17753 matches found
PT-2025-51598
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the nfs4 setup readdir function related to insufficient locking when dereferencing -d parent-d inode. This condition could potentially lead to a...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a recursive semaphore deadlock in the OCFS2 file system, which could lead to a file system hang...
Nx 安全漏洞
Nx is an application from Nx Inc. A security vulnerability exists in Nx that stems from a supply chain attack resulting in malicious code injection that may scan the file system and collect credentials...
kernel: sunrpc: fix handling of server side tls alerts
In the Linux kernel, the following vulnerability has been resolved: sunrpc: fix handling of server side tls alerts Scott Mayhew discovered a security exploit in NFS over TLS in tlsalertrecv due to its assumption it can read data from the msg iterator's kvec.. kTLS implementation splits TLS non-da...
cifs: prevent NULL pointer dereference in UTF16 conversion
...
f2fs: compress: fix to guarantee persisting compressed blocks by CP
...
btrfs: fix crash on racing fsync and size-extending write into prealloc
...
Linux Distros Unpatched Vulnerability : CVE-2023-53360
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: NFSv4.2: Rework scratch handling for READPLUS again I found that the read code might send...
Linux Distros Unpatched Vulnerability : CVE-2023-53311
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - nilfs2: fix use-after-free of nilfsroot in dirtying inodes via iput During unmount process of nilfs2, nothing holds nilfsroot structure after nilfs2 detaches it...
SUSE CVE-2025-39842
In the Linux kernel, the following vulnerability has been resolved: ocfs2: prevent release journal inode after journal shutdown Before calling ocfs2deleteosb, ocfs2journalshutdown has already been executed in ocfs2dismountvolume, so osb-journal must be NULL. Therefore, the following calltrace wil...
Security update for the Linux Kernel
The SUSE Linux Enterprise 15 SP5 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2022-49980: USB: gadget: fix use-after-free read in usbudcuevent bsc1245110. CVE-2022-50116: tty: ngsm: fix deadlock and link starvation in outgoing data path...
DEBIAN-CVE-2025-39842
In the Linux kernel, the following vulnerability has been resolved: ocfs2: prevent release journal inode after journal shutdown Before calling ocfs2deleteosb, ocfs2journalshutdown has already been executed in ocfs2dismountvolume, so osb-journal must be NULL. Therefore, the following calltrace wil...
DEBIAN-CVE-2025-39838
In the Linux kernel, the following vulnerability has been resolved: cifs: prevent NULL pointer dereference in UTF16 conversion There can be a NULL pointer dereference bug here. NULL is passed to cifssfumakenode without checks, which passes it unchecked to cifsstrnduptoutf16, which in turn passes ...
AZL-67596 CVE-2025-39838 affecting package kernel for versions less than 6.6.112.1-1
In the Linux kernel, the following vulnerability has been resolved: cifs: prevent NULL pointer dereference in UTF16 conversion There can be a NULL pointer dereference bug here. NULL is passed to cifssfumakenode without checks, which passes it unchecked to cifsstrnduptoutf16, which in turn passes ...
UBUNTU-CVE-2025-39842
In the Linux kernel, the following vulnerability has been resolved: ocfs2: prevent release journal inode after journal shutdown Before calling ocfs2deleteosb, ocfs2journalshutdown has already been executed in ocfs2dismountvolume, so osb-journal must be NULL. Therefore, the following calltrace wil...
CVE-2025-39842
CVE-2025-39842 : In the Linux kernel, the ocfs2 path could dereference a NULL journal pointer when releasing an inode during journal shutdown. The root cause was calling jbd2_journal_release_jbd_inode() with osb->journal potentially NULL after ocfs2_journal_shutdown(). The fix is to add explic...
CVE-2025-39838
In the Linux kernel, the following vulnerability has been resolved: cifs: prevent NULL pointer dereference in UTF16 conversion There can be a NULL pointer dereference bug here. NULL is passed to cifssfumakenode without checks, which passes it unchecked to cifsstrnduptoutf16, which in turn passes ...
CVE-2025-39838 cifs: prevent NULL pointer dereference in UTF16 conversion
In the Linux kernel, the following vulnerability has been resolved: cifs: prevent NULL pointer dereference in UTF16 conversion There can be a NULL pointer dereference bug here. NULL is passed to cifssfumakenode without checks, which passes it unchecked to cifsstrnduptoutf16, which in turn passes ...
PT-2025-38545
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw where a NULL pointer dereference can occur during UTF16 conversion within the CIFS implementation. Specifically, a NULL pointer can be passed to the cifs...
PT-2025-40086
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s nfs/localio functionality. Specifically, the issue involves improper credential handling when releasing pageio data, potentially triggering a bug in t...