5.5

CVSS3.1

CVE-2024-26715 - usb: dwc3: gadget: Fix NULL pointer dereference in dwc3_gadget_suspend

In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: gadget: Fix NULL pointer dereference in dwc3_gadget_suspend In current scenario if Plug-out and Plug-In performed continuously there could be a chance while checking for dwc->gadget_driver in dwc3_gadget_suspend, a NUL…

πŸ“… Published: April 3, 2024, midnight πŸ”„ Last Modified: May 4, 2025, 12:54 p.m.

4.4

CVSS3.1

CVE-2024-26712 - powerpc/kasan: Fix addr error caused by page alignment

In the Linux kernel, the following vulnerability has been resolved: powerpc/kasan: Fix addr error caused by page alignment In kasan_init_region, when k_start is not page aligned, at the begin of for loop, k_cur = k_start & PAGE_MASK is less than k_start, and then `va = block + k_cur - k_start` is…

πŸ“… Published: April 3, 2024, midnight πŸ”„ Last Modified: May 7, 2025, 8 p.m.

4.4

CVSS3.1

CVE-2024-26713 - kernel: powerpc/pseries/iommu: Fix iommu initialisation during DLPAR add

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

πŸ“… Published: April 3, 2024, midnight πŸ”„ Last Modified: Dec. 19, 2024, 12:15 p.m.

5.5

CVSS3.1

CVE-2024-26693 - wifi: iwlwifi: mvm: fix a crash when we run out of stations

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: fix a crash when we run out of stations A DoS tool that injects loads of authentication frames made our AP crash. The iwl_mvm_is_dup() function couldn't find the per-queue dup_data which was not allocated. Th…

πŸ“… Published: April 3, 2024, midnight πŸ”„ Last Modified: May 4, 2025, 8:54 a.m.

7.5

CVSS3.1

CVE-2024-27919 - HTTP/2: memory exhaustion due to CONTINUATION frame flood

Envoy is a cloud-native, open-source edge and service proxy. In versions 1.29.0 and 1.29.1, theEnvoy HTTP/2 protocol stack is vulnerable to the flood of CONTINUATION frames. Envoy's HTTP/2 codec does not reset a request when header map limits have been exceeded. This allows an attacker to send an s…

πŸ“… Published: April 3, 2024, midnight πŸ”„ Last Modified: Nov. 4, 2025, 7:17 p.m.

5.5

CVSS3.1

CVE-2024-26710 - powerpc/kasan: Limit KASAN thread size increase to 32KB

In the Linux kernel, the following vulnerability has been resolved: powerpc/kasan: Limit KASAN thread size increase to 32KB KASAN is seen to increase stack usage, to the point that it was reported to lead to stack overflow on some 32-bit machines (see link). To avoid overflows the stack size was…

πŸ“… Published: April 3, 2024, midnight πŸ”„ Last Modified: Dec. 23, 2025, 4:39 p.m.

5.5

CVSS3.1

CVE-2024-26720 - kernel: mm/writeback: fix possible divide-by-zero in wb_dirty_limits(), again

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

πŸ“… Published: April 3, 2024, midnight πŸ”„ Last Modified: Dec. 19, 2024, 12:15 p.m.

5.3

CVSS3.1

CVE-2024-30255 - HTTP/2: CPU exhaustion due to CONTINUATION frame flood

Envoy is a cloud-native, open source edge and service proxy. The HTTP/2 protocol stack in Envoy versions prior to 1.29.3, 1.28.2, 1.27.4, and 1.26.8 are vulnerable to CPU exhaustion due to flood of CONTINUATION frames. Envoy's HTTP/2 codec allows the client to send an unlimited number of CONTINUATI…

πŸ“… Published: April 3, 2024, midnight πŸ”„ Last Modified: Nov. 4, 2025, 7:17 p.m.

5.5

CVSS3.1

CVE-2024-26714 - interconnect: qcom: sc8180x: Mark CO0 BCM keepalive

In the Linux kernel, the following vulnerability has been resolved: interconnect: qcom: sc8180x: Mark CO0 BCM keepalive The CO0 BCM needs to be up at all times, otherwise some hardware (like the UFS controller) loses its connection to the rest of the SoC, resulting in a hang of the platform, acco…

πŸ“… Published: April 3, 2024, midnight πŸ”„ Last Modified: May 4, 2025, 8:54 a.m.

5.5

CVSS3.1

CVE-2024-26779 - wifi: mac80211: fix race condition on enabling fast-xmit

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: fix race condition on enabling fast-xmit fast-xmit must only be enabled after the sta has been uploaded to the driver, otherwise it could end up passing the not-yet-uploaded sta via drv_tx calls to the driver, lea…

πŸ“… Published: April 3, 2024, midnight πŸ”„ Last Modified: Jan. 5, 2026, 10:34 a.m.
Total resulsts: 349182
Page 10466 of 34,919
Β« previous page Β» next page
Filters