UBUNTU-CVE-2022-49890

In the Linux kernel, the following vulnerability has been resolved: capabilities: fix potential memleak on error path from vfsgetxattralloc In capinodegetsecurity, we will use vfsgetxattralloc to complete the memory allocation of tmpbuf, if we have completed the memory allocation of tmpbuf, but...

CVE-2022-49914

CVE-2022-49914 involves the Linux kernel btrfs backref walk leak in resolve_indirect_refs(). When an error occurs, code previously freed the parents list with ulist_free(), but attached inode lists via the aux field were not freed, causing a leak. The fix replaces ulist_free() with free_leaf_list...

CVE-2022-49914 btrfs: fix inode list leak during backref walking at resolve_indirect_refs()

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix inode list leak during backref walking at resolveindirectrefs During backref walking, at resolveindirectrefs, if we get an error we jump to the 'out' label and call ulistfree on the 'parents' ulist, which frees all the...

CVE-2022-49914 btrfs: fix inode list leak during backref walking at resolve_indirect_refs()

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix inode list leak during backref walking at resolveindirectrefs During backref walking, at resolveindirectrefs, if we get an error we jump to the 'out' label and call ulistfree on the 'parents' ulist, which frees all the...

CVE-2022-49914

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix inode list leak during backref walking at resolveindirectrefs During backref walking, at resolveindirectrefs, if we get an error we jump to the 'out' label and call ulistfree on the 'parents' ulist, which frees all the...

CVE-2022-49913

CVE-2022-49913 concerns a memory leak in the Linux kernel’s btrfs backref walking code. During find_parent_nodes() on data extents, if an error occurs while resolving indirect backrefs (resolve_indirect_refs()) or while iterating direct refs in the rbtree, inode lists attached to direct refs not ...

CVE-2022-49913 btrfs: fix inode list leak during backref walking at find_parent_nodes()

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix inode list leak during backref walking at findparentnodes During backref walking, at findparentnodes, if we are dealing with a data extent and we get an error while resolving the indirect backrefs, at...

CVE-2022-49913 btrfs: fix inode list leak during backref walking at find_parent_nodes()

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix inode list leak during backref walking at findparentnodes During backref walking, at findparentnodes, if we are dealing with a data extent and we get an error while resolving the indirect backrefs, at...

CVE-2022-49913

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix inode list leak during backref walking at findparentnodes During backref walking, at findparentnodes, if we are dealing with a data extent and we get an error while resolving the indirect backrefs, at...

CVE-2022-49890 capabilities: fix potential memleak on error path from vfs_getxattr_alloc()

In the Linux kernel, the following vulnerability has been resolved: capabilities: fix potential memleak on error path from vfsgetxattralloc In capinodegetsecurity, we will use vfsgetxattralloc to complete the memory allocation of tmpbuf, if we have completed the memory allocation of tmpbuf, but...

CVE-2022-49880 ext4: fix warning in 'ext4_da_release_space'

In the Linux kernel, the following vulnerability has been resolved: ext4: fix warning in 'ext4dareleasespace' Syzkaller report issue as follows: EXT4-fs loop0: Free/Dirty block details EXT4-fs loop0: freeblocks=0 EXT4-fs loop0: dirtyblocks=0 EXT4-fs loop0: Block reservation details EXT4-fs loop0:...

CVE-2025-37741

In the Linux kernel, the following vulnerability has been resolved: jfs: Prevent copying of nlink with value 0 from disk inode syzbot report a deadlock in diFree. 1 When calling "ioctl$LOOPSETSTATUS64", the offset value passed in is 4, which does not match the mounted loop device, causing the...

DEBIAN-CVE-2025-37741

In the Linux kernel, the following vulnerability has been resolved: jfs: Prevent copying of nlink with value 0 from disk inode syzbot report a deadlock in diFree. 1 When calling "ioctl$LOOPSETSTATUS64", the offset value passed in is 4, which does not match the mounted loop device, causing the...

DEBIAN-CVE-2025-37738

In the Linux kernel, the following vulnerability has been resolved: ext4: ignore xattrs past end Once inside 'ext4xattrinodedecrefall' we should ignore xattrs entries past the 'end' entry. This fixes the following KASAN reported issue:...

DEBIAN-CVE-2025-37739

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid out-of-bounds access in f2fstruncateinodeblocks syzbot reports an UBSAN issue as below: ------------ cut here ------------ UBSAN: array-index-out-of-bounds in fs/f2fs/node.h:381:10 index 18446744073709550692 is...

UBUNTU-CVE-2025-37741

In the Linux kernel, the following vulnerability has been resolved: jfs: Prevent copying of nlink with value 0 from disk inode syzbot report a deadlock in diFree. 1 When calling "ioctl$LOOPSETSTATUS64", the offset value passed in is 4, which does not match the mounted loop device, causing the...

UBUNTU-CVE-2025-37739

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid out-of-bounds access in f2fstruncateinodeblocks syzbot reports an UBSAN issue as below: ------------ cut here ------------ UBSAN: array-index-out-of-bounds in fs/f2fs/node.h:381:10 index 18446744073709550692 is...

CVE-2025-37741 jfs: Prevent copying of nlink with value 0 from disk inode

In the Linux kernel, the following vulnerability has been resolved: jfs: Prevent copying of nlink with value 0 from disk inode syzbot report a deadlock in diFree. 1 When calling "ioctl$LOOPSETSTATUS64", the offset value passed in is 4, which does not match the mounted loop device, causing the...

CVE-2025-37741

CVE-2025-37741 affects the Linux kernel’s JFS filesystem. The issue stems from reading a fixed-disk inode (AIT) in raw mode during diReadSpecial(), where corrupted metapage data could cause the nlink value to be set to 0 on an iag inode during copy_from_dinode(), triggering a deadlock when diFree...

CVE-2025-37741 jfs: Prevent copying of nlink with value 0 from disk inode

In the Linux kernel, the following vulnerability has been resolved: jfs: Prevent copying of nlink with value 0 from disk inode syzbot report a deadlock in diFree. 1 When calling "ioctl$LOOPSETSTATUS64", the offset value passed in is 4, which does not match the mounted loop device, causing the...