Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 7.8

    HIGH
    CVE-2024-49960

    In the Linux kernel, the following vulnerability has been resolved: ext4: fix timer use-after-free on failed mount Syzbot has found an ODEBUG bug in ext4_fill_super The del_timer_sync function cancels the s_err_report timer, which reminds about filesys... Read more

    Affected Products : linux_kernel
    • Published: Oct. 21, 2024
    • Modified: May. 02, 2025

  • 5.5

    MEDIUM
    CVE-2024-46816

    In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Stop amdgpu_dm initialize when link nums greater than max_links [Why] Coverity report OVERRUN warning. There are only max_links elements within dc->links. link count co... Read more

    Affected Products : linux_kernel
    • Published: Sep. 27, 2024
    • Modified: May. 02, 2025

  • 5.5

    MEDIUM
    CVE-2024-46784

    In the Linux kernel, the following vulnerability has been resolved: net: mana: Fix error handling in mana_create_txq/rxq's NAPI cleanup Currently napi_disable() gets called during rxq and txq cleanup, even before napi is enabled and hrtimer is initializ... Read more

    Affected Products : linux_kernel
    • Published: Sep. 18, 2024
    • Modified: May. 02, 2025

  • 7.1

    HIGH
    CVE-2024-46774

    In the Linux kernel, the following vulnerability has been resolved: powerpc/rtas: Prevent Spectre v1 gadget construction in sys_rtas() Smatch warns: arch/powerpc/kernel/rtas.c:1932 __do_sys_rtas() warn: potential spectre issue 'args.args' [r] (loca... Read more

    Affected Products : linux_kernel
    • Published: Sep. 18, 2024
    • Modified: May. 02, 2025

  • 5.5

    MEDIUM
    CVE-2024-46742

    In the Linux kernel, the following vulnerability has been resolved: smb/server: fix potential null-ptr-deref of lease_ctx_info in smb2_open() null-ptr-deref will occur when (req_op_level == SMB2_OPLOCK_LEVEL_LEASE) and parse_lease_state() return NULL. ... Read more

    Affected Products : linux_kernel
    • Published: Sep. 18, 2024
    • Modified: May. 02, 2025

  • 5.5

    MEDIUM
    CVE-2024-44938

    In the Linux kernel, the following vulnerability has been resolved: jfs: Fix shift-out-of-bounds in dbDiscardAG When searching for the next smaller log2 block, BLKSTOL2() returned 0, causing shift exponent -1 to be negative. This patch fixes the issue ... Read more

    Affected Products : linux_kernel
    • Published: Aug. 26, 2024
    • Modified: May. 02, 2025

  • 5.5

    MEDIUM
    CVE-2024-43904

    In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add null checks for 'stream' and 'plane' before dereferencing This commit adds null checks for the 'stream' and 'plane' variables in the dcn30_apply_idle_power_optimiza... Read more

    Affected Products : linux_kernel
    • Published: Aug. 26, 2024
    • Modified: May. 02, 2025

  • 0.0

    NA
    CVE-2024-42322

    In the Linux kernel, the following vulnerability has been resolved: ipvs: properly dereference pe in ip_vs_add_service Use pe directly to resolve sparse warning: net/netfilter/ipvs/ip_vs_ctl.c:1471:27: warning: dereference of noderef expression... Read more

    Affected Products : linux_kernel
    • Published: Aug. 17, 2024
    • Modified: May. 02, 2025

  • 7.8

    HIGH
    CVE-2024-42160

    In the Linux kernel, the following vulnerability has been resolved: f2fs: check validation of fault attrs in f2fs_build_fault_attr() - It missed to check validation of fault attrs in parse_options(), let's fix to add check condition in f2fs_build_fault_... Read more

    Affected Products : linux_kernel
    • Published: Jul. 30, 2024
    • Modified: May. 02, 2025

  • 7.8

    HIGH
    CVE-2024-41073

    In the Linux kernel, the following vulnerability has been resolved: nvme: avoid double free special payload If a discard request needs to be retried, and that retry may fail before a new special payload is added, a double free will result. Clear the RQF... Read more

    Affected Products : linux_kernel
    • Published: Jul. 29, 2024
    • Modified: May. 02, 2025

  • 4.4

    MEDIUM
    CVE-2024-38540

    In the Linux kernel, the following vulnerability has been resolved: bnxt_re: avoid shift undefined behavior in bnxt_qplib_alloc_init_hwq Undefined behavior is triggered when bnxt_qplib_alloc_init_hwq is called with hwq_attr->aux_depth != 0 and hwq_attr-... Read more

    Affected Products : linux_kernel
    • Published: Jun. 19, 2024
    • Modified: May. 02, 2025

  • 7.1

    HIGH
    CVE-2024-36908

    In the Linux kernel, the following vulnerability has been resolved: blk-iocost: do not WARN if iocg was already offlined In iocg_pay_debt(), warn is triggered if 'active_list' is empty, which is intended to confirm iocg is active when it has debt. Howev... Read more

    Affected Products : linux_kernel
    • Published: May. 30, 2024
    • Modified: May. 02, 2025

  • 0.0

    NA
    CVE-2024-35943

    In the Linux kernel, the following vulnerability has been resolved: pmdomain: ti: Add a null pointer check to the omap_prm_domain_init devm_kasprintf() returns a pointer to dynamically allocated memory which can be NULL upon failure. Ensure the allocati... Read more

    Affected Products : linux_kernel
    • Published: May. 19, 2024
    • Modified: May. 02, 2025

  • 7.8

    HIGH
    CVE-2024-35867

    In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF in cifs_stats_proc_show() Skip sessions that are being teared down (status == SES_EXITING) to avoid UAF.... Read more

    Affected Products : linux_kernel
    • Published: May. 19, 2024
    • Modified: May. 02, 2025

  • 7.8

    HIGH
    CVE-2024-35866

    In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF in cifs_dump_full_key() Skip sessions that are being teared down (status == SES_EXITING) to avoid UAF.... Read more

    Affected Products : linux_kernel
    • Published: May. 19, 2024
    • Modified: May. 02, 2025

  • 5.8

    MEDIUM
    CVE-2024-27402

    In the Linux kernel, the following vulnerability has been resolved: phonet/pep: fix racy skb_queue_empty() use The receive queues are protected by their respective spin-lock, not the socket lock. This could lead to skb_peek() unexpectedly returning NULL... Read more

    Affected Products : linux_kernel
    • Published: May. 17, 2024
    • Modified: May. 02, 2025

  • 5.5

    MEDIUM
    CVE-2024-27054

    In the Linux kernel, the following vulnerability has been resolved: s390/dasd: fix double module refcount decrement Once the discipline is associated with the device, deleting the device takes care of decrementing the module's refcount. Doing it manual... Read more

    Affected Products : linux_kernel
    • Published: May. 01, 2024
    • Modified: May. 02, 2025

  • 7.8

    HIGH
    CVE-2024-26928

    In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF in cifs_debug_files_proc_show() Skip sessions that are being teared down (status == SES_EXITING) to avoid UAF.... Read more

    Affected Products : linux_kernel
    • Published: Apr. 28, 2024
    • Modified: May. 02, 2025

  • 5.5

    MEDIUM
    CVE-2024-26744

    In the Linux kernel, the following vulnerability has been resolved: RDMA/srpt: Support specifying the srpt_service_guid parameter Make loading ib_srpt with this parameter set work. The current behavior is that setting that parameter while loading the ib... Read more

    Affected Products : linux_kernel debian_linux
    • Published: Apr. 03, 2024
    • Modified: May. 02, 2025

  • 5.5

    MEDIUM
    CVE-2024-26686

    In the Linux kernel, the following vulnerability has been resolved: fs/proc: do_task_stat: use sig->stats_lock to gather the threads/children stats lock_task_sighand() can trigger a hard lockup. If NR_CPUS threads call do_task_stat() at the same time a... Read more

    Affected Products : linux_kernel
    • Published: Apr. 03, 2024
    • Modified: May. 02, 2025
Showing 20 of 291196 Results