Lucene search
K

6 matches found

ATTACKERKB
ATTACKERKB
added 2026/05/27 12:58 p.m.8 views

CVE-2026-46078

In the Linux kernel, the following vulnerability has been resolved: erofs: fix the out-of-bounds nameoff handling for trailing dirents Currently we already have boundary-checks for nameoffs, but the trailing dirents are special since the namelens are calculated with strnlen with unchecked nameoff...

7.1CVSS5.7AI score0.00131EPSS
Exploits0References9Affected Software1
CVE
CVE
added 2026/05/27 12:58 p.m.33 views

CVE-2026-46078

Summary: CVE-2026-46078 affects the Linux kernel EROFS filesystem, where trailing dirents can trigger an out-of-bounds read due to incorrect nameoff handling. The root cause is that namelen calculations for trailing dirents use strnlen with unchecked nameoffs, allowing underflow when nameoff >...

7.1CVSS5.8AI score0.00131EPSS
Exploits0References8Affected Software1
OSV
OSV
added 2026/05/27 12:58 p.m.2 views

CVE-2026-46078 erofs: fix the out-of-bounds nameoff handling for trailing dirents

In the Linux kernel, the following vulnerability has been resolved: erofs: fix the out-of-bounds nameoff handling for trailing dirents Currently we already have boundary-checks for nameoffs, but the trailing dirents are special since the namelens are calculated with strnlen with unchecked nameoff...

7.1CVSS5.8AI score0.00131EPSS
Exploits0References11
CNVD
CNVD
added 2026/05/11 12:0 a.m.9 views

Linux kernel fuse_add_dirent_to_cache function buffer overflow vulnerability

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A buffer overflow vulnerability exists in the Linux kernel. The vulnerability stems from the fuseadddirenttocache function not checking if the dirent size exceeds PAGESIZE, whi...

7.8CVSS6AI score0.00127EPSS
Exploits1
EUVD
EUVD
added 2026/05/01 1:53 p.m.6 views

EUVD-2026-26503

In the Linux kernel, the following vulnerability has been resolved: fuse: reject oversized dirents in page cache fuseadddirenttocache computes a serialized dirent size from the server-controlled namelen field and copies the dirent into a single page-cache page. The existing logic only checks...

5.8AI score0.00127EPSS
Exploits1References5
Cvelist
Cvelist
added 2026/05/01 1:53 p.m.34 views

CVE-2026-31694 fuse: reject oversized dirents in page cache

In the Linux kernel, the following vulnerability has been resolved: fuse: reject oversized dirents in page cache fuseadddirenttocache computes a serialized dirent size from the server-controlled namelen field and copies the dirent into a single page-cache page. The existing logic only checks...

7.8CVSS0.00127EPSS
Exploits1References3
Rows per page
Query Builder