CVSS: 7.5EPSS: 0%CPEs: 5EXPL: 0CVE-2024-23363 – Buffer Over-read in WLAN Firmware
https://notcve.org/view.php?id=CVE-2024-23363
Transient DOS while processing an improperly formatted Fine Time Measurement (FTM) management frame. DOS transitorio mientras se procesa un marco de gestión de medición de tiempo fino (FTM) con formato incorrecto. • https://docs.qualcomm.com/product/publicresources/securitybulletin/june-2024-bulletin.html • CWE-126: Buffer Over-read •
CVSS: 6.2EPSS: 0%CPEs: -EXPL: 0CVE-2024-21478 – NULL Pointer Dereference in Graphics
https://notcve.org/view.php?id=CVE-2024-21478
transient DOS when setting up a fence callback to free a KGSL memory entry object during DMA. DOS transitorio al configurar una devolución de llamada de valla para liberar un objeto de entrada de memoria KGSL durante DMA. • https://docs.qualcomm.com/product/publicresources/securitybulletin/june-2024-bulletin.html • CWE-704: Incorrect Type Conversion or Cast •
CVSS: 4.4EPSS: 0%CPEs: 2EXPL: 0CVE-2024-36961 – thermal/debugfs: Fix two locking issues with thermal zone debug
https://notcve.org/view.php?id=CVE-2024-36961
This will ensure that tz_debugfs will be valid across the "mitigations" file accesses until thermal_debugfs_remove_id() called by thermal_debug_tz_remove() removes that file. To address the second problem, use tz->lock in thermal_debug_tz_remove() around the tz->debugfs value check (in case the same thermal zone is removed at the same time in two different threads) and its reset to NULL. Cc :6.8+ <stable@vger.kernel.org> # 6.8+ En el kernel de Linux, se ha resuelto la siguiente vulnerabilidad: Thermal/debugfs: soluciona dos problemas de bloqueo con la depuración de la zona térmica. ... Para solucionar el segundo problema, use tz->lock en Thermal_debug_tz_remove() alrededor de la verificación del valor de tz->debugfs (en caso de que la misma zona térmica se elimine al mismo tiempo en dos subprocesos diferentes) y se restablezca a NULL. • https://git.kernel.org/stable/c/7ef01f228c9f54c6260319858be138a8a7e9e704 https://git.kernel.org/stable/c/6c57bdd0505422d5ccd2df541d993aec978c842e https://git.kernel.org/stable/c/c7f7c37271787a7f77d7eedc132b0b419a76b4c8 https://access.redhat.com/security/cve/CVE-2024-36961 https://bugzilla.redhat.com/show_bug.cgi?id=2290407 • CWE-667: Improper Locking •
CVSS: -EPSS: 0%CPEs: -EXPL: 0CVE-2024-20068
https://notcve.org/view.php?id=CVE-2024-20068
This could lead to remote denial of service with no additional execution privileges needed. • https://corp.mediatek.com/product-security-bulletin/June-2024 • CWE-787: Out-of-bounds Write •
CVSS: 9.8EPSS: 0%CPEs: -EXPL: 0CVE-2024-20067
https://notcve.org/view.php?id=CVE-2024-20067
This could lead to remote denial of service with no additional execution privileges needed. • https://corp.mediatek.com/product-security-bulletin/June-2024 • CWE-787: Out-of-bounds Write •