3384 matches found
Astra Linux - уязвимость в linux-6.1
In the Linux kernel, the following vulnerability has been resolved: btrfs: fixed an uninitialized pointer-free in addinoderef The addinoderef function does not initialize the "name" struct when it is declared. If any of the following calls to readoneinode returns NULL, dir = readone inoderoot,...
Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1
In the Linux kernel, the following vulnerability has been resolved: Nilfs2: Added a missing check for inode numbers on directory entries. Syzbot reported that mounting and unmounting a specific pattern of corrupted Nilfs2 filesystem images causes a use-after-free of metadata file inodes, which...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: ext4: fixed a warning in ext4iomapbegin due to a race between bmap and write The issue occurs as follows: ------------ cut here ------------ WARNING: CPU: 3 PID: 9310 at fs/ext4/inode.c:3441 ext4iomapbegin+0x182/0x5d0 RIP:...
Astra Linux - уязвимость в linux-6.1
In the Linux kernel, the following vulnerabilities have been resolved: f2fs: fixed the issue of waiting for block writeback in the postread case. If the inode is compressed but not encrypted, the function f2fswaitonblockwriteback was not called properly to wait for the GC-ed page writeback in the...
Astra Linux - уязвимость в linux, linux-5.15, linux-5.10
In the Linux kernel, the following vulnerability has been resolved: fs: hfsplus: removing WARNON from hfspluscatread,writeinode. The syzbot tool encounters WARNON in hfspluscatread,writeinode, where a crafted filesystem image may contain invalid lengths. These conditions do not constitute kernel...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: btrfs: Fixed the inode leak in btrfsiget. BUG There is a bug report that a syzbot reproducer can cause the following issue: A busy inode occurs at the time of unmount: - BTRFS info device loop1: Last unmount of the filesystem...
Astra Linux - уязвимость в u-boot
An integer overflow occurs in the ext4fsreadsymlink function in Das U-Boot before version 2025.01-rc1. This issue arises due to the use of the zalloc function, which adds one to a le32 variable. This occurs through a crafted ext4 file system with an inode size of 0xffffffff. As a result, the mall...
Astra Linux - уязвимость в ntfs-3g
A properly crafted NTFS image can cause a heap-based buffer overflow in ntfs inodelookupbyname in NTFS-3G 2021.8.22...
Astra Linux - уязвимость в linux-5.10, linux
In the Linux kernel, the following vulnerabilities have been resolved: ubifs: Fixed a deadlock issue in concurrent rename whiteout and inode writeback processes. Tasks that encountered issues: 77.028764 Task: kworker/u8:4 State: D Stack: 0 PID: 132 77.028820 Call Trace: 77.029027...
Astra Linux - уязвимость в linux, linux-5.10
In the Linux kernel, the following vulnerabilities have been resolved: ext4: fixed the bug in estreesearch caused by an invalid quota inode. We have the following issues: kernel BUG at fs/ext4/extentsstatus.c:202! invalid opcode: 0000 1 PREEMPT SMP CPU: 1 PID: 810 Comm: mount Not tainted...
Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1
In the Linux kernel, the following vulnerability has been resolved: filelock: A potential use-after-free issue was addressed in posixlockinode. Light Hsieh reported a KASAN UAF warning in traceposixlockinode. The request pointer had previously been changed to point to a lock entry that was added ...
Astra Linux - уязвимость в ntfs-3g
A properly crafted NTFS image can lead to a out-of-bounds access vulnerability, caused by an unsanitized attribute length in ntfs inodelookupbyname, in NTFS-3G 2021.8.22...
Astra Linux - уязвимость в linux-5.10, linux-6.1
In the Linux kernel, the following vulnerability has been resolved: F2FS: Invalidating the dentry cache when whiteout creation fails F2FS allows for the mounting of file systems with corrupted directory depth values that are clamped to MAXDIRHASHDEPTH at runtime. When RENAMEWHITEOUT operations ar...
Astra Linux - уязвимость в linux-5.10, linux-6.1
In the Linux kernel, the following vulnerability has been resolved: hfsplus: Verify the inode mode when loading from disk. syzbot reports that the SIFMT bits of the inode-imode field can become invalid when the SIFMT bits of the 16-bit “mode” field loaded from disk are corrupted. According to 1,...
Astra Linux - уязвимость в linux-5.10, linux-5.15, linux-6.1
In the Linux kernel, the following vulnerability has been resolved: ext4: detecting invalid INLINEDATA + EXTENTS flag combinations The syzbot reported a BUGON in ext4escacheextent when opening a Verity file on a corrupted ext4 filesystem that was mounted without a journal. The issue arises when t...
Astra Linux - уязвимость в linux-5.10, linux
In the Linux kernel, the following vulnerabilities have been resolved: f2fs: fixed the issue where the free inode was not properly handled in f2fshandlefailedinode. This patch fixes the failure encountered in xfstests/generic/475. 293.680694 F2FS-fs dm-1: May lose orphaned inode; run fsck to fix...
Astra Linux - уязвимость в linux-6.1
In the Linux kernel, the following vulnerability has been resolved: lib/generic-radix-tree.c: Do not cause overflow in the peek function. When we started assigning new inode numbers to most of the 64-bit inode space, it triggered some edge-case bugs, particularly some integer overflows related to...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerabilities have been resolved: - In blkdeviomapbegin, the EOF check has been refined. - In blkdeviomapbegin, the offset is rounded down to the logical block size before being stored in iomap-offset. It is also checked that the value remains within the inode...
Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15
In the Linux kernel, the following vulnerabilities have been resolved: qibfs: fixed another leak. Failure to allocate inode = leaked dentry… This issue existed since the initial merge. To be fair, if we encounter an OOM situation, the chances of failing at that specific allocation are low...
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: fscrypt: Fixed an underflow issue during left shift operations when inode-iblkbits PAGESHIFT. When simulating an NVMe device on QEMU with both logicalblocksize and physicalblocksize set to 8 KiB, an error trace appeared during...