Lucene search
K

17758 matches found

OSV
OSV
added 2025/09/04 4:15 p.m.1 views

UBUNTU-CVE-2025-38691

In the Linux kernel, the following vulnerability has been resolved: pNFS: Fix uninited ptr deref in block/scsi layout The error occurs on the third attempt to encode extents. When function exttreepreparecommit reallocates a larger buffer to retry encoding extents, the "layoutupdatepages" page arr...

5.5CVSS6AI score0.00166EPSS
Exploits0References37
OSV
OSV
added 2025/09/04 4:15 p.m.5 views

UBUNTU-CVE-2025-38707

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Add sanity check for file name The length of the file name should be smaller than the directory entry size...

7.8CVSS6.5AI score0.00156EPSS
Exploits0References35
OSV
OSV
added 2025/09/04 3:33 p.m.3 views

CVE-2025-38715 hfs: fix slab-out-of-bounds in hfs_bnode_read()

In the Linux kernel, the following vulnerability has been resolved: hfs: fix slab-out-of-bounds in hfsbnoderead This patch introduces isbnodeoffsetvalid method that checks the requested offset value. Also, it introduces checkandcorrectrequestedlength method that checks and correct the requested...

7.1CVSS6.1AI score0.00151EPSS
Exploits0References14
OSV
OSV
added 2025/09/04 3:32 p.m.4 views

CVE-2025-38707 fs/ntfs3: Add sanity check for file name

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Add sanity check for file name The length of the file name should be smaller than the directory entry size...

7.8CVSS6.1AI score0.00156EPSS
Exploits0References11
OSV
OSV
added 2025/09/04 3:32 p.m.4 views

CVE-2025-38701 ext4: do not BUG when INLINE_DATA_FL lacks system.data xattr

In the Linux kernel, the following vulnerability has been resolved: ext4: do not BUG when INLINEDATAFL lacks system.data xattr A syzbot fuzzed image triggered a BUGON in ext4updateinlinedata when an inode had the INLINEDATAFL flag set but was missing the system.data extended attribute. Since this...

5.5CVSS5.9AI score0.00165EPSS
Exploits0References14
OSV
OSV
added 2025/09/04 3:32 p.m.12 views

CVE-2025-38697 jfs: upper bound check of tree index in dbAllocAG

In the Linux kernel, the following vulnerability has been resolved: jfs: upper bound check of tree index in dbAllocAG When computing the tree index in dbAllocAG, we never check if we are out of bounds realative to the size of the stree. This could happen in a scenario where the filesystem metadat...

7.8CVSS6AI score0.00167EPSS
Exploits0References14
CVE
CVE
added 2025/09/04 3:32 p.m.37 views

CVE-2025-38692

CVE-2025-38692 refers to a Linux kernel exFAT fix validating cluster chains to prevent infinite loops during directory operations. The patch adds loop-break checks for conditions in exfat_count_dir_entries, exfat_create_upcase_table, exfat_load_bitmap, exfat_find_dir_entry, and exfat_check_dir_em...

5.5CVSS6AI score0.00145EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2025/09/04 3:32 p.m.8 views

CVE-2025-38692 exfat: add cluster chain loop check for dir

In the Linux kernel, the following vulnerability has been resolved: exfat: add cluster chain loop check for dir An infinite loop may occur if the following conditions occur due to file system corruption. 1 Condition for exfatcountdirentries to loop infinitely. - The cluster chain includes a loop....

5.5CVSS6.2AI score0.00145EPSS
Exploits0References8
OSV
OSV
added 2025/09/04 3:32 p.m.9 views

CVE-2025-38691 pNFS: Fix uninited ptr deref in block/scsi layout

In the Linux kernel, the following vulnerability has been resolved: pNFS: Fix uninited ptr deref in block/scsi layout The error occurs on the third attempt to encode extents. When function exttreepreparecommit reallocates a larger buffer to retry encoding extents, the "layoutupdatepages" page arr...

5.5CVSS6.1AI score0.00166EPSS
Exploits0References14
Cvelist
Cvelist
added 2025/09/04 3:32 p.m.9 views

CVE-2025-38691 pNFS: Fix uninited ptr deref in block/scsi layout

In the Linux kernel, the following vulnerability has been resolved: pNFS: Fix uninited ptr deref in block/scsi layout The error occurs on the third attempt to encode extents. When function exttreepreparecommit reallocates a larger buffer to retry encoding extents, the "layoutupdatepages" page arr...

0.00166EPSS
Exploits0References9
Microsoft CVE
Microsoft CVE
added 2025/09/04 3:5 p.m.3 views

Grub2: jfs: integer overflow when handling symlinks may lead to heap based out-of-bounds write when reading data

...

6.4CVSS7AI score0.00253EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/04 11:34 a.m.3 views

Extracting malicious crates can fill the file system

...

6.5CVSS7AI score0.00792EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/09/04 11:33 a.m.5 views

CVE-2025-52544

E3 Site Supervisor Control firmware version 2.31F01 has a floor plan feature that allows for an unauthenticated attacker to upload floor plan files. By uploading a specially crafted floor plan file, an attacker can access any file from the E3 file system...

8.8CVSS7.1AI score0.00334EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2025/09/04 10:16 a.m.3 views

f2fs: fix to avoid panic in f2fs_evict_inode

...

6.6CVSS7AI score0.00161EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/04 7:5 a.m.3 views

Grub2: fs/ufs: oob write in the heap

...

6.7CVSS7AI score0.00234EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/04 6:54 a.m.9 views

jfs: Fix shift-out-of-bounds in dbDiscardAG

...

5.5CVSS7AI score0.00224EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/04 6:13 a.m.2 views

Grub2: ufs: integer overflow may lead to heap based out-of-bounds write when handling symlinks

...

6.4CVSS7AI score0.00318EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/04 5:40 a.m.3 views

An issue was discovered in Das U-Boot through 2019.07. There is a stack-based buffer overflow in this nfs_handler reply helper function: rpc_lookup_reply.

...

9.8CVSS7AI score0.02468EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/04 5:38 a.m.10 views

jfs: reject on-disk inodes of an unsupported type

...

5.5CVSS7.4AI score0.00219EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/04 5:33 a.m.5 views

An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with a failed length check at nfs_read_reply when calling store_block in the NFSv3 case.

...

9.8CVSS7AI score0.02331EPSS
Exploits0
Rows per page
Query Builder