119 matches found
The vulnerability of the f2fs_filemap_fault() function in the fs/f2fs/file.c file of the f2fs file system in the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the f2fsfilemapfault function in the fs/f2fs/file.c file of the f2fs file system in the Linux operating system is related to the reutilization of previously released memory. Exploiting this vulnerability could allow an attacker to trigger a service failure...
SUSE CVE-2024-27070
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid use-after-free issue in f2fsfilemapfault syzbot reports a f2fs bug as below: BUG: KASAN: slab-use-after-free in f2fsfilemapfault+0xd1/0x2c0 fs/f2fs/file.c:49 Read of size 8 at addr ffff88807bb22680 by task...
UBUNTU-CVE-2024-27070
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid use-after-free issue in f2fsfilemapfault syzbot reports a f2fs bug as below: BUG: KASAN: slab-use-after-free in f2fsfilemapfault+0xd1/0x2c0 fs/f2fs/file.c:49 Read of size 8 at addr ffff88807bb22680 by task...
PT-2024-3374 · Linux +2 · Linux Kernel +2
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.7.0 Description: The issue is related to a use-after-free problem in the f2fs filemap fault function. This occurs because vmf-vma may not be alive after filemap fault, potentially causing a use-after-free issu...
kernel: filemap: Handle sibling entries in filemap_get_read_batch()
In the Linux kernel, the following vulnerability has been resolved: filemap: Handle sibling entries in filemapgetreadbatch If a read races with an invalidation followed by another read, it is possible for a folio to be replaced with a higher-order folio. If that happens, we'll see a sibling entry...
SUSE CVE-2008-3535
Off-by-one error in the ioviteradvance function in mm/filemap.c in the Linux kernel before 2.6.27-rc2 allows local users to cause a denial of service system crash via a certain sequence of file I/O operations with readv and writev, as demonstrated by testcases/kernel/fs/ftest/ftest03 from the Lin...
GSD-2022-1004277 filemap: Handle sibling entries in filemap_get_read_batch()
filemap: Handle sibling entries in filemapgetreadbatch This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.18.8 by commit...
GSD-2022-1004260 filemap: Fix serialization adding transparent huge pages to page cache
filemap: Fix serialization adding transparent huge pages to page cache This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.18.8 by commit...
GSD-2022-1002578 filemap: Cache the value of vm_flags
filemap: Cache the value of vmflags This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.18.4 by commit db58eef8cca9a94ebc115dfdde33b4e3e0e217c6, ...
GSD-2022-1000821 mm/filemap: Fix handling of THPs in generic_file_buffered_read()
mm/filemap: Fix handling of THPs in genericfilebufferedread This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.26 by commit...
GSD-2021-1002193 mm: filemap: check if THP has hwpoisoned subpage for PMD page fault
mm: filemap: check if THP has hwpoisoned subpage for PMD page fault This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15 by commit...
UVI-2021-1002193 mm: filemap: check if THP has hwpoisoned subpage for PMD page fault
mm: filemap: check if THP has hwpoisoned subpage for PMD page fault This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15 by commit...
GSD-2021-1002124 mm: filemap: check if THP has hwpoisoned subpage for PMD page fault
mm: filemap: check if THP has hwpoisoned subpage for PMD page fault This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.14.16 by commit...
UVI-2021-1002124 mm: filemap: check if THP has hwpoisoned subpage for PMD page fault
mm: filemap: check if THP has hwpoisoned subpage for PMD page fault This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.14.16 by commit...
CVE-2020-0409
In create of FileMap.cpp, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-8.0 Android-8...
ASB-A-156997193
In create of FileMap.cpp, there is a possible out of bounds write due to an integer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...
Linux kernel 'mm/filemap.c' denial of service vulnerability
The Linux kernel is the kernel used by the operating system Linux, released by the Linux Foundation in the United States. A denial of service vulnerability exists in the file mm/filemap.c in versions of Linux kernel prior to 2.6.25. A local attacker can exploit this vulnerability to cause a denia...
CVE-2008-7316
mm/filemap.c in the Linux kernel before 2.6.25 allows local users to cause a denial of service infinite loop via a writev system call that triggers an iovec of zero length, followed by a page fault for an iovec of nonzero length...
kernel: fix off-by-one error in iov_iter_advance()
Off-by-one error in the ioviteradvance function in mm/filemap.c in the Linux kernel before 2.6.27-rc2 allows local users to cause a denial of service system crash via a certain sequence of file I/O operations with readv and writev, as demonstrated by testcases/kernel/fs/ftest/ftest03 from the Lin...