CVE-2026-46303

In the Linux kernel, the following vulnerability has been resolved: isofs: validate Rock Ridge CE continuation extent against volume size rockcontinue reads rs-contextent verbatim from the Rock Ridge CE record and passes it to sbbread without checking that the block number is within the mounted I...

UBUNTU-CVE-2026-46303

In the Linux kernel, the following vulnerability has been resolved: isofs: validate Rock Ridge CE continuation extent against volume size rockcontinue reads rs-contextent verbatim from the Rock Ridge CE record and passes it to sbbread without checking that the block number is within the mounted I...

Astra Linux - уязвимость в linux-5.10, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: ext4: The block range must be validated before being used in ext4mbclearbb. The block range to be freed is validated in ext4freeblocks using ext4 inodeblockvalid, and then it is passed to ext4mbclearbb. However, in some situation...

GHSA-VH75-FWV3-PQRH requests-hardened is Vulnerable to Server-Side Request Forgery

The SSRF protection in requests-hardened prior to version 1.2.1 fails to block IP addresses within the RFC 6598 Shared Address Space 100.64.0.0/10. An attacker who can supply arbitrary URLs to requests-hardened could exploit this gap to access internal services hosted within 100.64.0.0/10. This i...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-993068)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993068 advisory. In the Linux kernel, the following vulnerability has been resolved: ext4: block range must be validated before use in ext4mbclearbb Block range to free is validated ...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992567)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992567 advisory. In the Linux kernel, the following vulnerability has been resolved: ext4: block range must be validated before use in ext4mbclearbb Block range to free is validated ...

CVE-2023-54021 ext4: set goal start correctly in ext4_mb_normalize_request

In the Linux kernel, the following vulnerability has been resolved: ext4: set goal start correctly in ext4mbnormalizerequest We need to set acgex to notify the goal start used in ext4mbfindbygoal. Set acgex instead of acfex in ext4mbnormalizerequest. Besides we should assure goal start is in rang...

EUVD-2022-55297

Malicious code in bioql PyPI...

CVE-2022-50021

In the Linux kernel, the following vulnerability has been resolved: ext4: block range must be validated before use in ext4mbclearbb Block range to free is validated in ext4freeblocks using ext4inodeblockvalid and then it's passed to ext4mbclearbb. However in some situations on bigalloc file syste...

SUSE CVE-2022-50021

In the Linux kernel, the following vulnerability has been resolved: ext4: block range must be validated before use in ext4mbclearbb Block range to free is validated in ext4freeblocks using ext4inodeblockvalid and then it's passed to ext4mbclearbb. However in some situations on bigalloc file syste...

DEBIAN-CVE-2022-50021

In the Linux kernel, the following vulnerability has been resolved: ext4: block range must be validated before use in ext4mbclearbb Block range to free is validated in ext4freeblocks using ext4inodeblockvalid and then it's passed to ext4mbclearbb. However in some situations on bigalloc file syste...

UBUNTU-CVE-2022-50021

In the Linux kernel, the following vulnerability has been resolved: ext4: block range must be validated before use in ext4mbclearbb Block range to free is validated in ext4freeblocks using ext4inodeblockvalid and then it's passed to ext4mbclearbb. However in some situations on bigalloc file syste...

CVE-2022-50021

In the Linux kernel, the following vulnerability has been resolved: ext4: block range must be validated before use in ext4mbclearbb Block range to free is validated in ext4freeblocks using ext4inodeblockvalid and then it's passed to ext4mbclearbb. However in some situations on bigalloc file syste...

CVE-2022-50021

CVE-2022-50021 documents a Linux kernel ext4 bug where a validated block range for freeing blocks could be altered after validation on bigalloc filesystems, potentially triggering a kernel BUG in ext4_free_blocks() / ext4_mb_clear_bb(). The issue arises because the range may be adjusted after val...

CVE-2022-50021 ext4: block range must be validated before use in ext4_mb_clear_bb()

In the Linux kernel, the following vulnerability has been resolved: ext4: block range must be validated before use in ext4mbclearbb Block range to free is validated in ext4freeblocks using ext4inodeblockvalid and then it's passed to ext4mbclearbb. However in some situations on bigalloc file syste...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an unverified block range in the ext4mbclearbb function...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the fact that when dealing with a large number of single-block-range IOs, estimating the number of transacti...

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: ext4: block range must be validated before use in ext4mbclearbb CVE-2022-50021 In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix possible uaf for 'bfqq-bic' CVE-2022-50488 In the...

kernel: ext4: block range must be validated before use in ext4_mb_clear_bb()

A use-after-free vulnerability exists in the linux kernel, such thatthe Block range to free is validated in ext4freeblocks using ext4inodeblockvalid and then it's passed to ext4mbclearbb.However, in some situations on bigalloc file system the range might be adjusted after the validation in...

BlurExchage#setBlockRange can cause previously expired order to be unexpectedly valid again

Lines of code Vulnerability details Impact A previously canceled order becomes valid again Proof of Concept BlurExchagesetBlockRange allows the owner to set the block range for which the oracles signature is valid for. If the block range is set to longer, orders that would have been invalid are...