CVSS: -EPSS: %CPEs: 3EXPL: 0CVE-2024-57843 – virtio-net: fix overflow inside virtnet_rq_alloc
https://notcve.org/view.php?id=CVE-2024-57843
11 Jan 2025 — In the Linux kernel, the following vulnerability has been resolved: virtio-net: fix overflow inside virtnet_rq_alloc When the frag just got a page, then may lead to regression on VM. Specially if the sysctl net.core.high_order_alloc_disable value is 1, then the frag always get a page when do refill. Which could see reliable crashes or scp failure (scp a file 100M in size to VM). The issue is that the virtnet_rq_dma takes up 16 bytes at the beginning of a new frag. When the frag size is larger than PAGE_SIZE... • https://git.kernel.org/stable/c/a8f7d6963768b114ec9644ff0148dde4c104e84b •
CVSS: -EPSS: %CPEs: 2EXPL: 0CVE-2024-57839 – Revert "readahead: properly shorten readahead when falling back to do_page_cache_ra()"
https://notcve.org/view.php?id=CVE-2024-57839
11 Jan 2025 — In the Linux kernel, the following vulnerability has been resolved: Revert "readahead: properly shorten readahead when falling back to do_page_cache_ra()" This reverts commit 7c877586da3178974a8a94577b6045a48377ff25. Anders and Philippe have reported that recent kernels occasionally hang when used with NFS in readahead code. The problem has been bisected to 7c877586da3 ("readahead: properly shorten readahead when falling back to do_page_cache_ra()"). The cause of the problem is that ra->size can be shrunk b... • https://git.kernel.org/stable/c/7c877586da3178974a8a94577b6045a48377ff25 •
CVSS: 6.3EPSS: %CPEs: 5EXPL: 0CVE-2024-57838 – s390/entry: Mark IRQ entries to fix stack depot warnings
https://notcve.org/view.php?id=CVE-2024-57838
11 Jan 2025 — In the Linux kernel, the following vulnerability has been resolved: s390/entry: Mark IRQ entries to fix stack depot warnings The stack depot filters out everything outside of the top interrupt context as an uninteresting or irrelevant part of the stack traces. This helps with stack trace de-duplication, avoiding an explosion of saved stack traces that share the same IRQ context code path but originate from different randomly interrupted points, eventually exhausting the stack depot. Filtering uses in_irqent... • https://git.kernel.org/stable/c/ca687fdce5b95f84d91d6e36ac77047771eb3dfc •
CVSS: 5.5EPSS: %CPEs: 2EXPL: 0CVE-2024-57809 – PCI: imx6: Fix suspend/resume support on i.MX6QDL
https://notcve.org/view.php?id=CVE-2024-57809
11 Jan 2025 — In the Linux kernel, the following vulnerability has been resolved: PCI: imx6: Fix suspend/resume support on i.MX6QDL The suspend/resume functionality is currently broken on the i.MX6QDL platform, as documented in the NXP errata (ERR005723): https://www.nxp.com/docs/en/errata/IMX6DQCE.pdf This patch addresses the issue by sharing most of the suspend/resume sequences used by other i.MX devices, while avoiding modifications to critical registers that disrupt the PCIe functionality. It targets the same problem... • https://git.kernel.org/stable/c/ac43ea3d27a8f9beadf3af66c9ea4a566ebfff1f •
CVSS: 5.5EPSS: %CPEs: 7EXPL: 0CVE-2024-57807 – scsi: megaraid_sas: Fix for a potential deadlock
https://notcve.org/view.php?id=CVE-2024-57807
11 Jan 2025 — In the Linux kernel, the following vulnerability has been resolved: scsi: megaraid_sas: Fix for a potential deadlock This fixes a 'possible circular locking dependency detected' warning CPU0 CPU1 ---- ---- lock(&instance->reset_mutex); lock(&shost->scan_mutex); lock(&instance->reset_mutex); lock(&shost->scan_mutex); Fix this by temporarily releasing the reset_mutex. • https://git.kernel.org/stable/c/78afb9bfad00c4aa58a424111d7edbcab9452f2b •
CVSS: 5.5EPSS: %CPEs: 2EXPL: 0CVE-2024-57806 – btrfs: fix transaction atomicity bug when enabling simple quotas
https://notcve.org/view.php?id=CVE-2024-57806
11 Jan 2025 — In the Linux kernel, the following vulnerability has been resolved: btrfs: fix transaction atomicity bug when enabling simple quotas Set squota incompat bit before committing the transaction that enables the feature. With the config CONFIG_BTRFS_ASSERT enabled, an assertion failure occurs regarding the simple quota feature. [5.596534] assertion failed: btrfs_fs_incompat(fs_info, SIMPLE_QUOTA), in fs/btrfs/qgroup.c:365 [5.597098] ------------[ cut here ]------------ [5.597371] kernel BUG at fs/btrfs/qgroup.c... • https://git.kernel.org/stable/c/182940f4f4dbd932776414744c8de64333957725 •
CVSS: 5.5EPSS: %CPEs: 3EXPL: 0CVE-2024-57805 – ASoC: SOF: Intel: hda-dai: Do not release the link DMA on STOP
https://notcve.org/view.php?id=CVE-2024-57805
11 Jan 2025 — In the Linux kernel, the following vulnerability has been resolved: ASoC: SOF: Intel: hda-dai: Do not release the link DMA on STOP The linkDMA should not be released on stop trigger since a stream re-start might happen without closing of the stream. This leaves a short time for other streams to 'steal' the linkDMA since it has been released. This issue is not easy to reproduce under normal conditions as usually after stop the stream is closed, or the same stream is restarted, but if another stream got in be... • https://git.kernel.org/stable/c/ab5593793e9088abcddce30ba8e376e31b7285fd •
CVSS: 7.8EPSS: %CPEs: 2EXPL: 0CVE-2024-57804 – scsi: mpi3mr: Fix corrupt config pages PHY state is switched in sysfs
https://notcve.org/view.php?id=CVE-2024-57804
11 Jan 2025 — In the Linux kernel, the following vulnerability has been resolved: scsi: mpi3mr: Fix corrupt config pages PHY state is switched in sysfs The driver, through the SAS transport, exposes a sysfs interface to enable/disable PHYs in a controller/expander setup. When multiple PHYs are disabled and enabled in rapid succession, the persistent and current config pages related to SAS IO unit/SAS Expander pages could get corrupted. Use separate memory for each config request. In the Linux kernel, the following vulner... • https://git.kernel.org/stable/c/869fdc6f0606060301aef648231e186c7c542f5a •
CVSS: 5.5EPSS: %CPEs: 2EXPL: 0CVE-2024-57799 – phy: rockchip: samsung-hdptx: Set drvdata before enabling runtime PM
https://notcve.org/view.php?id=CVE-2024-57799
11 Jan 2025 — In the Linux kernel, the following vulnerability has been resolved: phy: rockchip: samsung-hdptx: Set drvdata before enabling runtime PM In some cases, rk_hdptx_phy_runtime_resume() may be invoked before platform_set_drvdata() is executed in ->probe(), leading to a NULL pointer dereference when using the return of dev_get_drvdata(). Ensure platform_set_drvdata() is called before devm_pm_runtime_enable(). In the Linux kernel, the following vulnerability has been resolved: phy: rockchip: samsung-hdptx: Set dr... • https://git.kernel.org/stable/c/553be2830c5f33308483e8118de748a2c69fe593 •
CVSS: 5.5EPSS: %CPEs: 4EXPL: 0CVE-2024-57798 – drm/dp_mst: Ensure mst_primary pointer is valid in drm_dp_mst_handle_up_req()
https://notcve.org/view.php?id=CVE-2024-57798
11 Jan 2025 — In the Linux kernel, the following vulnerability has been resolved: drm/dp_mst: Ensure mst_primary pointer is valid in drm_dp_mst_handle_up_req() While receiving an MST up request message from one thread in drm_dp_mst_handle_up_req(), the MST topology could be removed from another thread via drm_dp_mst_topology_mgr_set_mst(false), freeing mst_primary and setting drm_dp_mst_topology_mgr::mst_primary to NULL. This could lead to a NULL deref/use-after-free of mst_primary in drm_dp_mst_handle_up_req(). Avoid th... • https://git.kernel.org/stable/c/f61b2e5e7821f868d6afc22382a66a30ee780ba0 •