VulDB Recent Entries

A vulnerability, which was classified as problematic, was found in Linux Kernel up to 6.10.3. This affects the function drm_client_buffer_vmap_local. The manipulation leads to uninitialized pointer. This vulnerability is uniquely identified as CVE-2024-42275. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in Linux Kernel up to 6.10.2. Affected by this issue is the function p4d_offset_lockless of the component arm64. The manipulation leads to allocation of resources. This vulnerability is handled as CVE-2024-42293. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Linux Kernel up to 6.1.102/6.6.43/6.10.2. Affected by this vulnerability is the function nvme_map_data of the component nvme-pci. The manipulation leads to null pointer dereference. This vulnerability is known as CVE-2024-42276. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Linux Kernel up to 6.1.102/6.6.43/6.10.2. Affected is the function qla_nvme_register_remote. The manipulation leads to null pointer dereference. This vulnerability is traded as CVE-2024-42286. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.102/6.6.43/6.10.2. It has been rated as problematic. This issue affects the function bio_integrity_prep of the component block. The manipulation leads to improper initialization. The identification of this vulnerability is CVE-2024-43854. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.10.2. It has been declared as critical. This vulnerability affects the function devm_kzalloc of the component PCM6240. The manipulation leads to null pointer dereference. This vulnerability was named CVE-2024-43822. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.102/6.6.43/6.10.2. It has been classified as critical. This affects the function page_pool_destroy of the component xdp. The manipulation leads to improper update of reference count. This vulnerability is uniquely identified as CVE-2024-43834. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.103/6.6.44/6.10.3 and classified as problematic. Affected by this issue is the function set_cluster_dirty of the component f2fs. The manipulation leads to Privilege Escalation. This vulnerability is handled as CVE-2024-42273. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 6.1.103/6.6.44/6.10.3 and classified as critical. Affected by this vulnerability is the function iucv_sock_close. The manipulation leads to use after free. This vulnerability is known as CVE-2024-42271. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, was found in Linux Kernel up to 6.1.102/6.6.43/6.10.2. Affected is an unknown function of the component Landlock. The manipulation leads to Privilege Escalation. This vulnerability is traded as CVE-2024-42318. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.10.2. This issue affects the function pci_epf_test_core_init of the file drivers/pci/endpoint/functions/pci-epf-test.c. The manipulation of the argument epc_features leads to null pointer dereference. The identification of this vulnerability is CVE-2024-43824. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic was found in Linux Kernel up to 6.1.102/6.6.43/6.10.2. This vulnerability affects the function acpi_get_first_physical_node. The manipulation leads to improper update of reference count. This vulnerability was named CVE-2024-43818. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic has been found in Linux Kernel up to 6.1.103/6.6.44/6.10.3. This affects the function rhashtable_lookup in the library include/linux/rhashtable.h. The manipulation leads to improper initialization. This vulnerability is uniquely identified as CVE-2024-42272. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.102/6.6.43/6.10.2. It has been rated as critical. Affected by this issue is the function apparmor_socket_post_create. The manipulation leads to null pointer dereference. This vulnerability is handled as CVE-2023-52889. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.6.43/6.10.2. It has been declared as critical. Affected by this vulnerability is the function ip_vs_add_service of the file net/netfilter/ipvs/ip_vs_ctl.c. The manipulation leads to null pointer dereference. This vulnerability is known as CVE-2024-42322. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.102/6.6.43/6.10.2. It has been classified as critical. Affected is the function vmpressure_calc_level. The manipulation leads to denial of service. This vulnerability is traded as CVE-2024-42316. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.102/6.6.43/6.10.2 and classified as critical. This issue affects the function dasd_copy_pair_store of the component s390. The manipulation leads to null pointer dereference. The identification of this vulnerability is CVE-2024-42320. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 6.1.102/6.6.43/6.10.2 and classified as critical. This vulnerability affects the function psb_intel_lvds_get_modes of the component gma500. The manipulation leads to null pointer dereference. This vulnerability was named CVE-2024-42309. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, was found in Linux Kernel up to 6.1.102/6.6.43/6.10.2. This affects an unknown part of the component udf. The manipulation leads to allocation of resources. This vulnerability is uniquely identified as CVE-2024-42306. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.1.102/6.6.43/6.10.2. Affected by this issue is the function make_indexed_dir of the component ext4. The manipulation leads to denial of service. This vulnerability is handled as CVE-2024-42304. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.