5.5

CVSS3.1

CVE-2024-46702 - thunderbolt: Mark XDomain as unplugged when router is removed

In the Linux kernel, the following vulnerability has been resolved: thunderbolt: Mark XDomain as unplugged when router is removed I noticed that when we do discrete host router NVM upgrade and it gets hot-removed from the PCIe side as a result of NVM firmware authentication, if there is another h…

πŸ“… Published: Sept. 13, 2024, midnight πŸ”„ Last Modified: Nov. 3, 2025, 11:15 p.m.

5.5

CVSS3.1

CVE-2024-46682 - nfsd: prevent panic for nfsv4.0 closed files in nfs4_show_open

In the Linux kernel, the following vulnerability has been resolved: nfsd: prevent panic for nfsv4.0 closed files in nfs4_show_open Prior to commit 3f29cc82a84c ("nfsd: split sc_status out of sc_type") states_show() relied on sc_type field to be of valid type before calling into a subfunction to s…

πŸ“… Published: Sept. 13, 2024, midnight πŸ”„ Last Modified: May 4, 2025, 9:31 a.m.

7.8

CVSS3.1

CVE-2024-46699 - drm/v3d: Disable preemption while updating GPU stats

In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Disable preemption while updating GPU stats We forgot to disable preemption around the write_seqcount_begin/end() pair while updating GPU stats: [ ] WARNING: CPU: 2 PID: 12 at include/linux/seqlock.h:221 __seqprop_ass…

πŸ“… Published: Sept. 13, 2024, midnight πŸ”„ Last Modified: May 4, 2025, 9:32 a.m.

5.5

CVSS3.1

CVE-2024-46697 - nfsd: ensure that nfsd4_fattr_args.context is zeroed out

In the Linux kernel, the following vulnerability has been resolved: nfsd: ensure that nfsd4_fattr_args.context is zeroed out If nfsd4_encode_fattr4 ends up doing a "goto out" before we get to checking for the security label, then args.context will be set to uninitialized junk on the stack, which …

πŸ“… Published: Sept. 13, 2024, midnight πŸ”„ Last Modified: May 4, 2025, 9:32 a.m.

5.5

CVSS3.1

CVE-2024-46690 - nfsd: fix nfsd4_deleg_getattr_conflict in presence of third party lease

In the Linux kernel, the following vulnerability has been resolved: nfsd: fix nfsd4_deleg_getattr_conflict in presence of third party lease It is not safe to dereference fl->c.flc_owner without first confirming fl->fl_lmops is the expected manager. nfsd4_deleg_getattr_conflict() tests fl_lmops b…

πŸ“… Published: Sept. 13, 2024, midnight πŸ”„ Last Modified: May 4, 2025, 9:31 a.m.

5.5

CVSS3.1

CVE-2024-46688 - erofs: fix out-of-bound access when z_erofs_gbuf_growsize() partially fails

In the Linux kernel, the following vulnerability has been resolved: erofs: fix out-of-bound access when z_erofs_gbuf_growsize() partially fails If z_erofs_gbuf_growsize() partially fails on a global buffer due to memory allocation failure or fault injection (as reported by syzbot [1]), new pages …

πŸ“… Published: Sept. 13, 2024, midnight πŸ”„ Last Modified: May 4, 2025, 9:31 a.m.

7.8

CVSS3.1

CVE-2024-46687 - btrfs: fix a use-after-free when hitting errors inside btrfs_submit_chunk()

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix a use-after-free when hitting errors inside btrfs_submit_chunk() [BUG] There is an internal report that KASAN is reporting use-after-free, with the following backtrace: BUG: KASAN: slab-use-after-free in btrfs_check…

πŸ“… Published: Sept. 13, 2024, midnight πŸ”„ Last Modified: May 4, 2025, 9:31 a.m.

5.5

CVSS3.1

CVE-2024-46684 - binfmt_elf_fdpic: fix AUXV size calculation when ELF_HWCAP2 is defined

In the Linux kernel, the following vulnerability has been resolved: binfmt_elf_fdpic: fix AUXV size calculation when ELF_HWCAP2 is defined create_elf_fdpic_tables() does not correctly account the space for the AUX vector when an architecture has ELF_HWCAP2 defined. Prior to the commit 10e29251be0…

πŸ“… Published: Sept. 13, 2024, midnight πŸ”„ Last Modified: May 4, 2025, 9:31 a.m.

5.5

CVSS3.1

CVE-2024-46681 - pktgen: use cpus_read_lock() in pg_net_init()

In the Linux kernel, the following vulnerability has been resolved: pktgen: use cpus_read_lock() in pg_net_init() I have seen the WARN_ON(smp_processor_id() != cpu) firing in pktgen_thread_worker() during tests. We must use cpus_read_lock()/cpus_read_unlock() around the for_each_online_cpu(cpu) …

πŸ“… Published: Sept. 13, 2024, midnight πŸ”„ Last Modified: May 4, 2025, 9:31 a.m.

5.5

CVSS3.1

CVE-2024-46678 - bonding: change ipsec_lock from spin lock to mutex

In the Linux kernel, the following vulnerability has been resolved: bonding: change ipsec_lock from spin lock to mutex In the cited commit, bond->ipsec_lock is added to protect ipsec_list, hence xdo_dev_state_add and xdo_dev_state_delete are called inside this lock. As ipsec_lock is a spin lock a…

πŸ“… Published: Sept. 13, 2024, midnight πŸ”„ Last Modified: May 4, 2025, 12:58 p.m.
Total resulsts: 349182
Page 8577 of 34,919
Β« previous page Β» next page
Filters