Vuldb Updates

A vulnerability categorized as problematic has been discovered in Linux Kernel up to 6.6.71/6.12.9/6.13-rc6. The impacted element is an unknown function of the component ovl. Executing manipulation can lead to encoding error. This vulnerability is tracked as CVE-2025-21654. The attack is only possible within the local network. No exploit exists. It is advisable to upgrade the affected component.

A vulnerability classified as problematic has been found in Linux Kernel up to 6.12.9/6.13-rc6. The impacted element is the function encode_fh. This manipulation causes encoding error. This vulnerability is registered as CVE-2024-57924. The attack requires access to the local network. No exploit is available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.124/6.6.71/6.12.9/6.13-rc6. It has been declared as problematic. Affected by this vulnerability is the function dm_bm_read_lock of the file /dev/sdc. The manipulation results in improper initialization. This vulnerability was named CVE-2024-57929. The attack needs to be approached within the local network. There is no available exploit. It is recommended to upgrade the affected component.

A vulnerability classified as problematic has been found in Linux Kernel up to 6.1.124/6.6.71/6.12.9/6.13-rc6. Affected by this issue is some unknown functionality of the component sch_cake. Performing manipulation results in out-of-bounds read. This vulnerability is reported as CVE-2025-21647. The attacker must have access to the local network to execute the attack. No exploit exists. It is recommended to upgrade the affected component.

A vulnerability classified as problematic was found in Linux Kernel up to 6.6.1. Affected by this issue is the function smp_call_function_many_cond+0x42c/0x436 of the component perf. Executing manipulation can lead to information disclosure. This vulnerability is tracked as CVE-2023-52839. The attack is only possible within the local network. No exploit exists. Upgrading the affected component is advised.

A vulnerability was found in Linux Kernel up to 6.7.11/6.8.2. It has been rated as critical. The affected element is an unknown function of the component debugfs. Performing manipulation results in deadlock. This vulnerability is identified as CVE-2024-35793. The attack can only be performed from the local network. There is not any exploit available. Upgrading the affected component is advised.

A vulnerability labeled as problematic has been found in Linux Kernel up to 6.1.80/6.6.20/6.7.8. This issue affects the function mctp_local_output of the component net. Executing manipulation can lead to memory leak. This vulnerability is tracked as CVE-2024-27418. The attack is only possible within the local network. No exploit exists. The affected component should be upgraded.

A vulnerability described as critical has been identified in Linux Kernel up to 6.6.22/6.7.10/6.8.1. This affects an unknown function of the component iwlwifi. The manipulation results in denial of service. This vulnerability is reported as CVE-2024-27434. The attacker must have access to the local network to execute the attack. No exploit exists. Upgrading the affected component is recommended.

A vulnerability identified as problematic has been detected in Linux Kernel up to 6.12.4. Impacted is the function iommufd_fault_alloc in the library lib/refcount.c. The manipulation leads to improper update of reference count. This vulnerability is listed as CVE-2024-56624. The attack must be carried out from within the local network. There is no available exploit. You should upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.71/6.5.12/6.6.2. It has been classified as critical. Affected by this issue is the function bio_integrity_prep of the component blk-mq. This manipulation causes denial of service. This vulnerability is registered as CVE-2023-52787. The attack requires access to the local network. No exploit is available. Upgrading the affected component is recommended.

A vulnerability labeled as critical has been found in Linux Kernel up to 6.11.6. The impacted element is the function dup_userfaultfd_complete of the component fork. Such manipulation leads to improper update of reference count. This vulnerability is traded as CVE-2024-50220. Access to the local network is required for this attack to succeed. There is no exploit available. The affected component should be upgraded.

A vulnerability categorized as problematic has been discovered in Linux Kernel up to 6.6.23/6.7.11/6.8.2. This issue affects the function sb_index of the component md-bitmap. Such manipulation leads to denial of service. This vulnerability is listed as CVE-2024-35787. The attack must be carried out from within the local network. There is no available exploit. It is advisable to upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 6.7.11/6.8.2 and classified as critical. This affects an unknown function of the component dm-raid. Performing manipulation results in deadlock. This vulnerability is known as CVE-2024-35794. Access to the local network is required for this attack. No exploit is available. The affected component should be upgraded.

A vulnerability described as problematic has been identified in Linux Kernel up to 6.1.83/6.6.23/6.7.11. Affected is the function lis3lv02d_i2c_suspend of the file drivers/regulator/core.c. Executing manipulation can lead to information disclosure. The identification of this vulnerability is CVE-2024-35824. The attack needs to be done within the local network. There is no exploit available. Upgrading the affected component is recommended.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.6.25/6.8.4. This affects the function bpf_link_free. Performing manipulation of the argument cookie results in null pointer dereference. This vulnerability is cataloged as CVE-2024-35860. The attack must originate from the local network. There is no exploit available. It is advisable to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in Linux Kernel up to 6.1.83/6.6.23/6.7.11/6.8.2. This affects an unknown part of the component efistub. This manipulation causes allocation of resources. This vulnerability is tracked as CVE-2024-35803. The attack is only possible within the local network. No exploit exists. It is advisable to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in Linux Kernel up to 6.1.83/6.6.23/6.7.11/6.8.2. This affects the function __bio_release_pages of the component Page Refcount Handler. The manipulation leads to memory leak. This vulnerability is referenced as CVE-2024-35826. The attack needs to be initiated within the local network. No exploit is available. It is advisable to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in Linux Kernel up to 6.6.13/6.7.1. This impacts the function __sk_msg_free of the component net. This manipulation causes excessive iteration. This vulnerability is handled as CVE-2024-35841. The attack can only be done within the local network. There is not any exploit available. It is advisable to upgrade the affected component.

A vulnerability classified as critical was found in Linux Kernel up to 5.15.152/6.1.82/6.6.22/6.7.10/6.8.1. This affects the function reserve_cblocks of the component f2fs. Such manipulation leads to denial of service. This vulnerability is uniquely identified as CVE-2024-35844. The attack can only be initiated within the local network. No exploit exists. Upgrading the affected component is advised.

A vulnerability has been found in Linux Kernel up to 6.6.1 and classified as critical. This vulnerability affects the function ida_alloc of the component thermal. Performing manipulation results in buffer overflow. This vulnerability was named CVE-2023-52868. The attack needs to be approached within the local network. There is no available exploit. The affected component should be upgraded.