4334 matches found
CVE-2023-3866 ksmbd: validate session id and tree id in the compound request
In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate session id and tree id in the compound request This patch validate session id and tree id in compound request. If first operation in the compound is SMB2 ECHO request, ksmbd bypass session and tree validation. So...
CVE-2023-3866
In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate session id and tree id in the compound request This patch validate session id and tree id in compound request. If first operation in the compound is SMB2 ECHO request, ksmbd bypass session and tree validation. So...
CVE-2025-38503
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix assertion when building free space tree When building the free space tree with the block group tree feature enabled, we can hit an assertion failure like this: BTRFS info device loop0 state M: rebuilding free space tre...
DEBIAN-CVE-2025-38503
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix assertion when building free space tree When building the free space tree with the block group tree feature enabled, we can hit an assertion failure like this: BTRFS info device loop0 state M: rebuilding free space tre...
AZL-66353 CVE-2025-38503 affecting package kernel for versions less than 6.6.104.2-1
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix assertion when building free space tree When building the free space tree with the block group tree feature enabled, we can hit an assertion failure like this: BTRFS info device loop0 state M: rebuilding free space tre...
UBUNTU-CVE-2025-38503
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix assertion when building free space tree When building the free space tree with the block group tree feature enabled, we can hit an assertion failure like this: BTRFS info device loop0 state M: rebuilding free space tre...
CVE-2025-38536
CVE-2025-38536 affects the Linux kernel in the net:airoha path, where np->name could be used after a call to of_node_put(np). This release-after-check pattern could cause a use-after-free if pdev is NULL. The documented fix moves of_node_put(np) to execute only after both the error and success...
CVE-2025-38503
CVE-2025-38503 : Linux kernel BTRFS vulnerability with block_group_tree enabled can trigger an assertion while rebuilding the free space tree, causing a kernel BUG and machine halt. The issue occurs when processing an empty block group (no extents/items) and a ret value of 1 is returned by btrfs_...
CVE-2025-38503 btrfs: fix assertion when building free space tree
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix assertion when building free space tree When building the free space tree with the block group tree feature enabled, we can hit an assertion failure like this: BTRFS info device loop0 state M: rebuilding free space tre...
CVE-2025-38503
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix assertion when building free space tree When building the free space tree with the block group tree feature enabled, we can hit an assertion failure like this: BTRFS info device loop0 state M: rebuilding free space tre...
CVE-2025-38503 btrfs: fix assertion when building free space tree
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix assertion when building free space tree When building the free space tree with the block group tree feature enabled, we can hit an assertion failure like this: BTRFS info device loop0 state M: rebuilding free space tre...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a failed assertion when building a free-space tree, which could lead to a system crash...
Linux Distros Unpatched Vulnerability : CVE-2022-49851
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - riscv: fix reserved memory setup Currently, RISC-V sets up reserved memory using the early copy of the device tree. As a result, when trying to get a reserved...
Linux Distros Unpatched Vulnerability : CVE-2024-26791
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - btrfs: dev-replace: properly validate device names There's a syzbot report that device name buffers passed to device replace are not properly checked for string...
Linux Distros Unpatched Vulnerability : CVE-2025-38464
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tipc: Fix use-after-free in tipcconnclose. syzbot reported a null-ptr-deref in tipcconnclose during netns dismantle. 0 tipctopsrvstop iterates...
Malicious code in parse-tree-array-function-decode (npm)
The package parse-tree-array-function-decode was found to contain malicious code...
Malicious code in react-filter-tree (npm)
The package react-filter-tree was found to contain malicious code...
MAL-2025-31783 Malicious code in react-filter-tree (npm)
The package react-filter-tree was found to contain malicious code...
@luxiaodan/el-selection-tree-table (=1.0.3) potentially affected by unknown CVE via lodsah (=0.0.1-security)
lodsah NPM version =0.0.1-security is affected by a known vulnerability. The following packages have a transitive dependency on lodsah and may be impacted: - @luxiaodan/el-selection-tree-table =1.0.3 Source cves: unknown CVE Source advisory: OSV:MAL-2025-25516...
MAL-2025-25394 Malicious code in link-function-info-tree-sandbox (npm)
The package link-function-info-tree-sandbox was found to contain malicious code...