5.5

CVSS3.1

CVE-2024-57930 - tracing: Have process_string() also allow arrays

In the Linux kernel, the following vulnerability has been resolved: tracing: Have process_string() also allow arrays In order to catch a common bug where a TRACE_EVENT() TP_fast_assign() assigns an address of an allocated string to the ring buffer and then references it in TP_printk(), which can …

πŸ“… Published: Jan. 21, 2025, midnight πŸ”„ Last Modified: Nov. 3, 2025, 9:18 p.m.

5.5

CVSS3.1

CVE-2024-57946 - virtio-blk: don't keep queue frozen during system suspend

In the Linux kernel, the following vulnerability has been resolved: virtio-blk: don't keep queue frozen during system suspend Commit 4ce6e2db00de ("virtio-blk: Ensure no requests in virtqueues before deleting vqs.") replaces queue quiesce with queue freeze in virtio-blk's PM callbacks. And the mo…

πŸ“… Published: Jan. 21, 2025, midnight πŸ”„ Last Modified: Nov. 3, 2025, 9:18 p.m.

6.4

CVSS3.1

CVE-2024-51417 -

An issue in System.Linq.Dynamic.Core before 1.6.0 allows remote access to properties on reflection types and static properties/fields.

πŸ“… Published: Jan. 21, 2025, midnight πŸ”„ Last Modified: Feb. 4, 2025, 4:15 p.m.

5.5

CVSS3.1

CVE-2024-57938 - net/sctp: Prevent autoclose integer overflow in sctp_association_init()

In the Linux kernel, the following vulnerability has been resolved: net/sctp: Prevent autoclose integer overflow in sctp_association_init() While by default max_autoclose equals to INT_MAX / HZ, one may set net.sctp.max_autoclose to UINT_MAX. There is code in sctp_association_init() that can cons…

πŸ“… Published: Jan. 21, 2025, midnight πŸ”„ Last Modified: Nov. 3, 2025, 9:18 p.m.

7.5

CVSS3.1

CVE-2024-24423 -

The Linux Foundation Magma <= 1.8.0 (fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486) was discovered to contain a buffer overflow in the decode_esm_message_container function at /nas/ies/EsmMessageContainer.cpp. This vulnerability allows attackers to cause a Denial of Service (DoS) vi…

πŸ“… Published: Jan. 21, 2025, midnight πŸ”„ Last Modified: March 18, 2025, 7:15 p.m.

4.7

CVSS3.1

CVE-2024-57934 - fgraph: Add READ_ONCE() when accessing fgraph_array[]

In the Linux kernel, the following vulnerability has been resolved: fgraph: Add READ_ONCE() when accessing fgraph_array[] In __ftrace_return_to_handler(), a loop iterates over the fgraph_array[] elements, which are fgraph_ops. The loop checks if an element is a fgraph_stub to prevent using a fgra…

πŸ“… Published: Jan. 21, 2025, midnight πŸ”„ Last Modified: Oct. 1, 2025, 8:18 p.m.

7.5

CVSS3.1

CVE-2023-37029 -

Magma versions <= 1.8.0 (fixed in v1.9 commit 08472ba98b8321f802e95f5622fa90fec2dea486) are susceptible to an assertion-based crash when an oversized NAS packet is received. An attacker may leverage this behavior to repeatedly crash the MME via either a compromised base station or via an unauthenti…

πŸ“… Published: Jan. 21, 2025, midnight πŸ”„ Last Modified: Jan. 27, 2025, 2:39 p.m.

5.5

CVSS3.1

CVE-2024-57545 -

Linksys E8450 v1.2.00.360516 was discovered to contain a buffer overflow vulnerability. The parsed field (hidden_dhcp_num) is copied to the stack without length verification.

πŸ“… Published: Jan. 21, 2025, midnight πŸ”„ Last Modified: April 22, 2025, 2:11 p.m.

4.2

CVSS3.1

CVE-2024-56997 -

PHPGurukul Hospital Management System 4.0 is vulnerable to Cross Site Scripting (XSS) in /doctor/index.php via the 'Email' parameter.

πŸ“… Published: Jan. 21, 2025, midnight πŸ”„ Last Modified: April 9, 2025, 6:34 p.m.

5.5

CVSS3.1

CVE-2024-57935 - RDMA/hns: Fix accessing invalid dip_ctx during destroying QP

In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: Fix accessing invalid dip_ctx during destroying QP If it fails to modify QP to RTR, dip_ctx will not be attached. And during detroying QP, the invalid dip_ctx pointer will be accessed.

πŸ“… Published: Jan. 21, 2025, midnight πŸ”„ Last Modified: Oct. 15, 2025, 1:51 p.m.
Total resulsts: 344670
Page 6586 of 34,467
Β« previous page Β» next page
Filters