CVE-2024-0639

MEDIUM Year: 2024
CVSS v3 Score
5.5
Medium
Weakness Type
CWE-833
View all →

Vulnerability Description

A denial of service vulnerability due to a deadlock was found in sctp_auto_asconf_init in net/sctp/socket.c in the Linux kernel’s SCTP subsystem. This flaw allows guests with local user privileges to trigger a deadlock and potentially crash the system.

Related Vulnerabilities

CVE-2022-4269

MEDIUM
CVSS:5.5(Medium)

A flaw was found in the Linux kernel Traffic Control (TC) subsystem. Using a specific networking configuration (redirecting egress packets to ingress using TC action "mirred") a local unprivileged use...

CWE-8332022

CVE-2023-0160

MEDIUM
CVSS:5.5(Medium)

A deadlock flaw was found in the Linux kernel’s BPF subsystem. This flaw allows a local user to potentially crash the system.

CWE-8332023

CVE-2023-31084

MEDIUM
CVSS:5.5(Medium)

An issue was discovered in drivers/media/dvb-core/dvb_frontend.c in the Linux kernel 6.2. There is a blocking operation when a task is in !TASK_RUNNING. In dvb_frontend_get_event, wait_event_interrupt...

CWE-8332023

CVE-2024-0641

MEDIUM
CVSS:5.5(Medium)

A denial of service vulnerability was found in tipc_crypto_key_revoke in net/tipc/crypto.c in the Linux kernel’s TIPC subsystem. This flaw allows guests with local user privileges to trigger a deadloc...

CWE-8332024

CVE-2023-42441

MEDIUM
CVSS:5.3(Medium)

Vyper is a Pythonic Smart Contract Language for the Ethereum Virtual Machine (EVM). Starting in version 0.2.9 and prior to version 0.3.10, locks of the type `@nonreentrant("")` or `@nonreentrant('')` ...

CWE-8332023

CVE-2024-47506

HIGH
CVSS:5.9(Medium)

A Deadlock vulnerability in the packet forwarding engine (PFE) of Juniper Networks Junos OS on SRX Series allows an unauthenticated, network-based attacker to cause a Denial of Service (DoS). When a l...

CWE-8332024