CVE-2025-71069

In the Linux kernel, the following vulnerability has been resolved: f2fs: invalidate dentry cache on failed whiteout creation F2FS can mount filesystems with corrupted directory depth values that get runtime-clamped to MAXDIRHASHDEPTH. When RENAMEWHITEOUT operations are performed on such...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a failure to update the dentry cache after a failed rename operation when the directory depth value is...

OESA-2025-2313 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: media: dvb-frontends: w7090p: fix null-ptr-deref in w7090ptunerwriteserpar and w7090ptunerreadserpar In w7090ptunerwriteserpar, msg is controlled by user. When...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from gfs2 unverified directory depth...

CVE-2005-1952

CVE-2005-1952 affects Pico Server (pServ) 3.3. A directory traversal flaw allows remote attackers to read arbitrary files and, via a crafted URL containing /./ before each .. sequence, potentially execute arbitrary commands due to an incorrect directory depth count. Exploitation details are not p...

Атаки через tmpwatch

При удалении каталога tmpwatch запускает отдельный процесс на каждый уровень вложенности. Это позволяет вызвать остановку системы, создав временную директорию с большим уровенм вложенности. Кроме того, при вызове внешнего приложения не проверяются shell-символы в имени файла...