83 matches found
EUVD-2025-30850
Malicious code in bioql PyPI...
EUVD-2025-9947
Malicious code in bioql PyPI...
EUVD-2025-27880
Malicious code in bioql PyPI...
Linux Distros Unpatched Vulnerability : CVE-2023-32253
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the Linux kernel's ksmbd component. A deadlock is triggered by sending multiple concurrent session setup requests, possibly leading to a...
Huawei HarmonyOS kernel file system module Competitive Condition Vulnerability Vulnerability
Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A competitive condition vulnerability exists in the Huawei HarmonyOS kernel file system module, which can be exploited by attackers to affect availability...
CVE-2025-38523
The CVE-2025-38523 issue affects the Linux kernel CIFS client/server path (smbd_recv/smbd_readv) where data copied from the smbd_response slab via copy_to_iter() could trigger kernel memory exposure when CONFIG_HARDENED_USERCOPY is enabled. The root cause is that the smbd_response slab’s packet f...
CVE-2025-54625
Race condition vulnerability in the kernel file system module. Impact: Successful exploitation of this vulnerability may affect availability...
CVE-2025-54625
CVE-2025-54625 affects Huawei HarmonyOS, involving a race condition in the kernel file system module. Public references describe a local impact vector with potential availability disruption; CVSS metrics vary (NVD: 4.7 base, MEDIUM; Huawei CNA: 6.7, MEDIUM) and do not specify a concrete patch. No...
PT-2025-32067 · Kernel · Kernel
Name of the Vulnerable Software and Affected Versions: kernel file system module affected versions not specified Description: A race condition exists within the kernel file system module. Successful exploitation of this issue may impact system availability. Recommendations: At the moment, there i...
UBUNTU-CVE-2023-32251
A vulnerability has been identified in the Linux kernel's ksmbd component kernel SMB/CIFS server. A security control designed to prevent dictionary attacks, which introduces a 5-second delay during session setup, can be bypassed through the use of asynchronous requests. This bypass negates the...
The vulnerability in the `udf_symlink()` function of the `fs/udf/namei.c` module in the Linux kernel file system allows a attacker to cause a service failure.
The vulnerability of the udfsymlink function in the fs/udf/namei.c module of the Linux file system’s support for the file system is related to the dereferencing of the NULL pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the decompress_chunk() function in the fs/ntfs3/lznt.c file of the Linux kernel’s file system ntfs3 allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the decompresschunk function in the fs/ntfs3/lznt.c file of the Linux kernel’s file system ntfs3 is related to reading memory beyond the bounds of the allocated buffer. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...
kernel: cifs: Fix memory and information leak in smb3_reconfigure()
A memory and information leak vulnerability was found in the Linux kernel's CIFS/SMB3 filesystem driver. When smb3reconfigure fails during smb3syncsessionctxpasswords, the newly allocated password buffers newpassword and newpassword2 are not freed or securely erased. This causes a memory leak and...
CVE-2025-31171
File read permission bypass vulnerability in the kernel file system module Impact: Successful exploitation of this vulnerability may affect service confidentiality...
CVE-2025-31171
File read permission bypass vulnerability in the kernel file system module Impact: Successful exploitation of this vulnerability may affect service confidentiality...
CVE-2025-31171
File read permission bypass vulnerability in the kernel file system module Impact: Successful exploitation of this vulnerability may affect service confidentiality...
CVE-2025-31171
File read permission bypass vulnerability in the kernel file system module Impact: Successful exploitation of this vulnerability may affect service confidentiality...
PT-2025-15178 · Huawei · Harmonyos
Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: A file read permission bypass vulnerability exists in the kernel file system module. Successful exploitation of this issue may affect service confidentiality. Recommendations: At the moment,...
CVE-2022-49352 ext4: fix warning in ext4_handle_inode_extension
In the Linux kernel, the following vulnerability has been resolved: ext4: fix warning in ext4handleinodeextension We got issue as follows: EXT4-fs error device loop0 in ext4reserveinodewrite:5741: Out of memory EXT4-fs error device loop0: ext4setattr:5462: inode 13: comm syz-executor.0:...
CVE-2024-57927
CVE-2024-57927 relates to the Linux kernel’s NFS write-to-cache path. The root cause was that nfs_netfs_init_request() could be invoked with a NULL file pointer when netfslib copied freshly read data into a write request for the cache, causing an oops via nfs_file_open_context(). The fix prevents...