Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001259)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001259 advisory. A flaw was found in the Linux kernel's ext4 filesystem. A local user can cause an out-of-bound write in in fs/jbd2/transaction.c code, a denial of service, and a...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002586)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002586 advisory. A flaw was found in the Linux kernel's ext4 filesystem. A local user can cause an out-of-bounds write in jbd2journaldirtymetadata, a denial of service, and a system...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002636)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002636 advisory. A flaw was found in the Linux kernel's ext4 filesystem. A local user can cause an out-of-bound access in ext4getgroupinfo function, a denial of service, and a system...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001605)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001605 advisory. Linux kernel ext4 filesystem is vulnerable to an out-of-bound access in the ext4extdroprefs function when operating on a crafted ext4 filesystem image. Tenable has...

SUSE CVE-2023-1252

A use-after-free flaw was found in the Linux kernel's Ext4 File System in how a user triggers several file operations simultaneously with the overlay FS usage. This flaw allows a local user to crash or potentially escalate their privileges on the system. Only if patch 9a2544037600 "ovl: fix use...

Linux Kernel Security Vulnerability

The Linux kernel is the kernel used by the Linux Foundation's open source operating system Linux. A security vulnerability exists in the Linux Kernel, which stems from a security vulnerability in ext4...

SUSE CVE-2023-30549

Apptainer is an open source container platform for Linux. There is an ext4 use-after-free flaw that is exploitable through versions of Apptainer 1.1.0 and installations that include apptainer-suid 1.1.8 on older operating systems where that CVE has not been patched. That includes Red Hat Enterpri...

CVE-2023-30549

Apptainer is an open source container platform for Linux. There is an ext4 use-after-free flaw that is exploitable through versions of Apptainer 1.1.0 and installations that include apptainer-suid 1.1.8 on older operating systems where that CVE has not been patched. That includes Red Hat Enterpri...

PT-2023-22775 · Red Hat +1 · Red Hat +1

Name of the Vulnerable Software and Affected Versions: Apptainer versions prior to 1.1.0 Apptainer versions 1.1.0 through 1.1.7 with apptainer-suid versions prior to 1.1.8 Description: Apptainer is an open source container platform for Linux that contains an ext4 use-after-free flaw. This flaw ca...

kernel: ext4: add reserved GDT blocks check

A flaw was found in the ext4 module in the Linux kernel. Resizing a corrupt ext4 image can cause a NULL pointer dereference due to a missing check if the reserved GDT blocks is zero when the resizeinode feature is disabled, resulting in a denial of service...

kernel: out-of-bounds write in ext4_xattr_set_entry in fs/ext4/xattr.c

An out-of-bounds write flaw was found in the Linux kernel’s Ext4 FileSystem in the way it uses a crafted ext4 image. This flaw allows a local user with physical access to crash the system or potentially escalate their privileges on the system...

kernel: stack-out-of-bounds write in jbd2_journal_dirty_metadata function

A flaw was found in the Linux kernel's ext4 filesystem. A local user can cause an out-of-bound write in jbd2journaldirtymetadata, a denial of service, and a system crash by mounting and operating on a crafted ext4 filesystem image...

kernel: out-of-bound access in ext4_ext_drop_refs function with a crafted ext4 image

A flaw was found in the Linux kernel ext4 filesystem. An out-of-bound access is possible in the ext4extdroprefs function when operating on a crafted ext4 filesystem image...

kernel: out-of-bound access in ext4_get_group_info() when mounting and operating a crafted ext4 image

A flaw was found in the Linux kernel's ext4 filesystem. A local user can cause an out-of-bound access in ext4getgroupinfo function, a denial of service, and a system crash by mounting and operating on a crafted ext4 filesystem image...

DEBIAN-CVE-2018-10878

A flaw was found in the Linux kernel's ext4 filesystem. A local user can cause an out-of-bounds write and a denial of service or unspecified other impact is possible by mounting and operating a crafted ext4 filesystem image...

kernel: fs: ext4: fallocate zero range page size > block size BUG()

A flaw was found in the way the Linux kernel's ext4 file system handled the "page size block size" condition when the fallocate zero range functionality was used. A local attacker could use this flaw to crash the system...

Important: Red Hat Security Advisory: kernel-rt security, bug fix, and enhancement update

Updated kernel-rt packages that fix multiple security issues, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, whic...