Lista CVE 2024/41xxx

CVE nel gruppo: 41xxx

CVE-2024-41040 (N/A)

CVE-2024-41041 (net/sched: Fix UAF when resolving a clash)

CVE-2024-41042 (udp: Set SOCK_RCU_FREE earlier in udp_lib_get_port().)

CVE-2024-41043 (netfilter: nf_tables: prefer nft_chain_validate)

CVE-2024-41044 (netfilter: nfnetlink_queue: drop bogus WARN_ON)

CVE-2024-41045 (ppp: reject claimed-as-LCP but actually malformed packets)

CVE-2024-41046 (bpf: Defer work in bpf_timer_cancel_and_free)

CVE-2024-41047 (net: ethernet: lantiq_etop: fix double free in detach)

CVE-2024-41048 (i40e: Fix XDP program unloading while removing the driver)

CVE-2024-41049 (skmsg: Skip zero length skb in sk_msg_recvmsg)

CVE-2024-41050 (filelock: fix potential use-after-free in posix_lock_inode)

CVE-2024-41051 (cachefiles: cyclic allocation of msg_id to avoid reuse)

CVE-2024-41052 (cachefiles: wait for ondemand_object_worker to finish when dropping object)

CVE-2024-41053 (vfio/pci: Init the count variable in collecting hot-reset devices)

CVE-2024-41054 (scsi: ufs: core: Fix ufshcd_abort_one racing issue)

CVE-2024-41055 (scsi: ufs: core: Fix ufshcd_clear_cmd racing issue)

CVE-2024-41056 (mm: prevent derefencing NULL ptr in pfn_section_valid())

CVE-2024-41057 (firmware: cs_dsp: Use strnlen() on name fields in V1 wmfw files)

CVE-2024-41058 (cachefiles: fix slab-use-after-free in cachefiles_withdraw_cookie())

CVE-2024-41059 (cachefiles: fix slab-use-after-free in fscache_withdraw_volume())

CVE-2024-41060 (hfsplus: fix uninit-value in copy_name)

CVE-2024-41061 (drm/radeon: check bo_va->bo is non-NULL before using it)

CVE-2024-41062 (drm/amd/display: Fix array-index-out-of-bounds in dml2/FCLKChangeSupport)

CVE-2024-41063 (bluetooth/l2cap: sync sock recv cb and release)

CVE-2024-41064 (Bluetooth: hci_core: cancel all works upon hci_unregister_dev())

CVE-2024-41065 (powerpc/eeh: avoid possible crash when edev->pdev changes)

CVE-2024-41066 (powerpc/pseries: Whitelist dtl slub object for copying to userspace)

CVE-2024-41067 (ibmvnic: Add tx check to prevent skb leak)

CVE-2024-41068 (btrfs: scrub: handle RST lookup error correctly)

CVE-2024-41069 (s390/sclp: Fix sclp_init() cleanup on failure)

CVE-2024-41070 (ASoC: topology: Fix references to freed memory)

CVE-2024-41071 (KVM: PPC: Book3S HV: Prevent UAF in kvm_spapr_tce_attach_iommu_group())

CVE-2024-41072 (N/A)

CVE-2024-41073 (wifi: cfg80211: wext: add extra SIOCSIWSCAN data check)

CVE-2024-41074 (nvme: avoid double free special payload)

CVE-2024-41075 (cachefiles: Set object to close if ondemand_id < 0 in copen)

CVE-2024-41076 (cachefiles: add consistency check for copen/cread)

CVE-2024-41077 (NFSv4: Fix memory leak in nfs4_set_security_label)

CVE-2024-41078 (null_blk: fix validation of block size)

CVE-2024-41079 (btrfs: qgroup: fix quota root leak after quota disable failure)

CVE-2024-41080 (nvmet: always initialize cqe.result)

CVE-2024-41081 (io_uring: fix possible deadlock in io_register_iowq_max_workers())

CVE-2024-41082 (ila: block BH in ila_output())

CVE-2024-41083 (nvme-fabrics: use reserved tag for reg read/write command)

CVE-2024-41084 (netfs: Fix netfs_page_mkwrite() to check folio->mapping is valid)

CVE-2024-41085 (cxl/region: Avoid null pointer dereference in region lookup)

CVE-2024-41086 (cxl/mem: Fix no cxl_nvd during pmem region auto-assembling)

CVE-2024-41087 (bcachefs: Fix sb_field_downgrade validation)

CVE-2024-41088 (ata: libata-core: Fix double free on error)

CVE-2024-41089 (can: mcp251xfd: fix infinite loop when xmit fails)

CVE-2024-41090 (drm/nouveau/dispnv04: fix null pointer dereference in nv17_tv_get_hd_modes)

CVE-2024-41091 (tap: add missing verification for short frame)

CVE-2024-41092 (tun: add missing verification for short frame)

CVE-2024-41093 (drm/i915/gt: Fix potential UAF by revoke of fence registers)

CVE-2024-41094 (drm/amdgpu: avoid using null object of framebuffer)

CVE-2024-41095 (drm/fbdev-dma: Only set smem_start is enable per module option)

CVE-2024-41096 (drm/nouveau/dispnv04: fix null pointer dereference in nv17_tv_get_ld_modes)

CVE-2024-41097 (PCI/MSI: Fix UAF in msi_capability_init)

CVE-2024-41098 (usb: atm: cxacru: fix endpoint checking in cxacru_bind())

CVE-2024-41107 (ata: libata-core: Fix null pointer dereference on error)