GHSA-VH75-FWV3-PQRH requests-hardened is Vulnerable to Server-Side Request Forgery

The SSRF protection in requests-hardened prior to version 1.2.1 fails to block IP addresses within the RFC 6598 Shared Address Space 100.64.0.0/10. An attacker who can supply arbitrary URLs to requests-hardened could exploit this gap to access internal services hosted within 100.64.0.0/10. This i...

Astra Linux - уязвимость в linux-5.10, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: ext4: The block range must be validated before being used in ext4mbclearbb. The block range to be freed is validated in ext4freeblocks using ext4 inodeblockvalid, and then it is passed to ext4mbclearbb. However, in some cases on...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-993068)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993068 advisory. In the Linux kernel, the following vulnerability has been resolved: ext4: block range must be validated before use in ext4mbclearbb Block range to free is validated ...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992567)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992567 advisory. In the Linux kernel, the following vulnerability has been resolved: ext4: block range must be validated before use in ext4mbclearbb Block range to free is validated ...

CVE-2023-54021 ext4: set goal start correctly in ext4_mb_normalize_request

In the Linux kernel, the following vulnerability has been resolved: ext4: set goal start correctly in ext4mbnormalizerequest We need to set acgex to notify the goal start used in ext4mbfindbygoal. Set acgex instead of acfex in ext4mbnormalizerequest. Besides we should assure goal start is in rang...

EUVD-2022-55297

Malicious code in bioql PyPI...

CVE-2022-50021

In the Linux kernel, the following vulnerability has been resolved: ext4: block range must be validated before use in ext4mbclearbb Block range to free is validated in ext4freeblocks using ext4inodeblockvalid and then it's passed to ext4mbclearbb. However in some situations on bigalloc file syste...

SUSE CVE-2022-50021

In the Linux kernel, the following vulnerability has been resolved: ext4: block range must be validated before use in ext4mbclearbb Block range to free is validated in ext4freeblocks using ext4inodeblockvalid and then it's passed to ext4mbclearbb. However in some situations on bigalloc file syste...

DEBIAN-CVE-2022-50021

In the Linux kernel, the following vulnerability has been resolved: ext4: block range must be validated before use in ext4mbclearbb Block range to free is validated in ext4freeblocks using ext4inodeblockvalid and then it's passed to ext4mbclearbb. However in some situations on bigalloc file syste...

UBUNTU-CVE-2022-50021

In the Linux kernel, the following vulnerability has been resolved: ext4: block range must be validated before use in ext4mbclearbb Block range to free is validated in ext4freeblocks using ext4inodeblockvalid and then it's passed to ext4mbclearbb. However in some situations on bigalloc file syste...

CVE-2022-50021

In the Linux kernel, the following vulnerability has been resolved: ext4: block range must be validated before use in ext4mbclearbb Block range to free is validated in ext4freeblocks using ext4inodeblockvalid and then it's passed to ext4mbclearbb. However in some situations on bigalloc file syste...

CVE-2022-50021

CVE-2022-50021 documents a Linux kernel ext4 bug where a validated block range for freeing blocks could be altered after validation on bigalloc filesystems, potentially triggering a kernel BUG in ext4_free_blocks() / ext4_mb_clear_bb(). The issue arises because the range may be adjusted after val...

CVE-2022-50021 ext4: block range must be validated before use in ext4_mb_clear_bb()

In the Linux kernel, the following vulnerability has been resolved: ext4: block range must be validated before use in ext4mbclearbb Block range to free is validated in ext4freeblocks using ext4inodeblockvalid and then it's passed to ext4mbclearbb. However in some situations on bigalloc file syste...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an unverified block range in the ext4mbclearbb function...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the fact that when dealing with a large number of single-block-range IOs, estimating the number of transacti...

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: ext4: block range must be validated before use in ext4mbclearbb CVE-2022-50021 In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix possible uaf for 'bfqq-bic' CVE-2022-50488 In the...

kernel: ext4: block range must be validated before use in ext4_mb_clear_bb()

A use-after-free vulnerability exists in the linux kernel, such thatthe Block range to free is validated in ext4freeblocks using ext4inodeblockvalid and then it's passed to ext4mbclearbb.However, in some situations on bigalloc file system the range might be adjusted after the validation in...

BlurExchage#setBlockRange can cause previously expired order to be unexpectedly valid again

Lines of code Vulnerability details Impact A previously canceled order becomes valid again Proof of Concept BlurExchagesetBlockRange allows the owner to set the block range for which the oracles signature is valid for. If the block range is set to longer, orders that would have been invalid are...

GSD-2022-1005084 ext4: block range must be validated before use in ext4_mb_clear_bb()

ext4: block range must be validated before use in ext4mbclearbb This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.19.4 by commit...

PT-2022-33342 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.19.4 Description: The issue is related to the ext4 file system, where a block range must be validated before use in the ext4 mb clear bb function. The actual impact and attack plausibility have not yet been...