3436 matches found
GSD-2022-1006264 ext2: Add more validity checks for inode counts
ext2: Add more validity checks for inode counts This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.14.291 by commit...
GSD-2022-1005897 ext2: Add more validity checks for inode counts
ext2: Add more validity checks for inode counts This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.137 by commit...
GSD-2022-1005663 ext2: Add more validity checks for inode counts
ext2: Add more validity checks for inode counts This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.61 by commit...
PT-2022-33921 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.61 Description: The issue concerns the ext2 filesystem and involves adding more validity checks for inode counts. The actual impact and attack plausibility have not yet been proven. Recommendations: For...
PT-2022-34522 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v4.14.291 Description: The issue concerns the ext2 filesystem and involves adding more validity checks for inode counts. The actual impact and attack plausibility have not yet been proven. Recommendations: For...
PT-2022-34425 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v4.19.256 Description: The issue concerns the ext2 file system and involves adding more validity checks for inode counts. The actual impact and attack plausibility have not yet been proven. Recommendations: For...
GSD-2022-1005331 ext2: Add more validity checks for inode counts
ext2: Add more validity checks for inode counts This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.2 by commit...
PT-2022-33632 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions v5.17 through v5.19.1 Description: The issue concerns the inode newsize ok function, where the truncate maximum size is not properly checked. This problem was introduced in version v5.17 and is fixed in version v5.19.2...
PT-2022-33589 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.19.2 Description: The issue concerns the addition of more validity checks for inode counts in the ext2 file system. The actual impact and attack plausibility have not yet been proven. Recommendations: For Lin...
CVE-2022-3202
A NULL pointer dereference flaw in diFree in fs/jfs/inode.c in Journaled File System JFSin the Linux kernel. This could allow a local attacker to crash the system or leak kernel internal information...
UBUNTU-CVE-2022-3202
A NULL pointer dereference flaw in diFree in fs/jfs/inode.c in Journaled File System JFSin the Linux kernel. This could allow a local attacker to crash the system or leak kernel internal information...
Linux kernel 代码问题漏洞
Linux kernel is the kernel used by the Linux Foundation's open source operating system Linux. A security vulnerability exists in the Linux kernel that originates from a null pointer dereference flaw in diFree in fs/jfs/inode.c of the Journaled File System JFS. An attacker could exploit this...
A vulnerability was found in the fs/inode.c:inode_init_owner() function logic of the LInux kernel that allows local users to create files for the XFS file-system with an unintended group ownership and with group execution and SGID permission bits set in a scenario where a directory is SGID and belongs to a certain group and is writable by a user who is not a member of this group. This can lead to excessive permissions granted in case when they should not. This vulnerability is similar to the previous CVE-2018-13405 and adds the missed fix for the XFS.
...
PT-2022-7236 · Linux +1 · Linux Kernel +1
Name of the Vulnerable Software and Affected Versions: Linux Kernel affected versions not specified Description: A use-after-free flaw was found in the Linux Kernel. When a disk is removed, bdi unregister is called to stop further write-back and waits for associated delayed work to complete...
DEBIAN-CVE-2021-4037
A vulnerability was found in the fs/inode.c:inodeinitowner function logic of the LInux kernel that allows local users to create files for the XFS file-system with an unintended group ownership and with group execution and SGID permission bits set, in a scenario where a directory is SGID and belon...
UBUNTU-CVE-2022-2978
A flaw use after free in the Linux kernel NILFS file system was found in the way user triggers function securityinodealloc to fail with following call to function nilfsmdtdestroy. A local user could use this flaw to crash the system or potentially escalate their privileges on the system...
UBUNTU-CVE-2021-4037
A vulnerability was found in the fs/inode.c:inodeinitowner function logic of the LInux kernel that allows local users to create files for the XFS file-system with an unintended group ownership and with group execution and SGID permission bits set, in a scenario where a directory is SGID and belon...
CVE-2021-4037
A vulnerability was found in the fs/inode.c:inodeinitowner function logic of the LInux kernel that allows local users to create files for the XFS file-system with an unintended group ownership and with group execution and SGID permission bits set, in a scenario where a directory is SGID and belon...
CVE-2021-4037
A vulnerability was found in the fs/inode.c:inodeinitowner function logic of the LInux kernel that allows local users to create files for the XFS file-system with an unintended group ownership and with group execution and SGID permission bits set, in a scenario where a directory is SGID and belon...
PT-2024-11770
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue concerns temporary data corruption in the insert range of the smb3 module. The insert range does not discard the affected cached region, which can risk temporarily corrupting...