exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

bind:"BDU:2024-09776" OR bind:"CVE-2024-42313"

exploitDog

bind:"BDU:2024-09776" OR bind:"CVE-2024-42313"

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 18

Количество 18

BDU:2024-09776

12 месяцев назад

Уязвимость функции vdec_close() драйвера Qualcomm Venus V4L2 ядра операционной системы Linux, позволяющая нарушителю оказать воздействие на конфиденциальность, целостность и доступность защищаемой информации

CVSS3: 7.8

EPSS: Низкий

CVE-2024-42313

10 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: media: venus: fix use after free in vdec_close There appears to be a possible use after free with vdec_close(). The firmware will add buffer release work to the work queue through HFI callbacks as a normal part of decoding. Randomly closing the decoder device from userspace during normal decoding can incur a read after free for inst. Fix it by cancelling the work in vdec_close.

CVSS3: 7.8

EPSS: Низкий

CVE-2024-42313

10 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: media: venus: fix use after free in vdec_close There appears to be a possible use after free with vdec_close(). The firmware will add buffer release work to the work queue through HFI callbacks as a normal part of decoding. Randomly closing the decoder device from userspace during normal decoding can incur a read after free for inst. Fix it by cancelling the work in vdec_close.

CVSS3: 7.3

EPSS: Низкий

CVE-2024-42313

10 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: media: venus: fix use after free in vdec_close There appears to be a possible use after free with vdec_close(). The firmware will add buffer release work to the work queue through HFI callbacks as a normal part of decoding. Randomly closing the decoder device from userspace during normal decoding can incur a read after free for inst. Fix it by cancelling the work in vdec_close.

CVSS3: 7.8

EPSS: Низкий

CVE-2024-42313

9 месяцев назад

CVSS3: 7.8

EPSS: Низкий

CVE-2024-42313

10 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: m ...

CVSS3: 7.8

EPSS: Низкий

ROS-20250204-01

5 месяцев назад

Множественные уязвимости kernel-lt

CVSS3: 7.8

EPSS: Низкий

GHSA-xmjj-hrw9-x35m

10 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: media: venus: fix use after free in vdec_close There appears to be a possible use after free with vdec_close(). The firmware will add buffer release work to the work queue through HFI callbacks as a normal part of decoding. Randomly closing the decoder device from userspace during normal decoding can incur a read after free for inst. Fix it by cancelling the work in vdec_close.

CVSS3: 7.8

EPSS: Низкий

ELSA-2024-12782

8 месяцев назад

ELSA-2024-12782: Unbreakable Enterprise kernel-container security update (IMPORTANT)

EPSS: Низкий

ELSA-2024-12780

8 месяцев назад

ELSA-2024-12780: Unbreakable Enterprise kernel security update (IMPORTANT)

EPSS: Низкий

ELSA-2024-12868

7 месяцев назад

ELSA-2024-12868: Unbreakable Enterprise kernel security update (IMPORTANT)

EPSS: Низкий

ELSA-2024-12815

7 месяцев назад

ELSA-2024-12815: Unbreakable Enterprise kernel security update (IMPORTANT)

EPSS: Низкий

SUSE-SU-2024:3209-1

9 месяцев назад

Security update for the Linux Kernel

EPSS: Низкий

SUSE-SU-2024:3190-1

9 месяцев назад

Security update for the Linux Kernel

EPSS: Низкий

SUSE-SU-2024:3483-1

9 месяцев назад

Security update for the Linux Kernel

EPSS: Низкий

SUSE-SU-2024:3195-1

9 месяцев назад

Security update for the Linux Kernel

EPSS: Низкий

SUSE-SU-2024:3383-1

9 месяцев назад

Security update for the Linux Kernel

EPSS: Низкий

SUSE-SU-2024:3194-1

9 месяцев назад

Security update for the Linux Kernel

EPSS: Низкий

Уязвимостей на страницу

	Уязвимость	CVSS	EPSS	Опубликовано
	BDU:2024-09776 Уязвимость функции vdec_close() драйвера Qualcomm Venus V4L2 ядра операционной системы Linux, позволяющая нарушителю оказать воздействие на конфиденциальность, целостность и доступность защищаемой информации	CVSS3: 7.8	0% Низкий	12 месяцев назад
	CVE-2024-42313 In the Linux kernel, the following vulnerability has been resolved: media: venus: fix use after free in vdec_close There appears to be a possible use after free with vdec_close(). The firmware will add buffer release work to the work queue through HFI callbacks as a normal part of decoding. Randomly closing the decoder device from userspace during normal decoding can incur a read after free for inst. Fix it by cancelling the work in vdec_close.	CVSS3: 7.8	0% Низкий	10 месяцев назад
	CVE-2024-42313 In the Linux kernel, the following vulnerability has been resolved: media: venus: fix use after free in vdec_close There appears to be a possible use after free with vdec_close(). The firmware will add buffer release work to the work queue through HFI callbacks as a normal part of decoding. Randomly closing the decoder device from userspace during normal decoding can incur a read after free for inst. Fix it by cancelling the work in vdec_close.	CVSS3: 7.3	0% Низкий	10 месяцев назад
	CVE-2024-42313 In the Linux kernel, the following vulnerability has been resolved: media: venus: fix use after free in vdec_close There appears to be a possible use after free with vdec_close(). The firmware will add buffer release work to the work queue through HFI callbacks as a normal part of decoding. Randomly closing the decoder device from userspace during normal decoding can incur a read after free for inst. Fix it by cancelling the work in vdec_close.	CVSS3: 7.8	0% Низкий	10 месяцев назад
	CVE-2024-42313	CVSS3: 7.8	0% Низкий	9 месяцев назад
	CVE-2024-42313 In the Linux kernel, the following vulnerability has been resolved: m ...	CVSS3: 7.8	0% Низкий	10 месяцев назад
	ROS-20250204-01 Множественные уязвимости kernel-lt	CVSS3: 7.8		5 месяцев назад
	GHSA-xmjj-hrw9-x35m In the Linux kernel, the following vulnerability has been resolved: media: venus: fix use after free in vdec_close There appears to be a possible use after free with vdec_close(). The firmware will add buffer release work to the work queue through HFI callbacks as a normal part of decoding. Randomly closing the decoder device from userspace during normal decoding can incur a read after free for inst. Fix it by cancelling the work in vdec_close.	CVSS3: 7.8	0% Низкий	10 месяцев назад
	ELSA-2024-12782 ELSA-2024-12782: Unbreakable Enterprise kernel-container security update (IMPORTANT)			8 месяцев назад
	ELSA-2024-12780 ELSA-2024-12780: Unbreakable Enterprise kernel security update (IMPORTANT)			8 месяцев назад
	ELSA-2024-12868 ELSA-2024-12868: Unbreakable Enterprise kernel security update (IMPORTANT)			7 месяцев назад
	ELSA-2024-12815 ELSA-2024-12815: Unbreakable Enterprise kernel security update (IMPORTANT)			7 месяцев назад
	SUSE-SU-2024:3209-1 Security update for the Linux Kernel			9 месяцев назад
	SUSE-SU-2024:3190-1 Security update for the Linux Kernel			9 месяцев назад
	SUSE-SU-2024:3483-1 Security update for the Linux Kernel			9 месяцев назад
	SUSE-SU-2024:3195-1 Security update for the Linux Kernel			9 месяцев назад
	SUSE-SU-2024:3383-1 Security update for the Linux Kernel			9 месяцев назад
	SUSE-SU-2024:3194-1 Security update for the Linux Kernel			9 месяцев назад

Уязвимостей на страницу