{"vulnerability": "cve-2024-5314", "sightings": [{"uuid": "cf897252-776d-4bb2-a656-941eb9f40851", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53142", "type": "seen", "source": "https://infosec.exchange/users/vuldb/statuses/113609553513148721", "content": "", "creation_timestamp": "2024-12-07T04:03:33.363901Z"}, {"uuid": "f9ef5957-d14a-4b26-8fca-4fe2189bcee8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53140", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113595199818411766", "content": "", "creation_timestamp": "2024-12-04T15:13:12.967367Z"}, {"uuid": "b5ca5310-9315-4891-beeb-7c028ae56de4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53144", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113668991825517358", "content": "", "creation_timestamp": "2024-12-17T15:59:29.773931Z"}, {"uuid": "cc9c1e88-a385-4544-9a30-2bf32ade1ba1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53145", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113707586495244622", "content": "", "creation_timestamp": "2024-12-24T11:34:37.704618Z"}, {"uuid": "e37649cc-bcc0-4e94-b0bd-b9597b4d97cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53146", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113707586510111555", "content": "", "creation_timestamp": "2024-12-24T11:34:37.966653Z"}, {"uuid": "c2c47df6-4691-4a11-96f6-93e37c453628", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53147", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113707586545344429", "content": "", "creation_timestamp": "2024-12-24T11:34:38.406957Z"}, {"uuid": "ccce8d45-c227-4fed-b595-d17959e36cc6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53148", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113707586559636463", "content": "", "creation_timestamp": "2024-12-24T11:34:38.786934Z"}, {"uuid": "40716820-bf2f-4ce6-9637-31e8fe336021", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53149", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113707645559030506", "content": "", "creation_timestamp": "2024-12-24T11:49:38.968770Z"}, {"uuid": "25a72bd5-dee6-45e0-9efd-1ea2751d46a5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53145", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3le2gcyijhy2l", "content": "", "creation_timestamp": "2024-12-24T12:15:34.886967Z"}, {"uuid": "5829eb54-a965-4fb9-a3d0-7e976a62f76b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53146", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3le2gd35awo2i", "content": "", "creation_timestamp": "2024-12-24T12:15:37.359005Z"}, {"uuid": "e8ec98e8-28a8-443b-9466-b508a2c28208", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53147", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3le2gd5bioq22", "content": "", "creation_timestamp": "2024-12-24T12:15:39.625455Z"}, {"uuid": "08502b9e-d7f6-4f7a-9981-fe3bb8b05a1c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53148", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3le2gd7ix7i2k", "content": "", "creation_timestamp": "2024-12-24T12:15:41.950246Z"}, {"uuid": "f340ba3e-a1e0-42b7-a27a-08536e3991e0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53149", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3le2gdbl37h2i", "content": "", "creation_timestamp": "2024-12-24T12:15:44.146286Z"}, {"uuid": "a38ef63f-51f3-4acf-bee5-f1a3921471ff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53141", "type": "seen", "source": "https://bsky.app/profile/buherator.bsky.social/post/3lf5fcjljqi2g", "content": "", "creation_timestamp": "2025-01-07T10:00:36.170668Z"}, {"uuid": "23b2dcc6-f345-4f06-b91b-70a5e6cb2eea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53141", "type": "seen", "source": "https://u1f383.github.io/linux/2025/01/07/cve-2024-53141-an-oob-write-vulnerability-in-netfilter-ipset.html", "content": "", "creation_timestamp": "2025-01-06T23:00:00.000000Z"}, {"uuid": "e4f86b27-4864-4b4e-bea0-fc0cdf5db921", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53141", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3ln2sjxajmy2b", "content": "", "creation_timestamp": "2025-04-18T04:40:57.829560Z"}, {"uuid": "4b5bb509-a8b1-44e1-8961-011084724f78", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53141", "type": "seen", "source": "https://bsky.app/profile/0xor0ne.bsky.social/post/3lmaxf3nd2s2t", "content": "", "creation_timestamp": "2025-04-07T21:58:32.659816Z"}, {"uuid": "ac154669-84ec-4c66-b629-0a57c62cc43c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53140", "type": "seen", "source": "https://gist.github.com/webmutation/894dd1a9a17615b7469198bb18bc3a16", "content": "", "creation_timestamp": "2025-04-12T00:10:16.000000Z"}, {"uuid": "4e581ed4-17f9-4b0c-a82a-63209751bf8e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53141", "type": "published-proof-of-concept", "source": "https://t.me/badbclubua/114", "content": "CVE-2024-53141: Linux Kernel Flaw Enables Privilege Escalation\n\nKernel: lts-6.6.62\n\nPOC", "creation_timestamp": "2025-04-18T18:07:33.000000Z"}, {"uuid": "1d618dce-6bad-454e-92ec-0a807d12e4df", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53141", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3ln7ewy53q225", "content": "", "creation_timestamp": "2025-04-20T00:21:05.482088Z"}, {"uuid": "7a11e4bf-f6ad-47bb-b897-2cdbc1021ce7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53141", "type": "seen", "source": "https://bsky.app/profile/bluesky.awakari.com/post/3lrxmxjs5fh2n", "content": "", "creation_timestamp": "2025-06-19T13:29:10.066875Z"}, {"uuid": "322c18bf-1eda-4895-9e14-8711cdfab1bc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53141", "type": "seen", "source": "https://bsky.app/profile/linux.activitypub.awakari.com.ap.brid.gy/post/3lrxmy377idw2", "content": "", "creation_timestamp": "2025-06-19T13:29:53.042913Z"}, {"uuid": "494bf73c-2777-4865-9905-54d536650ae0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53141", "type": "seen", "source": "https://bsky.app/profile/ferramentaslinux.bsky.social/post/3m6eqsaavgs2e", "content": "", "creation_timestamp": "2025-11-24T11:44:45.701414Z"}, {"uuid": "448beb3d-7589-47ab-b1d2-d16256726b5b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2024-53147", "type": "seen", "source": "https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0316/", "content": "", "creation_timestamp": "2026-03-19T00:00:00.000000Z"}, {"uuid": "1131239e-7aa0-44f3-a2a6-3032bf7ec3e3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53141", "type": "seen", "source": "https://bsky.app/profile/ssd-disclsoure.bsky.social/post/3lw4gnx2ues2r", "content": "", "creation_timestamp": "2025-08-11T09:00:32.231086Z"}, {"uuid": "d6fa32f8-3f3b-4914-bb96-9ad7400825b7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53145", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-226-07", "content": "", "creation_timestamp": "2025-08-14T10:00:00.000000Z"}, {"uuid": "67e18693-faac-41bc-8de4-f3bf03fdeac9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53146", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-226-07", "content": "", "creation_timestamp": "2025-08-14T10:00:00.000000Z"}, {"uuid": "9b349a38-33ec-448a-8a02-c1f46407419d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53148", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-226-07", "content": "", "creation_timestamp": "2025-08-14T10:00:00.000000Z"}, {"uuid": "23fe5dab-b80b-4d49-b21b-15aa615a2532", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53141", "type": "seen", "source": "https://bsky.app/profile/Linux-Maintainers.activitypub.awakari.com.ap.brid.gy/post/3lwojm56f7yh2", "content": "", "creation_timestamp": "2025-08-18T13:41:11.871231Z"}, {"uuid": "976d0428-8be8-4e62-9ce6-c9d60bedf263", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53141", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3m7sa77dk4m26", "content": "", "creation_timestamp": "2025-12-12T13:50:12.966395Z"}, {"uuid": "b5e51baa-8dc7-47fb-847d-8e0a42e71699", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "c933734a-9be8-4142-889e-26e95c752803", "vulnerability": "CVE-2024-53144", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/816dcc8e-f25a-4895-9b59-1bbd9caeccb8", "content": "", "creation_timestamp": "2025-12-03T14:14:49.267740Z"}, {"uuid": "58100c39-9bf2-4fda-b43e-d0e484ded62f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53143", "type": "seen", "source": "https://t.me/cvedetector/12314", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-53143 - \"Linux Kernel fsnotify UAF\"\", \n  \"Content\": \"CVE ID : CVE-2024-53143 \nPublished : Dec. 7, 2024, 7:15 a.m. | 39\u00a0minutes ago \nDescription : In the Linux kernel, the following vulnerability has been resolved:  \n  \nfsnotify: Fix ordering of iput() and watched_objects decrement  \n  \nEnsure the superblock is kept alive until we're done with iput().  \nHolding a reference to an inode is not allowed unless we ensure the  \nsuperblock stays alive, which fsnotify does by keeping the  \nwatched_objects count elevated, so iput() must happen before the  \nwatched_objects decrement.  \nThis can lead to a UAF of something like sb->s_fs_info in tmpfs, but the  \nUAF is hard to hit because race orderings that oops are more likely, thanks  \nto the CHECK_DATA_CORRUPTION() block in generic_shutdown_super().  \n  \nAlso, ensure that fsnotify_put_sb_watched_objects() doesn't call  \nfsnotify_sb_watched_objects() on a superblock that may have already been  \nfreed, which would cause a UAF read of sb->s_fsnotify_info. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"07 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-07T09:11:34.000000Z"}, {"uuid": "f7e4454c-7dfd-4e73-abd0-ae2f0290fb31", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53141", "type": "seen", "source": "https://t.me/CyberBulletin/10623", "content": "\u26a1\ufe0fCVE-2024-53141: Linux Kernel Flaw Enables Privilege Escalation.\n\n#CyberBulletin", "creation_timestamp": "2025-04-18T04:27:28.000000Z"}, {"uuid": "1994237e-a465-4975-9198-9cb38c03db19", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53149", "type": "seen", "source": "https://t.me/cvedetector/13599", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-53149 - Logitech Type-C USCI Off-by-One Oops\", \n  \"Content\": \"CVE ID : CVE-2024-53149 \nPublished : Dec. 24, 2024, 12:15 p.m. | 45\u00a0minutes ago \nDescription : In the Linux kernel, the following vulnerability has been resolved:  \n  \nusb: typec: ucsi: glink: fix off-by-one in connector_status  \n  \nUCSI connector's indices start from 1 up to 3, PMIC_GLINK_MAX_PORTS.  \nCorrect the condition in the pmic_glink_ucsi_connector_status()  \ncallback, fixing Type-C orientation reporting for the third USB-C  \nconnector. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"24 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-24T14:24:31.000000Z"}, {"uuid": "86252d5c-611c-4487-8de0-f2f38635a2f0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53144", "type": "seen", "source": "https://t.me/cvedetector/13102", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-53144 - \"Bluetooth Linux Kernel Authentication Bypass\"\", \n  \"Content\": \"CVE ID : CVE-2024-53144 \nPublished : Dec. 17, 2024, 4:15 p.m. | 19\u00a0minutes ago \nDescription : In the Linux kernel, the following vulnerability has been resolved:  \n  \nBluetooth: hci_event: Align BR/EDR JUST_WORKS paring with LE  \n  \nThis aligned BR/EDR JUST_WORKS method with LE which since 92516cd97fd4  \n(\"Bluetooth: Always request for user confirmation for Just Works\")  \nalways request user confirmation with confirm_hint set since the  \nlikes of bluetoothd have dedicated policy around JUST_WORKS method  \n(e.g. main.conf:JustWorksRepairing).  \n  \nCVE: CVE-2024-8805 \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-17T17:36:47.000000Z"}, {"uuid": "779daccb-d541-4760-8207-3acf0d9aaf98", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53148", "type": "seen", "source": "https://t.me/cvedetector/13604", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-53148 - Linux Kernel - Comedi Partial Mapping Unmapping Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-53148 \nPublished : Dec. 24, 2024, 12:15 p.m. | 45\u00a0minutes ago \nDescription : In the Linux kernel, the following vulnerability has been resolved:  \n  \ncomedi: Flush partial mappings in error case  \n  \nIf some remap_pfn_range() calls succeeded before one failed, we still have  \nbuffer pages mapped into the userspace page tables when we drop the buffer  \nreference with comedi_buf_map_put(bm). The userspace mappings are only  \ncleaned up later in the mmap error path.  \n  \nFix it by explicitly flushing all mappings in our VMA on the error path.  \n  \nSee commit 79a61cc3fc04 (\"mm: avoid leaving partial pfn mappings around in  \nerror case\"). \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"24 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-24T14:24:38.000000Z"}, {"uuid": "85e2518b-cf0f-491f-ba98-75cfdd932a2a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53147", "type": "seen", "source": "https://t.me/cvedetector/13603", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-53147 - Exfat Linux Out-of-Bounds Directory Entry Access Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-53147 \nPublished : Dec. 24, 2024, 12:15 p.m. | 45\u00a0minutes ago \nDescription : In the Linux kernel, the following vulnerability has been resolved:  \n  \nexfat: fix out-of-bounds access of directory entries  \n  \nIn the case of the directory size is greater than or equal to  \nthe cluster size, if start_clu becomes an EOF cluster(an invalid  \ncluster) due to file system corruption, then the directory entry  \nwhere ei->hint_femp.eidx hint is outside the directory, resulting  \nin an out-of-bounds access, which may cause further file system  \ncorruption.  \n  \nThis commit adds a check for start_clu, if it is an invalid cluster,  \nthe file or directory will be treated as empty. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"24 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-24T14:24:37.000000Z"}, {"uuid": "d5843f57-02cc-42da-a959-264491903ac2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53146", "type": "seen", "source": "https://t.me/cvedetector/13602", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-53146 - Linux Kernel NFSD Integer Overflow Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-53146 \nPublished : Dec. 24, 2024, 12:15 p.m. | 45\u00a0minutes ago \nDescription : In the Linux kernel, the following vulnerability has been resolved:  \n  \nNFSD: Prevent a potential integer overflow  \n  \nIf the tag length is >= U32_MAX - 3 then the \"length + 4\" addition  \ncan result in an integer overflow. Address this by splitting the  \ndecoding into several steps so that decode_cb_compound4res() does  \nnot have to perform arithmetic on the unsafe length value. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"24 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-24T14:24:36.000000Z"}, {"uuid": "75699310-6372-4c48-a331-cd53182678da", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53145", "type": "seen", "source": "https://t.me/cvedetector/13601", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-53145 - Linux um ../../../ kernel Integer Overflow\", \n  \"Content\": \"CVE ID : CVE-2024-53145 \nPublished : Dec. 24, 2024, 12:15 p.m. | 45\u00a0minutes ago \nDescription : In the Linux kernel, the following vulnerability has been resolved:  \n  \num: Fix potential integer overflow during physmem setup  \n  \nThis issue happens when the real map size is greater than LONG_MAX,  \nwhich can be easily triggered on UML/i386. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"24 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-24T14:24:36.000000Z"}, {"uuid": "605b36f4-7d72-4930-b56d-e283cc708aef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53141", "type": "seen", "source": "https://t.me/cvedetector/12196", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-53141 - In the Linux kernel, the following vulnerability h\", \n  \"Content\": \"CVE ID : CVE-2024-53141 \nPublished : Dec. 6, 2024, 10:15 a.m. | 41\u00a0minutes ago \nDescription : In the Linux kernel, the following vulnerability has been resolved:  \n  \nnetfilter: ipset: add missing range check in bitmap_ip_uadt  \n  \nWhen tb[IPSET_ATTR_IP_TO] is not present but tb[IPSET_ATTR_CIDR] exists,  \nthe values of ip and ip_to are slightly swapped. Therefore, the range check  \nfor ip should be done later, but this part is missing and it seems that the  \nvulnerability occurs.  \n  \nSo we should add missing range checks and remove unnecessary range checks. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"06 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-06T12:16:20.000000Z"}, {"uuid": "5ac4d4ce-5f93-45a7-9042-e31eb6fc07e4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53142", "type": "published-proof-of-concept", "source": "https://t.me/cvedetector/12195", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-53142 - In the Linux kernel, the following vulnerability h\", \n  \"Content\": \"CVE ID : CVE-2024-53142 \nPublished : Dec. 6, 2024, 10:15 a.m. | 41\u00a0minutes ago \nDescription : In the Linux kernel, the following vulnerability has been resolved:  \n  \ninitramfs: avoid filename buffer overrun  \n  \nThe initramfs filename field is defined in  \nDocumentation/driver-api/early-userspace/buffer-format.rst as:  \n  \n 37 cpio_file := ALGN(4) + cpio_header + filename + \"\\0\" + ALGN(4) + data  \n...  \n 55 ============= ================== =========================  \n 56 Field name    Field size         Meaning  \n 57 ============= ================== =========================  \n...  \n 70 c_namesize    8 bytes            Length of filename, including final \\0  \n  \nWhen extracting an initramfs cpio archive, the kernel's do_name() path  \nhandler assumes a zero-terminated path at @collected, passing it  \ndirectly to filp_open() / init_mkdir() / init_mknod().  \n  \nIf a specially crafted cpio entry carries a non-zero-terminated filename  \nand is followed by uninitialized memory, then a file may be created with  \ntrailing characters that represent the uninitialized memory. The ability  \nto create an initramfs entry would imply already having full control of  \nthe system, so the buffer overrun shouldn't be considered a security  \nvulnerability.  \n  \nAppend the output of the following bash script to an existing initramfs  \nand observe any created /initramfs_test_fname_overrunAA* path. E.g.  \n  ./reproducer.sh | gzip >> /myinitramfs  \n  \nIt's easiest to observe non-zero uninitialized memory when the output is  \ngzipped, as it'll overflow the heap allocated @out_buf in __gunzip(),  \nrather than the initrd_start+initrd_size block.  \n  \n---- reproducer.sh ----  \nnilchar=\"A\" # change to \"\\0\" to properly zero terminate / pad  \nmagic=\"070701\"  \nino=1  \nmode=$(( 0100777 ))  \nuid=0  \ngid=0  \nnlink=1  \nmtime=1  \nfilesize=0  \ndevmajor=0  \ndevminor=1  \nrdevmajor=0  \nrdevminor=0  \ncsum=0  \nfname=\"initramfs_test_fname_overrun\"  \nnamelen=$(( ${#fname} + 1 )) # plus one to account for terminator  \n  \nprintf \"%s%08x%08x%08x%08x%08x%08x%08x%08x%08x%08x%08x%08x%08x%s\" \\  \n $magic $ino $mode $uid $gid $nlink $mtime $filesize \\  \n $devmajor $devminor $rdevmajor $rdevminor $namelen $csum $fname  \n  \ntermpadlen=$(( 1 + ((4 - ((110 + $namelen) & 3)) % 4) ))  \nprintf \"%.s${nilchar}\" $(seq 1 $termpadlen)  \n---- reproducer.sh ----  \n  \nSymlink filename fields handled in do_symlink() won't overrun past the  \ndata segment, due to the explicit zero-termination of the symlink  \ntarget.  \n  \nFix filename buffer overrun by aborting the initramfs FSM if any cpio  \nentry doesn't carry a zero-terminator at the expected (name_len - 1)  \noffset. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"06 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-06T12:16:20.000000Z"}, {"uuid": "b25c38fc-9196-4b45-a76c-b4be415b0597", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53141", "type": "seen", "source": "https://t.me/CyberBulletin/3061", "content": "\u26a1\ufe0fCVE-2024-53141: Linux Kernel Flaw Enables Privilege Escalation.\n\n#CyberBulletin", "creation_timestamp": "2025-04-18T06:27:28.000000Z"}, {"uuid": "5caf78f4-fcac-4860-aee8-1adb58888be1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53140", "type": "seen", "source": "https://t.me/cvedetector/11992", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-53140 - In the Linux kernel, the following vulnerability h\", \n  \"Content\": \"CVE ID : CVE-2024-53140 \nPublished : Dec. 4, 2024, 3:15 p.m. | 18\u00a0minutes ago \nDescription : In the Linux kernel, the following vulnerability has been resolved:  \n  \nnetlink: terminate outstanding dump on socket close  \n  \nNetlink supports iterative dumping of data. It provides the families  \nthe following ops:  \n - start - (optional) kicks off the dumping process  \n - dump  - actual dump helper, keeps getting called until it returns 0  \n - done  - (optional) pairs with .start, can be used for cleanup  \nThe whole process is asynchronous and the repeated calls to .dump  \ndon't actually happen in a tight loop, but rather are triggered  \nin response to recvmsg() on the socket.  \n  \nThis gives the user full control over the dump, but also means that  \nthe user can close the socket without getting to the end of the dump.  \nTo make sure .start is always paired with .done we check if there  \nis an ongoing dump before freeing the socket, and if so call .done.  \n  \nThe complication is that sockets can get freed from BH and .done  \nis allowed to sleep. So we use a workqueue to defer the call, when  \nneeded.  \n  \nUnfortunately this does not work correctly. What we defer is not  \nthe cleanup but rather releasing a reference on the socket.  \nWe have no guarantee that we own the last reference, if someone  \nelse holds the socket they may release it in BH and we're back  \nto square one.  \n  \nThe whole dance, however, appears to be unnecessary. Only the user  \ncan interact with dumps, so we can clean up when socket is closed.  \nAnd close always happens in process context. Some async code may  \nstill access the socket after close, queue notification skbs to it etc.  \nbut no dumps can start, end or otherwise make progress.  \n  \nDelete the workqueue and flush the dump state directly from the release  \nhandler. Note that further cleanup is possible in -next, for instance  \nwe now always call .done before releasing the main module reference,  \nso dump doesn't have to take a reference of its own. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"04 Dec 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-12-04T16:45:25.000000Z"}, {"uuid": "6b1ea446-0772-4db0-ab58-91fee2a5b80d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53141", "type": "published-proof-of-concept", "source": "https://t.me/CyberSecurityTechnologies/11659", "content": "#exploit\n1. CVE-2023-6932, CVE-2023-0461:\nUaF/LPE in Linux kernel\nhttps://u1f383.github.io/linux/2025/01/08/two-network-related-vulnerabilities-analysis.html\n\n2. CVE-2024-53141:\nAn OOB Write Vulnerability in Netfiler Ipset\nhttps://u1f383.github.io/linux/2025/01/07/cve-2024-53141-an-oob-write-vulnerability-in-netfilter-ipset.html\n\n3. CVE-2024-50603:\nAviatrix Network Controller Command Injection Vulnerability\nhttps://www.securing.pl/en/cve-2024-50603-aviatrix-network-controller-command-injection-vulnerability", "creation_timestamp": "2025-01-27T13:58:34.000000Z"}, {"uuid": "a3bbcf01-54f8-44f4-ba66-2a045207aaaa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53141", "type": "published-proof-of-concept", "source": "https://t.me/ZeroDay_ru/372", "content": "#exploit\n1. CVE-2023-6932, CVE-2023-0461:\nUaF/LPE in Linux kernel\nhttps://u1f383.github.io/linux/2025/01/08/two-network-related-vulnerabilities-analysis.html\n\n2. CVE-2024-53141:\nAn OOB Write Vulnerability in Netfiler Ipset\nhttps://u1f383.github.io/linux/2025/01/07/cve-2024-53141-an-oob-write-vulnerability-in-netfilter-ipset.html", "creation_timestamp": "2025-01-09T09:23:10.000000Z"}, {"uuid": "2829e545-8c88-4ffc-b31e-d94c967c9fff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53141", "type": "published-proof-of-concept", "source": "https://t.me/proxy_bar/2597", "content": "CVE-2024-53141: Linux Kernel Flaw Enables Privilege Escalation\n*\nkernel: lts-6.6.62\n\nPOC exploit", "creation_timestamp": "2025-04-18T17:33:15.000000Z"}, {"uuid": "8954981e-8fe5-41ab-bba4-af262324ba02", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-53141", "type": "published-proof-of-concept", "source": "https://t.me/ckeArsenal/324", "content": "https://u1f383.github.io/linux/2025/01/07/cve-2024-53141-an-oob-write-vulnerability-in-netfilter-ipset.html\n\nCVE-2024-53141: an OOB Write Vulnerability in Netfiler Ipset\n#\u5206\u6790", "creation_timestamp": "2025-01-31T06:03:32.000000Z"}]}