87 matches found
CVE-2024-42084
An unexpected file truncate flaw was found when opening files with specific parameters in the Linux kernel's file-system. This vulnerability allows a local user to corrupt specific files when having access to these files. Mitigation Mitigation for this issue is either not available or the current...
CVE-2024-42084
In the Linux kernel, the following vulnerability has been resolved: ftruncate: pass a signed offset The old ftruncate syscall, using the 32-bit offt misses a sign extension when called in compat mode on 64-bit architectures. As a result, passing a negative length accidentally succeeds in truncati...
DEBIAN-CVE-2024-42084
In the Linux kernel, the following vulnerability has been resolved: ftruncate: pass a signed offset The old ftruncate syscall, using the 32-bit offt misses a sign extension when called in compat mode on 64-bit architectures. As a result, passing a negative length accidentally succeeds in truncati...
UBUNTU-CVE-2024-42084
In the Linux kernel, the following vulnerability has been resolved: ftruncate: pass a signed offset The old ftruncate syscall, using the 32-bit offt misses a sign extension when called in compat mode on 64-bit architectures. As a result, passing a negative length accidentally succeeds in truncati...
CVE-2024-42084 ftruncate: pass a signed offset
In the Linux kernel, the following vulnerability has been resolved: ftruncate: pass a signed offset The old ftruncate syscall, using the 32-bit offt misses a sign extension when called in compat mode on 64-bit architectures. As a result, passing a negative length accidentally succeeds in truncati...
CVE-2024-42084 ftruncate: pass a signed offset
In the Linux kernel, the following vulnerability has been resolved: ftruncate: pass a signed offset The old ftruncate syscall, using the 32-bit offt misses a sign extension when called in compat mode on 64-bit architectures. As a result, passing a negative length accidentally succeeds in truncati...
CVE-2024-42084
CVE-2024-42084 : Linux kernel vulnerability in ftruncate() on 64-bit architectures. In 32-bit compat mode, off_t sign-extension caused a negative length to be interpreted as a valid positive size, allowing truncation to a size between 2 GiB and 4 GiB. The root cause was the compat syscall using a...
CVE-2024-42084 ftruncate: pass a signed offset
In the Linux kernel, the following vulnerability has been resolved: ftruncate: pass a signed offset The old ftruncate syscall, using the 32-bit offt misses a sign extension when called in compat mode on 64-bit architectures. As a result, passing a negative length accidentally succeeds in truncati...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a failure to symbolically expand an old ftruncate function system call using a 32-bit offt when called in...
Design/Logic Flaw
On an msdosfs filesystem, the 'truncate' or 'ftruncate' system calls under certain circumstances populate the additional space in the file with unallocated data from the underlying disk device, rather than zero bytes. This may permit a user with write access to files on a msdosfs filesystem to re...
CVE-2023-5368
CVE-2023-5368 affects the msdosfs driver on FreeBSD. When using truncate or ftruncate to extend a file, the added space can be populated with unallocated data from the underlying disk device instead of zeros, allowing a user with write access to read unintended data (e.g., from a previously delet...
CVE-2023-5368 msdosfs data disclosure
On an msdosfs filesystem, the 'truncate' or 'ftruncate' system calls under certain circumstances populate the additional space in the file with unallocated data from the underlying disk device, rather than zero bytes. This may permit a user with write access to files on a msdosfs filesystem to re...
kernel: mm/secretmem: fix panic when growing a memfd_secret
In the Linux kernel, the following vulnerability has been resolved: mm/secretmem: fix panic when growing a memfdsecret When one tries to grow an existing memfdsecret with ftruncate, one gets a panic 1. For example, doing the following reliably induces the panic: fd = memfdsecret; ftruncatefd, 10;...
SUSE CVE-2006-0554
Linux kernel 2.6 before 2.6.15.5 allows local users to obtain sensitive information via a crafted XFS ftruncate call, which may return stale data...
CVE-2018-18281
Since Linux kernel version 3.2, the mremap syscall performs TLB flushes after dropping pagetable locks. If a syscall such as ftruncate removes entries from the pagetables of a task that is in the middle of mremap, a stale TLB entry can remain for a short time that permits access to a physical pag...
kernel: TLB flush happens too late on mremap
Since Linux kernel version 3.2, the mremap syscall performs TLB flushes after dropping pagetable locks. If a syscall such as ftruncate removes entries from the pagetables of a task that is in the middle of mremap, a stale TLB entry can remain for a short time that permits access to a physical pag...
kernel: TLB flush happens too late on mremap
Since Linux kernel version 3.2, the mremap syscall performs TLB flushes after dropping pagetable locks. If a syscall such as ftruncate removes entries from the pagetables of a task that is in the middle of mremap, a stale TLB entry can remain for a short time that permits access to a physical pag...
openSUSE Security Update : samba (openSUSE-2019-2458)
This update for samba fixes the following issues : Security issues fixed : - CVE-2019-14847: User with 'get changes' permission can crash AD DC LDAP server via dirsync bsc1154598. - CVE-2019-10218: Client code can return filenames containing path separators bsc1144902. - CVE-2019-14833: Fixed...
Security update for samba (important)
openSUSE Security Update: Security update for samba Announcement ID: openSUSE-SU-2019:2458-1 Rating: important References: 1125601 1127153 1130245 1134452 1144902 1154289 1154598 Cross-References: CVE-2019-10218 CVE-2019-14833 CVE-2019-14847 Affected Products: openSUSE Leap 15.0 An update that...
openSUSE Security Update : samba (openSUSE-2019-1292)
This update for samba fixes the following issues : Security issue fixed : - CVE-2019-3880: Fixed a path/symlink traversal vulnerability, which allowed an unprivileged user to save registry files outside a share bsc1131060. Non-security issues fixed : - Fix vfsceph ftruncate and fallocate handling...