17755 matches found
UBUNTU-CVE-2022-50273
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to do sanity check on destination blkaddr during recovery As Wenqing Liu reported in bugzilla: https://bugzilla.kernel.org/showbug.cgi?id=216456 loop5: detected capacity change from 0 to 131072 F2FS-fs loop5:...
UBUNTU-CVE-2022-50328
In the Linux kernel, the following vulnerability has been resolved: jbd2: fix potential use-after-free in jbd2fcwaitbufs In 'jbd2fcwaitbufs' use 'bh' after put buffer head reference count which may lead to use-after-free. So judge buffer if uptodate before put buffer head reference count...
UBUNTU-CVE-2022-50302
In the Linux kernel, the following vulnerability has been resolved: lockd: set other missing fields when unlocking files vfslockfile expects the struct filelock to be fully initialised by the caller. Re-exported NFSv3 has been seen to Oops if the flfile field is NULL...
UBUNTU-CVE-2022-50306
In the Linux kernel, the following vulnerability has been resolved: ext4: fix potential out of bound read in ext4fcreplayscan For scan loop must ensure that at least EXT4FCTAGBASELEN space. If remain space less than EXT4FCTAGBASELEN which will lead to out of bound read when mounting corrupt file...
UBUNTU-CVE-2022-50262
In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Validate BOOT recordsize When the NTFS BOOT recordsize field recordbits calculation through blksizebits assumes the size always 256, which could lead to NPD while mounting a malformed NTFS image. 318.675159 BUG: kernel...
UBUNTU-CVE-2023-53230
In the Linux kernel, the following vulnerability has been resolved: smb: client: fix warning in cifssmb3domount This fixes the following warning reported by kernel test robot fs/smb/client/cifsfs.c:982 cifssmb3domount warn: possible memory leak of 'cifssb'...
UBUNTU-CVE-2022-50333
In the Linux kernel, the following vulnerability has been resolved: fs: jfs: fix shift-out-of-bounds in dbDiscardAG This should be applied to most URSAN bugs found recently by syzbot, by guarding the dbMount. As syzbot feeding rubbish into the bmap descriptor...
CVE-2022-50336
CVE-2022-50336 – Linux kernel (fs/ntfs3) Root cause: a missing null pointer check in attr_load_runs_vcn when parsing certain NTFS metadata before MFT could permit a kernel NULL pointer dereference on malformed images. Impact: kernel crash/free crash (NPD) resulting from NULL dereference in ntfs-r...
CVE-2022-50333 fs: jfs: fix shift-out-of-bounds in dbDiscardAG
In the Linux kernel, the following vulnerability has been resolved: fs: jfs: fix shift-out-of-bounds in dbDiscardAG This should be applied to most URSAN bugs found recently by syzbot, by guarding the dbMount. As syzbot feeding rubbish into the bmap descriptor...
CVE-2022-50333
CVE-2022-50333 concerns the Linux kernel: fs/jfs contains a shift-out-of-bounds bug in dbDiscardAG, addressed by guarding the dbMount to mitigate URSAN-generated issues. The connected Nessus/SUSE advisories reproduce the same description and confirm a kernel-level fix, without detailing affected ...
CVE-2022-50333 fs: jfs: fix shift-out-of-bounds in dbDiscardAG
In the Linux kernel, the following vulnerability has been resolved: fs: jfs: fix shift-out-of-bounds in dbDiscardAG This should be applied to most URSAN bugs found recently by syzbot, by guarding the dbMount. As syzbot feeding rubbish into the bmap descriptor...
CVE-2023-53262 f2fs: fix scheduling while atomic in decompression path
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix scheduling while atomic in decompression path 16.945668 C0 Call trace: 16.945678 C0 dumpbacktrace+0x110/0x204 16.945706 C0 dumpstacklvl+0x84/0xbc 16.945735 C0 schedulebug+0xb8/0x1ac 16.945756 C0 schedule+0x724/0xbdc...
CVE-2023-53262
Mode C: Affected software/issue details: CVE-2023-53262 concerns the Linux kernel with f2fs: fix scheduling while atomic in decompression path. The connected sources describe a root cause in the decompression path related to scheduling during atomic operations, evidenced by a long call trace endi...
CVE-2023-53241 nfsd: call op_release, even when op_func returns an error
In the Linux kernel, the following vulnerability has been resolved: nfsd: call oprelease, even when opfunc returns an error For ops with "trivial" replies, nfsd4encodeoperation will shortcut most of the encoding work and skip to just marshalling up the status. One of the things it skips is callin...
CVE-2023-53222 jfs: jfs_dmap: Validate db_l2nbperpage while mounting
In the Linux kernel, the following vulnerability has been resolved: jfs: jfsdmap: Validate dbl2nbperpage while mounting In jfsdmap.c at line 381, BLKTODMAP is used to get a logical block number inside dbFree. dbl2nbperpage, which is the log2 number of blocks per page, is passed as an argument to...
CVE-2022-50289
CVE-2022-50289 concerns the Linux kernel OCFS2 subsystem. The provided advisories describe a memory leak in ocfs2_stack_glue_init() where ocfs2_table_header must be freed if ocfs2_sysfs_init() fails, to prevent a kmemleak-detected memleak. The root cause is the missing free path during initializa...
CVE-2022-50273 f2fs: fix to do sanity check on destination blkaddr during recovery
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to do sanity check on destination blkaddr during recovery As Wenqing Liu reported in bugzilla: https://bugzilla.kernel.org/showbug.cgi?id=216456 loop5: detected capacity change from 0 to 131072 F2FS-fs loop5:...
CVE-2022-50273
CVE-2022-50273 concerns Linux kernel f2fs recovery logic. The vuln is fixed by a patch that adds a DATA_GENERIC_ENHANCE_UPDATE flag to the data block recovery flow, enabling validation of destination blkaddr in SIT during recovery and skipping f2fs_replace_block() to prevent inconsistent SIT/inod...
CVE-2022-50273 f2fs: fix to do sanity check on destination blkaddr during recovery
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to do sanity check on destination blkaddr during recovery As Wenqing Liu reported in bugzilla: https://bugzilla.kernel.org/showbug.cgi?id=216456 loop5: detected capacity change from 0 to 131072 F2FS-fs loop5:...
DEBIAN-CVE-2023-53194
In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Add length check in indxgetroot This adds a length check to guarantee the retrieved index root is legit. 162.459513 BUG: KASAN: use-after-free in hdrfinde.isra.0+0x10c/0x320 162.460176 Read of size 2 at addr...