5.5

CVSS3.1

CVE-2023-52641 - fs/ntfs3: Add NULL ptr dereference checking at the end of attr_allocate_frame()

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Add NULL ptr dereference checking at the end of attr_allocate_frame() It is preferable to exit through the out: label because internal debugging functions are located there.

πŸ“… Published: April 3, 2024, midnight πŸ”„ Last Modified: May 4, 2025, 7:40 a.m.

6.1

CVSS3.1

CVE-2024-26495 -

Cross Site Scripting (XSS) vulnerability in Friendica versions after v.2023.12, allows a remote attacker to execute arbitrary code and obtain sensitive information via the BBCode tags in the post content and post comments function.

πŸ“… Published: April 3, 2024, midnight πŸ”„ Last Modified: April 7, 2025, 2:25 p.m.

5.3

CVSS3.1

CVE-2024-28182 - Reading unbounded number of HTTP/2 CONTINUATION frames to cause excessive CPU usage

nghttp2 is an implementation of the Hypertext Transfer Protocol version 2 in C. The nghttp2 library prior to version 1.61.0 keeps reading the unbounded number of HTTP/2 CONTINUATION frames even after a stream is reset to keep HPACK context in sync. This causes excessive CPU usage to decode HPACK s…

πŸ“… Published: April 3, 2024, midnight πŸ”„ Last Modified: Nov. 4, 2025, 7:17 p.m.

3.3

CVSS3.1

CVE-2024-26764 - fs/aio: Restrict kiocb_set_cancel_fn() to I/O submitted via libaio

In the Linux kernel, the following vulnerability has been resolved: fs/aio: Restrict kiocb_set_cancel_fn() to I/O submitted via libaio If kiocb_set_cancel_fn() is called for I/O submitted via io_uring, the following kernel warning appears: WARNING: CPU: 3 PID: 368 at fs/aio.c:598 kiocb_set_cance…

πŸ“… Published: April 3, 2024, midnight πŸ”„ Last Modified: Jan. 5, 2026, 10:34 a.m.

8.2

CVSS3.1

CVE-2024-2653 - CVE-2024-2653

amphp/http will collect CONTINUATION frames in an unbounded buffer and will not check a limit until it has received the set END_HEADERS flag, resulting in an OOM crash.

πŸ“… Published: April 3, 2024, midnight πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

9.8

CVSS3.1

CVE-2024-24724 -

Gibbon through 26.0.00 allows /modules/School%20Admin/messengerSettings.php Server Side Template Injection leading to Remote Code Execution because input is passed to the Twig template engine (messengerSettings.php) without sanitization.

πŸ“… Published: April 3, 2024, midnight πŸ”„ Last Modified: July 17, 2025, 5:09 p.m.

5.5

CVSS3.1

CVE-2024-26778 - fbdev: savage: Error out if pixclock equals zero

In the Linux kernel, the following vulnerability has been resolved: fbdev: savage: Error out if pixclock equals zero The userspace program could pass any values to the driver through ioctl() interface. If the driver doesn't check the value of pixclock, it may cause divide-by-zero error. Although…

πŸ“… Published: April 3, 2024, midnight πŸ”„ Last Modified: May 4, 2025, 8:56 a.m.

4.3

CVSS3.1

CVE-2024-31419 - Cnv: information disclosure through the usage of vm-dump-metrics

An information disclosure flaw was found in OpenShift Virtualization. The DownwardMetrics feature was introduced to expose host metrics to virtual machine guests and is enabled by default. This issue could expose limited host metrics of a node to any guest in any namespace without being explicitly …

πŸ“… Published: April 3, 2024, midnight πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

5.5

CVSS3.1

CVE-2024-26774 - ext4: avoid dividing by 0 in mb_update_avg_fragment_size() when block bitmap corrupt

In the Linux kernel, the following vulnerability has been resolved: ext4: avoid dividing by 0 in mb_update_avg_fragment_size() when block bitmap corrupt Determine if bb_fragments is 0 instead of determining bb_free to eliminate the risk of dividing by zero when the block bitmap is corrupted.

πŸ“… Published: April 3, 2024, midnight πŸ”„ Last Modified: June 19, 2025, 1:15 p.m.

5.5

CVSS3.1

CVE-2024-26706 - parisc: Fix random data corruption from exception handler

In the Linux kernel, the following vulnerability has been resolved: parisc: Fix random data corruption from exception handler The current exception handler implementation, which assists when accessing user space memory, may exhibit random data corruption if the compiler decides to use a different…

πŸ“… Published: April 3, 2024, midnight πŸ”„ Last Modified: Jan. 5, 2026, 10:34 a.m.
Total resulsts: 349182
Page 10462 of 34,919
Β« previous page Β» next page
Filters