VIR Vulnerability Intelligence Relay

CVEs from 2024

7,195 normalized CVEs published or assigned in this year.

Total
7,195
critical
critical 114
high
high 1,020
medium
medium 2,013
low
low 42
% Critical
1.6%
% with KEV
2.3%
% with exploit
2.3%

Top vendors

Top products

  • surveillance_station 12
  • checkmk 10
  • profilegrid 8
  • office 8
  • office_long_term_servicing_channel 6
  • glibc 5
  • virtual_traffic_manager 5
  • element_pack 5

Top packages

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Published Description Impact
CVE-2024-56757 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btusb: mediatek: add intf release flow when usb disconnect MediaTek claim an special usb intr interface for ISO data t… redhatsusedebian
CVE-2024-47141 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: pinmux: Use sequential access to access desc->pinmux data When two client of the same gpio call pinctrl_select_state() for the sa… redhatsusedebian
CVE-2024-47738 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: don't use rate mask for offchannel TX either Like the commit ab9177d83c04 ("wifi: mac80211: don't use rate mask f… redhatsusedebian
CVE-2024-50235 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: clear wdev->cqm_config pointer on free When we free wdev->cqm_config when unregistering, we also need to clear ou… redhatsusedebian
CVE-2024-46864 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: x86/hyperv: fix kexec crash due to VP assist page corruption commit 9636be85cc5b ("x86/hyperv: Fix hyperv_pcpu_input_arg handling… redhatsusedebian
CVE-2024-46754 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: bpf: Remove tst_run from lwt_seg6local_prog_ops. The syzbot reported that the lwt_seg6 related BPF ops can be invoked via bpf_tes… redhatsusedebian
CVE-2024-46675 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: core: Prevent USB core invalid event buffer address access This commit addresses an issue where the USB core could acc… redhatsusedebian
CVE-2024-47739 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: padata: use integer wrap around to prevent deadlock on seq_nr overflow When submitting more than 2^32 padata objects to padata_do… redhatsusedebian
CVE-2024-46761 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: pci/hotplug/pnv_php: Fix hotplug driver crash on Powernv The hotplug driver for powerpc (pci/hotplug/pnv_php.c) causes a kernel c… redhatsusedebian
CVE-2024-45022 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: mm/vmalloc: fix page mapping if vm_area_alloc_pages() with high order fallback to order 0 The __vmap_pages_range_noflush() assume… redhatsusedebian
CVE-2024-50237 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: do not pass a stopped vif to the driver in .get_txpower Avoid potentially crashing in the driver because of unini… redhatsusedebian
CVE-2024-53072 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: platform/x86/amd/pmc: Detect when STB is not available Loading the amd_pmc module as: amd_pmc enable_stb=1 ...can result in… redhatsusedebian
CVE-2024-44934 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: net: bridge: mcast: wait for previous gc cycles when removing port syzbot hit a use-after-free[1] which is caused because the bri… redhatsusedebian
CVE-2024-56647 medium 5.5 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: net: Fix icmp host relookup triggering ip_rt_bug arp link failure may trigger ip_rt_bug while xfrm enabled, call trace is: WARNI… redhatsusedebianlinux
CVE-2024-46673 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: scsi: aacraid: Fix double-free on probe failure aac_probe_one() calls hardware-specific init functions through the aac_driver_ide… redhatsusedebian
CVE-2024-10224 medium 5.5 1y ago Moderate: perl-Module-ScanDeps security update redhatdebianrockylinux
CVE-2024-43823 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: PCI: keystone: Fix NULL pointer dereference in case of DT error in ks_pcie_setup_rc_app_regs() If IORESOURCE_MEM is not provided … redhatsusedebian
CVE-2024-43821 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fix a possible null pointer dereference In function lpfc_xcvr_data_show, the memory allocation with kmalloc might fai… redhatsusedebian
CVE-2024-42315 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: exfat: fix potential deadlock on __exfat_get_dentry_set When accessing a file with more entries than ES_MAX_ENTRY_NUM, the bh-arr… redhatsusedebian
CVE-2024-43820 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: dm-raid: Fix WARN_ON_ONCE check for sync_thread in raid_resume rm-raid devices will occasionally trigger the following warning wh… redhatsusedebian
CVE-2024-43914 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: md/raid5: avoid BUG_ON() while continue reshape after reassembling Currently, mdadm support --revert-reshape to abort the reshape… redhatsusedebian
CVE-2024-44931 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: gpio: prevent potential speculation leaks in gpio_device_get_desc() Userspace may trigger a speculative read of an address outsid… redhatsusedebian
CVE-2024-53085 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: tpm: Lock TPM chip in tpm_pm_suspend() first Setting TPM_CHIP_FLAG_SUSPENDED in the end of tpm_pm_suspend() can be racy according… redhatsusedebian
CVE-2024-47737 medium 5.5 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: nfsd: call cache_put if xdr_reserve_space returns NULL If not enough buffer space available, but idmap_lookup has triggered looku… redhatsusedebianlinux
CVE-2024-44932 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: idpf: fix UAFs when destroying the queues The second tagged commit started sometimes (very rarely, but possible) throwing WARNs f… redhatsusedebian
CVE-2024-50215 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: nvmet-auth: assign dh_key to NULL after kfree_sensitive ctrl->dh_key might be used across multiple calls to nvmet_setup_dhgroup()… redhatsusedebian
CVE-2024-50282 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: add missing size check in amdgpu_debugfs_gprwave_read() Avoid a possible buffer overflow if size is larger than 4K. … redhatsusedebian
CVE-2024-43828 medium 5.5 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: ext4: fix infinite loop when replaying fast_commit When doing fast_commit replay an infinite loop may occur due to an uninitializ… redhatsusedebianlinux
CVE-2024-57898 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: clear link ID from bitmap during link delete after clean up Currently, during link deletion, the link ID is first… redhatsusedebian
CVE-2024-42253 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: gpio: pca953x: fix pca953x_irq_bus_sync_unlock race Ensure that `i2c_lock' is held when setting interrupt latch and mask in pca95… redhatsusedebian
CVE-2024-46951 medium 5.5 1y ago Moderate: ghostscript security update redhatrockylinuxdebiansuse+1
CVE-2024-43834 medium 5.5 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: xdp: fix invalid wait context of page_pool_destroy() If the driver uses a page pool, it creates a page pool with page_pool_create… redhatsusedebianlinux
CVE-2024-50067 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: uprobe: avoid out-of-bounds memory access of fetching args Uprobe needs to fetch args into a percpu buffer, and then copy to ring… redhatsusedebian
CVE-2024-57885 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: mm/kmemleak: fix sleeping function called from invalid context at print message Address a bug in the kernel that triggers a "slee… redhatsusedebian
CVE-2024-57931 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: selinux: ignore unknown extended permissions When evaluating extended permissions, ignore unknown permissions instead of calling … redhatsusedebian
CVE-2024-57940 medium 5.5 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: exfat: fix the infinite loop in exfat_readdir() If the file system is corrupted so that a cluster is linked to itself in the clus… redhatsusedebianlinux
CVE-2024-42294 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: block: fix deadlock between sd_remove & sd_release Our test report the following hung task: [ 2538.459400] INFO: task "kworker/0… redhatsusedebian
CVE-2024-43853 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: cgroup/cpuset: Prevent UAF in proc_cpuset_show() An UAF can happen when /proc/cpuset is read as reported in [1]. This can be rep… redhatsusedebian
CVE-2024-47834 medium 5.5 1y ago Moderate: gstreamer1-plugins-good security update redhatdebiansusealmalinux
CVE-2024-43846 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: lib: objagg: Fix general protection fault The library supports aggregation of objects into other objects only if the parent objec… redhatsusedebian
CVE-2024-58099 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: vmxnet3: Fix packet corruption in vmxnet3_xdp_xmit_frame Andrew and Nikolay reported connectivity issues with Cilium's service lo… redhatsusedebian
CVE-2024-56642 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: tipc: Fix use-after-free of kernel socket in cleanup_bearer(). syzkaller reported a use-after-free of UDP kernel socket in cleanu… redhatsusedebian
CVE-2024-44958 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: sched/smt: Fix unbalance sched_smt_present dec/inc I got the following warn report while doing stress test: jump label: negative… redhatsusedebian
CVE-2024-49954 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: static_call: Replace pointless WARN_ON() in static_call_module_notify() static_call_module_notify() triggers a WARN_ON(), when me… redhatsusedebian
CVE-2024-44964 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: idpf: fix memory leaks and crashes while performing a soft reset The second tagged commit introduced a UAF, as it removed restori… redhatsusedebian
CVE-2024-50256 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_reject_ipv6: fix potential crash in nf_send_reset6() I got a syzbot report without a repro [1] crashing in nf_send_… redhatrockylinuxsusedebian+1
CVE-2024-47778 medium 5.5 1y ago Moderate: gstreamer1-plugins-good security update redhatdebiansusealmalinux
CVE-2024-44975 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: cgroup/cpuset: fix panic caused by partcmd_update We find a bug as below: BUG: unable to handle page fault for address: 00000003 … redhatsusedebian
CVE-2024-49938 medium 5.5 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: wifi: ath9k_htc: Use __skb_set_length() for resetting urb before resubmit Syzbot points out that skb_trim() has a sanity check on… redhatsusedebianlinux
CVE-2024-50046 medium 5.5 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: NFSv4: Prevent NULL-pointer dereference in nfs42_complete_copies() On the node of an NFS client, some files saved in the mountpoi… redhatsusedebianlinux
CVE-2024-42278 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: ASoC: TAS2781: Fix tasdev_load_calibrated_data() This function has a reversed if statement so it's either a no-op or it leads to … redhatsusedebian
CVE-2024-47777 medium 5.5 1y ago Moderate: gstreamer1-plugins-good security update redhatdebiansusealmalinux
CVE-2024-35933 medium 5.5 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btintel: Fix null ptr deref in btintel_read_version If hci_cmd_sync_complete() is triggered and skb is NULL, then hdev… redhatsusedebianlinux
CVE-2024-35934 medium 5.5 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: net/smc: reduce rtnl pressure in smc_pnet_create_pnetids_list() Many syzbot reports show extreme rtnl pressure, and many of them … redhatsusedebianlinux
CVE-2024-47775 medium 5.5 1y ago Moderate: gstreamer1-plugins-good security update redhatdebiansusealmalinux
CVE-2024-47774 medium 5.5 1y ago Moderate: gstreamer1-plugins-good security update redhatdebiansusealmalinux
CVE-2024-47603 medium 5.5 1y ago Moderate: gstreamer1-plugins-good security update redhatdebiansusealmalinux
CVE-2024-50153 medium 5.5 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: scsi: target: core: Fix null-ptr-deref in target_alloc_device() There is a null-ptr-deref issue reported by KASAN: BUG: KASAN: n… redhatsusedebianlinux
CVE-2024-50152 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: smb: client: fix possible double free in smb2_set_ea() Clang static checker(scan-build) warning: fs/smb/client/smb2ops.c:1304:2: … redhatsusedebian
CVE-2024-12747 medium 5.5 1y ago Moderate: rsync security update archredhatrockylinuxsuse+1
CVE-2024-47602 medium 5.5 1y ago Moderate: gstreamer1-plugins-good security update redhatdebiansusealmalinux
CVE-2024-50141 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: ACPI: PRM: Find EFI_MEMORY_RUNTIME block for PRM handler and context PRMT needs to find the correct type of block to translate th… redhatsusedebian
CVE-2024-47601 medium 5.5 1y ago Moderate: gstreamer1-plugins-good security update redhatdebiansusealmalinux
CVE-2024-47599 medium 5.5 1y ago Moderate: gstreamer1-plugins-good security update redhatdebiansusealmalinux
CVE-2024-50130 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: netfilter: bpf: must hold reference on net namespace BUG: KASAN: slab-use-after-free in __nf_unregister_net_hook+0x640/0x6b0 Read… redhatsusedebian
CVE-2024-50143 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: udf: fix uninit-value use in udf_get_fileshortad Check for overflow when computing alen in udf_current_aext to mitigate later uni… redhatsusedebian
CVE-2024-50126 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: net: sched: use RCU read-side critical section in taprio_dump() Fix possible use-after-free in 'taprio_dump()' by adding RCU read… redhatsusedebian
CVE-2024-47600 medium 5.5 1y ago Moderate: gstreamer1-plugins-base security update redhatdebiansuserockylinux
CVE-2024-12087 medium 5.5 1y ago Moderate: rsync security update archredhatrockylinuxsuse+1
CVE-2024-50120 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: smb: client: Handle kstrdup failures for passwords In smb3_reconfigure(), after duplicating ctx->password and ctx->password2 with… redhatsusedebian
CVE-2024-50019 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: kthread: unpark only parked kthread Calling into kthread unparking unconditionally is mostly harmless when the kthread is already… redhatsusedebian
CVE-2024-50013 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: exfat: fix memory leak in exfat_load_bitmap() If the first directory entry in the root directory is not a bitmap directory entry,… redhatsusedebian
CVE-2024-50009 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: cpufreq: amd-pstate: add check for cpufreq_cpu_get's return value cpufreq_cpu_get may return NULL. To avoid NULL-dereference chec… redhatsusedebian
CVE-2024-50008 medium 5.5 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: wifi: mwifiex: Fix memcpy() field-spanning write warning in mwifiex_cmd_802_11_scan_ext() Replace one-element array with a flexib… redhatsusedebianlinux
CVE-2024-50015 medium 5.5 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: ext4: dax: fix overflowing extents beyond inode size when partially writing The dax_iomap_rw() does two things in each iteration:… redhatsusedebianlinux
CVE-2024-50002 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: static_call: Handle module init failure correctly in static_call_del_module() Module insertion invokes static_call_add_module() t… redhatsusedebian
CVE-2024-49999 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: afs: Fix the setting of the server responding flag In afs_wait_for_operation(), we set transcribe the call responded flag to the … redhatsusedebian
CVE-2024-49991 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: amdkfd_free_gtt_mem clear the correct pointer Pass pointer reference to amdgpu_bo_unref to clear the correct pointer,… redhatsusedebian
CVE-2024-49994 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: block: fix integer overflow in BLKSECDISCARD I independently rediscovered commit 22d24a544b0d49bbcbd61c8c0eaf77d3c9297155 bloc… redhatsusedebian
CVE-2024-53117 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: virtio/vsock: Improve MSG_ZEROCOPY error handling Add a missing kfree_skb() to prevent memory leaks. redhatsusedebian
CVE-2024-49977 medium 5.5 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: net: stmmac: Fix zero-division error when disabling tc cbs The commit b8c43360f6e4 ("net: stmmac: No need to calculate speed divi… redhatsusedebianlinux
CVE-2024-41010 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: bpf: Fix too early release of tcx_entry Pedro Pinto and later independently also Hyunwoo Kim and Wongi Lee reported an issue that… redhatsusedebian
CVE-2024-50219 medium 5.5 1y ago RHSA-2025:6966: kernel security update (Moderate) redhatsuse
CVE-2024-49904 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: add list empty check to avoid null pointer issue Add list empty check to avoid null pointer issues in some corner cas… redhatsusedebian
CVE-2024-8418 medium 5.5 1y ago Moderate: aardvark-dns security update debianredhatsuserust
CVE-2024-45774 medium 5.5 1y ago Moderate: grub2 security update redhatdebiansuserockylinux
CVE-2024-53142 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: initramfs: avoid filename buffer overrun The initramfs filename field is defined in Documentation/driver-api/early-userspace/buff… redhatsusedebian
CVE-2024-50271 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: signal: restore the override_rlimit logic Prior to commit d64696905554 ("Reimplement RLIMIT_SIGPENDING on top of ucounts") UCOUNT… redhatsusedebian
CVE-2024-47678 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: icmp: change the order of rate limits ICMP messages are ratelimited : After the blamed commits, the two rate limiters are applie… redhatsusedebian
CVE-2024-47705 medium 5.5 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: block: fix potential invalid pointer dereference in blk_add_partition The blk_add_partition() function initially used a single if… redhatsusedebianlinux
CVE-2024-49967 medium 5.5 1y ago RHSA-2025:6966: kernel security update (Moderate) redhatsuse
CVE-2024-42321 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: net: flow_dissector: use DEBUG_NET_WARN_ON_ONCE The following splat is easy to reproduce upstream as well as in -stable kernels. … redhatsusedebian
CVE-2024-46800 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: sch/netem: fix use after free in netem_dequeue If netem_dequeue() enqueues packet to inner qdisc and that qdisc returns __NET_XMI… redhatsusedebian
CVE-2024-56664 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Fix race between element replace and close() Element replace (with a socket different from the one stored) may race… redhatsusedebian
CVE-2024-54460 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: Bluetooth: iso: Fix circular lock in iso_listen_bis This fixes the circular locking dependency warning below, by releasing the so… redhatsusedebian
CVE-2024-53134 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: pmdomain: imx93-blk-ctrl: correct remove path The check condition should be 'i < bc->onecell_data.num_domains', not 'bc->onecell_… redhatsusedebian
CVE-2024-53136 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: mm: revert "mm: shmem: fix data-race in shmem_getattr()" Revert d949d1d14fa2 ("mm: shmem: fix data-race in shmem_getattr()") as s… redhatsusedebian
CVE-2024-53232 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: iommu/s390: Implement blocking domain This fixes a crash when surprise hot-unplugging a PCI device. This crash happens because du… redhatsusedebian
CVE-2024-46786 medium 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: fscache: delete fscache_cookie_lru_timer when fscache exits to avoid UAF The fscache_cookie_lru_timer is initialized when the fsc… redhatsusedebian
CVE-2024-46783 medium 5.5 5.5 1y ago In the Linux kernel, the following vulnerability has been resolved: tcp_bpf: fix return value of tcp_bpf_sendmsg() When we cork messages in psock->cork, the last message triggers the flushing will … redhatsusedebianlinux