154 matches found
Astra Linux - уязвимость в linux
An out-of-bounds memory access flaw was discovered in the fs/f2fs/node.c file within the f2fs module of the Linux kernel, in versions prior to 5.12.0-rc4. A failure in the bounds check allows a local attacker to gain access to out-of-bounds memory, resulting in a system crash or the leakage of...
Astra Linux - уязвимость в linux-5.10, linux
In the Linux kernel, the following vulnerability has been resolved: f2fs: fixed the sanity check on summary info As Wenqing Liu reported in bugzilla: https://bugzilla.kernel.org/showbug.cgi?id=216456 BUG: KASAN: use-after-free in recoverdata+0x63ae/0x6ae0 f2fs Read of size 4 at addr...
Astra Linux - уязвимость в linux-6.1
In the Linux kernel, the following vulnerability has been resolved: f2fs: Assign CURSEGALLDATAATGC if blkaddr is valid mkdir /mnt/test/comp f2fsio.setflagscompression = /mnt/test/comp dd if=/dev/zero of=/mnt/test/comp/testfile bs=16k count=1 truncate --size 13 /mnt/test/comp/testfile In the above...
Astra Linux - уязвимость в linux-5.10, linux-5.15
In the Linux kernel, the following vulnerability has been resolved: f2fs: A fix was made to avoid potential memory corruption in updateiostatlatency. A sanity check for iotype was added to prevent potential memory corruption. This addresses the compile error below: fs/f2fs/iostat.c:231...
OESA-2026-1865 kernel security update
The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to detect potential corrupted nid in freenidlist As reported, on-disk footer.ino and footer.nid is the same and out-of-range, let's add sanity check on...
Linux Distros Unpatched Vulnerability : CVE-2026-23265
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - f2fs: fix to do sanity check on node footer in read,writeendio ----------- cut here ------------ kernel BUG at fs/f2fs/data.c:358! Call Trace:...
Unity Linux 20.1070a Security Update: kernel (UTSA-2026-005699)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005699 advisory. In the Linux kernel, the following vulnerability has been resolved: f2fs: prevent kernel warning due to negative inlink from corrupted image WARNING: CPU: 1 PID: 942...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001343)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001343 advisory. An issue was discovered in fs/f2fs/super.c in the Linux kernel through 4.17.3, which does not properly validate secsperzone in a corrupted f2fs image, as demonstrate...
Linux Distros Unpatched Vulnerability : CVE-2023-54124
"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - f2fs: fix to drop all dirty pages during umount if cperror is set xfstest generic/361 reports a bug as below: f2fsbugonsbi, sbi-fsyncnodenum %NASLMINLEVEL 8090...
Linux Distros Unpatched Vulnerability : CVE-2025-68315
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - f2fs: fix to detect potential corrupted nid in freenidlist As reported, on-disk footer.ino and footer.nid is the same and out-of-range, let's add sanity check o...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990550)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990550 advisory. In the Linux kernel, the following vulnerability has been resolved: f2fs: fix dereference of stale list iterator after loop body The list iterator variable will be a...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988846)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988846 advisory. In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid racing on fsyncentryslab by multi filesystem instances As syzbot reported, the...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989693)
"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989693 advisory. In the Linux kernel, the following vulnerability has been resolved: f2fs: avoid format-overflow warning With gcc and W=1 option, there's a warning like this:...
EUVD-2022-54804
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix dereference of stale list iterator after loop body The list iterator variable will be a bogus pointer if no break was hit. Dereferencing it cur-page in this case could load an out-of-bounds/undefined value making it...
EUVD-2022-54801
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to do sanity check on inlinedots inode As Wenqing reported in bugzilla: https://bugzilla.kernel.org/showbug.cgi?id=215765 It will cause a kernel panic with steps: - mkdir mnt - mount tmp40.img mnt - ls mnt...
EUVD-2022-54865
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to clear dirty inode in f2fsevictinode As Yanming reported in bugzilla: https://bugzilla.kernel.org/showbug.cgi?id=215904 The kernel message is shown below: kernel BUG at fs/f2fs/inode.c:825! Call Trace: evict+0x282/0x4...
EUVD-2022-54971
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix missing free nid in f2fshandlefailedinode This patch fixes xfstests/generic/475 failure. 293.680694 F2FS-fs dm-1: May loss orphan inode, run fsck to fix. 293.685358 Buffer I/O error on dev dm-1, logical block 8388592,...
EUVD-2017-9333
Malware in sbrugna...
EUVD-2025-11164
Malicious code in bioql PyPI...
EUVD-2025-13073
Malicious code in bioql PyPI...