5.5

CVSS3.1

CVE-2024-26783 - mm/vmscan: fix a bug calling wakeup_kswapd() with a wrong zone index

In the Linux kernel, the following vulnerability has been resolved: mm/vmscan: fix a bug calling wakeup_kswapd() with a wrong zone index With numa balancing on, when a numa system is running where a numa node doesn't have its local memory so it has no managed zones, the following oops has been ob…

πŸ“… Published: April 4, 2024, midnight πŸ”„ Last Modified: Nov. 3, 2025, 8:16 p.m.

7.8

CVSS3.1

CVE-2024-26782 - mptcp: fix double-free on socket dismantle

In the Linux kernel, the following vulnerability has been resolved: mptcp: fix double-free on socket dismantle when MPTCP server accepts an incoming connection, it clones its listener socket. However, the pointer to 'inet_opt' for the new socket has the same value as the original one: as a conseq…

πŸ“… Published: April 4, 2024, midnight πŸ”„ Last Modified: May 4, 2025, 8:56 a.m.

5.5

CVSS3.1

CVE-2024-26780 - af_unix: Fix task hung while purging oob_skb in GC.

In the Linux kernel, the following vulnerability has been resolved: af_unix: Fix task hung while purging oob_skb in GC. syzbot reported a task hung; at the same time, GC was looping infinitely in list_for_each_entry_safe() for OOB skb. [0] syzbot demonstrated that the list_for_each_entry_safe()…

πŸ“… Published: April 4, 2024, midnight πŸ”„ Last Modified: May 4, 2025, 8:56 a.m.

5.5

CVSS3.1

CVE-2024-26750 - af_unix: Drop oob_skb ref before purging queue in GC.

In the Linux kernel, the following vulnerability has been resolved: af_unix: Drop oob_skb ref before purging queue in GC. syzbot reported another task hung in __unix_gc(). [0] The current while loop assumes that all of the left candidates have oob_skb and calling kfree_skb(oob_skb) releases the…

πŸ“… Published: April 4, 2024, midnight πŸ”„ Last Modified: May 4, 2025, 8:55 a.m.

4.4

CVSS3.1

CVE-2024-26745 - powerpc/pseries/iommu: IOMMU table is not initialized for kdump over SR-IOV

In the Linux kernel, the following vulnerability has been resolved: powerpc/pseries/iommu: IOMMU table is not initialized for kdump over SR-IOV When kdump kernel tries to copy dump data over SR-IOV, LPAR panics due to NULL pointer exception: Kernel attempted to read user page (0) - exploit att…

πŸ“… Published: April 4, 2024, midnight πŸ”„ Last Modified: May 4, 2025, 12:54 p.m.

5.5

CVSS3.1

CVE-2024-26808 - netfilter: nft_chain_filter: handle NETDEV_UNREGISTER for inet/ingress basechain

In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_chain_filter: handle NETDEV_UNREGISTER for inet/ingress basechain Remove netdevice from inet/ingress basechain in case NETDEV_UNREGISTER event is reported, otherwise a stale reference to netdevice remains in the ho…

πŸ“… Published: April 4, 2024, midnight πŸ”„ Last Modified: May 4, 2025, 8:57 a.m.

5.5

CVSS3.1

CVE-2024-26787 - mmc: mmci: stm32: fix DMA API overlapping mappings warning

In the Linux kernel, the following vulnerability has been resolved: mmc: mmci: stm32: fix DMA API overlapping mappings warning Turning on CONFIG_DMA_API_DEBUG_SG results in the following warning: DMA-API: mmci-pl18x 48220000.mmc: cacheline tracking EEXIST, overlapping mappings aren't supported W…

πŸ“… Published: April 4, 2024, midnight πŸ”„ Last Modified: May 4, 2025, 8:56 a.m.

5.5

CVSS3.1

CVE-2024-26746 - dmaengine: idxd: Ensure safe user copy of completion record

In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: Ensure safe user copy of completion record If CONFIG_HARDENED_USERCOPY is enabled, copying completion record from event log cache to user triggers a kernel bug. [ 1987.159822] usercopy: Kernel memory exposure at…

πŸ“… Published: April 4, 2024, midnight πŸ”„ Last Modified: May 4, 2025, 8:55 a.m.

5.5

CVSS3.1

CVE-2024-26809 - netfilter: nft_set_pipapo: release elements in clone only from destroy path

In the Linux kernel, the following vulnerability has been resolved: netfilter: nft_set_pipapo: release elements in clone only from destroy path Clone already always provides a current view of the lookup table, use it to destroy the set, otherwise it is possible to destroy elements twice. This fi…

πŸ“… Published: April 4, 2024, midnight πŸ”„ Last Modified: May 4, 2025, 12:54 p.m.

7.5

CVSS3.1

CVE-2024-31025 -

SQL Injection vulnerability in ECshop 4.x allows an attacker to obtain sensitive information via the file/article.php component.

πŸ“… Published: April 4, 2024, midnight πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.
Total resulsts: 349182
Page 10440 of 34,919
Β« previous page Β» next page
Filters