7.1
CVE-2024-49967 - kernel: ext4: no need to continue when the number of entries is 1
This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
5.5
CVE-2024-50016 - kernel: drm/amd/display: Avoid overflow assignment in link_dp_cts
This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
5.5
CVE-2024-47736 - erofs: handle overlapped pclusters out of crafted images properly
In the Linux kernel, the following vulnerability has been resolved: erofs: handle overlapped pclusters out of crafted images properly syzbot reported a task hang issue due to a deadlock case where it is waiting for the folio lock of a cached folio that will be used for cache I/Os. After looking β¦
7.8
CVE-2022-48956 - ipv6: avoid use-after-free in ip6_fragment()
In the Linux kernel, the following vulnerability has been resolved: ipv6: avoid use-after-free in ip6_fragment() Blamed commit claimed rcu_read_lock() was held by ip6_fragment() callers. It seems to not be always true, at least for UDP stack. syzbot reported: BUG: KASAN: use-after-free in ip6_β¦
5.5
CVE-2024-49990 - drm/xe/hdcp: Check GSC structure validity
In the Linux kernel, the following vulnerability has been resolved: drm/xe/hdcp: Check GSC structure validity Sometimes xe_gsc is not initialized when checked at HDCP capability check. Add gsc structure check to avoid null pointer error.
5.5
CVE-2024-49906 - drm/amd/display: Check null pointer before try to access it
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check null pointer before try to access it [why & how] Change the order of the pipe_ctx->plane_state check to ensure that plane_state is not null before accessing it.
7.8
CVE-2024-47691 - f2fs: fix to avoid use-after-free in f2fs_stop_gc_thread()
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid use-after-free in f2fs_stop_gc_thread() syzbot reports a f2fs bug as below: __dump_stack lib/dump_stack.c:88 [inline] dump_stack_lvl+0x241/0x360 lib/dump_stack.c:114 print_report+0xe8/0x550 mm/kasan/report.β¦
5.5
CVE-2024-50001 - net/mlx5: Fix error path in multi-packet WQE transmit
In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Fix error path in multi-packet WQE transmit Remove the erroneous unmap in case no DMA mapping was established The multi-packet WQE transmit code attempts to obtain a DMA mapping for the skb. This could fail, e.g. underβ¦
5.5
CVE-2024-47724 - wifi: ath11k: use work queue to process beacon tx event
In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: use work queue to process beacon tx event Commit 3a415daa3e8b ("wifi: ath11k: add P2P IE in beacon template") from Feb 28, 2024 (linux-next), leads to the following Smatch static checker warning: drivers/net/wireleβ¦
5.5
CVE-2024-50034 - net/smc: fix lacks of icsk_syn_mss with IPPROTO_SMC
In the Linux kernel, the following vulnerability has been resolved: net/smc: fix lacks of icsk_syn_mss with IPPROTO_SMC Eric report a panic on IPPROTO_SMC, and give the facts that when INET_PROTOSW_ICSK was set, icsk->icsk_sync_mss must be set too. Bug: Unable to handle kernel NULL pointer derefβ¦