Vulnerabilities > Debian

DATE CVE VULNERABILITY TITLE RISK
2024-04-17 CVE-2024-26820 In the Linux kernel, the following vulnerability has been resolved: hv_netvsc: Register VF in netvsc_probe if NET_DEVICE_REGISTER missed If hv_netvsc driver is unloaded and reloaded, the NET_DEVICE_REGISTER handler cannot perform VF register successfully as the register call is received before netvsc_probe is finished.
local
low complexity
linux debian
5.5
2024-04-17 CVE-2024-26825 Incomplete Cleanup vulnerability in multiple products
In the Linux kernel, the following vulnerability has been resolved: nfc: nci: free rx_data_reassembly skb on NCI device cleanup rx_data_reassembly skb is stored during NCI data exchange for processing fragmented packets.
local
low complexity
linux debian CWE-459
5.5
2024-04-17 CVE-2024-26833 Memory Leak vulnerability in multiple products
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix memory leak in dm_sw_fini() After destroying dmub_srv, the memory associated with it is not freed, causing a memory leak: unreferenced object 0xffff896302b45800 (size 1024): comm "(udev-worker)", pid 222, jiffies 4294894636 hex dump (first 32 bytes): 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ backtrace (crc 6265fd77): [<ffffffff993495ed>] kmalloc_trace+0x29d/0x340 [<ffffffffc0ea4a94>] dm_dmub_sw_init+0xb4/0x450 [amdgpu] [<ffffffffc0ea4e55>] dm_sw_init+0x15/0x2b0 [amdgpu] [<ffffffffc0ba8557>] amdgpu_device_init+0x1417/0x24e0 [amdgpu] [<ffffffffc0bab285>] amdgpu_driver_load_kms+0x15/0x190 [amdgpu] [<ffffffffc0ba09c7>] amdgpu_pci_probe+0x187/0x4e0 [amdgpu] [<ffffffff9968fd1e>] local_pci_probe+0x3e/0x90 [<ffffffff996918a3>] pci_device_probe+0xc3/0x230 [<ffffffff99805872>] really_probe+0xe2/0x480 [<ffffffff99805c98>] __driver_probe_device+0x78/0x160 [<ffffffff99805daf>] driver_probe_device+0x1f/0x90 [<ffffffff9980601e>] __driver_attach+0xce/0x1c0 [<ffffffff99803170>] bus_for_each_dev+0x70/0xc0 [<ffffffff99804822>] bus_add_driver+0x112/0x210 [<ffffffff99807245>] driver_register+0x55/0x100 [<ffffffff990012d1>] do_one_initcall+0x41/0x300 Fix this by freeing dmub_srv after destroying it.
local
low complexity
linux debian CWE-401
5.5
2024-04-17 CVE-2024-26835 In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: set dormant flag on hook register failure We need to set the dormant flag again if we fail to register the hooks. During memory pressure hook registration can fail and we end up with a table marked as active but no registered hooks. On table/base chain deletion, nf_tables will attempt to unregister the hook again which yields a warn splat from the nftables core.
local
low complexity
linux debian
5.5
2024-04-17 CVE-2024-26839 Memory Leak vulnerability in multiple products
In the Linux kernel, the following vulnerability has been resolved: IB/hfi1: Fix a memleak in init_credit_return When dma_alloc_coherent fails to allocate dd->cr_base[i].va, init_credit_return should deallocate dd->cr_base and dd->cr_base[i] that allocated before.
local
low complexity
linux debian CWE-401
5.5
2024-04-17 CVE-2024-26845 In the Linux kernel, the following vulnerability has been resolved: scsi: target: core: Add TMF to tmr_list handling An abort that is responded to by iSCSI itself is added to tmr_list but does not go to target core.
local
low complexity
linux debian
5.5
2024-04-16 CVE-2022-24805 Classic Buffer Overflow vulnerability in multiple products
net-snmp provides various tools relating to the Simple Network Management Protocol.
network
low complexity
net-snmp fedoraproject debian redhat CWE-120
8.8
2024-04-16 CVE-2022-24806 net-snmp provides various tools relating to the Simple Network Management Protocol.
network
high complexity
net-snmp fedoraproject debian redhat
5.3
2024-04-16 CVE-2022-24807 Classic Buffer Overflow vulnerability in multiple products
net-snmp provides various tools relating to the Simple Network Management Protocol.
network
low complexity
net-snmp fedoraproject debian redhat CWE-120
6.5
2024-04-16 CVE-2022-24808 NULL Pointer Dereference vulnerability in multiple products
net-snmp provides various tools relating to the Simple Network Management Protocol.
network
low complexity
net-snmp fedoraproject debian redhat CWE-476
6.5