CVE List - 2024 / October
Showing 2201 - 2300 of 3571 CVEs for October 2024 (Page 23 of 36)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2024-49368 | 2024-10-21 | Unchecked logrotate settings lead to arbitrary command execution |
| CVE-2024-49863 | 2024-10-21 | vhost/scsi: null-ptr-dereference in vhost_scsi_get_req() |
| CVE-2024-49864 | 2024-10-21 | rxrpc: Fix a race between socket set up and I/O thread creation |
| CVE-2024-49865 | 2024-10-21 | drm/xe/vm: move xa_alloc to prevent UAF |
| CVE-2024-49866 | 2024-10-21 | tracing/timerlat: Fix a race during cpuhp processing |
| CVE-2024-49867 | 2024-10-21 | btrfs: wait for fixup workers before stopping cleaner kthread during umount |
| CVE-2024-49868 | 2024-10-21 | btrfs: fix a NULL pointer dereference when failed to start a new trasacntion |
| CVE-2024-49869 | 2024-10-21 | btrfs: send: fix buffer overflow detection when copying path to cache entry |
| CVE-2024-49870 | 2024-10-21 | cachefiles: fix dentry leak in cachefiles_open_file() |
| CVE-2024-49871 | 2024-10-21 | Input: adp5589-keys - fix NULL pointer dereference |
| CVE-2024-49872 | 2024-10-21 | mm/gup: fix memfd_pin_folios alloc race panic |
| CVE-2024-49873 | 2024-10-21 | mm/filemap: fix filemap_get_folios_contig THP panic |
| CVE-2024-49874 | 2024-10-21 | i3c: master: svc: Fix use after free vulnerability in svc_i3c_master Driver Due to Race Condition |
| CVE-2024-49875 | 2024-10-21 | nfsd: map the EBADMSG to nfserr_io to avoid warning |
| CVE-2024-49876 | 2024-10-21 | drm/xe: fix UAF around queue destruction |
| CVE-2024-49877 | 2024-10-21 | ocfs2: fix possible null-ptr-deref in ocfs2_set_buffer_uptodate |
| CVE-2024-49878 | 2024-10-21 | resource: fix region_intersects() vs add_memory_driver_managed() |
| CVE-2024-49879 | 2024-10-21 | drm: omapdrm: Add missing check for alloc_ordered_workqueue |
| CVE-2024-49880 | 2024-10-21 | ext4: fix off by one issue in alloc_flex_gd() |
| CVE-2024-49881 | 2024-10-21 | ext4: update orig_path in ext4_find_extent() |
| CVE-2024-49882 | 2024-10-21 | ext4: fix double brelse() the buffer of the extents path |
| CVE-2024-49883 | 2024-10-21 | ext4: aovid use-after-free in ext4_ext_insert_extent() |
| CVE-2024-49884 | 2024-10-21 | ext4: fix slab-use-after-free in ext4_split_extent_at() |
| CVE-2024-49885 | 2024-10-21 | mm, slub: avoid zeroing kmalloc redzone |
| CVE-2024-49886 | 2024-10-21 | platform/x86: ISST: Fix the KASAN report slab-out-of-bounds bug |
| CVE-2024-49887 | 2024-10-21 | f2fs: fix to don't panic system for no free segment fault injection |
| CVE-2024-49888 | 2024-10-21 | bpf: Fix a sdiv overflow issue |
| CVE-2024-49889 | 2024-10-21 | ext4: avoid use-after-free in ext4_ext_show_leaf() |
| CVE-2024-49890 | 2024-10-21 | drm/amd/pm: ensure the fw_info is not null before using it |
| CVE-2024-49891 | 2024-10-21 | scsi: lpfc: Validate hdwq pointers before dereferencing in reset/errata paths |
| CVE-2024-49892 | 2024-10-21 | drm/amd/display: Initialize get_bytes_per_element's default to 1 |
| CVE-2024-49893 | 2024-10-21 | drm/amd/display: Check stream_status before it is used |
| CVE-2024-49894 | 2024-10-21 | drm/amd/display: Fix index out of bounds in degamma hardware format translation |
| CVE-2024-49895 | 2024-10-21 | drm/amd/display: Fix index out of bounds in DCN30 degamma hardware format translation |
| CVE-2024-49896 | 2024-10-21 | drm/amd/display: Check stream before comparing them |
| CVE-2024-49897 | 2024-10-21 | drm/amd/display: Check phantom_stream before it is used |
| CVE-2024-49898 | 2024-10-21 | drm/amd/display: Check null-initialized variables |
| CVE-2024-49899 | 2024-10-21 | drm/amd/display: Initialize denominators' default to 1 |
| CVE-2024-49900 | 2024-10-21 | jfs: Fix uninit-value access of new_ea in ea_buffer |
| CVE-2024-49901 | 2024-10-21 | drm/msm/adreno: Assign msm_gpu->pdev earlier to avoid nullptrs |
| CVE-2024-49902 | 2024-10-21 | jfs: check if leafidx greater than num leaves per dmap tree |
| CVE-2024-49903 | 2024-10-21 | jfs: Fix uaf in dbFreeBits |
| CVE-2024-49904 | 2024-10-21 | drm/amdgpu: add list empty check to avoid null pointer issue |
| CVE-2024-49905 | 2024-10-21 | drm/amd/display: Add null check for 'afb' in amdgpu_dm_plane_handle_cursor_update (v2) |
| CVE-2024-49906 | 2024-10-21 | drm/amd/display: Check null pointer before try to access it |
| CVE-2024-49907 | 2024-10-21 | drm/amd/display: Check null pointers before using dc->clk_mgr |
| CVE-2024-49908 | 2024-10-21 | drm/amd/display: Add null check for 'afb' in amdgpu_dm_update_cursor (v2) |
| CVE-2024-49909 | 2024-10-21 | drm/amd/display: Add NULL check for function pointer in dcn32_set_output_transfer_func |
| CVE-2024-49910 | 2024-10-21 | drm/amd/display: Add NULL check for function pointer in dcn401_set_output_transfer_func |
| CVE-2024-49911 | 2024-10-21 | drm/amd/display: Add NULL check for function pointer in dcn20_set_output_transfer_func |
| CVE-2024-49912 | 2024-10-21 | drm/amd/display: Handle null 'stream_status' in 'planes_changed_for_existing_stream' |
| CVE-2024-49913 | 2024-10-21 | drm/amd/display: Add null check for top_pipe_to_program in commit_planes_for_stream |
| CVE-2024-49914 | 2024-10-21 | drm/amd/display: Add null check for pipe_ctx->plane_state in dcn20_program_pipe |
| CVE-2024-49915 | 2024-10-21 | drm/amd/display: Add NULL check for clk_mgr in dcn32_init_hw |
| CVE-2024-49916 | 2024-10-21 | drm/amd/display: Add NULL check for clk_mgr and clk_mgr->funcs in dcn401_init_hw |
| CVE-2024-49917 | 2024-10-21 | drm/amd/display: Add NULL check for clk_mgr and clk_mgr->funcs in dcn30_init_hw |
| CVE-2024-49918 | 2024-10-21 | drm/amd/display: Add null check for head_pipe in dcn32_acquire_idle_pipe_for_head_pipe_in_layer |
| CVE-2024-49919 | 2024-10-21 | drm/amd/display: Add null check for head_pipe in dcn201_acquire_free_pipe_for_layer |
| CVE-2024-49920 | 2024-10-21 | drm/amd/display: Check null pointers before multiple uses |
| CVE-2024-49921 | 2024-10-21 | drm/amd/display: Check null pointers before used |
| CVE-2024-49922 | 2024-10-21 | drm/amd/display: Check null pointers before using them |
| CVE-2024-49923 | 2024-10-21 | drm/amd/display: Pass non-null to dcn20_validate_apply_pipe_split_flags |
| CVE-2024-49924 | 2024-10-21 | fbdev: pxafb: Fix possible use after free in pxafb_task() |
| CVE-2024-49925 | 2024-10-21 | fbdev: efifb: Register sysfs groups through driver core |
| CVE-2024-49926 | 2024-10-21 | rcu-tasks: Fix access non-existent percpu rtpcp variable in rcu_tasks_need_gpcb() |
| CVE-2024-49927 | 2024-10-21 | x86/ioapic: Handle allocation failures gracefully |
| CVE-2024-49928 | 2024-10-21 | wifi: rtw89: avoid reading out of bounds when loading TX power FW elements |
| CVE-2024-49929 | 2024-10-21 | wifi: iwlwifi: mvm: avoid NULL pointer dereference |
| CVE-2024-49930 | 2024-10-21 | wifi: ath11k: fix array out-of-bound access in SoC stats |
| CVE-2024-49931 | 2024-10-21 | wifi: ath12k: fix array out-of-bound access in SoC stats |
| CVE-2024-49932 | 2024-10-21 | btrfs: don't readahead the relocation inode on RST |
| CVE-2024-49933 | 2024-10-21 | blk_iocost: fix more out of bound shifts |
| CVE-2024-49934 | 2024-10-21 | fs/inode: Prevent dump_mapping() accessing invalid dentry.d_name.name |
| CVE-2024-49935 | 2024-10-21 | ACPI: PAD: fix crash in exit_round_robin() |
| CVE-2024-49936 | 2024-10-21 | net/xen-netback: prevent UAF in xenvif_flush_hash() |
| CVE-2024-49937 | 2024-10-21 | wifi: cfg80211: Set correct chandef when starting CAC |
| CVE-2024-49938 | 2024-10-21 | wifi: ath9k_htc: Use __skb_set_length() for resetting urb before resubmit |
| CVE-2024-49939 | 2024-10-21 | wifi: rtw89: avoid to add interface to list twice when SER |
| CVE-2024-49940 | 2024-10-21 | l2tp: prevent possible tunnel refcount underflow |
| CVE-2024-49941 | 2024-10-21 | gpiolib: Fix potential NULL pointer dereference in gpiod_get_label() |
| CVE-2024-49942 | 2024-10-21 | drm/xe: Prevent null pointer access in xe_migrate_copy |
| CVE-2024-49943 | 2024-10-21 | drm/xe/guc_submit: add missing locking in wedged_fini |
| CVE-2024-49944 | 2024-10-21 | sctp: set sk_state back to CLOSED if autobind fails in sctp_listen_start |
| CVE-2024-49945 | 2024-10-21 | net/ncsi: Disable the ncsi work before freeing the associated structure |
| CVE-2024-49946 | 2024-10-21 | ppp: do not assume bh is held in ppp_channel_bridge_input() |
| CVE-2024-49947 | 2024-10-21 | net: test for not too small csum_start in virtio_net_hdr_to_skb() |
| CVE-2024-49948 | 2024-10-21 | net: add more sanity checks to qdisc_pkt_len_init() |
| CVE-2024-49949 | 2024-10-21 | net: avoid potential underflow in qdisc_pkt_len_init() with UFO |
| CVE-2024-49950 | 2024-10-21 | Bluetooth: L2CAP: Fix uaf in l2cap_connect |
| CVE-2024-49951 | 2024-10-21 | Bluetooth: MGMT: Fix possible crash on mgmt_index_removed |
| CVE-2024-49952 | 2024-10-21 | netfilter: nf_tables: prevent nf_skb_duplicated corruption |
| CVE-2024-49953 | 2024-10-21 | net/mlx5e: Fix crash caused by calling __xfrm_state_delete() twice |
| CVE-2024-49954 | 2024-10-21 | static_call: Replace pointless WARN_ON() in static_call_module_notify() |
| CVE-2024-49955 | 2024-10-21 | ACPI: battery: Fix possible crash when unregistering a battery hook |
| CVE-2024-49956 | 2024-10-21 | gfs2: fix double destroy_workqueue error |
| CVE-2024-49957 | 2024-10-21 | ocfs2: fix null-ptr-deref when journal load failed. |
| CVE-2024-49958 | 2024-10-21 | ocfs2: reserve space for inline xattr before attaching reflink tree |
| CVE-2024-49959 | 2024-10-21 | jbd2: stop waiting for space when jbd2_cleanup_journal_tail() returns error |
| CVE-2024-49960 | 2024-10-21 | ext4: fix timer use-after-free on failed mount |
| CVE-2024-49961 | 2024-10-21 | media: i2c: ar0521: Use cansleep version of gpiod_set_value() |