CVE ID : CVE-2024-57896 Published : Jan. 15, 2025, 1:15 p.m. | 1 hour, 2 minutes ago Description : In the Linux kernel, the following vulnerability has been resolved: btrfs: flush delalloc workers queue before stopping cleaner kthread during unmount During the unmount path, at close_ctree(), we first stop the cleaner kthread, using kthread_stop() which frees the…

CVE ID : CVE-2024-57895 Published : Jan. 15, 2025, 1:15 p.m. | 1 hour, 2 minutes ago Description : In the Linux kernel, the following vulnerability has been resolved: ksmbd: set ATTR_CTIME flags when setting mtime David reported that the new warning from setattr_copy_mgtime is coming like the following. [ 113.215316] ————[ cut here ]———— [ 113.215974]…

CVE ID : CVE-2024-57894 Published : Jan. 15, 2025, 1:15 p.m. | 1 hour, 2 minutes ago Description : In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hci_core: Fix sleeping function called from invalid context This reworks hci_cb_list to not use mutex hci_cb_list_lock to avoid bugs like the bellow: BUG: sleeping function called from…

CVE ID : CVE-2024-57893 Published : Jan. 15, 2025, 1:15 p.m. | 1 hour, 2 minutes ago Description : In the Linux kernel, the following vulnerability has been resolved: ALSA: seq: oss: Fix races at processing SysEx messages OSS sequencer handles the SysEx messages split in 6 bytes packets, and ALSA sequencer OSS layer tries to combine…

CVE ID : CVE-2024-57892 Published : Jan. 15, 2025, 1:15 p.m. | 1 hour, 2 minutes ago Description : In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix slab-use-after-free due to dangling pointer dqi_priv When mounting ocfs2 and then remounting it as read-only, a slab-use-after-free occurs after the user uses a syscall to quota_getnextquota.…

CVE ID : CVE-2024-11848 Published : Jan. 15, 2025, 12:15 p.m. | 2 hours, 1 minute ago Description : The NitroPack plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the ‘nitropack_dismiss_notice_forever’ AJAX action in all versions up to, and including, 1.17.0. This makes it possible for authenticated attackers,…

CVE ID : CVE-2024-9636 Published : Jan. 15, 2025, 10:15 a.m. | 4 hours, 2 minutes ago Description : The Post Grid and Gutenberg Blocks plugin for WordPress is vulnerable to privilege escalation in versions 2.2.85 to 2.3.3. This is due to the plugin not properly restricting what user meta can be updated during profile registration. This…

Malafide e-mail maakt remote code execution via Microsoft Outlook mogelijk Een kritieke kwetsbaarheid in Windows maakt remote code execution mogelijk als Outlook-gebruikers een speciaal geprepareerde e-mail openen of wanneer het bericht via de previewfunctie wordt weergegeve … Read more Published Date: Jan 15, 2025 (1 hour, 21 minutes ago) Vulnerabilities has been mentioned in this article. CVE-2025-21298…

Google Chrome fixes 16 flaws with the latest version Google has released version 132.0.6834.83/84 of its Chrome browser on January 14, 2025. This update addresses several critical security vulnerabilities to enhance the browser’s security and stability. … Read more Published Date: Jan 15, 2025 (1 hour, 39 minutes ago) Vulnerabilities has been mentioned in this article. CVE-2025-0448…