VulDB Recent Entries

A vulnerability was found in Linux Kernel up to 6.12.4. It has been declared as critical. Affected by this vulnerability is the function unpin_user_pages. The manipulation leads to null pointer dereference. This vulnerability is known as CVE-2024-56612. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.6.65/6.12.4. It has been classified as critical. Affected is the function free_htab_elem of the component bpf. The manipulation leads to stack-based buffer overflow. This vulnerability is traded as CVE-2024-56592. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.12.4 and classified as problematic. This issue affects the function cancel_delayed_work_sync of the component hci_conn. The manipulation leads to Privilege Escalation. The identification of this vulnerability is CVE-2024-56591. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 6.12.4 and classified as critical. This vulnerability affects the function dcn21_link_encoder_create of the component AMD Display. The manipulation leads to improper validation of array index. This vulnerability was named CVE-2024-56608. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Linux Kernel up to 5.10.230/5.15.173/6.1.119/6.6.65/6.12.4. This affects the function dpc_thread of the file mm/slub.c. The manipulation leads to use after free. This vulnerability is uniquely identified as CVE-2024-56623. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.1.119/6.6.65/6.12.4. Affected by this issue is the function drm_dp_sideband_append_payload. The manipulation leads to memory corruption. This vulnerability is handled as CVE-2024-56616. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Linux Kernel up to 5.15.173/6.1.119/6.6.65/6.12.4. Affected by this vulnerability is the function xsk_map_delete_elem. The manipulation leads to out-of-bounds write. This vulnerability is known as CVE-2024-56614. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Linux Kernel up to 6.6.65/6.12.4. Affected is an unknown function of the component numa. The manipulation leads to memory leak. This vulnerability is traded as CVE-2024-56613. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.6.65/6.12.4. It has been rated as critical. This issue affects the function migrate_to_node of the component mempolicy. The manipulation leads to null pointer dereference. The identification of this vulnerability is CVE-2024-56611. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.6.65/6.12.4. It has been declared as critical. This vulnerability affects the function last_level_cache_is_valid of the component cacheinfo. The manipulation leads to null pointer dereference. This vulnerability was named CVE-2024-56617. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.10.230/5.15.173/6.1.119/6.6.65/6.12.4. It has been classified as problematic. This affects the function in_atomic of the file kernel/locking/spinlock_rt.c of the component Function Call Handler. The manipulation leads to allocation of resources. This vulnerability is uniquely identified as CVE-2024-56610. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.12.4 and classified as critical. Affected by this issue is the function debug_dma_map_sg of the component AMD GPU. The manipulation leads to memory corruption. This vulnerability is handled as CVE-2024-56594. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 6.11.10/6.12.1 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file mm/page_alloc.c. The manipulation of the argument PAGE_SIZE leads to allocation of resources. This vulnerability is known as CVE-2024-56544. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, was found in Linux Kernel up to 6.12.4. Affected is the function icmp_route_lookup of the file net/ipv4/route.c. The manipulation leads to infinite loop. This vulnerability is traded as CVE-2024-56647. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.12.1. This issue affects the function container_of of the component ubd. The manipulation leads to denial of service. The identification of this vulnerability is CVE-2024-53184. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Linux Kernel up to 6.12.5. This vulnerability affects the function netdev_tx_reset_queue in the library lib/dynamic_queue_limits.c of the component virtio_net. The manipulation leads to use after free. This vulnerability was named CVE-2024-56674. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Linux Kernel up to 6.12.3. This affects the function btrfs_encoded_read_endio. The manipulation leads to use after free. This vulnerability is uniquely identified as CVE-2024-56582. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.12.4. It has been rated as critical. Affected by this issue is some unknown functionality of the component hisi_sas. The manipulation leads to null pointer dereference. This vulnerability is handled as CVE-2024-56588. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.12.4. It has been declared as critical. Affected by this vulnerability is the function brightness_show. The manipulation leads to null pointer dereference. This vulnerability is known as CVE-2024-56587. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.119/6.6.65/6.12.4. It has been classified as problematic. Affected is the function xa_store. The manipulation leads to allocation of resources. This vulnerability is traded as CVE-2024-56584. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.