231 matches found
AZL-68570 CVE-2024-57875 affecting package kernel 5.15.200.1-1
In the Linux kernel, the following vulnerability has been resolved: block: RCU protect disk-convzonesbitmap Ensure that a disk revalidation changing the conventional zones bitmap of a disk does not cause invalid memory references when using the diskzoneisconv helper by RCU protecting the...
SUSE CVE-2024-47680
In the Linux kernel, the following vulnerability has been resolved: f2fs: check discard support for conventional zones As the helper function f2fsbdevsupportdiscard shows, f2fs checks if the target block devices support discard by calling bdevmaxdiscardsectors and bdeviszoned. This check works we...
CVE-2024-47680
In the Linux kernel, the following vulnerability has been resolved: f2fs: check discard support for conventional zones As the helper function f2fsbdevsupportdiscard shows, f2fs checks if the target block devices support discard by calling bdevmaxdiscardsectors and bdeviszoned. This check works we...
CVE-2024-47680
In the Linux kernel, the following vulnerability has been resolved: f2fs: check discard support for conventional zones As the helper function f2fsbdevsupportdiscard shows, f2fs checks if the target block devices support discard by calling bdevmaxdiscardsectors and bdeviszoned. This check works we...
DEBIAN-CVE-2024-47680
In the Linux kernel, the following vulnerability has been resolved: f2fs: check discard support for conventional zones As the helper function f2fsbdevsupportdiscard shows, f2fs checks if the target block devices support discard by calling bdevmaxdiscardsectors and bdeviszoned. This check works we...
UBUNTU-CVE-2024-47680
In the Linux kernel, the following vulnerability has been resolved: f2fs: check discard support for conventional zones As the helper function f2fsbdevsupportdiscard shows, f2fs checks if the target block devices support discard by calling bdevmaxdiscardsectors and bdeviszoned. This check works we...
CVE-2024-47680 f2fs: check discard support for conventional zones
In the Linux kernel, the following vulnerability has been resolved: f2fs: check discard support for conventional zones As the helper function f2fsbdevsupportdiscard shows, f2fs checks if the target block devices support discard by calling bdevmaxdiscardsectors and bdeviszoned. This check works we...
CVE-2024-47680
In the Linux kernel, the following vulnerability has been resolved: f2fs: check discard support for conventional zones As the helper function f2fsbdevsupportdiscard shows, f2fs checks if the target block devices support discard by calling bdevmaxdiscardsectors and bdeviszoned. This check works we...
CVE-2024-47680
CVE-2024-47680 affects the Linux kernel’s f2fs discard handling for conventional zones on zoned block devices. The root cause is that f2fs relied on a discard capability check performed by bdev_max_discard_sectors() and bdev_is_zoned(), which bypasses to discard even when a device doesn’t support...
Malicious code in config-conventional (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 9db287fbaa3f09a3e8e30d18616b161cbc82f46c0867a4f8638067c82846d154 The OpenSSF Package Analysis project identified 'config-conventional' @ 20.1.1 npm as malicious. It is considered malicious because: - The packa...
MAL-2024-9565 Malicious code in config-conventional (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 9db287fbaa3f09a3e8e30d18616b161cbc82f46c0867a4f8638067c82846d154 The OpenSSF Package Analysis project identified 'config-conventional' @ 20.1.1 npm as malicious. It is considered malicious because: - The packa...
Malicious code in d11-conventional-jira-changelog (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 96c13dcfe4de0265a62b60b68e37699740d2fb78c1dfce5bf1559c110da5e64c Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
CVE-2024-40962
A NULL pointer dereference was found in the btrfszonefinishendio function in the Linux Kernel during the execution of test-case btrfs/167 on emulated zoned devices. This issue stems from missing checksum lists for NOCOW writes in zoned mode, as revealed by an assertion failure. The problem occurs...
CVE-2024-40962 btrfs: zoned: allocate dummy checksums for zoned NODATASUM writes
In the Linux kernel, the following vulnerability has been resolved: btrfs: zoned: allocate dummy checksums for zoned NODATASUM writes Shin'ichiro reported that when he's running fstests' test-case btrfs/167 on emulated zoned devices, he's seeing the following NULL pointer dereference in...
CVE-2024-40962 btrfs: zoned: allocate dummy checksums for zoned NODATASUM writes
In the Linux kernel, the following vulnerability has been resolved: btrfs: zoned: allocate dummy checksums for zoned NODATASUM writes Shin'ichiro reported that when he's running fstests' test-case btrfs/167 on emulated zoned devices, he's seeing the following NULL pointer dereference in...
CVE-2024-40962
CVE-2024-40962 affects the Linux kernel btrfs zoning code. The issue is a NULL pointer dereference in btrfs_zone_finish_endio() when handling zoned NODATASUM writes under zoned emulation for conventional zones. The fix, as described in the disclosure, is to allocate dummy checksums for zoned NODA...
Malicious code in cz-ifood-conventional-changelog (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 65b5439bd3051d2315be6f4ae90f3235c5e41c2d9afa4a3c8f6ff3271c31cb9a The OpenSSF Package Analysis project identified 'cz-ifood-conventional-changelog' @ 1.0.101 npm as malicious. It is considered malicious because...
CVE-2024-26630
In the Linux kernel, the following vulnerability has been resolved: mm: cachestat: fix folio read-after-free in cache walk In cachestat, we access the folio from the page cache's xarray to compute its page offset, and check for its dirty and writeback flags. However, we do not hold a reference to...
What is Kafka?
Introduction to the Universe of Kafka: A Detailed Synopsis Apache Kafka, frequently just labeled as Kafka, is a universally contributed event broadcasting framework, intended to manage live streaming of data. It is engineered to be a bridge for significant volumes of data, offering a mechanism fo...
Malicious code in idgit-conventional-commitsentity-obj-proxy (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware e21720cf9a4946dccc8cfaf2aeecb605fa378ec130a4c251054a6867ebd163ff Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...