CVE-2024-27413 | Linux Kernel up to 6.7.8 capsule-loader capsule-loader.c efi_capsule_open allocation of resources

Inserito da Angelo Barbosa | Mag 17, 2024 | CVE

A vulnerability was found in Linux Kernel up to 6.7.8. It has been declared as problematic. Affected by this vulnerability is the function efi_capsule_open of the file drivers/firmware/efi/capsule-loader.c of the component capsule-loader. The manipulation leads to allocation of resources.

This vulnerability is known as CVE-2024-27413. The attack can only be initiated within the local network. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-27413 | Linux Kernel up to 6.7.8 capsule-loader capsule-loader.c efi_capsule_open allocation of resources

Post correlati

CVE-2023-49807 | WESEEK GROWI up to 5.x MathJax cross site scripting

CVE-2023-23432 | Honor NTH-AN00 prior 7.0.0.157 System Files signature verification

CVE-2023-52719 | Huawei HarmonyOS/EMUI PMS Module information disclosure

CVE-2023-50784 | UnrealIRCd up to 6.1.3 Websocket buffer overflow