CVE-2024-26734

HIGH Year: 2024
CVSS v3 Score
7.8
High
Weakness Type
CWE-401
View all →

Vulnerability Description

In the Linux kernel, the following vulnerability has been resolved: devlink: fix possible use-after-free and memory leaks in devlink_init() The pernet operations structure for the subsystem must be registered before registering the generic netlink family. Make an unregister in case of unsuccessful registration.

Related Vulnerabilities

CVE-2019-10547

HIGH
CVSS:7.8(High)

When issuing IOCTL calls to ION, Memory leak can occur due to failure in unassign pages under certain conditions in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, S...

CWE-4012019

CVE-2021-31240

HIGH
CVSS:7.8(High)

An issue found in libming v.0.4.8 allows a local attacker to execute arbitrary code via the parseSWF_IMPORTASSETS function in the parser.c file.

CWE-4012021

CVE-2021-3492

HIGH
CVSS:7.8(High)

Shiftfs, an out-of-tree stacking file system included in Ubuntu Linux kernels, did not properly handle faults occurring during copy_from_user() correctly. These could lead to either a double-free situ...

CWE-4012021

CVE-2021-42197

HIGH
CVSS:7.8(High)

An issue was discovered in swftools through 20201222 through a memory leak in the swftools when swfdump is used. It allows an attacker to cause code execution.

CWE-4012021

CVE-2022-22067

HIGH
CVSS:7.8(High)

Potential memory leak in modem during the processing of NSA RRC Reconfiguration with invalid Radio Bearer Config in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Mobile

CWE-4012022

CVE-2022-3577

HIGH
CVSS:7.8(High)

An out-of-bounds memory write flaw was found in the Linux kernel’s Kid-friendly Wired Controller driver. This flaw allows a local user to crash or potentially escalate their privileges on the system. ...

CWE-4012022