Lucene search
K

196 matches found

AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.3 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: btrfs: Reinitialize the delayed ref list after deleting it from the list. In the insertdelayedref function, if we need to update the action of an existing ref to BTRFSDROPDELAYEDREF, we delete the ref from its refhead’s refaddlis...

5.5CVSS6.2AI score0.00272EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/01/01 12:0 a.m.6 views

PT-2026-5509

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel's Btrfs file system related to inode handling during rename operations and log replay. Specifically, the issue arises after a rename exchange involving...

5.5CVSS6.7AI score0.00161EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2024/11/19 3:49 a.m.3 views

SUSE CVE-2024-50273

In the Linux kernel, the following vulnerability has been resolved: btrfs: reinitialize delayed ref list after deleting it from the list At insertdelayedref if we need to update the action of an existing ref to BTRFSDROPDELAYEDREF, we delete the ref from its ref head's refaddlist using listdel,...

5.5CVSS7.7AI score0.00272EPSS
Exploits0References18
OSV
OSV
added 2024/11/19 2:16 a.m.5 views

AZL-53414 CVE-2024-50273 affecting package kernel for versions less than 6.6.64.2-1

In the Linux kernel, the following vulnerability has been resolved: btrfs: reinitialize delayed ref list after deleting it from the list At insertdelayedref if we need to update the action of an existing ref to BTRFSDROPDELAYEDREF, we delete the ref from its ref head's refaddlist using listdel,...

5.5CVSS6.8AI score0.00272EPSS
Exploits0References1
OSV
OSV
added 2024/11/19 2:16 a.m.9 views

AZL-53775 CVE-2024-50273 affecting package kernel for versions less than 5.15.173.1-1

In the Linux kernel, the following vulnerability has been resolved: btrfs: reinitialize delayed ref list after deleting it from the list At insertdelayedref if we need to update the action of an existing ref to BTRFSDROPDELAYEDREF, we delete the ref from its ref head's refaddlist using listdel,...

5.5CVSS5.6AI score0.00272EPSS
Exploits0References1
OSV
OSV
added 2024/11/07 10:15 a.m.2 views

UBUNTU-CVE-2024-50166

In the Linux kernel, the following vulnerability has been resolved: fsl/fman: Fix refcount handling of fman-related devices In macprobe there are multiple calls to offinddevicebynode, fmanbind and fmanportbind which takes references to ofdev-dev. Not all references taken by these calls are releas...

5.5CVSS6.6AI score0.00215EPSS
Exploits0References18
OSV
OSV
added 2024/10/28 3:15 p.m.6 views

AZL-51894 CVE-2024-49761 affecting package rubygem-rexml for versions less than 3.2.7-3

REXML is an XML toolkit for Ruby. The REXML gem before 3.3.9 has a ReDoS vulnerability when it parses an XML that has many digits between & and x...; in a hex numeric character reference &x...;. This does not happen with Ruby 3.2 or later. Ruby 3.1 is the only affected maintained Ruby. The REXML...

7.5CVSS6.8AI score0.01429EPSS
Exploits0References1
NVD
NVD
added 2024/10/21 12:15 p.m.15 views

CVE-2024-47706

In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix possible UAF for bfqq-bic with merge chain 1 initial state, three tasks: Process 1 Process 2 Process 3 BIC1 BIC2 BIC3 | Λ | Λ | Λ | | | | | | V | V | V | bfqq1 bfqq2 bfqq3 process ref: 1 1 1 2 bfqq1 merged to bfqq...

5.5CVSS0.00236EPSS
Exploits0References13
CVE
CVE
added 2024/10/21 11:53 a.m.170 views

CVE-2024-47706

Markdown: CVE-2024-47706 is tied to a Linux kernel issue in the bfq/I/O scheduler where an UAF could occur when bfqq structures are merged across BICs (bfqq1 → bfqq2 → bfqq3). The connected Astra Linux bulletin reproduces the scenario: on insert, a bfqq handle is obtained from the merge chain, bu...

5.5CVSS6.9AI score0.00236EPSS
Exploits0References13Affected Software1
NVD
NVD
added 2024/10/08 6:15 p.m.23 views

CVE-2024-43500

Windows Resilient File System ReFS Information Disclosure Vulnerability...

5.5CVSS0.00624EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/10/08 5:35 p.m.26 views

CVE-2024-43514 Windows Resilient File System (ReFS) Elevation of Privilege Vulnerability

...

7.8CVSS0.00599EPSS
Exploits0References1
CVE
CVE
added 2024/10/08 5:35 p.m.107 views

CVE-2024-43500

CVE-2024-43500 affects Windows Resilient File System (ReFS) and is described as an Information Disclosure vulnerability. Public sources confirm impact to ReFS, enabling an attacker to obtain sensitive data. Exploitation details are not fully provided in the documents; the CVSS data in the Initial...

5.5CVSS6.5AI score0.00624EPSS
Exploits0References1Affected Software4
Vulnrichment
Vulnrichment
added 2024/10/08 5:35 p.m.21 views

CVE-2024-43500 Windows Resilient File System (ReFS) Information Disclosure Vulnerability

...

5.5CVSS6.8AI score0.00624EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2024/09/28 2:51 a.m.4 views

SUSE CVE-2024-46840

In the Linux kernel, the following vulnerability has been resolved: btrfs: clean up our handling of refs == 0 in snapshot delete In reada we BUGONrefs == 0, which could be unkind since we aren't holding a lock on the extent leaf and thus could get a transient incorrect answer. In walkdownproc we...

5.5CVSS6.3AI score0.00261EPSS
Exploits0References18
OSV
OSV
added 2024/09/27 1:15 p.m.2 views

DEBIAN-CVE-2024-46840

In the Linux kernel, the following vulnerability has been resolved: btrfs: clean up our handling of refs == 0 in snapshot delete In reada we BUGONrefs == 0, which could be unkind since we aren't holding a lock on the extent leaf and thus could get a transient incorrect answer. In walkdownproc we...

5.5CVSS5.7AI score0.00261EPSS
Exploits0References1
NVD
NVD
added 2024/09/27 1:15 p.m.17 views

CVE-2024-46840

In the Linux kernel, the following vulnerability has been resolved: btrfs: clean up our handling of refs == 0 in snapshot delete In reada we BUGONrefs == 0, which could be unkind since we aren't holding a lock on the extent leaf and thus could get a transient incorrect answer. In walkdownproc we...

5.5CVSS0.00261EPSS
Exploits0References10
OSV
OSV
added 2024/09/27 1:15 p.m.4 views

UBUNTU-CVE-2024-46840

In the Linux kernel, the following vulnerability has been resolved: btrfs: clean up our handling of refs == 0 in snapshot delete In reada we BUGONrefs == 0, which could be unkind since we aren't holding a lock on the extent leaf and thus could get a transient incorrect answer. In walkdownproc we...

5.5CVSS6.2AI score0.00261EPSS
Exploits0References27
NVD
NVD
added 2024/08/13 6:15 p.m.28 views

CVE-2024-38135

Windows Resilient File System ReFS Elevation of Privilege Vulnerability...

7.8CVSS0.00681EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2024/06/05 5:10 p.m.9 views

Typo3 Information Disclosure in Backend User Interface

The element information component used to display properties of a certain record is susceptible to information disclosure. The list of references from or to the record is not properly checked for the backend user’s permissions. A valid backend user account is needed in order to exploit this...

6.7AI score
Exploits0References3Affected Software1
OSV
OSV
added 2024/05/22 2:13 p.m.13 views

GHSA-49JC-R788-3FC9 gix refs and paths with reserved Windows device names access the devices

Summary On Windows, fetching refs that clash with legacy device names reads from the devices, and checking out paths that clash with such names writes arbitrary data to the devices. This allows a repository, when cloned, to cause indefinite blocking or the production of arbitrary message that...

5.4CVSS5.5AI score0.00448EPSS
Exploits0References6
Rows per page
Query Builder