5.5

CVSS3.1

CVE-2024-26889 - Bluetooth: hci_core: Fix possible buffer overflow

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_core: Fix possible buffer overflow struct hci_dev_info has a fixed size name[8] field so in the event that hdev->name is bigger than that strcpy would attempt to write past its size, so this fixes this problem by s…

πŸ“… Published: April 17, 2024, midnight πŸ”„ Last Modified: May 7, 2025, 7:59 p.m.

4.4

CVSS3.1

CVE-2024-26872 - RDMA/srpt: Do not register event handler until srpt device is fully setup

In the Linux kernel, the following vulnerability has been resolved: RDMA/srpt: Do not register event handler until srpt device is fully setup Upon rare occasions, KASAN reports a use-after-free Write in srpt_refresh_port(). This seems to be because an event handler is registered before the srpt …

πŸ“… Published: April 17, 2024, midnight πŸ”„ Last Modified: May 4, 2025, 8:58 a.m.

4.7

CVSS3.1

CVE-2024-26869 - f2fs: fix to truncate meta inode pages forcely

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to truncate meta inode pages forcely Below race case can cause data corruption: Thread A GC thread - gc_data_segment - ra_data_block - locked meta_inode page - f2fs_inplace_write_data - invalidate…

πŸ“… Published: April 17, 2024, midnight πŸ”„ Last Modified: May 7, 2025, 5:39 p.m.

5.5

CVSS3.1

CVE-2024-26866 - spi: lpspi: Avoid potential use-after-free in probe()

In the Linux kernel, the following vulnerability has been resolved: spi: lpspi: Avoid potential use-after-free in probe() fsl_lpspi_probe() is allocating/disposing memory manually with spi_alloc_host()/spi_alloc_target(), but uses devm_spi_register_controller(). In case of error after the latter …

πŸ“… Published: April 17, 2024, midnight πŸ”„ Last Modified: May 4, 2025, 8:58 a.m.

5.9

CVSS3.1

CVE-2024-26864 - tcp: Fix refcnt handling in __inet_hash_connect().

In the Linux kernel, the following vulnerability has been resolved: tcp: Fix refcnt handling in __inet_hash_connect(). syzbot reported a warning in sk_nulls_del_node_init_rcu(). The commit 66b60b0c8c4a ("dccp/tcp: Unhash sk from ehash for tb2 alloc failure after check_estalblished().") tried to …

πŸ“… Published: April 17, 2024, midnight πŸ”„ Last Modified: May 4, 2025, 8:58 a.m.

4.1

CVSS3.1

CVE-2024-26859 - net/bnx2x: Prevent access to a freed page in page_pool

In the Linux kernel, the following vulnerability has been resolved: net/bnx2x: Prevent access to a freed page in page_pool Fix race condition leading to system crash during EEH error handling During EEH error recovery, the bnx2x driver's transmit timeout logic could cause a race condition when h…

πŸ“… Published: April 17, 2024, midnight πŸ”„ Last Modified: May 4, 2025, 8:58 a.m.

4.1

CVSS3.1

CVE-2024-26858 - net/mlx5e: Use a memory barrier to enforce PTP WQ xmit submission tracking occurs after populating …

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Use a memory barrier to enforce PTP WQ xmit submission tracking occurs after populating the metadata_map Just simply reordering the functions mlx5e_ptp_metadata_map_put and mlx5e_ptpsq_track_metadata in the mlx5e_txwqe…

πŸ“… Published: April 17, 2024, midnight πŸ”„ Last Modified: May 4, 2025, 12:54 p.m.

5.5

CVSS3.1

CVE-2024-26857 - geneve: make sure to pull inner header in geneve_rx()

In the Linux kernel, the following vulnerability has been resolved: geneve: make sure to pull inner header in geneve_rx() syzbot triggered a bug in geneve_rx() [1] Issue is similar to the one I fixed in commit 8d975c15c0cd ("ip6_tunnel: make sure to pull inner header in __ip6_tnl_rcv()") We hav…

πŸ“… Published: April 17, 2024, midnight πŸ”„ Last Modified: May 4, 2025, 8:58 a.m.

7.5

CVSS3.1

CVE-2024-26854 - ice: fix uninitialized dplls mutex usage

In the Linux kernel, the following vulnerability has been resolved: ice: fix uninitialized dplls mutex usage The pf->dplls.lock mutex is initialized too late, after its first use. Move it to the top of ice_dpll_init. Note that the "err_exit" error path destroys the mutex. And the mutex is the las…

πŸ“… Published: April 17, 2024, midnight πŸ”„ Last Modified: May 4, 2025, 8:58 a.m.

5.5

CVSS3.1

CVE-2024-26853 - igc: avoid returning frame twice in XDP_REDIRECT

In the Linux kernel, the following vulnerability has been resolved: igc: avoid returning frame twice in XDP_REDIRECT When a frame can not be transmitted in XDP_REDIRECT (e.g. due to a full queue), it is necessary to free it by calling xdp_return_frame_rx_napi. However, this is the responsibility…

πŸ“… Published: April 17, 2024, midnight πŸ”„ Last Modified: May 4, 2025, 8:57 a.m.
Total resulsts: 349182
Page 10246 of 34,919
Β« previous page Β» next page
Filters