix fortify source warning while accessing Eth segment |
High |
| CVE-2024-26919 |
Linux kernel: usb: ulpi: Fix debugfs directory leak |
High |
| CVE-2024-26923 |
Linux kernel: af_unix: Fix garbage collector racing against connect() |
High |
| CVE-2024-26925 |
Linux kernel: netfilter: nf_tables: release mutex after nft_gc_seq_end from abort
path |
High |
| CVE-2024-26929 |
Linux kernel: netfilter: scsi: qla2xxx: Fix double free of fcport |
High |
| CVE-2024-26933 |
Linux Kernel: USB: core: Fix deadlock in port "disable" sysfs attribute |
High |
| CVE-2024-26934 |
Linux Kernel: USB: core: Fix deadlock in usb_deauthorize_interface() |
High |
| CVE-2024-26939 |
Linux Kernel: drm/i915/vma: Fix UAF on destroy against retire race |
High |
| CVE-2024-26940 |
Linux Kernel: drm/vmwgfx: Create debugfs ttm_resource_manager entry only if needed |
Critical |
| CVE-2024-26958 |
Linux Kernel: nfs: fix UAF in direct writes |
Critical |
| CVE-2024-26960 |
Linux Kernel: mm: swap: fix race between free_swap_and_cache() and swapoff() |
High |
| CVE-2024-26961 |
Linux Kernel: mac802154: fix llsec key resources release in mac802154_llsec_key_del |
Critical |
| CVE-2024-26964 |
Linux Kernel: usb: xhci: Add error handling in xhci_map_urb_for_dma |
High |
| CVE-2024-26973 |
Linux Kernel: fat: fix uninitialized field in nostale filehandles |
High |
| CVE-2024-26974 |
Linux Kernel: crypto: qat - resolve race condition during AER recovery |
High |
| CVE-2024-26982 |
Linux Kernel: Squashfs: check the inode number is not the invalid value of zero |
Medium |
| CVE-2024-26993 |
Linux Kernel: fs: sysfs: Fix reference leak in sysfs_break_active_protection() |
High |
| CVE-2024-27010 |
Linux Kernel: net/sched: Fix mirred deadlock on device recursion |
Critical |
| CVE-2024-27011 |
Linux Kernel: netfilter: nf_tables: fix memleak in map from abort path |
Critical |
| CVE-2024-27013 |
Linux Kernel: tun: limit printing rate when illegal packet received by tun dev |
High |
| CVE-2024-27014 |
Linux Kernel: net/mlx5e: Prevent deadlock while disabling aRFS |
Medium |
| CVE-2024-27019 |
Linux Kernel: netfilter: nf_tables: Fix potential data-race in __nft_obj_type_get() |
Critical |
| CVE-2024-27020 |
Linux Kernel: netfilter: nf_tables: Fix potential data-race in __nft_expr_type_get() |
Critical |
| CVE-2024-27025 |
Linux Kernel: nbd: null check for nla_nest_start |
Critical |
| CVE-2024-27042 |
Linux Kernel: drm/amdgpu: Fix potential out-of-bounds access in
'amdgpu_discovery_reg_base_init()' |
High |
| CVE-2024-27048 |
Linux Kernel: wifi: brcm80211: handle pmk_op allocation failure |
Medium |
| CVE-2024-27052 |
Linux Kernel: wifi: rtl8xxxu: add cancel_work_sync() for c2hcmd_work |
Medium |
| CVE-2024-27056 |
Linux kernel: wifi: iwlwifi: mvm: ensure offloading TID queue exists |
High |
| CVE-2024-27059 |
Linux Kernel: USB: usb-storage: Prevent divide-by-0 error in isd200_ata_command |
Medium |
| CVE-2024-27065 |
Linux Kernel: netfilter: nf_tables: do not compare internal table flags on updates |
High |
| CVE-2024-27388 |
Linux Kernel: SUNRPC: fix some memleaks in gssx_dec_option_array |
High |
| CVE-2024-27395 |
Linux Kernel: net: openvswitch: Fix Use-After-Free in ovs_ct_exit |
High |
| CVE-2024-27434 |
Linux Kernel: wifi: iwlwifi: mvm: don't set the MFP flag for the GTK |
High |
| CVE-2024-31076 |
Linux Kernel: genirq/cpuhotplug, x86/vector: Prevent vector leak during CPU offline |
High |
| CVE-2024-33621 |
Linux Kernel: ipvlan: Dont Use skb->sk in ipvlan_process_v{4,6}_outbound |
High |
| CVE-2024-35790 |
Linux Kernel: usb: typec: altmodes/displayport: create sysfs nodes as driver's default device
attribute group |
High |
| CVE-2024-35801 |
Linux Kernel: x86/fpu: Keep xfd_state in sync with MSR_IA32_XFD |
High |
| CVE-2024-35807 |
Linux Kernel: ext4: fix corruption during on-line resize |
High |
| CVE-2024-35809 |
Linux Kernel: PCI/PM: Drain runtime-idle callbacks before driver removal |
High |
| CVE-2024-35810 |
Linux Kernel: drm/vmwgfx: Fix the lifetime of the bo cursor memory |
High |
| CVE-2024-35814 |
Linux Kernel: swiotlb: Fix double-allocation of slots due to broken alignment
handling |
High |
| CVE-2024-35823 |
Linux Kernel: vt: fix unicode buffer corruption when deleting characters |
High |
| CVE-2024-35824 |
Linux Kernel: misc: lis3lv02d_i2c: Fix regulators getting en-/dis-abled twice on
suspend/resume |
High |
| CVE-2024-35839 |
Linux Kernel: netfilter: bridge: replace physindev with physinif in nf_bridge_info |
Medium |
| CVE-2024-35847 |
Linux Kernel:irqchip/gic-v3-its: Prevent double free on error |
High |
| CVE-2024-35854 |
Linux Kernel: mlxsw: spectrum_acl_tcam: Fix possible use-after-free during rehash |
High |
| CVE-2024-35855 |
Linux Kernel: mlxsw: spectrum_acl_tcam: Fix possible use-after-free during activity
update |
High |
| CVE-2024-35877 |
Linux Kernel: x86/mm/pat: fix VM_PAT handling in COW mappings |
High |
| CVE-2024-35884 |
Linux Kernel: udp: do not accept non-tunnel GSO skbs landing in a tunnel |
High |
| CVE-2024-35893 |
Linux Kernel: net/sched: act_skbmod: prevent kernel-infoleak |
High |
| CVE-2024-35896 |
Linux Kernel: netfilter: validate user input for expected length |
High |
| CVE-2024-35897 |
Linux Kernel: netfilter: nf_tables: discard table flag update with pending basechain
deletion |
High |
| CVE-2024-35898 |
Linux Kernel: netfilter: nf_tables: Fix potential data-race in
__nft_flowtable_type_get() |
High |
| CVE-2024-35899 |
Linux Kernel: netfilter: nf_tables: flush pending destroy work before exit_net
release |
High |
| CVE-2024-35900 |
Linux Kernel: netfilter: nf_tables: reject new basechain after table flag update |
High |
| CVE-2024-35910 |
Linux Kernel: tcp: properly terminate timers for kernel sockets |
High |
| CVE-2024-35912 |
Linux Kernel: wifi: iwlwifi: mvm: rfi: fix potential response leaks |
High |
| CVE-2024-35924 |
Linux Kernel: usb: typec: ucsi: Limit read size on v1.2 |
High |
| CVE-2024-35925 |
Linux Kernel: block: prevent division by zero in blk_rq_stat_sum() |
High |
| CVE-2024-35930 |
Linux Kernel: scsi: lpfc: Fix possible memory leak in lpfc_rcv_padisc() |
High |
| CVE-2024-35937 |
Linux Kernel: wifi: cfg80211: check A-MSDU format more carefully |
High |
| CVE-2024-35938 |
Linux Kernel: wifi: ath11k: decrease MHI channel buffer length to 8KB |
High |
| CVE-2024-35939 |
Linux Kernel: dma-direct: Leak pages on dma_set_decrypted() failure |
Medium |
| CVE-2024-35944 |
Linux Kernel: VMCI: Fix memcpy() run-time warning in dg_dispatch_as_host() |
High |
| CVE-2024-35946 |
Linux Kernel: wifi: rtw89: fix null pointer access when abort scan |
High |
| CVE-2024-35947 |
Linux Kernel: dyndbg: fix old BUG_ON in >control parser |
Critical |
| CVE-2024-35952 |
Linux Kernel: drm/ast: Fix soft lockup |
High |
| CVE-2024-35958 |
Linux Kernel: net: ena: Fix incorrect descriptor free behavior |
High |
| CVE-2024-35962 |
Linux kernel: netfilter: complete validation of user input |
High |
| CVE-2024-35989 |
Linux kernel: dmaengine: idxd: Fix oops during rmmod on single-CPU platforms |
High |
| CVE-2024-36000 |
Linux kernel: mm/hugetlb: fix missing hugetlb_lock for resv uncharge |
High |
| CVE-2024-36004 |
Linux kernel: i40e: Do not use WQ_MEM_RECLAIM flag for workqueue |
High |
| CVE-2024-36005 |
Linux kernel: netfilter: nf_tables: honor table dormant flag from netdev release event
path |
High |
| CVE-2024-36006 |
Linux kernel: mlxsw: spectrum_acl_tcam: Fix incorrect list API usage |
High |
| CVE-2024-36007 |
Linux kernel: mlxsw: spectrum_acl_tcam: Fix warning during rehash |
High |
| CVE-2024-36010 |
Linux kernel: igb: Fix string truncation warnings in igb_set_fw_version |
Critical |
| CVE-2024-36016 |
Linux kernel: tty: n_gsm: fix possible out-of-bounds in gsm0_receive() |
Critical |
| CVE-2024-36017 |
Linux kernel: rtnetlink: Correct nested IFLA_VF_VLAN_LIST attribute validation |
Critical |
| CVE-2024-36020 |
Linux kernel: i40e: fix vf may be used uninitialized in this function warning |
Critical |
| CVE-2024-36025 |
Linux kernel: scsi: qla2xxx: Fix off by one in qla_edif_app_getstats() |
Critical |
| CVE-2024-36270 |
Linux kernel: netfilter: tproxy: bail out if IP has been disabled on the device |
Critical |
| CVE-2024-36286 |
Linux kernel: netfilter: nfnetlink_queue: acquire rcu_read_lock() in
instance_destroy_rcu() |
Critical |
| CVE-2024-36489 |
Linux kernel: tls: fix missing memory barrier in tls_init |
Critical |
| CVE-2024-36883 |
Linux kernel : net: fix out-of-bounds access in ops_init |
High |
| CVE-2024-36886 |
Linux kernel : tipc: fix UAF in error path |
High |
| CVE-2024-36889 |
Linux kernel : mptcp: ensure snd_nxt is properly initialized on connect |
High |
| CVE-2024-36896 |
Linux kernel : USB: core: Fix access violation during port device removal |
Critical |
| CVE-2024-36901 |
Linux kernel : ipv6: prevent NULL dereference in ip6_output() |
High |
| CVE-2024-36904 |
Linux kernel : tcp: Use refcount_inc_not_zero() in tcp_twsk_unique() |
Critical |
| CVE-2024-36905 |
Linux kernel : tcp: defer shutdown(SEND_SHUTDOWN) for TCP_SYN_RECV sockets |
Critical |
| CVE-2024-36917 |
Linux kernel : block: fix overflow in blk_ioctl_discard() |
Critical |
| CVE-2024-36919 |
Linux kernel : scsi: bnx2fc: Remove spin_lock_bh while releasing resources after
upload |
High |
| CVE-2024-36921 |
Linux kernel : wifi: iwlwifi: mvm: guard against invalid STA ID on removal |
Critical |
| CVE-2024-36922 |
Linux kernel : wifi: iwlwifi: read txq->read_ptr under lock |
High |
| CVE-2024-36927 |
Linux kernel : ipv4: Fix uninit-value access in __ip_make_skb() |
Critical |
| CVE-2024-36929 |
Linux kernel : net: core: reject skb_copy(_expand) for fraglist GSO skbs |
Critical |
| CVE-2024-36933 |
Linux kernel : nsh: Restore skb->{protocol,data,mac_header} for outer header in
nsh_gso_segment() |
Critical |
| CVE-2024-36939 |
Linux kernel : nfs: Handle error of rpc_proc_register() in nfs_net_init() |
High |
| CVE-2024-36940 |
Linux kernel : pinctrl: core: delete incorrect free in pinctrl_enable() |
Critical |
| CVE-2024-36941 |
Linux kernel : wifi: nl80211: don't free NULL coalescing rule |
Critical |
| CVE-2024-36945 |
Linux kernel : net/smc: fix neighbour and rtable leak in smc_ib_find_route() |
Critical |
| CVE-2024-36950 |
Linux kernel : firewire: ohci: mask bus reset interrupts between ISR and bottom half |
Critical |
| CVE-2024-36953 |
Linux kernel : KVM: arm64: vgic-v2: Check for non-NULL vCPU in vgic_v2_parse_attr() |
Critical |
| CVE-2024-36954 |
Linux kernel : tipc: fix a possible memleak in tipc_buf_append |
Critical |
| CVE-2024-36960 |
Linux kernel : drm/vmwgfx: Fix invalid reads in fence signaled events |
High |
| CVE-2024-36971 |
Linux kernel : net: fix __dst_negative_advice() race |
Critical |
| CVE-2024-36978 |
Linux kernel : net: sched: sch_multiq: fix possible OOB write in multiq_tune() |
Critical |
| CVE-2024-36979 |
Linux kernel : net: bridge: mst: fix vlan use-after-free |
Critical |
| CVE-2024-38538 |
Linux kernel : net: bridge: xmit: make sure we have at least eth header len bytes |
Critical |
| CVE-2024-38555 |
Linux kernel : net/mlx5: Discard command completions in internal error |
Critical |
| CVE-2024-38570 |
Linux kernel : gfs2: Fix potential glock use-after-free on unmount |
High |
| CVE-2024-38573 |
Linux kernel : cppc_cpufreq: Fix possible null pointer dereference |
Critical |
| CVE-2024-38575 |
Linux kernel : wifi: brcmfmac: pcie: handle randbuf allocation failure |
Critical |
| CVE-2024-38579 |
Linux kernel : crypto: bcm - Fix pointer arithmetic |
High |
| CVE-2024-38581 |
Linux kernel : drm/amdgpu/mes: fix use-after-free issue |
High |
| CVE-2024-38586 |
Linux kernel : r8169: Fix possible ring buffer corruption on fragmented Tx packets |
Medium |
| CVE-2024-38596 |
Linux kernel : af_unix: Fix data races in unix_release_sock/unix_stream_sendmsg |
Critical |
| CVE-2024-38598 |
Linux kernel : md: fix resync softlockup when bitmap size is less than array size |
Critical |
| CVE-2024-38608 |
Linux kernel : net/mlx5e: Fix netif state handling |
Medium |
| CVE-2024-38615 |
Linux kernel : cpufreq: exit() callback is optional |
Critical |
| CVE-2024-38619 |
Linux kernel : usb-storage: alauda: Check whether the media is initialized |
High |
| CVE-2024-38627 |
Linux kernel : stm class: Fix a double free in stm_register_device() |
Critical |
| CVE-2024-39276 |
Linux kernel : ext4: fix mb_cache_entry's e_refcnt leak in
ext4_xattr_block_cache_find() |
Critical |
| CVE-2024-39471 |
Linux kernel : drm/amdgpu: add error handle to avoid out-of-bounds |
High |
| CVE-2024-39472 |
Linux kernel : xfs: fix log recovery buffer allocation for the legacy h_size fixup |
Critical |
| CVE-2024-39476 |
Linux kernel : md/raid5: fix deadlock that raid5d() wait for itself to clear
MD_SB_CHANGE_PENDING |
Critical |
| CVE-2024-39487 |
Linux kernel : bonding: Fix out-of-bounds read in bond_option_arp_ip_targets_set() |
Critical |
| CVE-2024-39499 |
Linux kernel : vmci: prevent speculation leaks by sanitizing event in event_deliver() |
High |
| CVE-2024-39501 |
Linux kernel : drivers: core: synchronize really_probe() and dev_uevent() |
High |
| CVE-2024-39502 |
Linux kernel : ionic: fix use after netif_napi_del() |
Critical |
| CVE-2024-39503 |
Linux kernel : netfilter: ipset: Fix race between namespace cleanup and gc in the list:set
type |
Medium |
| CVE-2024-39506 |
Linux kernel : liquidio: Adjust a NULL pointer handling path in
lio_vf_rep_copy_packet |
High |
| CVE-2024-40901 |
Linux kernel : scsi: mpt3sas: Avoid test/set_bit() operating in non-allocated memory |
High |
| CVE-2024-40904 |
Linux kernel : USB: class: cdc-wdm: Fix CPU lockup caused by excessive log messages |
High |
| CVE-2024-40911 |
Linux kernel : wifi: cfg80211: Lock wiphy in cfg80211_get_station |
High |
| CVE-2024-40912 |
Linux kernel : wifi: mac80211: Fix deadlock in ieee80211_sta_ps_deliver_wakeup() |
High |
| CVE-2024-40927 |
Linux kernel : xhci: Handle TD clearing for multiple streams case |
Critical |
| CVE-2024-40929 |
Linux kernel : wifi: iwlwifi: mvm: check n_ssids before accessing the ssids |
High |
| CVE-2024-40931 |
Linux kernel : mptcp: ensure snd_una is properly initialized on connect |
High |
| CVE-2024-40941 |
Linux kernel : wifi: iwlwifi: mvm: don't read past the mfuart notifcation |
High |
| CVE-2024-40954 |
Linux kernel : net: do not leave a dangling sk pointer, when socket creation fails |
High |
| CVE-2024-40958 |
Linux kernel : netns: Make get_net_ns() handle zero refcount net |
High |
| CVE-2024-40959 |
Linux kernel : xfrm6: check ip6_dst_idev() return value in xfrm6_get_saddr() |
High |
| CVE-2024-40960 |
Linux kernel : ipv6: prevent possible NULL dereference in rt6_probe() |
High |
| CVE-2024-40961 |
Linux kernel : ipv6: prevent possible NULL deref in fib6_nh_init() |
Medium |
| CVE-2024-40972 |
Linux kernel : ext4: do not create EA inode under buffer lock |
High |
| CVE-2024-40974 |
Linux kernel : powerpc/pseries: Enforce hcall result buffer validity and size |
Critical |
| CVE-2024-40977 |
Linux kernel : wifi: mt76: mt7921s: fix potential hung tasks during chip recovery |
High |
| CVE-2024-40978 |
Linux kernel : scsi: qedi: Fix crash while reading debugfs attribute |
High |
| CVE-2024-40984 |
Linux kernel : ACPICA: Revert "ACPICA: avoid Info: mapping multiple BARs. Your kernel is
fine." |
Medium |
| CVE-2024-40988 |
Linux kernel : drm/radeon: fix UBSAN warning in kv_dpm.c |
High |
| CVE-2024-40989 |
Linux kernel : KVM: arm64: Disassociate vcpus from redistributor region on teardown |
High |
| CVE-2024-40995 |
Linux kernel : net/sched: act_api: fix possible infinite loop in
tcf_idr_check_alloc() |
High |
| CVE-2024-40997 |
Linux kernel : cpufreq: amd-pstate: fix memory leak on CPU EPP exit |
High |
| CVE-2024-40998 |
Linux kernel : ext4: fix uninitialized ratelimit_state->lock access in
__ext4_fill_super() |
High |
| CVE-2024-41005 |
Linux kernel : netpoll: Fix race condition in netpoll_owner_active |
High |
| CVE-2024-41007 |
Linux kernel : tcp: avoid too many retransmit packets |
High |
| CVE-2024-41009 |
Linux kernel : bpf: Fix overrunning reservations in ringbuf |
High |
| CVE-2024-41012 |
Linux kernel : filelock: Remove locks reliably when fcntl/close race is detected |
Medium |
| CVE-2024-41023 |
Linux kernel : sched/deadline: Fix task_struct reference leak |
High |
| CVE-2024-41035 |
Linux kernel : USB: core: Fix duplicate endpoint bug by clearing reserved bits in the
descriptor |
High |
| CVE-2024-41038 |
Linux kernel : firmware: cs_dsp: Prevent buffer overrun when processing V2 alg
headers |
High |
| CVE-2024-41039 |
Linux kernel : firmware: cs_dsp: Fix overflow checking of wmfw header |
High |
| CVE-2024-41040 |
Linux kernel : net/sched: Fix UAF when resolving a clash |
High |
| CVE-2024-41041 |
Linux kernel : udp: Set SOCK_RCU_FREE earlier in udp_lib_get_port(). |
High |
| CVE-2024-41042 |
Linux kernel : netfilter: nf_tables: prefer nft_chain_validate |
Critical |
| CVE-2024-41044 |
Linux kernel : ppp: reject claimed-as-LCP but actually malformed packets |
High |
| CVE-2024-41055 |
Linux kernel : mm: prevent derefencing NULL ptr in pfn_section_valid() |
High |
| CVE-2024-41056 |
Linux kernel : firmware: cs_dsp: Use strnlen() on name fields in V1 wmfw files |
High |
| CVE-2024-41060 |
Linux kernel : drm/radeon: check bo_va->bo is non-NULL before using it |
High |
| CVE-2024-41064 |
Linux kernel : powerpc/eeh: avoid possible crash when edev->pdev changes |
High |
| CVE-2024-41065 |
Linux kernel : powerpc/pseries: Whitelist dtl slub object for copying to userspace |
High |
| CVE-2024-41066 |
Linux kernel : ibmvnic: Add tx check to prevent skb leak |
Medium |
| CVE-2024-41076 |
Linux kernel : NFSv4: Fix memory leak in nfs4_set_security_label |
High |
| CVE-2024-41090 |
Linux kernel : tap: add missing verification for short frame |
High |
| CVE-2024-41091 |
Linux kernel : tun: add missing verification for short frame |
High |
| CVE-2024-41093 |
Linux kernel : drm/amdgpu: avoid using null object of framebuffer |
Medium |
| CVE-2024-41097 |
Linux kernel : usb: atm: cxacru: fix endpoint checking in cxacru_bind() |
High |
| CVE-2024-42079 |
Linux kernel : gfs2: Fix NULL pointer dereference in gfs2_log_flush |
Medium |
| CVE-2024-42084 |
Linux kernel : ftruncate: pass a signed offset |
High |
| CVE-2024-42090 |
Linux kernel : pinctrl: fix deadlock in create_pinctrl() when handling -EPROBE_DEFER |
High |
| CVE-2024-42094 |
Linux kernel: net/iucv: Avoid explicit cpumask var allocation on stack |
High |
| CVE-2024-42096 |
Linux kernel: x86: stop playing stack games in profile_pc() |
High |
| CVE-2024-42154 |
Linux kernel: tcp_metrics: validate source addr length |
High |
| CVE-2024-42238 |
Linux kernel: firmware: cs_dsp: Return error if block header overflows file |
Critical |
| CVE-2024-42244 |
Linux kernel: USB: serial: mos7840: fix crash on resume |
Critical |
| CVE-2024-42265 |
Linux kernel: protect the fetch of ->fd[fd] in do_dup2() from mispredictions |
Medium |
| CVE-2024-42284 |
Linux kernel: tipc: Return non-zero value from tipc_udp_addr2str() on error |
High |
| CVE-2024-42301 |
Linux kernel: dev/parport: fix the array out-of-bounds risk |
High |
| CVE-2024-42322 |
Linux kernel: ipvs: properly dereference pe in ip_vs_add_service |
High |
| CVE-2024-43830 |
Linux kernel: leds: trigger: Unregister sysfs attributes before calling deactivate() |
High |
| CVE-2024-43871 |
Linux kernel: devres: Fix memory leakage caused by driver API devm_free_percpu() |
High |
| CVE-2024-43880 |
Linux kernel: mlxsw: spectrum_acl_erp: Fix object nesting warning |
High |
| CVE-2024-43889 |
Linux kernel: padata: Fix possible divide-by-0 panic in padata_mt_helper() |
High |
| CVE-2024-44989 |
Linux kernel: bonding: fix xfrm real_dev null pointer dereference |
High |
| CVE-2024-45018 |
Linux kernel: netfilter: flowtable: initialise extack before use |
Medium |
| CVE-2024-46826 |
Linux kernel: ELF: fix kernel.randomize_va_space double read |
High |
| CVE-2024-46858 |
Linux kernel: mptcp: pm: Fix uaf in __timer_delete_sync |
High |
| CVE-2024-47668 |
Linux kernel: lib/generic-radix-tree.c: Fix rare race in __genradix_ptr_alloc() |
Medium |