279 Linux Kernel CVEs in November 2024
Full month · Source: NIST NVD
In November 2024, 279 Linux kernel CVEs were published, sourced from the NIST National Vulnerability Database. Of these, 74 were rated High severity and 203 Medium. CVE-2024-50302 was confirmed as actively exploited in the wild and added to the CISA Known Exploited Vulnerabilities catalog. November's 279 CVEs represent 6% of all 2024 Linux kernel CVEs , down from October's 415 (a 33% month-over-month decrease) .
Actively Exploited CVEs — November 2024
1 CVE in CISA KEVCVE-2024-50302 is the only Linux kernel CVE from November 2024 confirmed as actively exploited in the wild. It carries a CVSS score of 5.5 (Medium severity) and is listed in the CISA Known Exploited Vulnerabilities catalog.
| CVE ID | Severity | CVSS | Published | Description | |
|---|---|---|---|---|---|
| CVE-2024-50302 | Medium KEV | 5.5 | 2024-11-19 | In the Linux kernel, the following vulnerability has been resolved: HID: core: zero-initialize the … |
| CVE ID | Package | Severity | CVSS | Published | Description | |
|---|---|---|---|---|---|---|
| CVE-2023-52922 | linux | High | 7.8 | 2024-11-28 | In the Linux kernel, the following vulnerability has been resolved: can: bcm: Fix UAF in bcm_proc_show() BUG: KASAN: sl… | |
| CVE-2024-53096 | linux | High | 7.8 | 2024-11-25 | In the Linux kernel, the following vulnerability has been resolved: mm: resolve faulty mmap_region() error path behavio… | |
| CVE-2024-53098 | linux | High | 7.8 | 2024-11-25 | In the Linux kernel, the following vulnerability has been resolved: drm/xe/ufence: Prefetch ufence addr to catch bogus … | |
| CVE-2024-53095 | linux | High | 7.8 | 2024-11-21 | In the Linux kernel, the following vulnerability has been resolved: smb: client: Fix use-after-free of network namespac… | |
| CVE-2023-52921 | linux | High | 7.8 | 2024-11-19 | In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix possible UAF in amdgpu_cs_pass1() S… | |
| CVE-2024-50269 | linux | High | 7.8 | 2024-11-19 | In the Linux kernel, the following vulnerability has been resolved: usb: musb: sunxi: Fix accessing an released usb phy… | |
| CVE-2024-50276 | linux | High | 7.8 | 2024-11-19 | In the Linux kernel, the following vulnerability has been resolved: net: vertexcom: mse102x: Fix possible double free o… | |
| CVE-2024-50274 | linux | High | 7.8 | 2024-11-19 | In the Linux kernel, the following vulnerability has been resolved: idpf: avoid vport access in idpf_get_link_ksettings… | |
| CVE-2024-53061 | linux | High | 7.8 | 2024-11-19 | In the Linux kernel, the following vulnerability has been resolved: media: s5p-jpeg: prevent buffer overflows The curre… | |
| CVE-2024-50264 | linux | High | 7.8 | 2024-11-19 | In the Linux kernel, the following vulnerability has been resolved: vsock/virtio: Initialization of the dangling pointe… | |
| CVE-2024-53057 | linux | High | 7.8 | 2024-11-19 | In the Linux kernel, the following vulnerability has been resolved: net/sched: stop qdisc_tree_reduce_backlog on TC_H_R… | |
| CVE-2024-53068 | linux | High | 7.8 | 2024-11-19 | In the Linux kernel, the following vulnerability has been resolved: firmware: arm_scmi: Fix slab-use-after-free in scmi… | |
| CVE-2024-50283 | linux | High | 7.8 | 2024-11-19 | In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix slab-use-after-free in smb3_preauth_hash… | |
| CVE-2024-50267 | linux | High | 7.8 | 2024-11-19 | In the Linux kernel, the following vulnerability has been resolved: USB: serial: io_edgeport: fix use after free in deb… | |
| CVE-2024-50280 | linux | High | 7.8 | 2024-11-19 | In the Linux kernel, the following vulnerability has been resolved: dm cache: fix flushing uninitialized delayed_work o… |