Vulnerabilities > Linux > Linux Kernel > Medium

DATE CVE VULNERABILITY TITLE RISK
2024-02-05 CVE-2024-24860 NULL Pointer Dereference vulnerability in Linux Kernel
A race condition was found in the Linux kernel's bluetooth device driver in {min,max}_key_size_set() function.
high complexity
linux CWE-476
5.3
2024-02-05 CVE-2024-24861 Race Condition vulnerability in Linux Kernel
A race condition was found in the Linux kernel's media/xc4000 device driver in xc4000 xc4000_get_frequency() function.
local
high complexity
linux CWE-362
6.3
2024-02-05 CVE-2024-24864 NULL Pointer Dereference vulnerability in Linux Kernel
A race condition was found in the Linux kernel's media/dvb-core in dvbdmx_write() function.
local
high complexity
linux CWE-476
4.7
2024-02-04 CVE-2023-6240 Information Exposure Through Discrepancy vulnerability in multiple products
A Marvin vulnerability side-channel leakage was found in the RSA decryption operation in the Linux Kernel.
network
high complexity
linux redhat CWE-203
6.5
2024-01-30 CVE-2024-0564 Information Exposure Through Discrepancy vulnerability in multiple products
A flaw was found in the Linux kernel's memory deduplication mechanism.
low complexity
linux redhat CWE-203
6.5
2024-01-25 CVE-2024-22099 NULL Pointer Dereference vulnerability in Linux Kernel 2.6.12
NULL Pointer Dereference vulnerability in Linux Linux kernel kernel on Linux, x86, ARM (net, bluetooth modules) allows Overflow Buffers.
local
low complexity
linux CWE-476
5.5
2024-01-23 CVE-2023-46343 NULL Pointer Dereference vulnerability in Linux Kernel
In the Linux kernel before 6.5.9, there is a NULL pointer dereference in send_acknowledge in net/nfc/nci/spi.c.
local
low complexity
linux CWE-476
5.5
2024-01-23 CVE-2024-23848 Use After Free vulnerability in Linux Kernel
In the Linux kernel through 6.7.1, there is a use-after-free in cec_queue_msg_fh, related to drivers/media/cec/core/cec-adap.c and drivers/media/cec/core/cec-api.c.
local
low complexity
linux CWE-416
5.5
2024-01-23 CVE-2024-23849 Off-by-one Error vulnerability in Linux Kernel
In rds_recv_track_latency in net/rds/af_rds.c in the Linux kernel through 6.7.1, there is an off-by-one error for an RDS_MSG_RX_DGRAM_TRACE_MAX comparison, resulting in out-of-bounds access.
local
low complexity
linux CWE-193
5.5
2024-01-23 CVE-2024-23850 Unspecified vulnerability in Linux Kernel
In btrfs_get_root_ref in fs/btrfs/disk-io.c in the Linux kernel through 6.7.1, there can be an assertion failure and crash because a subvolume can be read out too soon after its root item is inserted upon subvolume creation.
local
low complexity
linux
5.5