Lista CVE - 2024 / Maggio
Visualizzazione 3201 - 3300 di 4994 CVE per Maggio 2024 (Pagina 33 di 50)
| ID CVE | Data | Titolo |
|---|---|---|
| CVE-2024-35803 | 2024-05-17 | x86/efistub: Call mixed mode boot services on the firmware's stack |
| CVE-2024-35804 | 2024-05-17 | KVM: x86: Mark target gfn of emulated atomic instruction as dirty |
| CVE-2024-35805 | 2024-05-17 | dm snapshot: fix lockup in dm_exception_table_exit |
| CVE-2024-35806 | 2024-05-17 | soc: fsl: qbman: Always disable interrupts when taking cgr_lock |
| CVE-2024-35807 | 2024-05-17 | ext4: fix corruption during on-line resize |
| CVE-2024-35808 | 2024-05-17 | md/dm-raid: don't call md_reap_sync_thread() directly |
| CVE-2024-35809 | 2024-05-17 | PCI/PM: Drain runtime-idle callbacks before driver removal |
| CVE-2024-35810 | 2024-05-17 | drm/vmwgfx: Fix the lifetime of the bo cursor memory |
| CVE-2024-35811 | 2024-05-17 | wifi: brcmfmac: Fix use-after-free bug in brcmf_cfg80211_detach |
| CVE-2024-35813 | 2024-05-17 | mmc: core: Avoid negative index with array access |
| CVE-2024-35814 | 2024-05-17 | swiotlb: Fix double-allocation of slots due to broken alignment handling |
| CVE-2024-35815 | 2024-05-17 | fs/aio: Check IOCB_AIO_RW before the struct aio_kiocb conversion |
| CVE-2024-35816 | 2024-05-17 | firewire: ohci: prevent leak of left-over IRQ on unbind |
| CVE-2024-35817 | 2024-05-17 | drm/amdgpu: amdgpu_ttm_gart_bind set gtt bound flag |
| CVE-2024-35818 | 2024-05-17 | LoongArch: Define the __io_aw() hook as mmiowb() |
| CVE-2024-35819 | 2024-05-17 | soc: fsl: qbman: Use raw spinlock for cgr_lock |
| CVE-2024-35821 | 2024-05-17 | ubifs: Set page uptodate in the correct place |
| CVE-2024-35822 | 2024-05-17 | usb: udc: remove warning when queue disabled ep |
| CVE-2024-35823 | 2024-05-17 | vt: fix unicode buffer corruption when deleting characters |
| CVE-2024-35824 | 2024-05-17 | misc: lis3lv02d_i2c: Fix regulators getting en-/dis-abled twice on suspend/resume |
| CVE-2024-35825 | 2024-05-17 | usb: gadget: ncm: Fix handling of zero block length packets |
| CVE-2024-35826 | 2024-05-17 | block: Fix page refcounts for unaligned buffers in __bio_release_pages() |
| CVE-2024-5047 | 2024-05-17 | SourceCodester Student Management System controller.php unrestricted upload |
| CVE-2024-5048 | 2024-05-17 | code-projects Budget Management index.php sql injection |
| CVE-2023-52661 | 2024-05-17 | drm/tegra: rgb: Fix missing clk_put() in the error handling paths of tegra_dc_rgb_probe() |
| CVE-2023-52662 | 2024-05-17 | drm/vmwgfx: fix a memleak in vmw_gmrid_man_get_node |
| CVE-2023-52663 | 2024-05-17 | ASoC: SOF: amd: Fix memory leak in amd_sof_acp_probe() |
| CVE-2024-35827 | 2024-05-17 | io_uring/net: fix overflow check in io_recvmsg_mshot_prep() |
| CVE-2024-35828 | 2024-05-17 | wifi: libertas: fix some memleaks in lbs_allocate_cmd_buffer() |
| CVE-2024-35829 | 2024-05-17 | drm/lima: fix a memleak in lima_heap_alloc |
| CVE-2024-35830 | 2024-05-17 | media: tc358743: register v4l2 async device only after successful setup |
| CVE-2024-35831 | 2024-05-17 | io_uring: Fix release of pinned pages when __io_uaddr_map fails |
| CVE-2024-34982 | 2024-05-17 | An arbitrary file upload vulnerability in the component /include/file.php of lylme_spage v1.9.5 allows attackers to execute arbitrary code via uploading a crafted file. |
| CVE-2024-34919 | 2024-05-17 | An arbitrary file upload vulnerability in the component \modstudent\controller.php of Pisay Online E-Learning System using PHP/MySQL v1.0 allows attackers to execute arbitrary code via uploading a crafted file. |
| CVE-2023-52664 | 2024-05-17 | net: atlantic: eliminate double free in error handling logic |
| CVE-2024-35832 | 2024-05-17 | bcachefs: kvfree bch_fs::snapshots in bch2_fs_snapshots_exit |
| CVE-2024-35833 | 2024-05-17 | dmaengine: fsl-qdma: Fix a memory leak related to the queue command DMA |
| CVE-2024-5049 | 2024-05-17 | Codezips E-Commerce Site editproduct.php unrestricted upload |
| CVE-2024-5050 | 2024-05-17 | Wangshen SecGate 3600 ?g=log_import_save unrestricted upload |
| CVE-2023-52667 | 2024-05-17 | net/mlx5e: fix a potential double-free in fs_any_create_groups |
| CVE-2023-52668 | 2024-05-17 | btrfs: zoned: fix lock ordering in btrfs_zone_activate() |
| CVE-2023-52669 | 2024-05-17 | crypto: s390/aes - Fix buffer overread in CTR mode |
| CVE-2023-52670 | 2024-05-17 | rpmsg: virtio: Free driver_override when rpmsg_remove() |
| CVE-2023-52671 | 2024-05-17 | drm/amd/display: Fix hang/underflow when transitioning to ODM4:1 |
| CVE-2023-52672 | 2024-05-17 | pipe: wakeup wr_wait after setting max_usage |
| CVE-2023-52673 | 2024-05-17 | drm/amd/display: Fix a debugfs null pointer error |
| CVE-2024-35834 | 2024-05-17 | xsk: recycle buffer in case Rx queue was full |
| CVE-2024-35835 | 2024-05-17 | net/mlx5e: fix a double-free in arfs_create_groups |
| CVE-2024-35836 | 2024-05-17 | dpll: fix pin dump crash for rebound module |
| CVE-2024-35837 | 2024-05-17 | net: mvpp2: clear BM pool before initialization |
| CVE-2024-35838 | 2024-05-17 | wifi: mac80211: fix potential sta-link leak |
| CVE-2023-52674 | 2024-05-17 | ALSA: scarlett2: Add clamp() in scarlett2_mixer_ctl_put() |
| CVE-2023-52675 | 2024-05-17 | powerpc/imc-pmu: Add a null pointer check in update_events_in_group() |
| CVE-2023-52676 | 2024-05-17 | bpf: Guard stack limits against 32bit overflow |
| CVE-2023-52677 | 2024-05-17 | riscv: Check if the code to patch lies in the exit section |
| CVE-2023-52678 | 2024-05-17 | drm/amdkfd: Confirm list is non-empty before utilizing list_first_entry in kfd_topology.c |
| CVE-2023-52679 | 2024-05-17 | of: Fix double free in of_parse_phandle_with_args_map |
| CVE-2023-52680 | 2024-05-17 | ALSA: scarlett2: Add missing error checks to *_ctl_get() |
| CVE-2023-52681 | 2024-05-17 | efivarfs: Free s_fs_info on unmount |
| CVE-2023-52682 | 2024-05-17 | f2fs: fix to wait on block writeback for post_read case |
| CVE-2023-52683 | 2024-05-17 | ACPI: LPIT: Avoid u32 multiplication overflow |
| CVE-2023-52684 | 2024-05-17 | firmware: qcom: qseecom: fix memory leaks in error paths |
| CVE-2023-52686 | 2024-05-17 | powerpc/powernv: Add a null pointer check in opal_event_init() |
| CVE-2023-52687 | 2024-05-17 | crypto: safexcel - Add error handling for dma_map_sg() calls |
| CVE-2023-52688 | 2024-05-17 | wifi: ath12k: fix the error handler of rfkill config |
| CVE-2023-52689 | 2024-05-17 | ALSA: scarlett2: Add missing mutex lock around get meter levels |
| CVE-2023-52690 | 2024-05-17 | powerpc/powernv: Add a null pointer check to scom_debug_init_one() |
| CVE-2023-52691 | 2024-05-17 | drm/amd/pm: fix a double-free in si_dpm_init |
| CVE-2023-52692 | 2024-05-17 | ALSA: scarlett2: Add missing error check to scarlett2_usb_set_config() |
| CVE-2023-52693 | 2024-05-17 | ACPI: video: check for error while searching for backlight device parent |
| CVE-2023-52694 | 2024-05-17 | drm/bridge: tpd12s015: Drop buggy __exit annotation for remove function |
| CVE-2023-52695 | 2024-05-17 | drm/amd/display: Check writeback connectors in create_validate_stream_for_sink |
| CVE-2023-52696 | 2024-05-17 | powerpc/powernv: Add a null pointer check in opal_powercap_init() |
| CVE-2023-52697 | 2024-05-17 | ASoC: Intel: sof_sdw_rt_sdca_jack_common: ctx->headset_codec_dev = NULL |
| CVE-2023-52698 | 2024-05-17 | calipso: fix memory leak in netlbl_calipso_add_pass() |
| CVE-2024-35839 | 2024-05-17 | netfilter: bridge: replace physindev with physinif in nf_bridge_info |
| CVE-2024-35840 | 2024-05-17 | mptcp: use OPTION_MPTCP_MPJ_SYNACK in subflow_finish_connect() |
| CVE-2024-35841 | 2024-05-17 | net: tls, fix WARNIING in __sk_msg_free |
| CVE-2024-35842 | 2024-05-17 | ASoC: mediatek: sof-common: Add NULL check for normal_link string |
| CVE-2024-5051 | 2024-05-17 | SourceCodester Gas Agency Management System edituser.php sql injection |
| CVE-2024-35843 | 2024-05-17 | iommu/vt-d: Use device rbtree in iopf reporting path |
| CVE-2024-35844 | 2024-05-17 | f2fs: compress: fix reserve_cblocks counting error when out of space |
| CVE-2024-35845 | 2024-05-17 | wifi: iwlwifi: dbg-tlv: ensure NUL termination |
| CVE-2024-35846 | 2024-05-17 | mm: zswap: fix shrinker NULL crash with cgroup_disable=memory |
| CVE-2024-35847 | 2024-05-17 | irqchip/gic-v3-its: Prevent double free on error |
| CVE-2024-35848 | 2024-05-17 | eeprom: at24: fix memory corruption race condition |
| CVE-2024-35849 | 2024-05-17 | btrfs: fix information leak in btrfs_ioctl_logical_to_ino() |
| CVE-2024-35850 | 2024-05-17 | Bluetooth: qca: fix NULL-deref on non-serdev setup |
| CVE-2024-35851 | 2024-05-17 | Bluetooth: qca: fix NULL-deref on non-serdev suspend |
| CVE-2024-35852 | 2024-05-17 | mlxsw: spectrum_acl_tcam: Fix memory leak when canceling rehash work |
| CVE-2024-35853 | 2024-05-17 | mlxsw: spectrum_acl_tcam: Fix memory leak during rehash |
| CVE-2024-35854 | 2024-05-17 | mlxsw: spectrum_acl_tcam: Fix possible use-after-free during rehash |
| CVE-2024-35855 | 2024-05-17 | mlxsw: spectrum_acl_tcam: Fix possible use-after-free during activity update |
| CVE-2024-35856 | 2024-05-17 | Bluetooth: btusb: mediatek: Fix double free of skb in coredump |
| CVE-2024-35857 | 2024-05-17 | icmp: prevent possible NULL dereferences from icmp_build_probe() |
| CVE-2024-35858 | 2024-05-17 | net: bcmasp: fix memory leak when bringing down interface |
| CVE-2024-35859 | 2024-05-17 | block: fix module reference leakage from bdev_open_by_dev error path |
| CVE-2024-34241 | 2024-05-17 | A cross-site scripting (XSS) vulnerability in Rocketsoft Rocket LMS 1.9 allows an administrator to store a JavaScript payload using the admin web interface when creating new courses and new course... |
| CVE-2024-5072 | 2024-05-17 | Improper input validation in PAM JIT elevation feature in Devolutions Server 2024.1.11.0 and earlier allows an authenticated user with access to the PAM JIT elevation feature to manipulate the LDAP... |
| CVE-2024-22429 | 2024-05-17 | Dell BIOS contains an Improper Input Validation vulnerability. A local authenticated malicious user with admin privileges could potentially exploit this vulnerability, leading to arbitrary code execution. |