20 matches found
EUVD-2020-27258
Malware in sbrugna...
CVE-2020-6105
An exploitable code execution vulnerability exists in the multiple devices functionality of F2fs-Tools F2fs.Fsck 1.13. A specially crafted f2fs filesystem can cause Information overwrite resulting in a code execution. An attacker can provide a malicious file to trigger this vulnerability...
CVE-2020-6106
An exploitable information disclosure vulnerability exists in the initnodemanager functionality of F2fs-Tools F2fs.Fsck 1.12 and 1.13. A specially crafted filesystem can be used to disclose information. An attacker can provide a malicious file to trigger this vulnerability...
CVE-2020-6104
An exploitable information disclosure vulnerability exists in the getdnodeofdata functionality of F2fs-Tools F2fs.Fsck 1.13. A specially crafted f2fs filesystem can cause information disclosure resulting in a information disclosure. An attacker can provide a malicious file to trigger this...
CVE-2020-6107
An exploitable information disclosure vulnerability exists in the devread functionality of F2fs-Tools F2fs.Fsck 1.13. A specially crafted f2fs filesystem can cause an uninitialized read resulting in an information disclosure. An attacker can provide a malicious file to trigger this vulnerability...
CVE-2020-6107
An exploitable information disclosure vulnerability exists in the devread functionality of F2fs-Tools F2fs.Fsck 1.13. A specially crafted f2fs filesystem can cause an uninitialized read resulting in an information disclosure. An attacker can provide a malicious file to trigger this vulnerability...
Information disclosure
An exploitable information disclosure vulnerability exists in the devread functionality of F2fs-Tools F2fs.Fsck 1.13. A specially crafted f2fs filesystem can cause an uninitialized read resulting in an information disclosure. An attacker can provide a malicious file to trigger this vulnerability...
Information disclosure
An exploitable information disclosure vulnerability exists in the getdnodeofdata functionality of F2fs-Tools F2fs.Fsck 1.13. A specially crafted f2fs filesystem can cause information disclosure resulting in a information disclosure. An attacker can provide a malicious file to trigger this...
CVE-2020-6106
Summary: CVE-2020-6106 is an exploitable information-disclosure vulnerability in the init_node_manager path of F2fs-Tools F2fs.Fsck (versions 1.12 and 1.13). A specially crafted filesystem can cause leakage when a malicious file is processed. The initial description and connected advisories confi...
CVE-2020-6105
An exploitable code execution vulnerability exists in the multiple devices functionality of F2fs-Tools F2fs.Fsck 1.13. A specially crafted f2fs filesystem can cause Information overwrite resulting in a code execution. An attacker can provide a malicious file to trigger this vulnerability...
CVE-2020-6105
An exploitable code execution vulnerability exists in the multiple devices functionality of F2fs-Tools F2fs.Fsck 1.13. A specially crafted f2fs filesystem can cause Information overwrite resulting in a code execution. An attacker can provide a malicious file to trigger this vulnerability...
CVE-2020-6105
CVE-2020-6105 affects F2fs-Tools F2fs.Fsck 1.13. The vulnerability resides in the multiple devices functionality, where a specially crafted f2fs filesystem can trigger information overwrite leading to code execution. An attacker can provide a malicious file to trigger the vulnerability. Affected ...
CVE-2020-6104
CVE-2020-6104 affects F2fs-Tools F2fs.Fsck 1.13, where get_dnode_of_data can disclose information via a specially crafted f2fs filesystem. The linked documents confirm the vulnerability is an information disclosure issue; no exploit details are provided. Mitigation appears in Gentoo GLSA 202101-2...
CVE-2020-6104
An exploitable information disclosure vulnerability exists in the getdnodeofdata functionality of F2fs-Tools F2fs.Fsck 1.13. A specially crafted f2fs filesystem can cause information disclosure resulting in a information disclosure. An attacker can provide a malicious file to trigger this...
CVE-2020-6108
CVE-2020-6108 affects F2fs-Tools F2fs.Fsck 1.13. The vulnerability is a heap buffer overflow in fsck_chk_orphan_node that can lead to code execution when a crafted f2fs filesystem is processed. Exploitation details are provided across multiple sources; the advisory literature notes the impact as ...
CVE-2020-6107
CVE-2020-6107 affects F2fs-tools F2fs.Fsck 1.13. The vulnerability is in the dev_read functionality of F2fs.Fsck, where a specially crafted f2fs filesystem can trigger an uninitialized read, leading to information disclosure. Attacker-controlled input (a malicious file) is sufficient to trigger t...
CVE-2020-6107
An exploitable information disclosure vulnerability exists in the devread functionality of F2fs-Tools F2fs.Fsck 1.13. A specially crafted f2fs filesystem can cause an uninitialized read resulting in an information disclosure. An attacker can provide a malicious file to trigger this vulnerability...
F2fs-Tools F2fs.Fsck fsck_chk_orphan_node Code Execution Vulnerability
Summary An exploitable code execution vulnerability exists in the fsckchkorphannode functionality of F2fs-Tools F2fs.Fsck 1.13. A specially crafted f2fs filesystem can cause a heap buffer overflow resulting in a code execution. An attacker can provide a malicious file to trigger this vulnerabilit...
F2fs-Tools F2fs.Fsck dev_read Information Disclosure Vulnerability
Summary An exploitable information disclosure vulnerability exists in the devread functionality of F2fs-Tools F2fs.Fsck 1.13. A specially crafted f2fs filesystem can cause an uninitialized read resulting in an information disclosure. An attacker can provide a malicious file to trigger this...
F2fs-Tools F2fs.Fsck init_node_manager Information Disclosure Vulnerability
Summary An exploitable information disclosure vulnerability exists in the initnodemanager functionality of F2fs-Tools F2fs.Fsck 1.12 and 1.13. A specially crafted filesystem can be used to disclose information. An attacker can provide a malicious file to trigger this vulnerability. Tested Version...