CVE List - 2024 / May
Showing 4801 - 4900 of 4997 CVEs for May 2024 (Page 49 of 50)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2024-36031 | 2024-05-30 | keys: Fix overwrite of key expiration on instantiation |
| CVE-2024-36032 | 2024-05-30 | Bluetooth: qca: fix info leak when fetching fw build id |
| CVE-2024-36033 | 2024-05-30 | Bluetooth: qca: fix info leak when fetching board id |
| CVE-2024-36880 | 2024-05-30 | Bluetooth: qca: add missing firmware sanity checks |
| CVE-2024-36881 | 2024-05-30 | mm/userfaultfd: reset ptes when close() for wr-protected ones |
| CVE-2024-36882 | 2024-05-30 | mm: use memalloc_nofs_save() in page_cache_ra_order() |
| CVE-2024-36883 | 2024-05-30 | net: fix out-of-bounds access in ops_init |
| CVE-2024-36884 | 2024-05-30 | iommu/arm-smmu: Use the correct type in nvidia_smmu_context_fault() |
| CVE-2024-36886 | 2024-05-30 | tipc: fix UAF in error path |
| CVE-2024-36887 | 2024-05-30 | e1000e: change usleep_range to udelay in PHY mdic access |
| CVE-2024-36888 | 2024-05-30 | workqueue: Fix selection of wake_cpu in kick_pool() |
| CVE-2024-36889 | 2024-05-30 | mptcp: ensure snd_nxt is properly initialized on connect |
| CVE-2024-36890 | 2024-05-30 | mm/slab: make __free(kfree) accept error pointers |
| CVE-2024-36891 | 2024-05-30 | maple_tree: fix mas_empty_area_rev() null pointer dereference |
| CVE-2024-36892 | 2024-05-30 | mm/slub: avoid zeroing outside-object freepointer for single free |
| CVE-2024-36893 | 2024-05-30 | usb: typec: tcpm: Check for port partner validity before consuming it |
| CVE-2024-36894 | 2024-05-30 | usb: gadget: f_fs: Fix race between aio_cancel() and AIO request complete |
| CVE-2024-36895 | 2024-05-30 | usb: gadget: uvc: use correct buffer size when parsing configfs lists |
| CVE-2024-36896 | 2024-05-30 | USB: core: Fix access violation during port device removal |
| CVE-2024-36897 | 2024-05-30 | drm/amd/display: Atom Integrated System Info v2_2 for DCN35 |
| CVE-2024-36898 | 2024-05-30 | gpiolib: cdev: fix uninitialised kfifo |
| CVE-2024-36899 | 2024-05-30 | gpiolib: cdev: Fix use after free in lineinfo_changed_notify |
| CVE-2024-36900 | 2024-05-30 | net: hns3: fix kernel crash when devlink reload during initialization |
| CVE-2024-36901 | 2024-05-30 | ipv6: prevent NULL dereference in ip6_output() |
| CVE-2024-36902 | 2024-05-30 | ipv6: fib6_rules: avoid possible NULL dereference in fib6_rule_action() |
| CVE-2024-36903 | 2024-05-30 | ipv6: Fix potential uninit-value access in __ip6_make_skb() |
| CVE-2024-36904 | 2024-05-30 | tcp: Use refcount_inc_not_zero() in tcp_twsk_unique(). |
| CVE-2024-36905 | 2024-05-30 | tcp: defer shutdown(SEND_SHUTDOWN) for TCP_SYN_RECV sockets |
| CVE-2024-36906 | 2024-05-30 | ARM: 9381/1: kasan: clear stale stack poison |
| CVE-2024-36908 | 2024-05-30 | blk-iocost: do not WARN if iocg was already offlined |
| CVE-2024-36909 | 2024-05-30 | Drivers: hv: vmbus: Don't free ring buffers that couldn't be re-encrypted |
| CVE-2024-36910 | 2024-05-30 | uio_hv_generic: Don't free decrypted memory |
| CVE-2024-36911 | 2024-05-30 | hv_netvsc: Don't free decrypted memory |
| CVE-2024-36912 | 2024-05-30 | Drivers: hv: vmbus: Track decrypted status in vmbus_gpadl |
| CVE-2024-36913 | 2024-05-30 | Drivers: hv: vmbus: Leak pages if set_memory_encrypted() fails |
| CVE-2024-36914 | 2024-05-30 | drm/amd/display: Skip on writeback when it's not applicable |
| CVE-2024-36915 | 2024-05-30 | nfc: llcp: fix nfc_llcp_setsockopt() unsafe copies |
| CVE-2024-36916 | 2024-05-30 | blk-iocost: avoid out of bounds shift |
| CVE-2024-36917 | 2024-05-30 | block: fix overflow in blk_ioctl_discard() |
| CVE-2024-36918 | 2024-05-30 | bpf: Check bloom filter map value size |
| CVE-2024-36919 | 2024-05-30 | scsi: bnx2fc: Remove spin_lock_bh while releasing resources after upload |
| CVE-2024-36920 | 2024-05-30 | scsi: mpi3mr: Avoid memcpy field-spanning write WARNING |
| CVE-2024-36921 | 2024-05-30 | wifi: iwlwifi: mvm: guard against invalid STA ID on removal |
| CVE-2024-36922 | 2024-05-30 | wifi: iwlwifi: read txq->read_ptr under lock |
| CVE-2024-36923 | 2024-05-30 | fs/9p: fix uninitialized values during inode evict |
| CVE-2024-36924 | 2024-05-30 | scsi: lpfc: Release hbalock before calling lpfc_worker_wake_up() |
| CVE-2024-36925 | 2024-05-30 | swiotlb: initialise restricted pool list_head when SWIOTLB_DYNAMIC=y |
| CVE-2024-36926 | 2024-05-30 | powerpc/pseries/iommu: LPAR panics during boot up with a frozen PE |
| CVE-2024-36927 | 2024-05-30 | ipv4: Fix uninit-value access in __ip_make_skb() |
| CVE-2024-36928 | 2024-05-30 | s390/qeth: Fix kernel panic after setting hsuid |
| CVE-2024-36929 | 2024-05-30 | net: core: reject skb_copy(_expand) for fraglist GSO skbs |
| CVE-2024-36930 | 2024-05-30 | spi: fix null pointer dereference within spi_sync |
| CVE-2024-36931 | 2024-05-30 | s390/cio: Ensure the copied buf is NUL terminated |
| CVE-2024-36932 | 2024-05-30 | thermal/debugfs: Prevent use-after-free from occurring after cdev removal |
| CVE-2024-36933 | 2024-05-30 | nsh: Restore skb->{protocol,data,mac_header} for outer header in nsh_gso_segment(). |
| CVE-2024-36934 | 2024-05-30 | bna: ensure the copied buf is NUL terminated |
| CVE-2024-36935 | 2024-05-30 | ice: ensure the copied buf is NUL terminated |
| CVE-2024-36936 | 2024-05-30 | efi/unaccepted: touch soft lockup during memory accept |
| CVE-2024-36937 | 2024-05-30 | xdp: use flags field to disambiguate broadcast redirect |
| CVE-2024-36938 | 2024-05-30 | bpf, skmsg: Fix NULL pointer dereference in sk_psock_skb_ingress_enqueue |
| CVE-2024-36939 | 2024-05-30 | nfs: Handle error of rpc_proc_register() in nfs_net_init(). |
| CVE-2024-36940 | 2024-05-30 | pinctrl: core: delete incorrect free in pinctrl_enable() |
| CVE-2024-36941 | 2024-05-30 | wifi: nl80211: don't free NULL coalescing rule |
| CVE-2024-5518 | 2024-05-30 | itsourcecode Online Discussion Forum change_profile_picture.php unrestricted upload |
| CVE-2024-36943 | 2024-05-30 | fs/proc/task_mmu: fix loss of young/dirty bits during pagemap scan |
| CVE-2024-36944 | 2024-05-30 | Reapply "drm/qxl: simplify qxl_fence_wait" |
| CVE-2024-36945 | 2024-05-30 | net/smc: fix neighbour and rtable leak in smc_ib_find_route() |
| CVE-2024-36946 | 2024-05-30 | phonet: fix rtm_phonet_notify() skb allocation |
| CVE-2024-36947 | 2024-05-30 | qibfs: fix dentry leak |
| CVE-2024-36948 | 2024-05-30 | drm/xe/xe_migrate: Cast to output precision before multiplying operands |
| CVE-2024-36949 | 2024-05-30 | amd/amdkfd: sync all devices to wait all processes being evicted |
| CVE-2024-36950 | 2024-05-30 | firewire: ohci: mask bus reset interrupts between ISR and bottom half |
| CVE-2024-36951 | 2024-05-30 | drm/amdkfd: range check cp bad op exception interrupts |
| CVE-2024-36952 | 2024-05-30 | scsi: lpfc: Move NPIV's transport unregistration to after resource clean up |
| CVE-2024-36953 | 2024-05-30 | KVM: arm64: vgic-v2: Check for non-NULL vCPU in vgic_v2_parse_attr() |
| CVE-2024-36954 | 2024-05-30 | tipc: fix a possible memleak in tipc_buf_append |
| CVE-2024-36955 | 2024-05-30 | ALSA: hda: intel-sdw-acpi: fix usage of device_get_named_child_node() |
| CVE-2024-36956 | 2024-05-30 | thermal/debugfs: Free all thermal zone debug memory on zone removal |
| CVE-2024-36957 | 2024-05-30 | octeontx2-af: avoid off-by-one read from userspace |
| CVE-2024-36958 | 2024-05-30 | NFSD: Fix nfsd4_encode_fattr4() crasher |
| CVE-2024-36959 | 2024-05-30 | pinctrl: devicetree: fix refcount leak in pinctrl_dt_to_map() |
| CVE-2024-35430 | 2024-05-30 | In ZKTeco ZKBio CVSecurity v6.1.1 an authenticated user can bypass... |
| CVE-2024-35358 | 2024-05-30 | A vulnerability has been discovered in Diño Physics School Assistant... |
| CVE-2024-5519 | 2024-05-30 | ItsourceCode Learning Management System Project In PHP login.php sql injection |
| CVE-2024-35345 | 2024-05-30 | A vulnerability has been discovered in Diño Physics School Assistant... |
| CVE-2024-35357 | 2024-05-30 | A vulnerability has been discovered in Diño Physics School Assistant... |
| CVE-2024-35356 | 2024-05-30 | A vulnerability has been discovered in Diño Physics School Assistant... |
| CVE-2024-35355 | 2024-05-30 | A vulnerability has been discovered in Diño Physics School Assistant... |
| CVE-2024-35354 | 2024-05-30 | A vulnerability has been discovered in Diño Physics School Assistant... |
| CVE-2024-35432 | 2024-05-30 | ZKTeco ZKBio CVSecurity 6.1.1 is vulnerable to Cross Site Scripting... |
| CVE-2024-35353 | 2024-05-30 | A vulnerability has been discovered in Diño Physics School Assistant... |
| CVE-2024-35352 | 2024-05-30 | A vulnerability has been discovered in Diño Physics School Assistant... |
| CVE-2024-35431 | 2024-05-30 | ZKTeco ZKBio CVSecurity 6.1.1 is vulnerable to Directory Traversal via... |
| CVE-2024-35359 | 2024-05-30 | A vulnerability has been discovered in Diño Physics School Assistant... |
| CVE-2024-35351 | 2024-05-30 | A vulnerability has been discovered in Diño Physics School Assistant... |
| CVE-2024-35350 | 2024-05-30 | A vulnerability has been discovered in Diño Physics School Assistant... |
| CVE-2024-35349 | 2024-05-30 | A vulnerability has been discovered in Diño Physics School Assistant... |
| CVE-2024-35429 | 2024-05-30 | ZKTeco ZKBio CVSecurity 6.1.1 is vulnerable to Directory Traversal via... |
| CVE-2024-36118 | 2024-05-30 | Unauthorized viewing of workspace test cases in MeterSphere |
| CVE-2024-35428 | 2024-05-30 | ZKTeco ZKBio CVSecurity 6.1.1 is vulnerable to Directory Traversal via... |