5.5

CVSS3.1

CVE-2024-50184 - virtio_pmem: Check device status before requesting flush

In the Linux kernel, the following vulnerability has been resolved: virtio_pmem: Check device status before requesting flush If a pmem device is in a bad status, the driver side could wait for host ack forever in virtio_pmem_flush(), causing the system to hang. So add a status check in the begin…

πŸ“… Published: Nov. 8, 2024, midnight πŸ”„ Last Modified: Nov. 3, 2025, 11:16 p.m.

4.7

CVSS3.1

CVE-2024-50174 - drm/panthor: Fix race when converting group handle to group object

In the Linux kernel, the following vulnerability has been resolved: drm/panthor: Fix race when converting group handle to group object XArray provides it's own internal lock which protects the internal array when entries are being simultaneously added and removed. However there is still a race be…

πŸ“… Published: Nov. 8, 2024, midnight πŸ”„ Last Modified: Oct. 1, 2025, 9:15 p.m.

5.5

CVSS3.1

CVE-2024-50173 - drm/panthor: Fix access to uninitialized variable in tick_ctx_cleanup()

In the Linux kernel, the following vulnerability has been resolved: drm/panthor: Fix access to uninitialized variable in tick_ctx_cleanup() The group variable can't be used to retrieve ptdev in our second loop, because it points to the previously iterated list_head, not a valid group. Get the ptd…

πŸ“… Published: Nov. 8, 2024, midnight πŸ”„ Last Modified: Oct. 1, 2025, 9:15 p.m.

5.5

CVSS3.1

CVE-2024-50182 - secretmem: disable memfd_secret() if arch cannot set direct map

In the Linux kernel, the following vulnerability has been resolved: secretmem: disable memfd_secret() if arch cannot set direct map Return -ENOSYS from memfd_secret() syscall if !can_set_direct_map(). This is the case for example on some arm64 configurations, where marking 4k PTEs in the direct …

πŸ“… Published: Nov. 8, 2024, midnight πŸ”„ Last Modified: Nov. 3, 2025, 11:16 p.m.

8.8

CVSS3.1

CVE-2024-50634 -

A vulnerability in a weak JWT token in Watcharr v1.43.0 and below allows attackers to perform privilege escalation using a crafted JWT token. This vulnerability is not limited to privilege escalation but also affects all functions that require authentication.

πŸ“… Published: Nov. 8, 2024, midnight πŸ”„ Last Modified: Nov. 14, 2024, 8:40 p.m.

7.8

CVSS3.1

CVE-2024-35423 -

vmir e8117 was discovered to contain a heap buffer overflow via the wasm_parse_section_functions function at /src/vmir_wasm_parser.c.

πŸ“… Published: Nov. 8, 2024, midnight πŸ”„ Last Modified: June 5, 2025, 3:35 p.m.

6.5

CVSS3.1

CVE-2024-51055 -

An issue Hoosk v1.7.1 allows a remote attacker to execute arbitrary code via a crafted script to the config.php component.

πŸ“… Published: Nov. 8, 2024, midnight πŸ”„ Last Modified: April 18, 2025, 2:38 p.m.

5.3

CVSS3.1

CVE-2024-46948 -

Northern.tech Mender before 3.6.5 and 3.7.x before 3.7.5 has Incorrect Access Control.

πŸ“… Published: Nov. 8, 2024, midnight πŸ”„ Last Modified: Feb. 10, 2025, 11:15 p.m.

6.5

CVSS3.1

CVE-2024-46947 -

Northern.tech Mender before 3.6.6 and 3.7.x before 3.7.7 allows SSRF.

πŸ“… Published: Nov. 8, 2024, midnight πŸ”„ Last Modified: Nov. 8, 2024, 7:35 p.m.

5.5

CVSS3.1

CVE-2024-50177 - drm/amd/display: fix a UBSAN warning in DML2.1

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: fix a UBSAN warning in DML2.1 When programming phantom pipe, since cursor_width is explicity set to 0, this causes calculation logic to trigger overflow for an unsigned int triggering the kernel's UBSAN check as …

πŸ“… Published: Nov. 8, 2024, midnight πŸ”„ Last Modified: Oct. 1, 2025, 9:15 p.m.
Total resulsts: 343168
Page 7384 of 34,317
Β« previous page Β» next page
Filters