CVE List - 2024 / July
Showing 2701 - 2800 of 3115 CVEs for July 2024 (Page 28 of 32)
| CVE ID | Date | Title |
|---|---|---|
| CVE-2024-41094 | 2024-07-29 | drm/fbdev-dma: Only set smem_start is enable per module option |
| CVE-2024-41095 | 2024-07-29 | drm/nouveau/dispnv04: fix null pointer dereference in nv17_tv_get_ld_modes |
| CVE-2024-41096 | 2024-07-29 | PCI/MSI: Fix UAF in msi_capability_init |
| CVE-2024-41097 | 2024-07-29 | usb: atm: cxacru: fix endpoint checking in cxacru_bind() |
| CVE-2024-41098 | 2024-07-29 | ata: libata-core: Fix null pointer dereference on error |
| CVE-2023-52887 | 2024-07-29 | net: can: j1939: enhanced error handling for tightly received RTS messages in xtp_rx_rts_session_new |
| CVE-2024-42063 | 2024-07-29 | bpf: Mark bpf prog stack with kmsan_unposion_memory in interpreter mode |
| CVE-2024-42064 | 2024-07-29 | drm/amd/display: Skip pipe if the pipe idx not set properly |
| CVE-2024-42065 | 2024-07-29 | drm/xe: Add a NULL check in xe_ttm_stolen_mgr_init |
| CVE-2024-42066 | 2024-07-29 | drm/xe: Fix potential integer overflow in page size calculation |
| CVE-2024-42067 | 2024-07-29 | bpf: Take return from set_memory_rox() into account with bpf_jit_binary_lock_ro() |
| CVE-2024-42068 | 2024-07-29 | bpf: Take return from set_memory_ro() into account with bpf_prog_lock_ro() |
| CVE-2024-42069 | 2024-07-29 | net: mana: Fix possible double free in error handling path |
| CVE-2024-42070 | 2024-07-29 | netfilter: nf_tables: fully validate NFT_DATA_VALUE on store to data registers |
| CVE-2024-42071 | 2024-07-29 | ionic: use dev_consume_skb_any outside of napi |
| CVE-2024-42072 | 2024-07-29 | bpf: Fix may_goto with negative offset. |
| CVE-2024-42073 | 2024-07-29 | mlxsw: spectrum_buffers: Fix memory corruptions on Spectrum-4 systems |
| CVE-2024-42074 | 2024-07-29 | ASoC: amd: acp: add a null check for chip_pdev structure |
| CVE-2024-42075 | 2024-07-29 | bpf: Fix remap of arena. |
| CVE-2024-42076 | 2024-07-29 | net: can: j1939: Initialize unused data in j1939_send_one() |
| CVE-2024-42077 | 2024-07-29 | ocfs2: fix DIO failure due to insufficient transaction credits |
| CVE-2024-42078 | 2024-07-29 | nfsd: initialise nfsd_info.mutex early. |
| CVE-2024-42079 | 2024-07-29 | gfs2: Fix NULL pointer dereference in gfs2_log_flush |
| CVE-2024-42080 | 2024-07-29 | RDMA/restrack: Fix potential invalid address access |
| CVE-2024-42081 | 2024-07-29 | drm/xe/xe_devcoredump: Check NULL before assignments |
| CVE-2024-42082 | 2024-07-29 | xdp: Remove WARN() from __xdp_reg_mem_model() |
| CVE-2024-41817 | 2024-07-29 | Arbitrary Code Execution in `AppImage` version `ImageMagick` |
| CVE-2024-42083 | 2024-07-29 | ionic: fix kernel panic due to multi-buffer handling |
| CVE-2024-41818 | 2024-07-29 | ReDOS at currency parsing fast-xml-parser |
| CVE-2024-41819 | 2024-07-29 | Note Mark has a stored XSS in the note link href attribute |
| CVE-2024-6748 | 2024-07-29 | SQL Injection |
| CVE-2024-42084 | 2024-07-29 | ftruncate: pass a signed offset |
| CVE-2024-42085 | 2024-07-29 | usb: dwc3: core: remove lock of otg mode during gadget suspend/resume to avoid deadlock |
| CVE-2024-42086 | 2024-07-29 | iio: chemical: bme680: Fix overflows in compensate() functions |
| CVE-2024-42087 | 2024-07-29 | drm/panel: ilitek-ili9881c: Fix warning with GPIO controllers that sleep |
| CVE-2024-42088 | 2024-07-29 | ASoC: mediatek: mt8195: Add platform entry for ETDM1_OUT_BE dai link |
| CVE-2024-42089 | 2024-07-29 | ASoC: fsl-asoc-card: set priv->pdev before using it |
| CVE-2024-42090 | 2024-07-29 | pinctrl: fix deadlock in create_pinctrl() when handling -EPROBE_DEFER |
| CVE-2024-6726 | 2024-07-29 | Remote Code Execution (RCE) in Delphix |
| CVE-2024-42091 | 2024-07-29 | drm/xe: Check pat.ops before dumping PAT settings |
| CVE-2024-42092 | 2024-07-29 | gpio: davinci: Validate the obtained number of IRQs |
| CVE-2024-42093 | 2024-07-29 | net/dpaa2: Avoid explicit cpumask var allocation on stack |
| CVE-2024-42094 | 2024-07-29 | net/iucv: Avoid explicit cpumask var allocation on stack |
| CVE-2024-42095 | 2024-07-29 | serial: 8250_omap: Implementation of Errata i2310 |
| CVE-2024-42096 | 2024-07-29 | x86: stop playing stack games in profile_pc() |
| CVE-2024-42097 | 2024-07-29 | ALSA: emux: improve patch ioctl data validation |
| CVE-2024-42098 | 2024-07-29 | crypto: ecdh - explicitly zeroize private_key |
| CVE-2024-6727 | 2024-07-29 | Broken Access Control in Delphix |
| CVE-2024-6578 | 2024-07-29 | Stored XSS in aimhubio/aim |
| CVE-2024-6620 | 2024-07-29 | Honeywell PC42t, PC42tp, and PC42d Printers, T10.19.020016 to T10.20.060398, contain a cross-site scripting vulnerability. A(n) attacker could potentially inject malicious code which may lead to information disclosure, session theft, or... |
| CVE-2023-42943 | 2024-07-29 | A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sonoma 14. An app may be able to read sensitive location... |
| CVE-2023-42918 | 2024-07-29 | A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sonoma 14. A sandboxed process may be able to circumvent sandbox restrictions. |
| CVE-2023-42959 | 2024-07-29 | A race condition was addressed with improved state handling. This issue is fixed in macOS Sonoma 14. An app may be able to execute arbitrary code with kernel privileges. |
| CVE-2023-42958 | 2024-07-29 | A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Ventura 13.4. An app may be able to gain elevated privileges. |
| CVE-2023-40396 | 2024-07-29 | The issue was addressed with improved memory handling. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14, watchOS 10, tvOS 17. An app may be able... |
| CVE-2023-42949 | 2024-07-29 | This issue was addressed with improved data protection. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14, watchOS 10, tvOS 17. An app may be able... |
| CVE-2023-42925 | 2024-07-29 | The issue was addressed with improved restriction of data container access. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14. An app may be able to... |
| CVE-2023-42948 | 2024-07-29 | This issue was addressed through improved state management. This issue is fixed in macOS Sonoma 14. A Wi-Fi password may not be deleted when activating a Mac in macOS Recovery. |
| CVE-2023-42957 | 2024-07-29 | A permissions issue was addressed with additional restrictions. This issue is fixed in iOS 17 and iPadOS 17, macOS Sonoma 14, watchOS 10. An app may be able to read... |
| CVE-2023-40398 | 2024-07-29 | This issue was addressed with improved checks. This issue is fixed in macOS Monterey 12.6.4, macOS Big Sur 11.7.5, macOS Ventura 13.3, iOS 16.4 and iPadOS 16.4. A sandboxed process... |
| CVE-2024-7248 | 2024-07-29 | Comodo Internet Security Pro Directory Traversal Local Privilege Escalation Vulnerability |
| CVE-2024-7249 | 2024-07-29 | Comodo Firewall Link Following Local Privilege Escalation Vulnerability |
| CVE-2024-7250 | 2024-07-29 | Comodo Internet Security Pro cmdagent Link Following Local Privilege Escalation Vulnerability |
| CVE-2024-7251 | 2024-07-29 | Comodo Internet Security Pro cmdagent Link Following Local Privilege Escalation Vulnerability |
| CVE-2024-7252 | 2024-07-29 | Comodo Internet Security Pro cmdagent Link Following Local Privilege Escalation Vulnerability |
| CVE-2024-3219 | 2024-07-29 | Pure-Python fallback of socket.socketpair() doesn’t authenticate peer connection |
| CVE-2024-27809 | 2024-07-29 | A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sonoma 14.4. An app may be able to access user-sensitive data. |
| CVE-2024-27872 | 2024-07-29 | This issue was addressed with improved validation of symlinks. This issue is fixed in macOS Sonoma 14.6. An app may be able to access protected user data. |
| CVE-2024-40774 | 2024-07-29 | A downgrade issue was addressed with additional code-signing restrictions. This issue is fixed in macOS Ventura 13.6.8, macOS Monterey 12.7.6, iOS 17.6 and iPadOS 17.6, watchOS 10.6, tvOS 17.6, macOS... |
| CVE-2024-40781 | 2024-07-29 | The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.6, macOS Monterey 12.7.6, macOS Ventura 13.6.8. A local attacker may be able to elevate their... |
| CVE-2024-40806 | 2024-07-29 | An out-of-bounds read issue was addressed with improved input validation. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, macOS Ventura 13.6.8, macOS Monterey 12.7.6, iOS 17.6 and iPadOS... |
| CVE-2024-27887 | 2024-07-29 | A path handling issue was addressed with improved validation. This issue is fixed in macOS Sonoma 14.4. An app may be able to access user-sensitive data. |
| CVE-2024-40778 | 2024-07-29 | An authentication issue was addressed with improved state management. This issue is fixed in macOS Sonoma 14.6, iOS 17.6 and iPadOS 17.6, iOS 16.7.9 and iPadOS 16.7.9. Photos in the... |
| CVE-2024-40779 | 2024-07-29 | An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, Safari 17.6, iOS 17.6 and iPadOS 17.6, watchOS 10.6, tvOS 17.6,... |
| CVE-2024-40796 | 2024-07-29 | A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sonoma 14.6, iOS 16.7.9 and iPadOS 16.7.9, macOS Monterey 12.7.6, macOS... |
| CVE-2024-27886 | 2024-07-29 | A logic issue was addressed with improved restrictions. This issue is fixed in macOS Sonoma 14.4. An unprivileged app may be able to log keystrokes in other apps including those... |
| CVE-2024-40811 | 2024-07-29 | The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.6. An app may be able to modify protected parts of the file system. |
| CVE-2024-40807 | 2024-07-29 | A logic issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.6, macOS Monterey 12.7.6, macOS Ventura 13.6.8. A shortcut may be able to use sensitive... |
| CVE-2024-40780 | 2024-07-29 | An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, Safari 17.6, iOS 17.6 and iPadOS 17.6, watchOS 10.6, tvOS 17.6,... |
| CVE-2024-27853 | 2024-07-29 | This issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.4. A maliciously crafted ZIP archive may bypass Gatekeeper checks. |
| CVE-2024-40775 | 2024-07-29 | A downgrade issue was addressed with additional code-signing restrictions. This issue is fixed in macOS Sonoma 14.6, macOS Monterey 12.7.6, macOS Ventura 13.6.8. An app may be able to leak... |
| CVE-2024-27873 | 2024-07-29 | An out-of-bounds write issue was addressed with improved input validation. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, macOS Ventura 13.6.8, macOS Monterey 12.7.6, iOS 17.6 and iPadOS... |
| CVE-2024-40827 | 2024-07-29 | The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.6, macOS Monterey 12.7.6, macOS Ventura 13.6.8. An app may be able to overwrite arbitrary files. |
| CVE-2024-23261 | 2024-07-29 | A logic issue was addressed with improved state management. This issue is fixed in macOS Monterey 12.7.6, macOS Sonoma 14.4, macOS Ventura 13.6.8. An attacker may be able to read... |
| CVE-2024-40787 | 2024-07-29 | This issue was addressed by adding an additional prompt for user consent. This issue is fixed in macOS Ventura 13.6.8, macOS Monterey 12.7.6, iOS 17.6 and iPadOS 17.6, watchOS 10.6,... |
| CVE-2024-40800 | 2024-07-29 | An input validation issue was addressed with improved input validation. This issue is fixed in macOS Sonoma 14.6, macOS Monterey 12.7.6, macOS Ventura 13.6.8. An app may be able to... |
| CVE-2024-27878 | 2024-07-29 | A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Sonoma 14.6. An app with root privileges may be able to execute arbitrary code... |
| CVE-2024-40816 | 2024-07-29 | An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Sonoma 14.6, macOS Monterey 12.7.6, macOS Ventura 13.6.8. A local attacker may be able to... |
| CVE-2024-27881 | 2024-07-29 | A privacy issue was addressed with improved private data redaction for log entries. This issue is fixed in macOS Sonoma 14.6, macOS Monterey 12.7.6, macOS Ventura 13.6.8. An app may... |
| CVE-2024-40836 | 2024-07-29 | A logic issue was addressed with improved checks. This issue is fixed in watchOS 10.6, macOS Sonoma 14.6, iOS 17.6 and iPadOS 17.6, iOS 16.7.9 and iPadOS 16.7.9. A shortcut... |
| CVE-2024-27823 | 2024-07-29 | A race condition was addressed with improved locking. This issue is fixed in macOS Sonoma 14.5, iOS 16.7.8 and iPadOS 16.7.8, macOS Ventura 13.6.7, watchOS 10.5, visionOS 1.3, tvOS 17.5,... |
| CVE-2024-27862 | 2024-07-29 | A logic issue was addressed with improved state management. This issue is fixed in macOS Sonoma 14.6. Enabling Lockdown Mode while setting up a Mac may cause FileVault to become... |
| CVE-2024-27863 | 2024-07-29 | An information disclosure issue was addressed with improved private data redaction for log entries. This issue is fixed in iOS 17.6 and iPadOS 17.6, watchOS 10.6, tvOS 17.6, visionOS 1.3,... |
| CVE-2024-40821 | 2024-07-29 | An access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Sonoma 14.6, macOS Monterey 12.7.6, macOS Ventura 13.6.8. Third party app extensions may not receive... |
| CVE-2024-40817 | 2024-07-29 | The issue was addressed with improved UI handling. This issue is fixed in macOS Sonoma 14.6, Safari 17.6, macOS Monterey 12.7.6, macOS Ventura 13.6.8. Visiting a website that frames malicious... |
| CVE-2024-40786 | 2024-07-29 | This issue was addressed through improved state management. This issue is fixed in iOS 17.6 and iPadOS 17.6, iOS 16.7.9 and iPadOS 16.7.9, macOS Ventura 13.6.8. An attacker may be... |
| CVE-2024-40793 | 2024-07-29 | This issue was addressed by removing the vulnerable code. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, macOS Ventura 13.6.8, macOS Monterey 12.7.6, iOS 17.6 and iPadOS 17.6,... |
| CVE-2024-27883 | 2024-07-29 | A permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sonoma 14.6, macOS Monterey 12.7.6, macOS Ventura 13.6.8. An app may be able to modify protected... |
| CVE-2024-40814 | 2024-07-29 | A downgrade issue was addressed with additional code-signing restrictions. This issue is fixed in macOS Sonoma 14.6. An app may be able to bypass Privacy preferences. |
| CVE-2024-40802 | 2024-07-29 | The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.6, macOS Monterey 12.7.6, macOS Ventura 13.6.8. A local attacker may be able to elevate their... |