11 matches found
Astra Linux – Vulnerability in Linux, Linux 5.10
In the Linux kernel, the following vulnerability has been resolved: ubifs: Fixed races between xattrset|get and listxattr operations. Some issues may occur when performing concurrent xattrset|get and listxattr operations, such as assertion failures, memory corruption, and stale xattr values1. The...
Unity Linux 20.1050e / 20.1070e Security Update: kernel (UTSA-2026-011112)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011112 advisory. In the Linux kernel, the following vulnerability has been resolved: ubifs: Free memory for tmpfile name When opening a ubifs tmpfile on an encrypted directory,...
Linux Distros Unpatched Vulnerability : CVE-2026-23434
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - mtd: rawnand: serialize lock/unlock against other NAND operations nandlock and nandunlock call into chip-ops.lockarea/unlockarea without holding the NAND device...
SUSE CVE-2024-45003
In the Linux kernel, the following vulnerability has been resolved: vfs: Don't evict inode under the inode lru traversing context The inode reclaiming processSee function pruneicachesb collects all reclaimable inodes and mark them with IFREEING flag at first, at that time, other processes will be...
SUSE CVE-2023-53276
In the Linux kernel, the following vulnerability has been resolved: ubifs: Free memory for tmpfile name When opening a ubifs tmpfile on an encrypted directory, function fscryptsetupfilename allocates memory for the name that is to be stored in the directory entry, but after the name has been copi...
Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12
In the Linux kernel, the following vulnerability has been resolved: ubifs: Skip dumping the tnc tree when zroot is null. Clearing the slab cache will free all znode entries in memory, and set c-zroot.znode to NULL. Dumping the tnc tree will then access c-zroot.znode, which can lead to a null...
The vulnerability of the ubifs_dump_tnc() function in the file system of the UBIFS driver (fs/ubifs/debug.c) in Linux kernel allows a attacker to cause a service failure.
The vulnerability of the ubifsdumptnc function in the file system of the UBIFS driver fs/ubifs/debug.c in Linux operating systems is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failure...
CVE-2021-47637
In the Linux kernel, the following vulnerability has been resolved: ubifs: Fix deadlock in concurrent rename whiteout and inode writeback Following hung tasks: 77.028764 task:kworker/u8:4 state:D stack: 0 pid: 132 77.028820 Call Trace: 77.029027 schedule+0x8c/0x1b0 77.029067 mutexlock+0x50/0x60...
CVE-2024-53171 ubifs: authentication: Fix use-after-free in ubifs_tnc_end_commit
In the Linux kernel, the following vulnerability has been resolved: ubifs: authentication: Fix use-after-free in ubifstncendcommit After an insertion in TNC, the tree might split and cause a node to change its znode-parent. A further deletion of other nodes in the tree which also could free the...
SUSE CVE-2021-47351
In the Linux kernel, the following vulnerability has been resolved: ubifs: Fix races between xattrset|get and listxattr operations UBIFS may occur some problems with concurrent xattrset|get and listxattr operations, such as assertion failure, memory corruption, stale xattr value1. Fix it by...
Linux kernel local filesystem DoS
The 1 reallookup and 2 lookuphash functions in fs/namei.c in the vfs implementation in the Linux kernel before 2.6.25.15 do not prevent creation of a child dentry for a deleted aka SDEAD directory, which allows local users to cause a denial of service "overflow" of the UBIFS orphan area via a...