Lucene search
K

226 matches found

Debian CVE
Debian CVE
added 2025/06/18 11:3 a.m.7 views

CVE-2022-50205

In the Linux kernel, the following vulnerability has been resolved: ext2: Add more validity checks for inode counts Add checks verifying number of inodes stored in the superblock matches the number computed from number of inodes per group. Also verify we have at least one block worth of inodes pe...

5.5CVSS5.4AI score0.00204EPSS
Exploits0
CVE
CVE
added 2025/06/18 11:3 a.m.26 views

CVE-2022-50205

The CVE-2022-50205 entry corresponds to a Linux kernel vulnerability in ext2 that adds validity checks for inode counts. The root cause is that inodes stored in the superblock must match the computed value from inodes-per-group, and there must be at least one block worth of inodes per group; thes...

5.5CVSS6.3AI score0.00204EPSS
Exploits0References8Affected Software1
Positive Technologies
Positive Technologies
added 2025/06/18 12:0 a.m.7 views

PT-2025-26131 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue concerns the Linux kernel, specifically the ext2 filesystem. It involves adding more validity checks for inode counts to prevent crashes on corrupted filesystems. The checks...

5.6AI score0.00204EPSS
Exploits0References15
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2015-8952

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The mbcache feature in the ext2 and ext4 filesystem implementations in the Linux kernel before 4.6 mishandles xattr block caching, which allows local users to...

5.5CVSS6.7AI score0.00454EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2024/06/11 12:0 a.m.14 views

Fedora: Security Advisory (FEDORA-2024-07342adb87)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6CVSS6.3AI score0.00217EPSS
Exploits0References4
Gentoo Linux
Gentoo Linux
added 2024/02/18 12:0 a.m.22 views

e2fsprogs: Arbitrary Code Execution

Background e2fsprogs is a set of utilities for maintaining the ext2, ext3 and ext4 file systems. Description Multiple vulnerabilities have been discovered in e2fsprogs. Please review the CVE identifiers referenced below for details. Impact An out-of-bounds read/write vulnerability was found in...

7.8CVSS8.1AI score0.01336EPSS
Exploits0
Oracle linux
Oracle linux
added 2023/09/14 12:0 a.m.35 views

Unbreakable Enterprise kernel security update

4.14.35-2047.529.3 - uek-rpm: Update kernel linux-firmware dependency to 20230516-999.26.git6c9e0ed5. Somasundaram Krishnasamy Orabug: 35724203 - LTS version: v4.14.322 Saeed Mirzamohammadi - drm/edid: fix objtool warning in drmcvtmodes Linus Torvalds - mtd: rawnand: omapelm: Fix incorrect type i...

7.1CVSS7.8AI score0.00446EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2023/05/16 12:0 a.m.11 views

PT-2025-38041

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.3.0-rc2-xfstests-00056-g131086faa369 139 Description A flaw exists in the Linux kernel related to the ext2/dax subsystem. Specifically, the ext2 setsize function does not handle page-aligned lengths correctly,...

6CVSS5.8AI score0.00134EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 6:19 a.m.6 views

SUSE CVE-2005-0400

The ext2makeempty function call in the Linux kernel before 2.6.11.6 does not properly initialize memory when creating a block for a new directory entry, which allows local users to obtain potentially sensitive information by reading the block...

2.1CVSS6AI score0.00443EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 6:17 a.m.5 views

SUSE CVE-2005-2801

xattr.c in the ext2 and ext3 file system code for Linux kernel 2.6 does not properly compare the nameindex fields when sharing xattr blocks, which could prevent default ACLs from being applied...

7.5CVSS7.1AI score0.0337EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/02/15 6:13 a.m.4 views

SUSE CVE-2006-6054

The ext2 file system code in Linux kernel 2.6.x allows local users to cause a denial of service crash via an ext2 stream with malformed data structures that triggers an error in the ext2checkpage due to a length that is smaller than the minimum...

4CVSS6.6AI score0.00463EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2023/02/15 5:10 a.m.4 views

SUSE CVE-2015-8952

The mbcache feature in the ext2 and ext4 filesystem implementations in the Linux kernel before 4.6 mishandles xattr block caching, which allows local users to cause a denial of service soft lockup via filesystem operations in environments that use many attributes, as demonstrated by Ceph and Samb...

5.5CVSS7.9AI score0.00454EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:44 a.m.4 views

SUSE CVE-2017-9763

The grubext2readblock function in fs/ext2.c in GNU GRUB before 2013-11-12, as used in shlr/grub/fs/ext2.c in radare2 1.5.0, allows remote attackers to cause a denial of service excessive stack use and application crash via a crafted binary file, related to use of a variable-size stack array...

4.1CVSS6.7AI score0.04153EPSS
Exploits0References5
OSV
OSV
added 2023/01/17 5:43 p.m.8 views

GSD-2023-1000487 ext2: unbugger ext2_empty_dir()

ext2: unbugger ext2emptydir This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.18 by commit 84b35f6efccec6c7f5446dfbdcd3cbf896e644ad, it was...

7.2AI score
Exploits0
Positive Technologies
Positive Technologies
added 2023/01/17 12:0 a.m.4 views

PT-2023-33564 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.18 Description: The issue is related to the ext2 empty dir function in the Linux Kernel. It was introduced in version v5.19 and fixed in version v6.0.18. The actual impact and attack plausibility have not y...

7.2AI score
Exploits0References1
RedHat Linux
RedHat Linux
added 2022/11/15 3:6 p.m.25 views

Moderate: Red Hat Security Advisory: e2fsprogs security update

An update for e2fsprogs is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

7.8CVSS6.7AI score0.01336EPSS
Exploits0References3
OSV
OSV
added 2022/11/15 6:22 a.m.28 views

RLSA-2022:8361 Moderate: e2fsprogs security update

The e2fsprogs packages provide a number of utilities for creating, checking, modifying, and correcting the ext2, ext3, and ext4 file systems. Security Fixes: e2fsprogs: out-of-bounds read/write via crafted filesystem CVE-2022-1304 For more details about the security issues, including the impact, ...

5.8CVSS7.4AI score0.01336EPSS
Exploits0References2
Rockylinux
Rockylinux
added 2022/11/15 6:22 a.m.26 views

e2fsprogs security update

An update is available for e2fsprogs. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The e2fsprogs packages provide a number of utilities for creating, checking...

7.8CVSS7.7AI score0.01336EPSS
Exploits0
AlmaLinux
AlmaLinux
added 2022/11/15 12:0 a.m.22 views

Moderate: e2fsprogs security update

The e2fsprogs packages provide a number of utilities for creating, checking, modifying, and correcting the ext2, ext3, and ext4 file systems. Security Fixes: e2fsprogs: out-of-bounds read/write via crafted filesystem CVE-2022-1304 For more details about the security issues, including the impact, ...

7.8CVSS7.8AI score0.01336EPSS
Exploits0References4
OSV
OSV
added 2022/11/15 12:0 a.m.22 views

ALSA-2022:8361 Moderate: e2fsprogs security update

The e2fsprogs packages provide a number of utilities for creating, checking, modifying, and correcting the ext2, ext3, and ext4 file systems. Security Fixes: e2fsprogs: out-of-bounds read/write via crafted filesystem CVE-2022-1304 For more details about the security issues, including the impact, ...

7.8CVSS7.5AI score0.01336EPSS
Exploits0References4
Rows per page
Query Builder