18 matches found
EUVD-2026-42919
osquery is a SQL powered operating system instrumentation, monitoring, and analytics framework. Prior to 5.23.1, on Windows, a local unprivileged attacker can cause a heap buffer out-of-bounds write if there is a query of the processes table targeting a maliciously crafted process, due to uncheck...
PT-2026-32005
Saltcorn is an extensible, open source, no-code database application builder. Prior to 1.4.5, 1.5.5, and 1.6.0-beta.4, the POST /sync/offline changes endpoint allows an unauthenticated attacker to create arbitrary directories and write a changes.json file with attacker-controlled JSON content...
CVE-2026-33194 SiYuan has an Incomplete Fix for IsSensitivePath Denylist Allows File Read from /opt, /usr, /home
SiYuan is a personal knowledge management system. Prior to version 3.6.2, the IsSensitivePath function in kernel/util/path.go uses a denylist approach that was recently expanded GHSA-h5vh-m7fg-w5h6, commit 9914fd1 but remains incomplete. Multiple security-relevant Linux directories are not blocke...
Astra Linux – Vulnerability in Linux 6.12
In the Linux kernel, the following vulnerability has been resolved: The current directory offset allocator based on mtreealloccyclic stores the next offset value to be returned in octx-nextoffset. This mechanism typically returns values that increase monotonically over time. Eventually, however,...
CVE-2024-57952
In the Linux kernel, the following vulnerability has been resolved: Revert "libfs: fix infinite directory reads for offset dir" The current directory offset allocator based on mtreealloccyclic stores the next offset value to return in octx-nextoffset. This mechanism typically returns values that...
SUSE CVE-2024-57952
In the Linux kernel, the following vulnerability has been resolved: Revert "libfs: fix infinite directory reads for offset dir" The current directory offset allocator based on mtreealloccyclic stores the next offset value to return in octx-nextoffset. This mechanism typically returns values that...
CVE-2024-57952
CVE-2024-57952 affects the Linux kernel through a revert of the libfs offset-dir fix, restoring prior behavior that could hide directory entries when the offset allocator wraps. Public docs in the SUSE/OpenSUSE advisories note this as a fix delivered via kernel updates (openSUSE-SU-2025-20081-1) ...
CVE-2024-46701
In the Linux kernel, the following vulnerability has been resolved: libfs: fix infinite directory reads for offset dir After we switch tmpfs dir operations from simplediroperations to simpleoffsetdiroperations, every rename happened will fill new dentry to dest dir's maple...
AZL-49318 CVE-2024-46701 affecting package kernel 6.6.126.1-1
In the Linux kernel, the following vulnerability has been resolved: libfs: fix infinite directory reads for offset dir After we switch tmpfs dir operations from simplediroperations to simpleoffsetdiroperations, every rename happened will fill new dentry to dest dir's maple...
DEBIAN-CVE-2024-46701
In the Linux kernel, the following vulnerability has been resolved: libfs: fix infinite directory reads for offset dir After we switch tmpfs dir operations from simplediroperations to simpleoffsetdiroperations, every rename happened will fill new dentry to dest dir's maple...
CVE-2024-46701 libfs: fix infinite directory reads for offset dir
In the Linux kernel, the following vulnerability has been resolved: libfs: fix infinite directory reads for offset dir After we switch tmpfs dir operations from simplediroperations to simpleoffsetdiroperations, every rename happened will fill new dentry to dest dir's maple...
CVE-2024-46701 libfs: fix infinite directory reads for offset dir
In the Linux kernel, the following vulnerability has been resolved: libfs: fix infinite directory reads for offset dir After we switch tmpfs dir operations from simplediroperations to simpleoffsetdiroperations, every rename happened will fill new dentry to dest dir's maple...
CVE-2024-46701
CVE-2024-46701 affects the Linux kernel, where libfs offset-dir reads could loop infinitely during concurrent readdir/rename operations after switching tmpfs dir operations to simple_offset_dir_operations. The issue arose because each rename could insert a new dentry into dest dir’s maple tree wi...
CVE-2024-46701 libfs: fix infinite directory reads for offset dir
In the Linux kernel, the following vulnerability has been resolved: libfs: fix infinite directory reads for offset dir After we switch tmpfs dir operations from simplediroperations to simpleoffsetdiroperations, every rename happened will fill new dentry to dest dir's maple...
CVE-2024-46701
In the Linux kernel, the following vulnerability has been resolved: libfs: fix infinite directory reads for offset dir After we switch tmpfs dir operations from simplediroperations to simpleoffsetdiroperations, every rename happened will fill new dentry to dest dir's maple...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from a logic error in handling offset directory reads, which could lead to infinite directory reads...
The vulnerability of the microprogramming software of the 4G LTE Light Industrial M2M Router (NWL-25) relates to the disclosure of information, allowing a intruder to gain unauthorized access to protected data.
The vulnerability of the microprogramming software of the 4G LTE Light Industrial M2M Router NWL-25 relates to the disclosure of information through the reading of directory files. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to...
The vulnerability in the web application for data synchronization with ownCloud allows a hacker to read the list of directory contents or cause a service failure.
The vulnerability of the web application for syncing data with ownCloud exists due to an incorrect restriction on the path to the restricted directory. Exploiting this vulnerability could allow a malicious actor to read the content of the directories or cause service failures by manipulating the...