Vuldb Updates

CVE-2024-26710 | Linux Kernel up to 6.1.78/6.6.17/6.7.5 KASAN Thread stack-based overflow (4297217bcf1f/4cc31fa07445/b29b16bd836a / WID-SEC-2024-0773)

Vuldb Updates
8 months 2 weeks ago
A vulnerability, which was classified as critical, was found in Linux Kernel up to 6.1.78/6.6.17/6.7.5. Affected is an unknown function of the component KASAN Thread Handler. The manipulation leads to stack-based buffer overflow. This vulnerability is traded as CVE-2024-26710. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2024-26711 | Linux Kernel up to 6.6.17/6.7.5 ad4130 clk_init_data initialization (0e0dab377509/02876e2df02f/a22b0a2be69a / WID-SEC-2024-0773)

Vuldb Updates
8 months 2 weeks ago
A vulnerability was found in Linux Kernel up to 6.6.17/6.7.5 and classified as problematic. This issue affects the function clk_init_data of the component ad4130. The manipulation leads to improper initialization. The identification of this vulnerability is CVE-2024-26711. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2024-26709 | Linux Kernel up to 6.7.5 powerpc iommu_group_put memory leak (c90fdea9cac9/0846dd77c834 / WID-SEC-2024-0773)

Vuldb Updates
8 months 2 weeks ago
A vulnerability classified as problematic was found in Linux Kernel up to 6.7.5. This vulnerability affects the function iommu_group_put of the component powerpc. The manipulation leads to memory leak. This vulnerability was named CVE-2024-26709. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2024-26708 | Linux Kernel up to 6.6.17/6.7.5 mptcp subflow_state_change race condition (4bfe217e075d/e158fb9679d1/337cebbd850f / Nessus ID 210815)

Vuldb Updates
8 months 2 weeks ago
A vulnerability was found in Linux Kernel up to 6.6.17/6.7.5. It has been declared as problematic. This vulnerability affects the function subflow_state_change of the component mptcp. The manipulation leads to race condition. This vulnerability was named CVE-2024-26708. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2024-26707 | Linux Kernel up to 5.10.209/5.15.148/6.1.78/6.6.17/6.7.5 hsr net/hsr/hsr_device.c send_hsr_supervision_frame allocation of resources (Nessus ID 210815 / WID-SEC-2024-0773)

Vuldb Updates
8 months 2 weeks ago
A vulnerability was found in Linux Kernel up to 5.10.209/5.15.148/6.1.78/6.6.17/6.7.5. It has been classified as problematic. This affects the function send_hsr_supervision_frame of the file net/hsr/hsr_device.c of the component hsr. The manipulation leads to allocation of resources. This vulnerability is uniquely identified as CVE-2024-26707. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2024-26706 | Linux Kernel up to 6.1.78/6.6.17/6.7.5 parisc emulate_ldd memory corruption (WID-SEC-2024-0773)

Vuldb Updates
8 months 2 weeks ago
A vulnerability classified as critical has been found in Linux Kernel up to 6.1.78/6.6.17/6.7.5. This affects the function emulate_ldd of the component parisc. The manipulation leads to memory corruption. This vulnerability is uniquely identified as CVE-2024-26706. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2024-26705 | Linux Kernel up to 6.6.17/6.7.5 parisc btlb_info denial of service (54944f45470a/aa52be552766/913b9d443a01 / WID-SEC-2024-0773)

Vuldb Updates
8 months 2 weeks ago
A vulnerability was found in Linux Kernel up to 6.6.17/6.7.5 and classified as problematic. Affected by this issue is the function btlb_info of the component parisc. The manipulation leads to denial of service. This vulnerability is handled as CVE-2024-26705. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2024-26704 | Linux Kernel up to 6.7.5 ext4_move_extents double free (Nessus ID 210815 / WID-SEC-2024-0773)

Vuldb Updates
8 months 2 weeks ago
A vulnerability has been found in Linux Kernel up to 6.7.5 and classified as problematic. Affected by this vulnerability is the function ext4_move_extents. The manipulation leads to double free. This vulnerability is known as CVE-2024-26704. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2024-26703 | Linux Kernel up to 6.6.17/6.7.5 timerlat null pointer dereference (5f703935fdb5/2354d29986eb/1389358bb008 / Nessus ID 239841)

Vuldb Updates
8 months 2 weeks ago
A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.6.17/6.7.5. This issue affects some unknown processing of the component timerlat. The manipulation leads to null pointer dereference. The identification of this vulnerability is CVE-2024-26703. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2024-26696 | Linux Kernel up to 6.7.5 nilfs2 nilfs_lookup_dirty_data_buffers deadlock (Nessus ID 239742 / WID-SEC-2024-0773)

Vuldb Updates
8 months 2 weeks ago
A vulnerability classified as critical was found in Linux Kernel up to 6.7.5. Affected by this vulnerability is the function nilfs_lookup_dirty_data_buffers of the component nilfs2. The manipulation leads to deadlock. This vulnerability is known as CVE-2024-26696. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2024-26699 | Linux Kernel up to 6.7.5 DRM dcn35_clkmgr array index (ca400d8e0c1c/46806e59a877 / WID-SEC-2024-0773)

Vuldb Updates
8 months 2 weeks ago
A vulnerability, which was classified as problematic, has been found in Linux Kernel up to 6.7.5. Affected by this issue is the function dcn35_clkmgr of the component DRM. The manipulation leads to improper validation of array index. This vulnerability is handled as CVE-2024-26699. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2024-26700 | Linux Kernel up to 6.1.81/6.6.17/6.7.5 DRM null pointer dereference (Nessus ID 210815 / WID-SEC-2024-0773)

Vuldb Updates
8 months 2 weeks ago
A vulnerability, which was classified as critical, was found in Linux Kernel up to 6.1.81/6.6.17/6.7.5. This affects an unknown part of the component DRM. The manipulation leads to null pointer dereference. This vulnerability is uniquely identified as CVE-2024-26700. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2024-26698 | Linux Kernel up to 5.10.209/5.15.148/6.1.78/6.6.17/6.7.5 hv_netvsc netvsc_probe race condition (Nessus ID 207689 / WID-SEC-2024-0773)

Vuldb Updates
8 months 2 weeks ago
A vulnerability was found in Linux Kernel up to 5.10.209/5.15.148/6.1.78/6.6.17/6.7.5. It has been rated as problematic. Affected by this issue is the function netvsc_probe of the component hv_netvsc. The manipulation leads to race condition. This vulnerability is handled as CVE-2024-26698. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2024-26693 | Linux Kernel up to 6.6.17/6.7.5 mvm iwl_mvm_is_dup denial of service (00f4eb31b819/c12f0f4d4caf/b7198383ef2d / WID-SEC-2024-0773)

Vuldb Updates
8 months 2 weeks ago
A vulnerability was found in Linux Kernel up to 6.6.17/6.7.5. It has been rated as problematic. This issue affects the function iwl_mvm_is_dup of the component mvm. The manipulation leads to denial of service. The identification of this vulnerability is CVE-2024-26693. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2024-26695 | Linux Kernel up to 5.10.209/5.15.148/6.1.78/6.6.17/6.7.5 crypto __sev_platform_shutdown_locked null pointer dereference (WID-SEC-2024-0773)

Vuldb Updates
8 months 2 weeks ago
A vulnerability classified as critical has been found in Linux Kernel up to 5.10.209/5.15.148/6.1.78/6.6.17/6.7.5. Affected is the function __sev_platform_shutdown_locked of the component crypto. The manipulation leads to null pointer dereference. This vulnerability is traded as CVE-2024-26695. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2024-26694 | Linux Kernel up to 6.6.17/6.7.5 iwlwifi double free (ab9d4bb9a189/d24eb9a27bea/353d321f63f7 / WID-SEC-2024-0773)

Vuldb Updates
8 months 2 weeks ago
A vulnerability was found in Linux Kernel up to 6.6.17/6.7.5 and classified as problematic. This issue affects some unknown processing of the component iwlwifi. The manipulation leads to double free. The identification of this vulnerability is CVE-2024-26694. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2024-26691 | Linux Kernel up to 6.6.17/6.7.5 arm64 pkvm_create_hyp_vm deadlock (3d16cebf0112/3ab1c40a1e91/10c02aad111d / Nessus ID 210815)

Vuldb Updates
8 months 2 weeks ago
A vulnerability, which was classified as critical, was found in Linux Kernel up to 6.6.17/6.7.5. Affected is the function pkvm_create_hyp_vm of the component arm64. The manipulation leads to deadlock. This vulnerability is traded as CVE-2024-26691. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2024-26689 | Linux Kernel up to 5.10.209/5.15.148/6.1.78/6.6.17/6.7.5 fs/ceph/caps.c encode_cap_msg use after free (Nessus ID 235357 / WID-SEC-2024-0773)

Vuldb Updates
8 months 2 weeks ago
A vulnerability classified as problematic was found in Linux Kernel up to 5.10.209/5.15.148/6.1.78/6.6.17/6.7.5. This vulnerability affects the function encode_cap_msg of the file fs/ceph/caps.c. The manipulation leads to use after free. This vulnerability was named CVE-2024-26689. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2024-26687 | Linux Kernel up to 6.1.80/6.6.18/6.7.5 Event Channel xen_irq_info_cleanup allocation of resources (Nessus ID 212350 / WID-SEC-2024-0773)

Vuldb Updates
8 months 2 weeks ago
A vulnerability was found in Linux Kernel up to 6.1.80/6.6.18/6.7.5. It has been declared as problematic. Affected by this vulnerability is the function xen_irq_info_cleanup of the component Event Channel Handler. The manipulation leads to allocation of resources. This vulnerability is known as CVE-2024-26687. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2025-24014 | vim up to 9.1.1042 Silent Ex Mode out-of-bounds write (GHSA-j3g9-wg22-v955 / Nessus ID 214796)

Vuldb Updates
8 months 2 weeks ago
A vulnerability was found in vim up to 9.1.1042. It has been classified as critical. This affects an unknown part of the component Silent Ex Mode. The manipulation leads to out-of-bounds write. This vulnerability is uniquely identified as CVE-2025-24014. An attack has to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com
Checked
5 hours 7 minutes ago
Vuldb Updates
Updates
URL
https://vuldb.com
Vuldb Updates feed

Managed ad