Lucene search
K

75 matches found

Positive Technologies
Positive Technologies
added 2026/06/24 12:0 a.m.7 views

PT-2026-51909

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the erofs component where the lcn variable was typed as unsigned long or unsigned int. On 32-bit platforms, this variable is only 32 bits wide, leading to the truncati...

5.9AI score0.00168EPSS
Exploits0References13
SUSE CVE
SUSE CVE
added 2026/06/10 2:25 a.m.10 views

SUSE CVE-2026-46329

In the Linux kernel, the following vulnerability has been resolved: erofs: handle end of filesystem properly for file-backed mounts I/O requests beyond the end of the filesystem should be zeroed out, similar to loopback devices and that is what we expect...

5.4AI score0.00156EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/05/27 12:0 a.m.10 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from an issue with the erofs file system where the inline data reading of ztailpacking pclusters may lead to...

5.8AI score0.00125EPSS
Exploits0References4
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: erofs: Fixed a memory leak caused by LZMA global compressed deduplication. When testing microLZMA EROFS images with the new global compressed deduplication feature enabled -Ededupe, I discovered that some short-lived temporary...

5.5CVSS5.2AI score0.00222EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: erofs: fixed buffer copy overflow in the ztailpacking feature I received the following KASAN reports: 46.959378 ================================================================== 46.960430 BUG: KASAN: use-after-free in...

7.8CVSS6.3AI score0.00249EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: erofs: corrected incorrect kunmap when using LZMA on HIGHMEM platforms As shown in the call trace, the root cause is incorrect pages handled by kunmap: BUG: Kernel NULL pointer dereferencing, address: 00000000 CPU: 1 PID: 40 Comm...

5.5CVSS5.9AI score0.00152EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/05/08 2:20 a.m.7 views

SUSE CVE-2026-43166

In the Linux kernel, the following vulnerability has been resolved: erofs: fix interlaced plain identification for encoded extents Only plain data whose start position and on-disk physical length are both aligned to the block size should be classified as interlaced plain extents. Otherwise, it mu...

5.7AI score0.00132EPSS
Exploits0References3
EUVD
EUVD
added 2026/05/06 12:30 p.m.8 views

EUVD-2026-27729

In the Linux kernel, the following vulnerability has been resolved: erofs: fix interlaced plain identification for encoded extents Only plain data whose start position and on-disk physical length are both aligned to the block size should be classified as interlaced plain extents. Otherwise, it mu...

5.7AI score0.00132EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/02/16 12:0 a.m.10 views

Oracle Linux 10 : kernel (ELSA-2026-2721)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-2721 advisory. - nvme-tcp: fix NULL pointer dereferences in nvmettcpbuildpduiovec CKI Backport Bot RHEL-144335 CVE-2026-22998 - smc: Fix use-after-free in...

7.8CVSS5.9AI score0.0071EPSS
Exploits0References8
NVD
NVD
added 2026/01/13 4:16 p.m.4 views

CVE-2025-68794

In the Linux kernel, the following vulnerability has been resolved: iomap: adjust read range correctly for non-block-aligned positions iomapadjustreadrange assumes that the position and length passed in are block-aligned. This is not always the case however, as shown in the syzbot generated case...

0.00168EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2025/12/25 12:54 a.m.5 views

SUSE CVE-2023-54132

In the Linux kernel, the following vulnerability has been resolved: erofs: stop parsing non-compact HEAD index if clusterofs is invalid Syzbot generated a crafted image 1 with a non-compact HEAD index of clusterofs 33024 while valid numbers should be 0 lclustersize-1, which causes the following...

5.5CVSS6.2AI score0.0018EPSS
Exploits0References5
NVD
NVD
added 2025/12/24 1:16 p.m.9 views

CVE-2023-54132

In the Linux kernel, the following vulnerability has been resolved: erofs: stop parsing non-compact HEAD index if clusterofs is invalid Syzbot generated a crafted image 1 with a non-compact HEAD index of clusterofs 33024 while valid numbers should be 0 lclustersize-1, which causes the following...

0.0018EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2025/12/16 2:32 p.m.8 views

CVE-2025-68251

In the Linux kernel, the following vulnerability has been resolved: erofs: avoid infinite loops due to corrupted subpage compact indexes Robert reported an infinite loop observed by two crafted images. The root cause is that clusterofs can be larger than lclustersize for !NONHEAD lclusters in...

5.7AI score0.00169EPSS
Exploits0References4Affected Software1
EUVD
EUVD
added 2025/12/04 3:31 p.m.5 views

EUVD-2025-201218

In the Linux kernel, the following vulnerability has been resolved: erofs: fix crafted invalid cases for encoded extents Robert recently reported two corrupted images that can cause system crashes, which are related to the new encoded extents introduced in Linux 6.15: - The first one 1 has plen !...

5.7AI score0.00161EPSS
Exploits0References3
OSV
OSV
added 2025/12/03 9:21 a.m.12 views

USN-7769-1 linux, linux-aws, linux-gcp, linux-gcp-6.14, linux-oracle, linux-realtime vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PowerPC architecture; - x86 architecture; - Block layer subsystem; - Cryptographic API; - ACP...

7.8CVSS6.6AI score0.01345EPSS
Exploits8References184
OSV
OSV
added 2025/10/08 8:22 a.m.6 views

USN-7789-2 linux-raspi vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PowerPC architecture; - x86 architecture; - Block layer subsystem; - Cryptographic API; - ACP...

7.8CVSS6.6AI score0.01345EPSS
Exploits8References185
OSV
OSV
added 2025/09/26 7:47 a.m.10 views

USN-7769-3 linux-aws-6.14, linux-hwe-6.14 vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PowerPC architecture; - x86 architecture; - Block layer subsystem; - Cryptographic API; - ACP...

7.8CVSS6.8AI score0.01345EPSS
Exploits8References185
OSV
OSV
added 2025/09/24 3:20 p.m.12 views

USN-7769-2 linux-realtime-6.14 vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PowerPC architecture; - x86 architecture; - Block layer subsystem; - Cryptographic API; - ACP...

7.8CVSS6.6AI score0.01345EPSS
Exploits8References184
OSV
OSV
added 2025/09/24 1:30 p.m.8 views

USN-7770-1 linux-azure vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PowerPC architecture; - x86 architecture; - Block layer subsystem; - Cryptographic API; - ACP...

7.8CVSS6.6AI score0.01345EPSS
Exploits8References185
Tenable Nessus
Tenable Nessus
added 2025/08/29 12:0 a.m.7 views

Ubuntu 25.04 : Linux kernel (Azure) vulnerabilities (USN-7721-1)

"The remote Ubuntu 25.04 host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7721-1 advisory. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in th...

9.8CVSS7.4AI score0.09796EPSS
Exploits5References107
Rows per page
Query Builder