CVE-2026-45920

In the Linux kernel, the following vulnerability has been resolved: ext4: fix dirtyclusters double decrement on fs shutdown fstests test generic/388 occasionally reproduces a warning in ext4putsuper associated with the dirty clusters count: WARNING: CPU: 7 PID: 76064 at fs/ext4/super.c:1324...

CVE-2024-39276

CVE-2024-39276: Linux kernel ext4 mb_cache_entry e_refcnt leak fixed. In ext4_xattr_block_cache_find(), on failure from ext4_sb_bread() returning -ENOMEM, the ce’s e_refcnt could leak, triggering mb_cache_destroy(). Quick fix: call mb_cache_entry_put() on the -ENOMEM error path. Connected Astra L...

Use-after-free

kernel is vulnerable to use-after-free. It is possible due to a flaw in ext4putsuper...

kernel: mounting a crafted ext4 filesystem image, performing some operations, and unmounting can lead to a use-after-free in ext4_put_super in fs/ext4/super.c

A flaw was found in the Linux kernel's ext4unlink function. An attacker could corrupt memory or escalate privileges when deleting a file from a recently unmounted specially crafted ext4 filesystem, including local, USB, and iSCSI...