3432 matches found
UBUNTU-CVE-2023-53276
In the Linux kernel, the following vulnerability has been resolved: ubifs: Free memory for tmpfile name When opening a ubifs tmpfile on an encrypted directory, function fscryptsetupfilename allocates memory for the name that is to be stored in the directory entry, but after the name has been copi...
UBUNTU-CVE-2023-53294
In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Fix null-ptr-deref on inode-iop in ntfslookup Syzbot reported a null-ptr-deref bug: ntfs3: loop0: Different NTFS' sector size 1024 and media sector size 512 ntfs3: loop0: Mark volume as dirty due to NTFS errors general...
CVE-2023-53294 fs/ntfs3: Fix null-ptr-deref on inode->i_op in ntfs_lookup()
In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Fix null-ptr-deref on inode-iop in ntfslookup Syzbot reported a null-ptr-deref bug: ntfs3: loop0: Different NTFS' sector size 1024 and media sector size 512 ntfs3: loop0: Mark volume as dirty due to NTFS errors general...
CVE-2023-53294 fs/ntfs3: Fix null-ptr-deref on inode->i_op in ntfs_lookup()
In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Fix null-ptr-deref on inode-iop in ntfslookup Syzbot reported a null-ptr-deref bug: ntfs3: loop0: Different NTFS' sector size 1024 and media sector size 512 ntfs3: loop0: Mark volume as dirty due to NTFS errors general...
CVE-2023-53294
Summary (CVE-2023-53294): A Linux kernel issue in the ntfs3 path caused a null pointer dereference when inode->i_op could be NULL if the MFT record is not base, leading to a crash during d_splice_alias via d_flags_for_inode. The identified root cause is an unconditional call path through ntfs_...
CVE-2023-53294 fs/ntfs3: Fix null-ptr-deref on inode->i_op in ntfs_lookup()
In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Fix null-ptr-deref on inode-iop in ntfslookup Syzbot reported a null-ptr-deref bug: ntfs3: loop0: Different NTFS' sector size 1024 and media sector size 512 ntfs3: loop0: Mark volume as dirty due to NTFS errors general...
CVE-2023-53294
In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Fix null-ptr-deref on inode-iop in ntfslookup Syzbot reported a null-ptr-deref bug: ntfs3: loop0: Different NTFS' sector size 1024 and media sector size 512 ntfs3: loop0: Mark volume as dirty due to NTFS errors general...
CVE-2023-53285
CVE-2023-53285 : in the Linux kernel ext4, a bounds-check fix was added in get_max_inline_xattr_value_size() to prevent reading beyond allocated memory if the inode table is corrupted by block-device writes while mounted. This resolves a potential memory read issue in inline xattrs. Impact: HIGH ...
CVE-2023-53285 ext4: add bounds checking in get_max_inline_xattr_value_size()
In the Linux kernel, the following vulnerability has been resolved: ext4: add bounds checking in getmaxinlinexattrvaluesize Normally the extended attributes in the inode body would have been checked when the inode is first opened, but if someone is writing to the block device while the file syste...
CVE-2023-53285
In the Linux kernel, the following vulnerability has been resolved: ext4: add bounds checking in getmaxinlinexattrvaluesize Normally the extended attributes in the inode body would have been checked when the inode is first opened, but if someone is writing to the block device while the file syste...
CVE-2023-53285 ext4: add bounds checking in get_max_inline_xattr_value_size()
In the Linux kernel, the following vulnerability has been resolved: ext4: add bounds checking in getmaxinlinexattrvaluesize Normally the extended attributes in the inode body would have been checked when the inode is first opened, but if someone is writing to the block device while the file syste...
CVE-2023-53276 ubifs: Free memory for tmpfile name
In the Linux kernel, the following vulnerability has been resolved: ubifs: Free memory for tmpfile name When opening a ubifs tmpfile on an encrypted directory, function fscryptsetupfilename allocates memory for the name that is to be stored in the directory entry, but after the name has been copi...
CVE-2023-53276 ubifs: Free memory for tmpfile name
In the Linux kernel, the following vulnerability has been resolved: ubifs: Free memory for tmpfile name When opening a ubifs tmpfile on an encrypted directory, function fscryptsetupfilename allocates memory for the name that is to be stored in the directory entry, but after the name has been copi...
CVE-2023-53276
In the Linux kernel, the following vulnerability has been resolved: ubifs: Free memory for tmpfile name When opening a ubifs tmpfile on an encrypted directory, function fscryptsetupfilename allocates memory for the name that is to be stored in the directory entry, but after the name has been copi...
CVE-2023-53270 ext4: fix i_disksize exceeding i_size problem in paritally written case
In the Linux kernel, the following vulnerability has been resolved: ext4: fix idisksize exceeding isize problem in paritally written case It is possible for idisksize can exceed isize, triggering a warning. genericperformwrite copied = iovitercopyfromuseratomiclen // copied idisksize, newsize //...
PT-2025-37899
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains a null pointer dereference issue within the ntfs3 file system. Specifically, the vulnerability occurs in the ntfs lookup function when handling MFT records th...
PT-2025-38015
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability exists in the Linux kernel related to the ext4 rename function. Specifically, the issue arises when renaming files and involves failing to initialize quota information...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel, which stems from the inode-iop null pointer not being handled correctly in the ntfslookup function, which could result in the...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from not properly initializing the old.inode quota in the ext4rename function, which could lead to memory...
PT-2025-37890
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains an issue in the ext4 filesystem related to bounds checking within the get max inline xattr value size function. A corruption of the inode table can occur if...