Lista CVE - 2024 / Luglio
Visualizzazione 2601 - 2700 di 3117 CVE per Luglio 2024 (Pagina 27 di 32)
| ID CVE | Data | Titolo |
|---|---|---|
| CVE-2024-41014 | 2024-07-29 | xfs: add bounds checking to xlog_recover_process_data |
| CVE-2024-41015 | 2024-07-29 | ocfs2: add bounds checking to ocfs2_check_dir_entry() |
| CVE-2024-41016 | 2024-07-29 | ocfs2: strict bound check before memcmp in ocfs2_xattr_find_entry() |
| CVE-2024-41017 | 2024-07-29 | jfs: don't walk off the end of ealist |
| CVE-2024-41018 | 2024-07-29 | fs/ntfs3: Add a check for attr_names and oatbl |
| CVE-2024-41019 | 2024-07-29 | fs/ntfs3: Validate ff offset |
| CVE-2024-7188 | 2024-07-29 | Bylancer Quicklancer GET Parameter listing sql injection |
| CVE-2024-7189 | 2024-07-29 | itsourcecode Online Food Ordering System editproduct.php unrestricted upload |
| CVE-2024-7190 | 2024-07-29 | itsourcecode Society Management System get_price.php sql injection |
| CVE-2024-7191 | 2024-07-29 | itsourcecode Society Management System get_balance.php sql injection |
| CVE-2024-41881 | 2024-07-29 | SDoP versions prior to 1.11 fails to handle appropriately some... |
| CVE-2024-41139 | 2024-07-29 | Incorrect privilege assignment vulnerability exists in SKYSEA Client View Ver.6.010.06... |
| CVE-2024-41143 | 2024-07-29 | Origin validation error vulnerability exists in SKYSEA Client View Ver.3.013.00... |
| CVE-2024-41726 | 2024-07-29 | Path traversal vulnerability exists in SKYSEA Client View Ver.3.013.00 to... |
| CVE-2024-7192 | 2024-07-29 | itsourcecode Society Management System student.php unrestricted upload |
| CVE-2024-7193 | 2024-07-29 | Mp3tag DLL tak_deco_lib.dll uncontrolled search path |
| CVE-2024-7194 | 2024-07-29 | itsourcecode Society Management System check_student.php sql injection |
| CVE-2024-7195 | 2024-07-29 | itsourcecode Society Management System check_admin.php sql injection |
| CVE-2024-7196 | 2024-07-29 | SourceCodester Complaints Report Management System sql injection |
| CVE-2024-7197 | 2024-07-29 | SourceCodester Complaints Report Management System manage_complaint.php sql injection |
| CVE-2024-7198 | 2024-07-29 | SourceCodester Complaints Report Management System manage_station.php sql injection |
| CVE-2024-7199 | 2024-07-29 | SourceCodester Complaints Report Management System manage_user.php sql injection |
| CVE-2024-6881 | 2024-07-29 | Stored XSS Vulnerability |
| CVE-2024-7200 | 2024-07-29 | SourceCodester Complaints Report Management System cross site scripting |
| CVE-2024-6124 | 2024-07-29 | Reflected XSS in Hubshare via Open Redirect |
| CVE-2024-41020 | 2024-07-29 | filelock: Fix fcntl/close race recovery compat path |
| CVE-2024-41021 | 2024-07-29 | s390/mm: Fix VM_FAULT_HWPOISON handling in do_exception() |
| CVE-2024-41022 | 2024-07-29 | drm/amdgpu: Fix signedness bug in sdma_v4_0_process_trap_irq() |
| CVE-2024-6576 | 2024-07-29 | MOVEit Transfer Privilege Escalation Vulnerability |
| CVE-2024-6984 | 2024-07-29 | An issue was discovered in Juju that resulted in the... |
| CVE-2024-37906 | 2024-07-29 | Admidio has Blind SQL Injection in ecard_send.php |
| CVE-2024-38529 | 2024-07-29 | Admidio Vulnerable to RCE via Arbitrary File Upload in Message Attachment |
| CVE-2024-41023 | 2024-07-29 | sched/deadline: Fix task_struct reference leak |
| CVE-2024-41025 | 2024-07-29 | misc: fastrpc: Fix memory leak in audio daemon attach operation |
| CVE-2024-41026 | 2024-07-29 | mmc: davinci_mmc: Prevent transmitted data size from exceeding sgm's length |
| CVE-2024-41027 | 2024-07-29 | Fix userfaultfd_api to return EINVAL as expected |
| CVE-2024-41028 | 2024-07-29 | platform/x86: toshiba_acpi: Fix array out-of-bounds access |
| CVE-2024-41029 | 2024-07-29 | nvmem: core: limit cell sysfs permissions to main attribute ones |
| CVE-2024-41030 | 2024-07-29 | ksmbd: discard write access to the directory open |
| CVE-2024-41031 | 2024-07-29 | mm/filemap: skip to create PMD-sized page cache if needed |
| CVE-2024-41032 | 2024-07-29 | mm: vmalloc: check if a hash-index is in cpu_possible_mask |
| CVE-2024-41033 | 2024-07-29 | cachestat: do not flush stats in recency check |
| CVE-2024-41034 | 2024-07-29 | nilfs2: fix kernel bug on rename operation of broken directory |
| CVE-2024-41035 | 2024-07-29 | USB: core: Fix duplicate endpoint bug by clearing reserved bits in the descriptor |
| CVE-2024-41036 | 2024-07-29 | net: ks8851: Fix deadlock with the SPI chip variant |
| CVE-2024-41037 | 2024-07-29 | ASoC: SOF: Intel: hda: fix null deref on system suspend entry |
| CVE-2024-41038 | 2024-07-29 | firmware: cs_dsp: Prevent buffer overrun when processing V2 alg headers |
| CVE-2024-41039 | 2024-07-29 | firmware: cs_dsp: Fix overflow checking of wmfw header |
| CVE-2024-41040 | 2024-07-29 | net/sched: Fix UAF when resolving a clash |
| CVE-2024-41041 | 2024-07-29 | udp: Set SOCK_RCU_FREE earlier in udp_lib_get_port(). |
| CVE-2024-41042 | 2024-07-29 | netfilter: nf_tables: prefer nft_chain_validate |
| CVE-2024-41043 | 2024-07-29 | netfilter: nfnetlink_queue: drop bogus WARN_ON |
| CVE-2024-41044 | 2024-07-29 | ppp: reject claimed-as-LCP but actually malformed packets |
| CVE-2024-41045 | 2024-07-29 | bpf: Defer work in bpf_timer_cancel_and_free |
| CVE-2024-41046 | 2024-07-29 | net: ethernet: lantiq_etop: fix double free in detach |
| CVE-2024-41047 | 2024-07-29 | i40e: Fix XDP program unloading while removing the driver |
| CVE-2024-41048 | 2024-07-29 | skmsg: Skip zero length skb in sk_msg_recvmsg |
| CVE-2024-41049 | 2024-07-29 | filelock: fix potential use-after-free in posix_lock_inode |
| CVE-2024-41050 | 2024-07-29 | cachefiles: cyclic allocation of msg_id to avoid reuse |
| CVE-2024-41051 | 2024-07-29 | cachefiles: wait for ondemand_object_worker to finish when dropping object |
| CVE-2024-41052 | 2024-07-29 | vfio/pci: Init the count variable in collecting hot-reset devices |
| CVE-2024-41053 | 2024-07-29 | scsi: ufs: core: Fix ufshcd_abort_one racing issue |
| CVE-2024-41054 | 2024-07-29 | scsi: ufs: core: Fix ufshcd_clear_cmd racing issue |
| CVE-2024-41055 | 2024-07-29 | mm: prevent derefencing NULL ptr in pfn_section_valid() |
| CVE-2024-41056 | 2024-07-29 | firmware: cs_dsp: Use strnlen() on name fields in V1 wmfw files |
| CVE-2024-41671 | 2024-07-29 | twisted.web has disordered HTTP pipeline response |
| CVE-2024-41676 | 2024-07-29 | Magento LTS vulnerable to stored Cross-site Scripting (XSS) in admin system configs |
| CVE-2024-41057 | 2024-07-29 | cachefiles: fix slab-use-after-free in cachefiles_withdraw_cookie() |
| CVE-2024-41058 | 2024-07-29 | cachefiles: fix slab-use-after-free in fscache_withdraw_volume() |
| CVE-2024-41059 | 2024-07-29 | hfsplus: fix uninit-value in copy_name |
| CVE-2024-41060 | 2024-07-29 | drm/radeon: check bo_va->bo is non-NULL before using it |
| CVE-2024-41061 | 2024-07-29 | drm/amd/display: Fix array-index-out-of-bounds in dml2/FCLKChangeSupport |
| CVE-2024-41062 | 2024-07-29 | bluetooth/l2cap: sync sock recv cb and release |
| CVE-2024-41063 | 2024-07-29 | Bluetooth: hci_core: cancel all works upon hci_unregister_dev() |
| CVE-2024-41064 | 2024-07-29 | powerpc/eeh: avoid possible crash when edev->pdev changes |
| CVE-2024-41065 | 2024-07-29 | powerpc/pseries: Whitelist dtl slub object for copying to userspace |
| CVE-2024-41066 | 2024-07-29 | ibmvnic: Add tx check to prevent skb leak |
| CVE-2024-41067 | 2024-07-29 | btrfs: scrub: handle RST lookup error correctly |
| CVE-2024-41068 | 2024-07-29 | s390/sclp: Fix sclp_init() cleanup on failure |
| CVE-2024-41069 | 2024-07-29 | ASoC: topology: Fix references to freed memory |
| CVE-2024-41070 | 2024-07-29 | KVM: PPC: Book3S HV: Prevent UAF in kvm_spapr_tce_attach_iommu_group() |
| CVE-2024-41072 | 2024-07-29 | wifi: cfg80211: wext: add extra SIOCSIWSCAN data check |
| CVE-2024-41073 | 2024-07-29 | nvme: avoid double free special payload |
| CVE-2024-41074 | 2024-07-29 | cachefiles: Set object to close if ondemand_id < 0 in copen |
| CVE-2024-41075 | 2024-07-29 | cachefiles: add consistency check for copen/cread |
| CVE-2024-41076 | 2024-07-29 | NFSv4: Fix memory leak in nfs4_set_security_label |
| CVE-2024-41077 | 2024-07-29 | null_blk: fix validation of block size |
| CVE-2024-41799 | 2024-07-29 | tgstation-server's DreamMaker environment files outside the deployment directory can be compiled and ran by insufficiently permissioned users |
| CVE-2024-41078 | 2024-07-29 | btrfs: qgroup: fix quota root leak after quota disable failure |
| CVE-2024-41079 | 2024-07-29 | nvmet: always initialize cqe.result |
| CVE-2024-41080 | 2024-07-29 | io_uring: fix possible deadlock in io_register_iowq_max_workers() |
| CVE-2024-41081 | 2024-07-29 | ila: block BH in ila_output() |
| CVE-2024-41082 | 2024-07-29 | nvme-fabrics: use reserved tag for reg read/write command |
| CVE-2024-41810 | 2024-07-29 | HTML injection in HTTP redirect body |
| CVE-2024-41083 | 2024-07-29 | netfs: Fix netfs_page_mkwrite() to check folio->mapping is valid |
| CVE-2024-41084 | 2024-07-29 | cxl/region: Avoid null pointer dereference in region lookup |
| CVE-2024-41085 | 2024-07-29 | cxl/mem: Fix no cxl_nvd during pmem region auto-assembling |
| CVE-2024-41086 | 2024-07-29 | bcachefs: Fix sb_field_downgrade validation |
| CVE-2024-41087 | 2024-07-29 | ata: libata-core: Fix double free on error |
| CVE-2024-41088 | 2024-07-29 | can: mcp251xfd: fix infinite loop when xmit fails |