Vulnerabilities

DATE CVE VULNERABILITY TITLE RISK
2024-11-08 CVE-2024-50204 Unspecified vulnerability in Linux Kernel
In the Linux kernel, the following vulnerability has been resolved: fs: don't try and remove empty rbtree node When copying a namespace we won't have added the new copy into the namespace rbtree until after the copy succeeded.
local
low complexity
linux
5.5
2024-11-08 CVE-2024-50205 Divide By Zero vulnerability in Linux Kernel
In the Linux kernel, the following vulnerability has been resolved: ALSA: firewire-lib: Avoid division by zero in apply_constraint_to_size() The step variable is initialized to zero.
local
low complexity
linux CWE-369
5.5
2024-11-08 CVE-2024-50206 Out-of-bounds Write vulnerability in Linux Kernel
In the Linux kernel, the following vulnerability has been resolved: net: ethernet: mtk_eth_soc: fix memory corruption during fq dma init The loop responsible for allocating up to MTK_FQ_DMA_LENGTH buffers must only touch as many descriptors, otherwise it ends up corrupting unrelated memory.
local
low complexity
linux CWE-787
5.5
2024-11-08 CVE-2024-50207 Improper Locking vulnerability in Linux Kernel
In the Linux kernel, the following vulnerability has been resolved: ring-buffer: Fix reader locking when changing the sub buffer order The function ring_buffer_subbuf_order_set() updates each ring_buffer_per_cpu and installs new sub buffers that match the requested page order.
local
low complexity
linux CWE-667
5.5
2024-11-08 CVE-2024-50208 Out-of-bounds Read vulnerability in Linux Kernel
In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxt_re: Fix a bug while setting up Level-2 PBL pages Avoid memory corruption while setting up Level-2 PBL pages for the non MR resources when num_pages > 256K. There will be a single PDE page address (contiguous pages in the case of > PAGE_SIZE), but, current logic assumes multiple pages, leading to invalid memory access after 256K PBL entries in the PDE.
local
low complexity
linux CWE-125
5.5
2024-11-08 CVE-2024-50209 Unspecified vulnerability in Linux Kernel
In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxt_re: Add a check for memory allocation __alloc_pbl() can return error when memory allocation fails. Driver is not checking the status on one of the instances.
local
low complexity
linux
7.8
2024-11-08 CVE-2024-50210 Improper Locking vulnerability in Linux Kernel
In the Linux kernel, the following vulnerability has been resolved: posix-clock: posix-clock: Fix unbalanced locking in pc_clock_settime() If get_clock_desc() succeeds, it calls fget() for the clockid's fd, and get the clk->rwsem read lock, so the error path should release the lock to make the lock balance and fput the clockid's fd to make the refcount balance and release the fd related resource. However the below commit left the error path locked behind resulting in unbalanced locking.
local
low complexity
linux CWE-667
5.5
2024-11-08 CVE-2024-50211 Unspecified vulnerability in Linux Kernel
In the Linux kernel, the following vulnerability has been resolved: udf: refactor inode_bmap() to handle error Refactor inode_bmap() to handle error since udf_next_aext() can return error now.
local
low complexity
linux
3.3
2024-11-08 CVE-2024-10990 SQL Injection vulnerability in Oretnom23 Online Veterinary Appointment System 1.0
A vulnerability classified as critical was found in SourceCodester Online Veterinary Appointment System 1.0.
network
low complexity
oretnom23 CWE-89
8.8
2024-11-08 CVE-2024-10991 SQL Injection vulnerability in Codezips Hospital Appointment System 1.0
A vulnerability, which was classified as critical, has been found in Codezips Hospital Appointment System 1.0.
network
low complexity
codezips CWE-89
critical
9.8