Lucene search
K

1073 matches found

Cvelist
Cvelist
added 2026/06/03 3:49 p.m.44 views

CVE-2026-46251 btrfs: fix block_group_tree dirty_list corruption

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix blockgrouptree dirtylist corruption When the incompat flag EXTENTTREEV2 is set, we unconditionally add the block group tree to the switchcommits list before calling switchcommitroots, as we do for the tree root and the...

8.4CVSS0.00132EPSS
Exploits0References6
NVD
NVD
added 2026/06/03 2:16 p.m.15 views

CVE-2025-70101

An out-of-bounds read in the ext4extbinsearchidx function in src/ext4extent.c of the lwext4 1.0.0 library allows attackers to cause a denial of service by supplying a specially crafted ext4 filesystem image. The vulnerability occurs due to insufficient validation of extent header fields before...

6.5CVSS0.0028EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2026/06/03 12:0 a.m.8 views

CVE-2025-70101

An out-of-bounds read in the ext4extbinsearchidx function in src/ext4extent.c of the lwext4 1.0.0 library allows attackers to cause a denial of service by supplying a specially crafted ext4 filesystem image. The vulnerability occurs due to insufficient validation of extent header fields before...

5.8AI score0.0028EPSS
Exploits1References3
EUVD
EUVD
added 2026/06/03 12:0 a.m.12 views

EUVD-2025-210055

An out-of-bounds read in the ext4extbinsearchidx function in src/ext4extent.c of the lwext4 1.0.0 library allows attackers to cause a denial of service by supplying a specially crafted ext4 filesystem image. The vulnerability occurs due to insufficient validation of extent header fields before...

6.5CVSS5.8AI score0.0028EPSS
Exploits1References3
CVE
CVE
added 2026/06/03 12:0 a.m.18 views

CVE-2025-70101

lwext4 1.0.0 exposes an out-of-bounds read in ext4_ext_binsearch_idx (src/ext4_extent.c) that can trigger denial of service when processing a crafted ext4 image. The vulnerability stems from insufficient validation of extent header fields prior to performing a binary search over extent index entr...

6.5CVSS5.8AI score0.0028EPSS
Exploits1References4Affected Software1
Positive Technologies
Positive Technologies
added 2026/06/03 12:0 a.m.21 views

PT-2026-45935

Name of the Vulnerable Software and Affected Versions lwext4 version 1.0.0 Description An out-of-bounds read exists in the ext4 ext binsearch idx function within the src/ext4 extent.c file. This occurs because extent header fields are not sufficiently validated before a binary search is performed...

6.5CVSS5.4AI score0.0028EPSS
Exploits1References8
CNNVD
CNNVD
added 2026/06/03 12:0 a.m.8 views

lwext4 安全漏洞

lwext4 is an embedded library developed by Grzegorz Kostka for microcontrollers, which provides ext2/3/4 file systems. Version 1.0.0 of lwext4 contains a security vulnerability. This vulnerability arises from insufficient validation of the extent header fields in the ext4extbinsearchidx function,...

6.5CVSS5.3AI score0.0028EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/06/03 12:0 a.m.47 views

CVE-2025-70101

An out-of-bounds read in the ext4extbinsearchidx function in src/ext4extent.c of the lwext4 1.0.0 library allows attackers to cause a denial of service by supplying a specially crafted ext4 filesystem image. The vulnerability occurs due to insufficient validation of extent header fields before...

0.0028EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2026/06/03 12:0 a.m.16 views

PT-2026-46014

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the btrfs file system where the block group tree dirty list can become corrupted. When the EXTENT TREE V2 incompat flag is set, the block group tree is unconditionally...

8.4CVSS5.8AI score0.00132EPSS
Exploits0
CNNVD
CNNVD
added 2026/06/03 12:0 a.m.7 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the btrfs file system’s use of listaddtail to update the dirtylist for blockgrouptree when settin...

8.4CVSS5.4AI score0.00132EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2026/06/03 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2026-46194

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - f2fs: fix nodecnt race between extent node destroy and writeback f2fsdestroyextentnode does not set FINOEXTENT before clearing extent nodes. When called from...

4.7CVSS6.1AI score0.00093EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/05/29 1:15 a.m.11 views

SUSE CVE-2026-46194

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix nodecnt race between extent node destroy and writeback f2fsdestroyextentnode does not set FINOEXTENT before clearing extent nodes. When called from f2fsdropinode with ISYNC set, concurrent kworker writeback can insert n...

4.7CVSS5.8AI score0.00093EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/05/28 9:9 p.m.11 views

CVE-2026-46194

A flaw was found in the Linux kernel's f2fs filesystem. A race condition exists between the f2fsdestroyextentnode function and concurrent writeback operations. This occurs because f2fsdestroyextentnode does not properly set a flag FINOEXTENT before clearing extent nodes, allowing new extent nodes...

4.7CVSS5.8AI score0.00093EPSS
Exploits0References4
NVD
NVD
added 2026/05/28 10:16 a.m.14 views

CVE-2026-46194

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix nodecnt race between extent node destroy and writeback f2fsdestroyextentnode does not set FINOEXTENT before clearing extent nodes. When called from f2fsdropinode with ISYNC set, concurrent kworker writeback can insert n...

4.7CVSS0.00093EPSS
Exploits0References5
OSV
OSV
added 2026/05/28 10:16 a.m.14 views

UBUNTU-CVE-2026-46194

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix nodecnt race between extent node destroy and writeback f2fsdestroyextentnode does not set FINOEXTENT before clearing extent nodes. When called from f2fsdropinode with ISYNC set, concurrent kworker writeback can insert n...

4.7CVSS5.7AI score0.00093EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2026/05/28 9:36 a.m.8 views

CVE-2026-46194

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix nodecnt race between extent node destroy and writeback f2fsdestroyextentnode does not set FINOEXTENT before clearing extent nodes. When called from f2fsdropinode with ISYNC set, concurrent kworker writeback can insert n...

4.7CVSS5.7AI score0.00093EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/05/28 9:36 a.m.12 views

CVE-2026-46194

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix nodecnt race between extent node destroy and writeback f2fsdestroyextentnode does not set FINOEXTENT before clearing extent nodes. When called from f2fsdropinode with ISYNC set, concurrent kworker writeback can insert n...

5.7AI score0.00093EPSS
Exploits0References6Affected Software1
EUVD
EUVD
added 2026/05/28 9:36 a.m.23 views

EUVD-2026-32821

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix nodecnt race between extent node destroy and writeback f2fsdestroyextentnode does not set FINOEXTENT before clearing extent nodes. When called from f2fsdropinode with ISYNC set, concurrent kworker writeback can insert n...

5.8AI score0.00093EPSS
Exploits0References5
CVE
CVE
added 2026/05/28 9:36 a.m.23 views

CVE-2026-46194

CVE-2026-46194 is a Linux kernel/f2fs race condition where f2fs_destroy_extent_node() clears extent nodes without FI_NO_EXTENT, allowing concurrent writeback to insert nodes and trigger a bug check. The issue arises when dropping inodes with I_SYNC during writeback, leading to a potential crash/D...

4.7CVSS5.8AI score0.00093EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2026/05/28 9:36 a.m.35 views

CVE-2026-46194 f2fs: fix node_cnt race between extent node destroy and writeback

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix nodecnt race between extent node destroy and writeback f2fsdestroyextentnode does not set FINOEXTENT before clearing extent nodes. When called from f2fsdropinode with ISYNC set, concurrent kworker writeback can insert n...

0.00093EPSS
Exploits0References5
Rows per page
Query Builder