24 matches found
CVE-2026-4206
CVE-2026-4206 describes a remote command-injection flaw in multiple D-Link NAS/DVR devices (DNS-120 series, DNS-320/321/325/326/327L, DNS-340L, DNS-343/345, DNS-1100-4, DNS-1200-05, DNS-1550-04, DNR/DNS variants) affecting the disk-management CGI endpoint /cgi-bin/dsk_mgr.cgi. The vulnerability t...
CVE-2026-4206
A vulnerability was found in D-Link DNS-120, DNR-202L, DNS-315L, DNS-320, DNS-320L, DNS-320LW, DNS-321, DNR-322L, DNS-323, DNS-325, DNS-326, DNS-327L, DNR-326, DNS-340L, DNS-343, DNS-345, DNS-726-4, DNS-1100-4, DNS-1200-05 and DNS-1550-04 up to 20260205. This affects the function...
MiracleLinux 7 : e2fsprogs-1.42.9-19.el7 (AXSA:2020-637:03)
The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-637:03 advisory. e2fsprogs: Crafted ext4 partition leads to out-of-bounds write CVE-2019-5094 e2fsprogs: Out-of-bounds write in e2fsck/rehash.c CVE-2019-5188 Tenable...
Siemens SIMATIC S7-1500 Out-of-bounds Write (CVE-2019-5188)
A code execution vulnerability exists in the directory rehashing functionality of E2fsprogs e2fsck 1.45.4. A specially crafted ext4 directory can cause an out-of-bounds write on the stack, resulting in code execution. An attacker can corrupt a partition to trigger this vulnerability. This plugin...
CVE-2022-49707
In the Linux kernel, the following vulnerability has been resolved: ext4: add reserved GDT blocks check We capture a NULL pointer issue when resizing a corrupt ext4 image which is freshly clear resizeinode feature not run e2fsck. It could be simply reproduced by following steps. The problem is...
SUSE CVE-2019-5188
A code execution vulnerability exists in the directory rehashing functionality of E2fsprogs e2fsck 1.45.4. A specially crafted ext4 directory can cause an out-of-bounds write on the stack, resulting in code execution. An attacker can corrupt a partition to trigger this vulnerability...
PT-2022-6183 · E2Fsprogs · E2Fsprogs
Name of the Vulnerable Software and Affected Versions: E2fsprogs affected versions not specified Description: The issue is related to the debugfs and e2fsck utility tools in the E2fsprogs set of the EMIAS OS operating system. It involves a function being called with incorrectly defined arguments...
A code execution vulnerability exists in the directory rehashing functionality of E2fsprogs e2fsck 1.45.4. A specially crafted ext4 directory can cause an out-of-bounds write on the stack resulting in code execution. An attacker can corrupt a partition to trigger this vulnerability.
...
e2fsprogs: Out-of-bounds write in e2fsck/rehash.c
A code execution vulnerability exists in the directory rehashing functionality of E2fsprogs e2fsck 1.45.4. A specially crafted ext4 directory can cause an out-of-bounds write on the stack, resulting in code execution. An attacker can corrupt a partition to trigger this vulnerability...
CVE-2020-14314
A memory out-of-bounds read flaw was found in the Linux kernel's ext3/ext4 file system, in the way it accesses a directory with broken indexing. This flaw allows a local user to crash the system if the directory exists. The highest threat from this vulnerability is to system availability...
e2fsprogs: Out-of-bounds write in e2fsck/rehash.c
A code execution vulnerability exists in the directory rehashing functionality of E2fsprogs e2fsck 1.45.4. A specially crafted ext4 directory can cause an out-of-bounds write on the stack, resulting in code execution. An attacker can corrupt a partition to trigger this vulnerability...
GLSA-202003-05 : e2fsprogs: Arbitrary code execution
The remote host is affected by the vulnerability described in GLSA-202003-05 e2fsprogs: Arbitrary code execution It was discovered that e2fsprogs incorrectly handled certain ext4 partitions. Impact : A remote attacker could entice a user to process a specially crafted corrupted file system using...
UBUNTU-CVE-2019-5188
A code execution vulnerability exists in the directory rehashing functionality of E2fsprogs e2fsck 1.45.4. A specially crafted ext4 directory can cause an out-of-bounds write on the stack, resulting in code execution. An attacker can corrupt a partition to trigger this vulnerability...
CVE-2019-5188
A code execution vulnerability exists in the directory rehashing functionality of E2fsprogs e2fsck 1.45.4. A specially crafted ext4 directory can cause an out-of-bounds write on the stack, resulting in code execution. An attacker can corrupt a partition to trigger this vulnerability...
CVE-2019-5188
CVE-2019-5188 affects E2fsprogs e2fsck 1.45.4, where the directory rehashing function can trigger an out-of-bounds write on the stack, enabling code execution when processing a specially crafted ext4 directory. The vulnerability allows an attacker to corrupt a partition to trigger this code execu...
CVE-2019-5188
A code execution vulnerability exists in the directory rehashing functionality of E2fsprogs e2fsck 1.45.4. A specially crafted ext4 directory can cause an out-of-bounds write on the stack, resulting in code execution. An attacker can corrupt a partition to trigger this vulnerability...
E2fsprogs e2fsck rehash.c mutate_name() Code Execution Vulnerability
Summary A code execution vulnerability exists in the directory rehashing functionality of E2fsprogs e2fsck 1.45.4. A specially crafted ext4 directory can cause an out-of-bounds write on the stack, resulting in code execution. An attacker can corrupt a partition to trigger this vulnerability. Test...
FreeBSD : e2fsprogs -- maliciously corrupted file systems can trigger buffer overruns in the quota code used by e2fsck (ad3451b9-23e0-11ea-8b36-f1925a339a82)
Ted Y. Ts'o reports : A maliciously corrupted file systems can trigger buffer overruns in the quota code used by e2fsck. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML database : Copyright 2003-2019 Jacques Vidrine and...
MGASA-2019-0296 Updated e2fsprogs packages fix security vulnerability
Updated e2fsprogs packages fix security vulnerability: Lilith of Cisco Talos discovered a buffer overflow flaw in the quota code used by e2fsck from the ext2/ext3/ext4 file system utilities. Running e2fsck on a malformed file system can result in the execution of arbitrary code CVE-2019-5094. The...
Updated e2fsprogs packages fix security vulnerability
Updated e2fsprogs packages fix security vulnerability: Lilith of Cisco Talos discovered a buffer overflow flaw in the quota code used by e2fsck from the ext2/ext3/ext4 file system utilities. Running e2fsck on a malformed file system can result in the execution of arbitrary code CVE-2019-5094. The...