Vuldb Updates

A vulnerability classified as critical was found in Linux Kernel up to 5.10.224/5.15.165/6.1.106/6.6.47/6.10.6. Affected by this vulnerability is the function xdo_dev_offload_ok. The manipulation leads to null pointer dereference. This vulnerability is known as CVE-2024-44989. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 5.10.224/5.15.165/6.1.106/6.6.47/6.10.6. Affected by this issue is the function bond_ipsec_offload_ok. The manipulation leads to null pointer dereference. This vulnerability is handled as CVE-2024-44990. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.10.6 and classified as critical. This issue affects the function napi_disable. The manipulation leads to deadlock. The identification of this vulnerability is CVE-2024-44995. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic was found in Linux Kernel up to 6.10.6. This vulnerability affects unknown code of the component mv88e6xxx. The manipulation leads to out-of-bounds read. This vulnerability was named CVE-2024-44988. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.10.6. It has been declared as critical. This vulnerability affects the function ip6_send_skb. The manipulation leads to use after free. This vulnerability was named CVE-2024-44987. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Linux Kernel up to 5.15.165/6.1.106/6.6.47/6.10.6. Affected is the function ip6_finish_output2. The manipulation leads to null pointer dereference. This vulnerability is traded as CVE-2024-44986. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Linux Kernel up to 5.15.165/6.1.106/6.6.47/6.10.6. This affects the function ip6_xmit. The manipulation leads to null pointer dereference. This vulnerability is uniquely identified as CVE-2024-44985. It is possible to initiate the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.106/6.6.47/6.10.6. It has been declared as critical. This vulnerability affects unknown code of the component AMD GPU. The manipulation leads to out-of-bounds write. This vulnerability was named CVE-2024-44977. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as very critical was found in Linux Kernel up to 5.15.165/6.1.106/6.6.47/6.10.6. Affected by this vulnerability is an unknown functionality of the component flowtable. The manipulation leads to buffer overflow. This vulnerability is known as CVE-2024-44983. The attack can be launched remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 5.15.165/6.1.106/6.6.47/6.10.6 and classified as problematic. This vulnerability affects the function dpu_format_populate_layout. The manipulation leads to Privilege Escalation. This vulnerability was named CVE-2024-44982. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.106/6.6.47/6.10.6. It has been declared as critical. Affected by this vulnerability is the function kcm_release in the library include/linux/skbuff.h. The manipulation leads to use after free. This vulnerability is known as CVE-2024-44946. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.6.45/6.10.4 and classified as problematic. This issue affects the function idr_alloc of the component memcg. The manipulation leads to allocation of resources. The identification of this vulnerability is CVE-2024-43892. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic has been found in Linux Kernel up to 6.6.45/6.10.4. This affects the function gpio_device_get_desc of the component gpio. The manipulation leads to information disclosure. This vulnerability is uniquely identified as CVE-2024-44931. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, was found in Linux Kernel up to 6.6.46/6.10.5. This affects the function gue_gro_receive of the component fou. The manipulation leads to Privilege Escalation. This vulnerability is uniquely identified as CVE-2024-44940. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Linux Kernel up to 6.6.36/6.9.7. This affects the function ata_port_alloc of the component libata-core. The manipulation leads to null pointer dereference. This vulnerability is uniquely identified as CVE-2024-41098. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Linux Kernel up to 6.6.43/6.10.2. This affects the function f2fs_file_open. The manipulation leads to null pointer dereference. This vulnerability is uniquely identified as CVE-2024-43859. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Linux Kernel up to 6.6.43/6.10.2. Affected is the function add_ra_bio_pages of the component btrfs. The manipulation leads to use after free. This vulnerability is traded as CVE-2024-42314. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.6.36/6.9.7. It has been rated as critical. Affected by this issue is the function __msi_domain_alloc_locked of the component MSI. The manipulation leads to use after free. This vulnerability is handled as CVE-2024-41096. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 6.8.6 and classified as problematic. This vulnerability affects the function rfcomm_sock_setsockopt_old in the library include/linux/sockptr.h of the component Bluetooth. The manipulation leads to out-of-bounds read. This vulnerability was named CVE-2024-35966. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, was found in Linux Kernel up to 6.10. Affected is the function ocfs2_xattr_find_entry. The manipulation leads to out-of-bounds read. This vulnerability is traded as CVE-2024-41016. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.