CVE-2026-53198

In the Linux kernel ksmbd, CVE-2026-53198 describes a use-after-free in a deferred file_lock tied to SMB2_CANCEL handling. A deferred byte-range lock registers async work via setup_async_work() with a cancel_fn and cancel_argv[0] pointing at the file_lock. If the SMB2_CANCEL path frees the file_l...

Astra Linux – Vulnerability in Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: lockd: Other missing fields are set when unlocking files. The vfslockfile function expects that the struct filelock structure is fully initialized by the caller. If the flfile field is NULL after re-exporting NFSv3, an OOP err...

CVE-2022-50302 lockd: set other missing fields when unlocking files

In the Linux kernel, the following vulnerability has been resolved: lockd: set other missing fields when unlocking files vfslockfile expects the struct filelock to be fully initialised by the caller. Re-exported NFSv3 has been seen to Oops if the flfile field is NULL...

Linux Kernel locks_remove_flock()本地竞争条件漏洞

BUGTRAQ ID: 33237 CVECAN ID: CVE-2008-4307 Linux Kernel是开放源码操作系统Linux所使用的内核。 RHEL4/5内核处理POSIX锁定时fcntl调用可能与关闭相同文件描述符出现竞争，本地攻击者可以利用这个漏洞导致拒绝服务或获得权限提升。 fcntl以如下方式获得POSIX锁定： sysfcntl fget dofcntl fcntlsetlk fput if!count fput locksremoveflock fcntlsetlk调用可能阻塞很长时间，允许同一进程中的其他线程关闭文件描述符： sysclose filpclos...