SUSE CVE-2024-1048

A flaw was found in the grub2-set-bootflag utility of grub2. After the fix of CVE-2019-14865, grub2-set-bootflag will create a temporary file with the new grubenv content and rename it to the original grubenv file. If the program is killed before the rename operation, the temporary file will not ...

grub2 security vulnerability

grub2 is a Linux system boot program from the American GNU community. A security vulnerability exists in grub2, which stems from the fact that if the program is terminated before a rename operation, temporary files will not be deleted and may fill the filesystem on multiple invocations, resulting...

No title provided

REJECTED CVE In the Linux kernel, the following vulnerability has been resolved: ext4: add EXT4INODEHASXATTRSPACE macro in xattr.h...

The vulnerability of the wb inode_writeback_end() function in the mm/page-writeback.c module of the Linux kernel’s memory management subsystem allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the wb inodewritebackend function in the mm/page-writeback.c module of the Linux kernel’s memory management subsystem is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity...

UBUNTU-CVE-2024-0562

A use-after-free flaw was found in the Linux Kernel. When a disk is removed, bdiunregister is called to stop further write-back and waits for associated delayed work to complete. However, wbinodewritebackend may schedule bandwidth estimation work after this has completed, which can result in the...

Linux Kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. The Linux Kernel suffers from a post-release reuse vulnerability, which stems from the fact that deleting a device in wbinodewritebackend in mm/page-writeback.c results in...

kernel: gfs2: NULL pointer dereference in gfs2_evict_inode()

A NULL pointer dereference flaw was found in the gfs2 file system in the Linux kernel. This issue occurs on corrupt gfs2 file systems when the evict code tries to reference the journal descriptor structure after it has been freed and set to NULL. This flaw allows a privileged local user to cause ...

kernel: ext4: use-after-free in ext4_xattr_set_entry()

A use-after-free vulnerability was found in the Linux kernel's ext4 filesystem in the way it handled the extra inode size for extended attributes. This flaw allows a privileged local user to cause a system crash or other undefined behaviors...

No title provided

REJECTED CVE In the Linux kernel, the following vulnerability has been resolved: ext4: add EXT4INODEHASXATTRSPACE macro in xattr.h...

kernel: gfs2: NULL pointer dereference in gfs2_evict_inode()

A NULL pointer dereference flaw was found in the gfs2 file system in the Linux kernel. This issue occurs on corrupt gfs2 file systems when the evict code tries to reference the journal descriptor structure after it has been freed and set to NULL. This flaw allows a privileged local user to cause ...

kernel: ext4: use-after-free in ext4_xattr_set_entry()

A use-after-free vulnerability was found in the Linux kernel's ext4 filesystem in the way it handled the extra inode size for extended attributes. This flaw allows a privileged local user to cause a system crash or other undefined behaviors...

PT-2025-26009 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A issue in the Linux kernel has been identified where adding an xattr to an inode does not ensure that the inode size is not less than EXT4 GOOD OLD INODE SIZE + extra isize + pad,...

kernel: gfs2: NULL pointer dereference in gfs2_evict_inode()

A NULL pointer dereference flaw was found in the gfs2 file system in the Linux kernel. This issue occurs on corrupt gfs2 file systems when the evict code tries to reference the journal descriptor structure after it has been freed and set to NULL. This flaw allows a privileged local user to cause ...

kernel: ext4: fix task hung in ext4_xattr_delete_inode

In the Linux kernel, the following vulnerability has been resolved: ext4: fix task hung in ext4xattrdeleteinode Syzbot reported a hung task problem: ================================================================== INFO: task syz-executor232:5073 blocked for more than 143 seconds. Not tainted...

PT-2025-54127

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.5.0-rc7 Description The Linux kernel contained a flaw within the btrfs subsystem related to the ino lookup ioctl. Specifically, the issue arises when calling btrfs iget to obtain an inode reference while holdin...

Kernel: tap: tap_open(): correctly initialize socket uid next fix of i_uid to current_fsuid

...

Design/Logic Flaw

A flaw was found in the Linux kernel's TUN/TAP functionality. This issue could allow a local user to bypass network filters and gain unauthorized access to some resources. The original patches fixing CVE-2023-1076 are incorrect or incomplete. The problem is that the following upstream commits -...

SUSE CVE-2023-32629

Local privilege escalation vulnerability in Ubuntu Kernels overlayfs ovlcopyupmetainodedata skip permission checks when calling ovldosetxattr on Ubuntu kernels...

Ubuntu 23.04 : Linux kernel vulnerabilities (USN-6250-1)

The remote Ubuntu 23.04 host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6250-1 advisory. Stonejiajia, Shir Tamari and Sagi Tzadik discovered that the OverlayFS implementation in the Ubuntu Linux kernel did not properly perform permission checks i...

Important: kernel-livepatch-6.1.29-47.49

Issue Overview: In the Linux kernel through 6.2.7, fs/ntfs3/inode.c has an invalid kfree because it does not validate MFT flags before replaying logs. CVE-2022-48425 Affected Packages: kernel-livepatch-6.1.29-47.49 Issue Correction: Please ensure you have live patching enabled. Run dnf update...