CVE-2023-54313

In the Linux kernel, the following vulnerability has been resolved: ovl: fix null pointer dereference in ovlgetaclrcu Following process: P1 P2 pathopenat linkpathwalk maylookup inodepermissionrcu ovlpermission aclpermissioncheck checkacl getcachedaclrcu ovlgetinodeacl realinode =...

CVE-2023-54311 ext4: fix deadlock when converting an inline directory in nojournal mode

In the Linux kernel, the following vulnerability has been resolved: ext4: fix deadlock when converting an inline directory in nojournal mode In no journal mode, ext4finishconvertinlinedir can self-deadlock by calling ext4handledirtydirblock when it already has taken the directory lock. There is a...

CVE-2023-54280

CVE-2023-54280 affects the Linux kernel CIFS/IPC path. The vulnerability was a race in tree connecting IPC that could access TCP_Server_Info::hostname during IPC tree construction, potentially freeing the hostname in a cifsd thread and causing a use-after-free in __tree_connect_dfs_target(). The ...

CVE-2023-54264

CVE-2023-54264 concerns the Linux kernel, in the fs/sysv path, where a null pointer dereference could occur if sb_getblk(inode->i_sb, parent) returns NULL and a lock is taken on it. The connected advisories confirm the vulnerability and note that a fix was applied by adding a null check to pre...

CVE-2023-54264 fs/sysv: Null check to prevent null-ptr-deref bug

In the Linux kernel, the following vulnerability has been resolved: fs/sysv: Null check to prevent null-ptr-deref bug sbgetblkinode-isb, parent return a null ptr and taking lock on that leads to the null-ptr-deref bug...

CVE-2023-54264 fs/sysv: Null check to prevent null-ptr-deref bug

In the Linux kernel, the following vulnerability has been resolved: fs/sysv: Null check to prevent null-ptr-deref bug sbgetblkinode-isb, parent return a null ptr and taking lock on that leads to the null-ptr-deref bug...

CVE-2023-54264

In the Linux kernel, the following vulnerability has been resolved: fs/sysv: Null check to prevent null-ptr-deref bug sbgetblkinode-isb, parent return a null ptr and taking lock on that leads to the null-ptr-deref bug...

CVE-2023-54185

CVE-2023-54185: Linux kernel btrfs fix fixes a bug in add_new_free_space() by removing BUG_ON() checks and returning errors instead, while optionally reporting the total newly added free space. This change ensures callers already handle errors without kernel panics or brittle aborts when in-memor...

CVE-2023-54182

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to check readonly condition correctly With below case, it can mount multi-device image w/ rw option, however one of secondary device is set as ro, later update will cause panic, so let's introduce f2fsdevisreadonly, and...

CVE-2023-54177

The CVE-2023-54177 issue is a Linux kernel quota warning during dqgrab() path in fault-injection scenarios (dquot_disable) that can arise in quota reconfiguration flows (ext4_remount, reconfigure_super). The root cause is a situation where dquot_flags may lack DQ_ACTIVE_B during dqgrab(), leading...

CVE-2023-54177 quota: fix warning in dqgrab()

In the Linux kernel, the following vulnerability has been resolved: quota: fix warning in dqgrab There's issue as follows when do fault injection: WARNING: CPU: 1 PID: 14870 at include/linux/quotaops.h:51 dquotdisable+0x13b7/0x18c0 Modules linked in: CPU: 1 PID: 14870 Comm: fsconfig Not tainted...

CVE-2022-50815

CVE-2022-50815 relates to the Linux kernel, addressing a vulnerability in ext2 after which the kernel was updated to add sanity checks for group and filesystem size. The issue arose because filesystem size could exceed the underlying device size and the group size might be too small to hold metad...

CVE-2022-50815 ext2: Add sanity checks for group and filesystem size

In the Linux kernel, the following vulnerability has been resolved: ext2: Add sanity checks for group and filesystem size Add sanity check that filesystem size does not exceed the underlying device size and that group size is big enough so that metadata can fit into it. This avoid trying to mount...

CVE-2022-50815 ext2: Add sanity checks for group and filesystem size

In the Linux kernel, the following vulnerability has been resolved: ext2: Add sanity checks for group and filesystem size Add sanity check that filesystem size does not exceed the underlying device size and that group size is big enough so that metadata can fit into it. This avoid trying to mount...

CVE-2022-50815

In the Linux kernel, the following vulnerability has been resolved: ext2: Add sanity checks for group and filesystem size Add sanity check that filesystem size does not exceed the underlying device size and that group size is big enough so that metadata can fit into it. This avoid trying to mount...

PT-2025-53929

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s erofs file system implementation. A missing unmap operation within the z erofs get extent compressedlen function can lead to memory leaks of meta...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a lack of integrity checking of group and filesystem sizes, which could lead to the mounting of specially...

PT-2025-54021

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s f2fs implementation within the replace atomic write block function. A kernel panic can occur if the old addr variable is NULL, leading to a null point...

PT-2025-54006

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.3.0-next-20230505-00006-g5107a9c821af Description The Linux kernel contains an issue within the quota handling mechanism. A warning can occur in the dqgrab function during fault injection scenarios involving...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from an unchecked sbgetblk return value in fs/sysv, which could result in a null pointer dereference...