80 matches found
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992447)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992447 advisory. In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid use f2fsbugon in f2fsnewnodepage As Dipanjan Das reported, syzkaller found a...
EUVD-2025-201869
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix infinite loop in insertextenttree When we get wrong extent info data, and look up extentnode in rb tree, it will cause infinite loop CONFIGF2FSCHECKFS=n. Avoiding this by return NULL and print some kernel messages in th...
CVE-2023-53846 f2fs: fix to do sanity check on direct node in truncate_dnode()
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to do sanity check on direct node in truncatednode syzbot reports below bug: BUG: KASAN: slab-use-after-free in f2fstruncatedatablocksrange+0x122a/0x14c0 fs/f2fs/file.c:574 Read of size 4 at addr ffff88802a25c000 by tas...
CVE-2023-53829
CVE-2023-53829 affects the Linux kernel F2FS filesystem. Root cause: during eviction/cleanup, an atomic file abort can leave FI_DIRTY_INODE still set, causing f2fs_evict_inode to trigger a kernel BUG and potentially a panic. Affected component: f2fs inode eviction path (f2fs_evict_inode in fs/f2f...
Linux Distros Unpatched Vulnerability : CVE-2023-53763
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Revert f2fs: fix to do sanity check on extent cache correctly syzbot reports a f2fs bug as below: UBSAN: array-index-out-of-bounds in fs/f2fs/f2fs.h:3275:19 ind...
CVE-2023-53763
In the Linux kernel, the following vulnerability has been resolved: Revert "f2fs: fix to do sanity check on extent cache correctly" syzbot reports a f2fs bug as below: UBSAN: array-index-out-of-bounds in fs/f2fs/f2fs.h:3275:19 index 1409 is out of range for type 'le32923' aka 'unsigned int923' Ca...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989685)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989685 advisory. In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid f2fsbugon in decvalidnodecount As Yanming reported in bugzilla:...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989484)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989484 advisory. In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid f2fsbugon in decvalidnodecount As Yanming reported in bugzilla:...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989871)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989871 advisory. In the Linux kernel, the following vulnerability has been resolved: f2fs: fix missing free nid in f2fshandlefailedinode This patch fixes xfstests/generic/475 failure...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989831)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989831 advisory. In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to do sanity check on ixattrnid in sanitycheckinode syzbot reports a kernel bug as belo...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989099)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989099 advisory. In the Linux kernel, the following vulnerability has been resolved: f2fs: fix missing free nid in f2fshandlefailedinode This patch fixes xfstests/generic/475 failure...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989015)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989015 advisory. In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to do sanity check on iextraisize in isalive syzbot found a f2fs bug: BUG: KASAN:...
CVE-2025-40054
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix UAF issue in f2fsmergepagebio As JY reported in bugzilla 1, Unable to handle kernel NULL pointer dereference at virtual address 0000000000000000 pc : 0xffffffe51d249484 f2fsiscpguaranteed+0x70/0x98 lr : 0xffffffe51d24ad...
Linux Distros Unpatched Vulnerability : CVE-2025-40054
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - f2fs: fix UAF issue in f2fsmergepagebio As JY reported in bugzilla 1, Unable to handle kernel NULL pointer dereference at virtual address 0000000000000000 pc :...
EUVD-2022-54849
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid f2fsbugon in decvalidnodecount As Yanming reported in bugzilla: https://bugzilla.kernel.org/showbug.cgi?id=215897 I have encountered a bug in F2FS file system in kernel v5.17. The kernel should enable...
CVE-2023-53537
Summary: CVE-2023-53537 concerns a Linux kernel F2FS use-after-free involving a cached IPU bio. Root cause: after cp_error is set, f2fs_submit_merged_ipu_write() failed to validate the bio parameter in f2fs_write_single_data_page(), leading to submission of a random cached bio from another IO con...
EUVD-2024-53340
Malicious code in bioql PyPI...
EUVD-2022-55198
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2025-38578
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - f2fs: fix to avoid UAF in f2fssyncinodemeta syzbot reported an UAF issue as below: 1 2 1 https://syzkaller.appspot.com/text?tag=CrashReport&x=16594c60580000...
DEBIAN-CVE-2025-38652
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid out-of-boundary access in devs.path - touch /mnt/f2fs/012345678901234567890123456789012345678901234567890123 - truncate -s $102410241024 \ /mnt/f2fs/012345678901234567890123456789012345678901234567890123 - touc...