Latest vulnerabilities for "ibm security verify governance, identity manager software stack"

Where

Sort:

Versions

isvg 10.0.2

434

IBM Security Verify Governance29 vulnerabilities

First published (updated )

Advisory

IBM-7230443

IBM Security Verify Governance cross-site scripting

Risk 34

Severity

5.4

First published (updated )

CVE-2023-33844

XSS

Risk 39

Severity

6.1

First published (updated )

CVE-2024-21535

devres: Fix memory leakage caused by driver API devm_free_percpu()

Risk 33

Severity

5.5

First published (updated )

CVE-2024-43871

protect the fetch of ->fd[fd] in do_dup2() from mispredictions

Risk 33

Severity

5.5

First published (updated )

CVE-2024-42265

net, sunrpc: Remap EPERM in case of connection failure in xs_tcp_setup_socket

Risk 33

Severity

5.5

First published (updated )

CVE-2024-42246

x86/bhi: Avoid warning in #DB handler due to BHI mitigation

Risk 33

Severity

5.5

First published (updated )

CVE-2024-42240

firmware: cs_dsp: Return error if block header overflows file

Risk 33

Severity

5.5

First published (updated )

CVE-2024-42238

firmware: cs_dsp: Validate payload length before processing block

Risk 33

Severity

5.5

First published (updated )

CVE-2024-42237

drm/amdgpu: Using uninitialized value *size when calling amdgpu_vce_cs_reloc

Risk 66

Severity

First published (updated )

CVE-2024-42228

mm: avoid overflows in dirty throttling logic

Risk 27

Severity

4.4

First published (updated )

CVE-2024-42131

wifi: cfg80211: restrict NL80211_ATTR_TXQ_QUANTUM values

Risk 27

Severity

4.4

First published (updated )

CVE-2024-42114

scsi: qedf: Make qedf_execute_tmf() non-preemptible

Risk 33

Severity

5.5

First published (updated )

CVE-2024-42124

nvmet: fix a possible leak when destroy a ctrl during qp establishment

Risk 29

Severity

4.7

First published (updated )

CVE-2024-42152

wifi: mt76: replace skb_put with skb_put_zero

Risk 73

Severity

7.5

First published (updated )

CVE-2024-42225

tcp_metrics: validate source addr length

Risk 32

Severity

4.4

First published (updated )

CVE-2024-42154

NFSv4: Fix memory leak in nfs4_set_security_label

Risk 33

Severity

5.5

First published (updated )

CVE-2024-41076

wifi: mac80211: Avoid address calculations via out of bounds array indexing

Risk 28

First published (updated )

CVE-2024-41071

powerpc/pseries: Whitelist dtl slub object for copying to userspace

Risk 33

Severity

5.5

First published (updated )

CVE-2024-41065

powerpc/eeh: avoid possible crash when edev->pdev changes

Risk 33

Severity

5.5

First published (updated )

CVE-2024-41064

drm/radeon: check bo_va->bo is non-NULL before using it

Risk 33

Severity

5.5

First published (updated )

CVE-2024-41060

firmware: cs_dsp: Use strnlen() on name fields in V1 wmfw files

Risk 33

Severity

5.5

First published (updated )

CVE-2024-41056

mm: prevent derefencing NULL ptr in pfn_section_valid()

Risk 33

Severity

5.5

First published (updated )

CVE-2024-41055

firmware: cs_dsp: Fix overflow checking of wmfw header

Risk 72

Severity

7.8

First published (updated )

CVE-2024-41039

firmware: cs_dsp: Prevent buffer overrun when processing V2 alg headers

Risk 33

Severity

5.5

First published (updated )

CVE-2024-41038

sched/deadline: Fix task_struct reference leak

Risk 33

Severity

5.5

First published (updated )

CVE-2024-41023

xfs: add bounds checking to xlog_recover_process_data

Risk 54

Severity

7.1

First published (updated )

CVE-2024-41014

xfs: don't walk off the end of a directory data block

Risk 52

Severity

7.1

First published (updated )

CVE-2024-41013

net/sched: Fix UAF when resolving a clash

Risk 66

Severity

First published (updated )

CVE-2024-41040

ppp: reject claimed-as-LCP but actually malformed packets

Risk 33

Severity

5.5

First published (updated )

CVE-2024-41044

Trending

Versions

IBM Security Verify Governance29 vulnerabilities

IBM Security Verify Governance cross-site scripting

XSS

devres: Fix memory leakage caused by driver API devm_free_percpu()

protect the fetch of ->fd[fd] in do_dup2() from mispredictions

net, sunrpc: Remap EPERM in case of connection failure in xs_tcp_setup_socket

x86/bhi: Avoid warning in #DB handler due to BHI mitigation

firmware: cs_dsp: Return error if block header overflows file

firmware: cs_dsp: Validate payload length before processing block

drm/amdgpu: Using uninitialized value *size when calling amdgpu_vce_cs_reloc

mm: avoid overflows in dirty throttling logic

wifi: cfg80211: restrict NL80211_ATTR_TXQ_QUANTUM values

scsi: qedf: Make qedf_execute_tmf() non-preemptible

nvmet: fix a possible leak when destroy a ctrl during qp establishment

wifi: mt76: replace skb_put with skb_put_zero

tcp_metrics: validate source addr length

NFSv4: Fix memory leak in nfs4_set_security_label

wifi: mac80211: Avoid address calculations via out of bounds array indexing

powerpc/pseries: Whitelist dtl slub object for copying to userspace

powerpc/eeh: avoid possible crash when edev->pdev changes

drm/radeon: check bo_va->bo is non-NULL before using it

firmware: cs_dsp: Use strnlen() on name fields in V1 wmfw files

mm: prevent derefencing NULL ptr in pfn_section_valid()

firmware: cs_dsp: Fix overflow checking of wmfw header

firmware: cs_dsp: Prevent buffer overrun when processing V2 alg headers

sched/deadline: Fix task_struct reference leak

xfs: add bounds checking to xlog_recover_process_data

xfs: don't walk off the end of a directory data block

net/sched: Fix UAF when resolving a clash

ppp: reject claimed-as-LCP but actually malformed packets

Company

Resources

Contact