5.5

CVSS3.1

CVE-2024-26705 - parisc: BTLB: Fix crash when setting up BTLB at CPU bringup

In the Linux kernel, the following vulnerability has been resolved: parisc: BTLB: Fix crash when setting up BTLB at CPU bringup When using hotplug and bringing up a 32-bit CPU, ask the firmware about the BTLB information to set up the static (block) TLB entries. For that write access to the statโ€ฆ

๐Ÿ“… Published: April 3, 2024, midnight ๐Ÿ”„ Last Modified: May 4, 2025, 8:54 a.m.

5.5

CVSS3.1

CVE-2024-26703 - tracing/timerlat: Move hrtimer_init to timerlat_fd open()

In the Linux kernel, the following vulnerability has been resolved: tracing/timerlat: Move hrtimer_init to timerlat_fd open() Currently, the timerlat's hrtimer is initialized at the first read of timerlat_fd, and destroyed at close(). It works, but it causes an error if the user program open() anโ€ฆ

๐Ÿ“… Published: April 3, 2024, midnight ๐Ÿ”„ Last Modified: May 4, 2025, 8:54 a.m.

5.5

CVSS3.1

CVE-2024-26692 - smb: Fix regression in writes when non-standard maximum write size negotiated

In the Linux kernel, the following vulnerability has been resolved: smb: Fix regression in writes when non-standard maximum write size negotiated The conversion to netfs in the 6.3 kernel caused a regression when maximum write size is set by the server to an unexpected value which is not a multipโ€ฆ

๐Ÿ“… Published: April 3, 2024, midnight ๐Ÿ”„ Last Modified: May 4, 2025, 8:54 a.m.

8.8

CVSS3.1

CVE-2024-29477 -

Lack of sanitization during Installation Process in Dolibarr ERP CRM up to version 19.0.0 allows an attacker with adjacent access to the network to execute arbitrary code via a specifically crafted input.

๐Ÿ“… Published: April 3, 2024, midnight ๐Ÿ”„ Last Modified: March 28, 2025, 9:15 p.m.

7.8

CVSS3.1

CVE-2024-26753 - crypto: virtio/akcipher - Fix stack overflow on memcpy

In the Linux kernel, the following vulnerability has been resolved: crypto: virtio/akcipher - Fix stack overflow on memcpy sizeof(struct virtio_crypto_akcipher_session_para) is less than sizeof(struct virtio_crypto_op_ctrl_req::u), copying more bytes from stack variable leads stack overflow. Clanโ€ฆ

๐Ÿ“… Published: April 3, 2024, midnight ๐Ÿ”„ Last Modified: May 4, 2025, 8:55 a.m.

5.5

CVSS3.1

CVE-2024-26735 - ipv6: sr: fix possible use-after-free and null-ptr-deref

In the Linux kernel, the following vulnerability has been resolved: ipv6: sr: fix possible use-after-free and null-ptr-deref The pernet operations structure for the subsystem must be registered before registering the generic netlink family.

๐Ÿ“… Published: April 3, 2024, midnight ๐Ÿ”„ Last Modified: May 4, 2025, 8:55 a.m.

5.5

CVSS3.1

CVE-2024-26688 - fs,hugetlb: fix NULL pointer dereference in hugetlbs_fill_super

In the Linux kernel, the following vulnerability has been resolved: fs,hugetlb: fix NULL pointer dereference in hugetlbs_fill_super When configuring a hugetlb filesystem via the fsconfig() syscall, there is a possible NULL dereference in hugetlbfs_fill_super() caused by assigning NULL to ctx->hstโ€ฆ

๐Ÿ“… Published: April 3, 2024, midnight ๐Ÿ”„ Last Modified: May 4, 2025, 8:54 a.m.

6.5

CVSS3.1

CVE-2024-26690 - net: stmmac: protect updates of 64-bit statistics counters

In the Linux kernel, the following vulnerability has been resolved: net: stmmac: protect updates of 64-bit statistics counters As explained by a comment in <linux/u64_stats_sync.h>, write side of struct u64_stats_sync must ensure mutual exclusion, or one seqcount update could be lost on 32-bit plโ€ฆ

๐Ÿ“… Published: April 3, 2024, midnight ๐Ÿ”„ Last Modified: Jan. 11, 2026, 4:28 p.m.

7.8

CVSS3.1

CVE-2024-31083 - Xorg-x11-server: use-after-free in procrenderaddglyphs

A use-after-free vulnerability was found in the ProcRenderAddGlyphs() function of Xorg servers. This issue occurs when AllocateGlyph() is called to store new glyphs sent by the client to the X server, potentially resulting in multiple entries pointing to the same non-refcounted glyphs. Consequentlyโ€ฆ

๐Ÿ“… Published: April 3, 2024, midnight ๐Ÿ”„ Last Modified: April 15, 2026, 12:35 a.m.

9.1

CVSS3.1

CVE-2023-44039 -

In VeridiumID before 3.5.0, the WebAuthn API allows an internal unauthenticated attacker (who can pass enrollment verifications and is allowed to enroll a FIDO key) to register their FIDO authenticator to a victimโ€™s account and consequently take over the account.

๐Ÿ“… Published: April 3, 2024, midnight ๐Ÿ”„ Last Modified: April 16, 2025, 3:20 p.m.
Total resulsts: 349182
Page 10460 of 34,919
ยซ previous page ยป next page
Filters