17727 matches found
CVE-2023-54260
CVE-2023-54260 — Linux kernel (CIFS): The vulnerability occurs when MR allocation fails during CIFS SMB direct connection handling; if the MR allocate fails and the smb direct connection info is NULL, smbd_destroy() returns early and leaks the connection info. The fix updates the shutdown path by...
CVE-2023-54258 cifs: fix potential oops in cifs_oplock_break
In the Linux kernel, the following vulnerability has been resolved: cifs: fix potential oops in cifsoplockbreak With deferred close we can have closes that race with lease breaks, and so with the current checks for whether to send the lease response, oplockresponse, this can mean that an unmount...
CVE-2023-54258 cifs: fix potential oops in cifs_oplock_break
In the Linux kernel, the following vulnerability has been resolved: cifs: fix potential oops in cifsoplockbreak With deferred close we can have closes that race with lease breaks, and so with the current checks for whether to send the lease response, oplockresponse, this can mean that an unmount...
CVE-2022-50869
In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Fix slab-out-of-bounds in rpage When PAGESIZE is 64K, if readlogpage is called by logreadrst for the first time, the size of buffer would be equal to DefaultLogPageSize4K.But for buffer operations like memcpy, if the...
CVE-2022-50861 NFSD: Finish converting the NFSv2 GETACL result encoder
In the Linux kernel, the following vulnerability has been resolved: NFSD: Finish converting the NFSv2 GETACL result encoder The xdrstream conversion inadvertently left some code that set the pagelen of the send buffer. The XDR stream encoders should handle this automatically now. This oversight...
CVE-2022-50861 NFSD: Finish converting the NFSv2 GETACL result encoder
In the Linux kernel, the following vulnerability has been resolved: NFSD: Finish converting the NFSv2 GETACL result encoder The xdrstream conversion inadvertently left some code that set the pagelen of the send buffer. The XDR stream encoders should handle this automatically now. This oversight...
CVE-2022-50859
In the Linux kernel, the following vulnerability has been resolved: cifs: Fix the error length of VALIDATENEGOTIATEINFO message Commit d5c7076b772a "smb3: add smb3.1.1 to default dialect list" extend the dialects from 3 to 4, but forget to decrease the extended length when specific the dialect,...
CVE-2022-50856 cifs: Fix xid leak in cifs_ses_add_channel()
In the Linux kernel, the following vulnerability has been resolved: cifs: Fix xid leak in cifssesaddchannel Before return, should free the xid, otherwise, the xid will be leaked...
CVE-2022-50856
The CVE-2022-50856 entry applies to the Linux kernel, specifically the CIFS subsystem. The vulnerability was caused by an xid leak in cifs_ses_add_channel() where the xid was not freed before returning. A fix was applied to ensure the xid is freed, mitigating the leak. Affected versions/contexts ...
CVE-2022-50853 NFSv4: Fix a credential leak in _nfs4_discover_trunking()
In the Linux kernel, the following vulnerability has been resolved: NFSv4: Fix a credential leak in nfs4discovertrunking...
CVE-2022-50853
In the Linux kernel, the following vulnerability has been resolved: NFSv4: Fix a credential leak in nfs4discovertrunking...
CVE-2022-50853
CVE-2022-50853 affects the Linux kernel, describing a credential leak in NFSv4 during _nfs4_discover_trunking(). The provided sources note that the vulnerability has been resolved by a kernel fix. No exploit details or affected versions are specified in the documents; remediation is the kernel pa...
CVE-2022-50845
CVE-2022-50845 fixes an inode leak in ext4_xattr_inode_create() on an error path during setxattr; if ext4_mark_inode_dirty() fails, the inode’s i_nlink can be dropped, leading to an inode leak.
CVE-2023-54194
Technical details about CVE-2023-54194 are not provided in the supplied documents. The initial description notes a Linux exFAT fix (switch from kmalloc_array/kfree to kvmalloc_array/kvfree) but lacks specific vendor/advisory specifics, impact, affected versions, or fix details.
CVE-2023-54192 f2fs: fix null pointer panic in tracepoint in __replace_atomic_write_block
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix null pointer panic in tracepoint in replaceatomicwriteblock We got a kernel panic if oldaddr is NULL. https://bugzilla.kernel.org/showbug.cgi?id=217266 BUG: kernel NULL pointer dereference, address: 0000000000000000 Cal...
CVE-2023-54187
CVE-2023-54187 concerns a Linux kernel issue where moving/renaming a directory could trigger potential corruption. The vulnerability affects the filesystem code related to F2FS and reproduces in ext4_rename, as revealed by xfstests/generic/707. The root cause involves corruption risks during dire...
CVE-2023-54187 f2fs: fix potential corruption when moving a directory
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix potential corruption when moving a directory F2FS has the same issue in ext4rename causing crash revealed by xfstests/generic/707. See also commit 0813299c586b "ext4: Fix possible corruption when moving a directory"...
CVE-2022-50785 fsi: occ: Prevent use after free
In the Linux kernel, the following vulnerability has been resolved: fsi: occ: Prevent use after free Use getdevice and putdevice in the open and close functions to make sure the device doesn't get freed while a file descriptor is open. Also, lock around the freeing of the device buffer and check...
CVE-2025-15213
A vulnerability has been found in code-projects Student File Management System 1.0. The affected element is an unknown function of the file /download.php of the component File Download Handler. The manipulation of the argument storeid leads to improper authorization. The attack is possible to be...
PT-2025-54023
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel experienced an issue where memory allocation failed for the exFAT file system due to system memory fragmentation. This occurred when using kmalloc array and kfree,...