3427 matches found
UBUNTU-CVE-2022-50845
In the Linux kernel, the following vulnerability has been resolved: ext4: fix inode leak in ext4xattrinodecreate on an error path There is issue as follows when do setxattr with inject fault: localhost fsck.ext4 -fn /dev/sda e2fsck 1.46.6-rc1 12-Sep-2022 Pass 1: Checking inodes, blocks, and sizes...
CVE-2023-54281
CVE-2023-54281 (Linux kernel, btrfs) : The issue affects the btrfs inode lookup path during ino_lookup ioctl. When ino_lookup triggers btrfs_iget() to obtain an inode reference while holding the root btree, it may need to acquire an additional lock on the same/btrfs root path, risking a deadlock ...
CVE-2023-54281 btrfs: release path before inode lookup during the ino lookup ioctl
In the Linux kernel, the following vulnerability has been resolved: btrfs: release path before inode lookup during the ino lookup ioctl During the ino lookup ioctl we can end up calling btrfsiget to get an inode reference while we are holding on a root's btree. If btrfsiget needs to lookup the...
CVE-2023-54281 btrfs: release path before inode lookup during the ino lookup ioctl
In the Linux kernel, the following vulnerability has been resolved: btrfs: release path before inode lookup during the ino lookup ioctl During the ino lookup ioctl we can end up calling btrfsiget to get an inode reference while we are holding on a root's btree. If btrfsiget needs to lookup the...
CVE-2023-54281
In the Linux kernel, the following vulnerability has been resolved: btrfs: release path before inode lookup during the ino lookup ioctl During the ino lookup ioctl we can end up calling btrfsiget to get an inode reference while we are holding on a root's btree. If btrfsiget needs to lookup the...
CVE-2023-54272 fs/ntfs3: Fix a possible null-pointer dereference in ni_clear()
In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Fix a possible null-pointer dereference in niclear In a previous commit c1006bd13146, ni-mi.mrec in niwriteinode could be NULL, and thus a NULL check is added for this variable. However, in the same call stack, ni-mi.mr...
CVE-2023-54272 fs/ntfs3: Fix a possible null-pointer dereference in ni_clear()
In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Fix a possible null-pointer dereference in niclear In a previous commit c1006bd13146, ni-mi.mrec in niwriteinode could be NULL, and thus a NULL check is added for this variable. However, in the same call stack, ni-mi.mr...
CVE-2023-54264 fs/sysv: Null check to prevent null-ptr-deref bug
In the Linux kernel, the following vulnerability has been resolved: fs/sysv: Null check to prevent null-ptr-deref bug sbgetblkinode-isb, parent return a null ptr and taking lock on that leads to the null-ptr-deref bug...
CVE-2022-50845
CVE-2022-50845 fixes an inode leak in ext4_xattr_inode_create() on an error path during setxattr; if ext4_mark_inode_dirty() fails, the inode’s i_nlink can be dropped, leading to an inode leak.
CVE-2022-50845 ext4: fix inode leak in ext4_xattr_inode_create() on an error path
In the Linux kernel, the following vulnerability has been resolved: ext4: fix inode leak in ext4xattrinodecreate on an error path There is issue as follows when do setxattr with inject fault: localhost fsck.ext4 -fn /dev/sda e2fsck 1.46.6-rc1 12-Sep-2022 Pass 1: Checking inodes, blocks, and sizes...
CVE-2022-50845 ext4: fix inode leak in ext4_xattr_inode_create() on an error path
In the Linux kernel, the following vulnerability has been resolved: ext4: fix inode leak in ext4xattrinodecreate on an error path There is issue as follows when do setxattr with inject fault: localhost fsck.ext4 -fn /dev/sda e2fsck 1.46.6-rc1 12-Sep-2022 Pass 1: Checking inodes, blocks, and sizes...
CVE-2022-50845
In the Linux kernel, the following vulnerability has been resolved: ext4: fix inode leak in ext4xattrinodecreate on an error path There is issue as follows when do setxattr with inject fault: localhost fsck.ext4 -fn /dev/sda e2fsck 1.46.6-rc1 12-Sep-2022 Pass 1: Checking inodes, blocks, and sizes...
CVE-2023-54196
Linux kernel ntfs3: CVE-2023-54196 fix addresses NULL pointer dereference in ni_write_inode. Root cause: during inode creation, ntfs_new_inode may allocate mi->mrec; if allocation fails, mrec is NULL, and later code path ntfs_evict_inode calls is_rec_inuse(ni->mi.mrec) leading to oops. The ...
CVE-2023-54196 fs/ntfs3: Fix NULL pointer dereference in 'ni_write_inode'
In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Fix NULL pointer dereference in 'niwriteinode' Syzbot found the following issue: Unable to handle kernel NULL pointer dereference at virtual address 0000000000000016 Mem abort info: ESR = 0x0000000096000006 EC = 0x25:...
CVE-2023-54196 fs/ntfs3: Fix NULL pointer dereference in 'ni_write_inode'
In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Fix NULL pointer dereference in 'niwriteinode' Syzbot found the following issue: Unable to handle kernel NULL pointer dereference at virtual address 0000000000000016 Mem abort info: ESR = 0x0000000096000006 EC = 0x25:...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-992232)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992232 advisory. In the Linux kernel, the following vulnerability has been resolved: ext2: Add more validity checks for inode counts Add checks verifying number of inodes stored in t...
PT-2025-53963
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the Linux kernel related to an inode leak within the ext4 xattr inode create function when handling errors during extended attribute operations. Specifically, if ext4...
PT-2025-54093
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s fs/sysv component that could lead to a null pointer dereference. The sb getblk function, when called with inode-i sb and parent, may return a null...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992418)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992418 advisory. In the Linux kernel, the following vulnerability has been resolved: fs: fix UAF/GPF bug in nilfsmdtdestroy In allocinode, inodeinitalways could return -ENOMEM if...
PT-2025-54053
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.5.0-rc7-syzkaller-00024-g93f5de5f648d Description The Linux kernel contained a flaw in the Btrfs file system related to delayed inode operations. Specifically, a potential deadlock situation could occur when...