[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2024-43900":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":20,"aliases":21,"duplicate_of":9,"upstream":22,"downstream":23,"duplicates":124,"related":125,"reserved_at":9,"published_at":139,"modified_at":140,"state":141,"summary":142,"references_raw":151,"kevs":174,"epss":175,"epss_history":178,"metrics":443,"affected":449},"CVE-2024-43900","In the Linux kernel, the following vulnerability has been resolved:\n\nmedia: xc2028: avoid use-after-free in load_firmware_cb()\n\nsyzkaller reported use-after-free in load_firmware_cb() [1].\nThe reason is because the module allocated a struct tuner in tuner_probe(),\nand then the module initialization failed, the struct tuner was released.\nA worker which created during module initialization accesses this struct\ntuner later, it caused use-after-free.\n\nThe process is as follows:\n\ntask-6504           worker_thread\ntuner_probe                             \u003C= alloc dvb_frontend [2]\n...\nrequest_firmware_nowait                 \u003C= create a worker\n...\ntuner_remove                            \u003C= free dvb_frontend\n...\n                    request_firmware_work_func  \u003C= the firmware is ready\n                    load_firmware_cb    \u003C= but now the dvb_frontend has been freed\n\nTo fix the issue, check the dvd_frontend in load_firmware_cb(), if it is\nnull, report a warning and just return.\n\n[1]:\n    ==================================================================\n     BUG: KASAN: use-after-free in load_firmware_cb+0x1310/0x17a0\n     Read of size 8 at addr ffff8000d7ca2308 by task kworker/2:3/6504\n\n     Call trace:\n      load_firmware_cb+0x1310/0x17a0\n      request_firmware_work_func+0x128/0x220\n      process_one_work+0x770/0x1824\n      worker_thread+0x488/0xea0\n      kthread+0x300/0x430\n      ret_from_fork+0x10/0x20\n\n     Allocated by task 6504:\n      kzalloc\n      tuner_probe+0xb0/0x1430\n      i2c_device_probe+0x92c/0xaf0\n      really_probe+0x678/0xcd0\n      driver_probe_device+0x280/0x370\n      __device_attach_driver+0x220/0x330\n      bus_for_each_drv+0x134/0x1c0\n      __device_attach+0x1f4/0x410\n      device_initial_probe+0x20/0x30\n      bus_probe_device+0x184/0x200\n      device_add+0x924/0x12c0\n      device_register+0x24/0x30\n      i2c_new_device+0x4e0/0xc44\n      v4l2_i2c_new_subdev_board+0xbc/0x290\n      v4l2_i2c_new_subdev+0xc8/0x104\n      em28xx_v4l2_init+0x1dd0/0x3770\n\n     Freed by task 6504:\n      kfree+0x238/0x4e4\n      tuner_remove+0x144/0x1c0\n      i2c_device_remove+0xc8/0x290\n      __device_release_driver+0x314/0x5fc\n      device_release_driver+0x30/0x44\n      bus_remove_device+0x244/0x490\n      device_del+0x350/0x900\n      device_unregister+0x28/0xd0\n      i2c_unregister_device+0x174/0x1d0\n      v4l2_device_unregister+0x224/0x380\n      em28xx_v4l2_init+0x1d90/0x3770\n\n     The buggy address belongs to the object at ffff8000d7ca2000\n      which belongs to the cache kmalloc-2k of size 2048\n     The buggy address is located 776 bytes inside of\n      2048-byte region [ffff8000d7ca2000, ffff8000d7ca2800)\n     The buggy address belongs to the page:\n     page:ffff7fe00035f280 count:1 mapcount:0 mapping:ffff8000c001f000 index:0x0\n     flags: 0x7ff800000000100(slab)\n     raw: 07ff800000000100 ffff7fe00049d880 0000000300000003 ffff8000c001f000\n     raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000\n     page dumped because: kasan: bad access detected\n\n     Memory state around the buggy address:\n      ffff8000d7ca2200: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb\n      ffff8000d7ca2280: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb\n     >ffff8000d7ca2300: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb\n                           ^\n      ffff8000d7ca2380: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb\n      ffff8000d7ca2400: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb\n     ==================================================================\n\n[2]\n    Actually, it is allocated for struct tuner, and dvb_frontend is inside.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-416","Use After Free","The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory \"belongs\" to the code that operates on the new pointer.","weakness","Stable","Variant","High",[],[],[],[],[24,26,28,30,32,34,36,38,40,42,44,46,48,50,52,54,56,58,60,62,64,66,68,70,72,74,76,78,80,82,84,86,88,90,92,94,96,98,100,102,104,106,108,110,112,114,116,118,120,122],{"_key":25},"SUSE-SU-2024:3189-1",{"_key":27},"SUSE-SU-2024:3251-1",{"_key":29},"SUSE-SU-2024:3252-1",{"_key":31},"SUSE-SU-2024:3190-1",{"_key":33},"SUSE-SU-2024:3194-1",{"_key":35},"SUSE-SU-2024:3195-1",{"_key":37},"SUSE-SU-2024:3209-1",{"_key":39},"SUSE-SU-2024:3383-1",{"_key":41},"SUSE-SU-2024:3483-1",{"_key":43},"DLA-4008-1",{"_key":45},"SUSE-SU-2025:20044-1",{"_key":47},"SUSE-SU-2025:20047-1",{"_key":49},"MGASA-2024-0309",{"_key":51},"MGASA-2024-0310",{"_key":53},"DEBIAN-CVE-2024-43900",{"_key":55},"UBUNTU-CVE-2024-43900",{"_key":57},"USN-7332-1",{"_key":59},"USN-7332-2",{"_key":61},"USN-7332-3",{"_key":63},"USN-7333-1",{"_key":65},"USN-7342-1",{"_key":67},"USN-7344-1",{"_key":69},"USN-7344-2",{"_key":71},"USN-7154-1",{"_key":73},"USN-7154-2",{"_key":75},"USN-7155-1",{"_key":77},"USN-7156-1",{"_key":79},"USN-7196-1",{"_key":81},"USN-7387-1",{"_key":83},"USN-7387-2",{"_key":85},"USN-7387-3",{"_key":87},"USN-7388-1",{"_key":89},"USN-7389-1",{"_key":91},"USN-7390-1",{"_key":93},"USN-7391-1",{"_key":95},"USN-7392-1",{"_key":97},"USN-7392-2",{"_key":99},"USN-7392-3",{"_key":101},"USN-7392-4",{"_key":103},"USN-7393-1",{"_key":105},"USN-7401-1",{"_key":107},"USN-7407-1",{"_key":109},"USN-7413-1",{"_key":111},"USN-7421-1",{"_key":113},"USN-7458-1",{"_key":115},"USN-7459-1",{"_key":117},"USN-7459-2",{"_key":119},"USN-7463-1",{"_key":121},"USN-7539-1",{"_key":123},"USN-7540-1",[],[126,127,128,129,130,131,132,133,134,135,136,137,138],{"_key":25},{"_key":27},{"_key":29},{"_key":31},{"_key":33},{"_key":35},{"_key":37},{"_key":39},{"_key":41},{"_key":45},{"_key":47},{"_key":49},{"_key":51},"2024-08-26T10:10:58.767Z","2026-05-11T20:31:57.074Z","Modified",{"cisa_kev":143,"cisa_ransomware":143,"cisa_vendor":9,"epss_severity":144,"epss_score":145,"severity":146,"severity_score":147,"severity_version":148,"severity_source":149,"severity_vector":150,"severity_status":141},false,"low",0.00023,"high",7.8,"v3.1","nvd","CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",[152,158,162,166,170],{"url":153,"sources":154,"tags":156},"https://git.kernel.org/stable/c/ef517bdfc01818419f7bd426969a0c86b14f3e0e",[155,149],"cve.org",[157],"Patch",{"url":159,"sources":160,"tags":161},"https://git.kernel.org/stable/c/850304152d367f104d21c77cfbcc05806504218b",[155,149],[157],{"url":163,"sources":164,"tags":165},"https://git.kernel.org/stable/c/208deb6d8c3cb8c3acb1f41eb31cf68ea08726d5",[155,149],[157],{"url":167,"sources":168,"tags":169},"https://git.kernel.org/stable/c/68594cec291ff9523b9feb3f43fd853dcddd1f60",[155,149],[157],{"url":171,"sources":172,"tags":173},"https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html",[155,149],[],[],{"date":176,"score":145,"percentile":177},"2026-06-03",0.06773,[179,183,186,189,192,195,198,201,204,207,210,213,216,219,222,226,229,232,235,238,241,244,247,250,253,256,259,262,265,268,271,274,277,280,283,286,289,292,295,298,301,304,307,310,313,316,319,322,325,328,331,334,337,339,342,344,347,350,353,356,359,361,364,367,370,373,376,379,381,383,386,389,392,395,398,401,404,407,410,413,416,419,422,425,428,431,433,435,437,440],{"date":180,"score":181,"percentile":182},"2025-11-04",0.00021,0.04267,{"date":184,"score":181,"percentile":185},"2025-11-05",0.04276,{"date":187,"score":181,"percentile":188},"2025-11-06",0.04386,{"date":190,"score":181,"percentile":191},"2025-11-07",0.04393,{"date":193,"score":181,"percentile":194},"2025-11-08",0.04397,{"date":196,"score":181,"percentile":197},"2025-11-09",0.04398,{"date":199,"score":181,"percentile":200},"2025-11-10",0.04385,{"date":202,"score":181,"percentile":203},"2025-11-11",0.04418,{"date":205,"score":181,"percentile":206},"2025-11-12",0.0445,{"date":208,"score":181,"percentile":209},"2025-11-13",0.04483,{"date":211,"score":181,"percentile":212},"2025-11-14",0.04499,{"date":214,"score":181,"percentile":215},"2025-11-15",0.04524,{"date":217,"score":181,"percentile":218},"2025-11-16",0.04541,{"date":220,"score":181,"percentile":221},"2025-11-17",0.04526,{"date":223,"score":224,"percentile":225},"2025-11-18",0.0007,0.17576,{"date":227,"score":224,"percentile":228},"2025-11-19",0.17596,{"date":230,"score":224,"percentile":231},"2025-11-20",0.1757,{"date":233,"score":181,"percentile":234},"2025-11-21",0.04561,{"date":236,"score":181,"percentile":237},"2025-11-22",0.04573,{"date":239,"score":181,"percentile":240},"2025-11-23",0.04572,{"date":242,"score":181,"percentile":243},"2025-11-24",0.04545,{"date":245,"score":181,"percentile":246},"2025-11-25",0.04556,{"date":248,"score":181,"percentile":249},"2025-11-26",0.04606,{"date":251,"score":181,"percentile":252},"2025-11-27",0.04619,{"date":254,"score":181,"percentile":255},"2025-11-28",0.04608,{"date":257,"score":181,"percentile":258},"2025-11-29",0.04665,{"date":260,"score":181,"percentile":261},"2025-11-30",0.0467,{"date":263,"score":181,"percentile":264},"2025-12-01",0.04768,{"date":266,"score":181,"percentile":267},"2025-12-02",0.04782,{"date":269,"score":181,"percentile":270},"2025-12-03",0.04806,{"date":272,"score":181,"percentile":273},"2025-12-04",0.04749,{"date":275,"score":181,"percentile":276},"2025-12-05",0.04824,{"date":278,"score":181,"percentile":279},"2025-12-06",0.04839,{"date":281,"score":181,"percentile":282},"2025-12-07",0.0484,{"date":284,"score":181,"percentile":285},"2025-12-08",0.04841,{"date":287,"score":181,"percentile":288},"2025-12-09",0.04886,{"date":290,"score":181,"percentile":291},"2025-12-10",0.04942,{"date":293,"score":181,"percentile":294},"2025-12-11",0.04927,{"date":296,"score":181,"percentile":297},"2025-12-12",0.04941,{"date":299,"score":181,"percentile":300},"2025-12-13",0.04979,{"date":302,"score":181,"percentile":303},"2025-12-14",0.04971,{"date":305,"score":181,"percentile":306},"2025-12-15",0.04929,{"date":308,"score":181,"percentile":309},"2025-12-16",0.04928,{"date":311,"score":181,"percentile":312},"2025-12-17",0.04986,{"date":314,"score":181,"percentile":315},"2025-12-18",0.05023,{"date":317,"score":181,"percentile":318},"2025-12-19",0.05009,{"date":320,"score":181,"percentile":321},"2025-12-20",0.0501,{"date":323,"score":181,"percentile":324},"2025-12-21",0.05021,{"date":326,"score":181,"percentile":327},"2025-12-22",0.04953,{"date":329,"score":181,"percentile":330},"2025-12-23",0.04963,{"date":332,"score":181,"percentile":333},"2025-12-24",0.04983,{"date":335,"score":181,"percentile":336},"2025-12-25",0.05019,{"date":338,"score":181,"percentile":336},"2025-12-26",{"date":340,"score":145,"percentile":341},"2025-12-27",0.05577,{"date":343,"score":181,"percentile":318},"2025-12-28",{"date":345,"score":181,"percentile":346},"2025-12-29",0.05002,{"date":348,"score":181,"percentile":349},"2025-12-30",0.0494,{"date":351,"score":181,"percentile":352},"2025-12-31",0.04964,{"date":354,"score":181,"percentile":355},"2026-01-01",0.05043,{"date":357,"score":181,"percentile":358},"2026-01-02",0.05039,{"date":360,"score":181,"percentile":315},"2026-01-03",{"date":362,"score":181,"percentile":363},"2026-01-04",0.0492,{"date":365,"score":181,"percentile":366},"2026-01-05",0.04855,{"date":368,"score":181,"percentile":369},"2026-01-06",0.0485,{"date":371,"score":181,"percentile":372},"2026-01-07",0.04871,{"date":374,"score":181,"percentile":375},"2026-01-08",0.04902,{"date":377,"score":181,"percentile":378},"2026-01-09",0.04906,{"date":380,"score":181,"percentile":363},"2026-01-10",{"date":382,"score":181,"percentile":375},"2026-01-11",{"date":384,"score":181,"percentile":385},"2026-01-12",0.04911,{"date":387,"score":181,"percentile":388},"2026-01-13",0.04899,{"date":390,"score":181,"percentile":391},"2026-01-14",0.04947,{"date":393,"score":181,"percentile":394},"2026-01-15",0.0488,{"date":396,"score":181,"percentile":397},"2026-01-16",0.04858,{"date":399,"score":181,"percentile":400},"2026-01-17",0.04862,{"date":402,"score":181,"percentile":403},"2026-01-18",0.04845,{"date":405,"score":181,"percentile":406},"2026-01-19",0.04795,{"date":408,"score":181,"percentile":409},"2026-01-20",0.04758,{"date":411,"score":181,"percentile":412},"2026-01-21",0.04748,{"date":414,"score":181,"percentile":415},"2026-01-22",0.04731,{"date":417,"score":181,"percentile":418},"2026-01-23",0.04784,{"date":420,"score":181,"percentile":421},"2026-01-24",0.04827,{"date":423,"score":181,"percentile":424},"2026-01-25",0.04813,{"date":426,"score":181,"percentile":427},"2026-01-26",0.04791,{"date":429,"score":181,"percentile":430},"2026-01-27",0.04776,{"date":432,"score":181,"percentile":409},"2026-01-28",{"date":434,"score":181,"percentile":430},"2026-01-29",{"date":436,"score":181,"percentile":267},"2026-01-30",{"date":438,"score":181,"percentile":439},"2026-01-31",0.04764,{"date":441,"score":181,"percentile":442},"2026-02-01",0.04868,[444],{"source":149,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":445,"cvss_v4_0":9},{"baseScore":147,"baseSeverity":446,"vectorString":150,"impactScore":447,"exploitabilityScore":448},"HIGH",9.8,4.6,[450,473],{"ecosystem":9,"name":451,"vendor":452,"product":452,"cpe_part":453,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":454},"Linux","linux","a",[455,462,465,468,471],{"version":456,"is_range":457,"range_type":155,"version_start":458,"version_start_type":459,"version_end":460,"version_end_type":461,"fixed_in":9},">= 61a96113de51e1f8f43ac98cbeadb54e60045905, \u003C ef517bdfc01818419f7bd426969a0c86b14f3e0e",true,"61a96113de51e1f8f43ac98cbeadb54e60045905","including","ef517bdfc01818419f7bd426969a0c86b14f3e0e","excluding",{"version":463,"is_range":457,"range_type":155,"version_start":458,"version_start_type":459,"version_end":464,"version_end_type":461,"fixed_in":9},">= 61a96113de51e1f8f43ac98cbeadb54e60045905, \u003C 850304152d367f104d21c77cfbcc05806504218b","850304152d367f104d21c77cfbcc05806504218b",{"version":466,"is_range":457,"range_type":155,"version_start":458,"version_start_type":459,"version_end":467,"version_end_type":461,"fixed_in":9},">= 61a96113de51e1f8f43ac98cbeadb54e60045905, \u003C 208deb6d8c3cb8c3acb1f41eb31cf68ea08726d5","208deb6d8c3cb8c3acb1f41eb31cf68ea08726d5",{"version":469,"is_range":457,"range_type":155,"version_start":458,"version_start_type":459,"version_end":470,"version_end_type":461,"fixed_in":9},">= 61a96113de51e1f8f43ac98cbeadb54e60045905, \u003C 68594cec291ff9523b9feb3f43fd853dcddd1f60","68594cec291ff9523b9feb3f43fd853dcddd1f60",{"version":472,"is_range":143,"range_type":155,"version_start":472,"version_start_type":459,"version_end":472,"version_end_type":459,"fixed_in":9},"3.6",{"ecosystem":9,"name":474,"vendor":452,"product":475,"cpe_part":476,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":477},"linux kernel","linux_kernel","o",[478,482,486],{"version":479,"is_range":457,"range_type":480,"version_start":9,"version_start_type":9,"version_end":481,"version_end_type":461,"fixed_in":9},"lt6.1.105","cpe","6.1.105",{"version":483,"is_range":457,"range_type":480,"version_start":484,"version_start_type":459,"version_end":485,"version_end_type":461,"fixed_in":9},"gte6.2_lt6.6.46","6.2","6.6.46",{"version":487,"is_range":457,"range_type":480,"version_start":488,"version_start_type":459,"version_end":489,"version_end_type":461,"fixed_in":9},"gte6.7_lt6.10.5","6.7","6.10.5"]