67 matches found
CVE-2024-41086
A flaw was found in the bcachefs module in the Linux kernel. In some conditions, an out-of-bounds read of 2 bytes can be triggered due to an incomplete validation of malformed input, resulting in a denial of service...
CVE-2024-41086
In the Linux kernel, the following vulnerability has been resolved: bcachefs: Fix sbfielddowngrade validation - bch2sbdowngradevalidate wasn't checking for a downgrade entry extending past the end of the superblock section - foreachdowngradeentry is used in totext and needs to work on malformed...
DEBIAN-CVE-2024-41086
In the Linux kernel, the following vulnerability has been resolved: bcachefs: Fix sbfielddowngrade validation - bch2sbdowngradevalidate wasn't checking for a downgrade entry extending past the end of the superblock section - foreachdowngradeentry is used in totext and needs to work on malformed...
UBUNTU-CVE-2024-41086
In the Linux kernel, the following vulnerability has been resolved: bcachefs: Fix sbfielddowngrade validation - bch2sbdowngradevalidate wasn't checking for a downgrade entry extending past the end of the superblock section - foreachdowngradeentry is used in totext and needs to work on malformed...
CVE-2024-41086 bcachefs: Fix sb_field_downgrade validation
In the Linux kernel, the following vulnerability has been resolved: bcachefs: Fix sbfielddowngrade validation - bch2sbdowngradevalidate wasn't checking for a downgrade entry extending past the end of the superblock section - foreachdowngradeentry is used in totext and needs to work on malformed...
CVE-2024-41086
In Linux kernel context, CVE-2024-41086 concerns bcachefs. The vulnerability arises from incomplete validation in the downgrade handling code: bch2_sb_downgrade_validate() did not check for a downgrade entry that extends past the end of the superblock section, and for_each_downgrade_entry() used ...
CVE-2024-41086 bcachefs: Fix sb_field_downgrade validation
In the Linux kernel, the following vulnerability has been resolved: bcachefs: Fix sbfielddowngrade validation - bch2sbdowngradevalidate wasn't checking for a downgrade entry extending past the end of the superblock section - foreachdowngradeentry is used in totext and needs to work on malformed...
CVE-2024-41086 bcachefs: Fix sb_field_downgrade validation
In the Linux kernel, the following vulnerability has been resolved: bcachefs: Fix sbfielddowngrade validation - bch2sbdowngradevalidate wasn't checking for a downgrade entry extending past the end of the superblock section - foreachdowngradeentry is used in totext and needs to work on malformed...
CVE-2024-39482 bcache: fix variable length array abuse in btree_iter
In the Linux kernel, the following vulnerability has been resolved: bcache: fix variable length array abuse in btreeiter btreeiter is used in two ways: either allocated on the stack with a fixed size MAXBSETS, or from a mempool with a dynamic size based on the specific cache set. Previously, the...
CVE-2024-39482
CVE-2024-39482 relates to the Linux kernel bug in bcache: it abused a fixed-length array in btree_iter when used with dynamically-sized iterators, triggering UBSAN. The fix introduces a flexible array member in btree_iter and a separate btree_iter_stack that embeds a btree_iter plus a data array,...
SUSE CVE-2024-35832
In the Linux kernel, the following vulnerability has been resolved: bcachefs: kvfree bchfs::snapshots in bch2fssnapshotsexit bchfs::snapshots is allocated by kvzalloc in snapshottmut. It should be freed by kvfree not kfree. Or umount will triger: 406.829178 BUG: unable to handle page fault for...
SUSE CVE-2024-35948
In the Linux kernel, the following vulnerability has been resolved: bcachefs: Check for journal entries overruning end of sb clean section Fix a missing bounds check in superblock validation. Note that we don't yet have repair code for this case - repair code for individual items is generally low...
CVE-2024-35948
A flaw was found in the bcachefs module in the Linux kernel. Missing bounds check in the superblock validation allows a local user to cause a denial of service...
CVE-2024-35948
In the Linux kernel, the following vulnerability has been resolved: bcachefs: Check for journal entries overruning end of sb clean section Fix a missing bounds check in superblock validation. Note that we don't yet have repair code for this case - repair code for individual items is generally low...
DEBIAN-CVE-2024-35948
In the Linux kernel, the following vulnerability has been resolved: bcachefs: Check for journal entries overruning end of sb clean section Fix a missing bounds check in superblock validation. Note that we don't yet have repair code for this case - repair code for individual items is generally low...
CVE-2024-35948
In the Linux kernel, the following vulnerability has been resolved: bcachefs: Check for journal entries overruning end of sb clean section Fix a missing bounds check in superblock validation. Note that we don't yet have repair code for this case - repair code for individual items is generally low...
UBUNTU-CVE-2024-35948
In the Linux kernel, the following vulnerability has been resolved: bcachefs: Check for journal entries overruning end of sb clean section Fix a missing bounds check in superblock validation. Note that we don't yet have repair code for this case - repair code for individual items is generally low...
CVE-2024-35948
In the Linux kernel (bcachefs), a missing bounds check in superblock validation allowed journal entries to overrun the end of the clean section. The issue has been fixed with a bounds-check in the superblock validation path. No repair code for individual items is available; the entire superblock ...
CVE-2024-35948 bcachefs: Check for journal entries overruning end of sb clean section
In the Linux kernel, the following vulnerability has been resolved: bcachefs: Check for journal entries overruning end of sb clean section Fix a missing bounds check in superblock validation. Note that we don't yet have repair code for this case - repair code for individual items is generally low...
CVE-2024-35948 bcachefs: Check for journal entries overruning end of sb clean section
In the Linux kernel, the following vulnerability has been resolved: bcachefs: Check for journal entries overruning end of sb clean section Fix a missing bounds check in superblock validation. Note that we don't yet have repair code for this case - repair code for individual items is generally low...