Lucene search
K

1716 matches found

SUSE CVE
SUSE CVE
added 2026/04/23 1:25 a.m.6 views

SUSE CVE-2026-31465

In the Linux kernel, the following vulnerability has been resolved: writeback: don't block sync for filesystems with no data integrity guarantees Add a SBINODATAINTEGRITY superblock flag for filesystems that cannot guarantee data persistence on sync eg fuse. For superblocks with this flag set, sy...

5.4AI score0.00121EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/04/22 6:7 p.m.6 views

CVE-2026-31465

A flaw was found in the Linux kernel. This vulnerability occurs in the writeback mechanism, specifically when handling filesystems that do not guarantee data persistence on synchronization sync operations, such as fuse and fuse-overlayfs. Under certain conditions, like during a suspend-to-RAM eve...

5.5CVSS5.7AI score0.00121EPSS
Exploits0References4
EUVD
EUVD
added 2026/04/22 3:31 p.m.9 views

EUVD-2026-24809

In the Linux kernel, the following vulnerability has been resolved: writeback: don't block sync for filesystems with no data integrity guarantees Add a SBINODATAINTEGRITY superblock flag for filesystems that cannot guarantee data persistence on sync eg fuse. For superblocks with this flag set, sy...

5.4AI score0.00121EPSS
Exploits0References4
NVD
NVD
added 2026/04/22 2:16 p.m.5 views

CVE-2026-31465

In the Linux kernel, the following vulnerability has been resolved: writeback: don't block sync for filesystems with no data integrity guarantees Add a SBINODATAINTEGRITY superblock flag for filesystems that cannot guarantee data persistence on sync eg fuse. For superblocks with this flag set, sy...

5.5CVSS0.00121EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/04/22 1:53 p.m.30 views

CVE-2026-31465 writeback: don't block sync for filesystems with no data integrity guarantees

In the Linux kernel, the following vulnerability has been resolved: writeback: don't block sync for filesystems with no data integrity guarantees Add a SBINODATAINTEGRITY superblock flag for filesystems that cannot guarantee data persistence on sync eg fuse. For superblocks with this flag set, sy...

0.00121EPSS
Exploits0References3
CVE
CVE
added 2026/04/22 1:53 p.m.13 views

CVE-2026-31465

CVE-2026-31465 in the Linux kernel concerns the writeback path for filesystems without data integrity guarantees (e.g., fuse). The fix adds a SB_I_NO_DATA_INTEGRITY superblock flag; when set, sync kicks off writeback of dirty inodes but does not wait for flusher threads to finish. The change move...

5.5CVSS5.4AI score0.00121EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2026/04/22 12:0 a.m.5 views

PT-2026-34370

In the Linux kernel, the following vulnerability has been resolved: writeback: don't block sync for filesystems with no data integrity guarantees Add a SB I NO DATA INTEGRITY superblock flag for filesystems that cannot guarantee data persistence on sync eg fuse. For superblocks with this flag set...

5.4AI score0.00121EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.3 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-012997)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-012997 advisory. In the Linux kernel, the following vulnerability has been resolved: fuse: fix livelock in synchronous file put from fuseblk workers I observed a hang when running...

5.6AI score0.00167EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.6 views

Unity Linux 20.1050e / 20.1070e Security Update: kernel (UTSA-2026-011205)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011205 advisory. In the Linux kernel, the following vulnerability has been resolved: fuse: fix livelock in synchronous file put from fuseblk workers I observed a hang when running...

5.6AI score0.00167EPSS
Exploits0References4
OSV
OSV
added 2026/04/17 9:36 a.m.11 views

USN-8179-2 linux-aws-fips, linux-fips, linux-gcp-fips vulnerabilities

Josh Eads, Kristoffer Janke, Eduardo Vela Nava, Tavis Ormandy, and Matteo Rizzo discovered that some AMD Zen processors did not properly verify the signature of CPU microcode. This flaw is known as EntrySign. A privileged attacker could possibly use this issue to cause load malicious CPU microcod...

9.8CVSS7.3AI score0.00378EPSS
Exploits0References175
Ubuntu
Ubuntu
added 2026/04/17 9:26 a.m.8 views

USN-8184-1: Linux kernel (Real-time) vulnerabilities

Josh Eads, Kristoffer Janke, Eduardo Vela Nava, Tavis Ormandy, and Matteo Rizzo discovered that some AMD Zen processors did not properly verify the signature of CPU microcode. This flaw is known as EntrySign. A privileged attacker could possibly use this issue to cause load malicious CPU microcod...

9.8CVSS5.9AI score0.00378EPSS
Exploits0
OSV
OSV
added 2026/04/17 8:33 a.m.9 views

USN-8177-1 linux, linux-realtime vulnerabilities

Josh Eads, Kristoffer Janke, Eduardo Vela Nava, Tavis Ormandy, and Matteo Rizzo discovered that some AMD Zen processors did not properly verify the signature of CPU microcode. This flaw is known as EntrySign. A privileged attacker could possibly use this issue to cause load malicious CPU microcod...

7.8CVSS5.8AI score0.00191EPSS
Exploits0References140
Tenable Nessus
Tenable Nessus
added 2026/04/17 12:0 a.m.5 views

GLSA-202604-03 : FUSE: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202604-03 FUSE: Multiple Vulnerabilities The following vulnerabilities have been discovered in FUSE: a NULL pointer dereference when running with the NUMA architecture and a use-after-free. The worst of which can lead to code...

7.8CVSS6AI score0.0031EPSS
Exploits0References4
Gentoo Linux
Gentoo Linux
added 2026/04/17 12:0 a.m.9 views

FUSE: Multiple Vulnerabilities

Background FUSE Filesystem in Userspace is an interface for userspace programs to export a filesystem to the Linux kernel. Description The following vulnerabilities have been discovered in FUSE: a NULL pointer dereference when running with the NUMA architecture and a use-after-free. The worst of...

7.8CVSS5.9AI score0.0031EPSS
Exploits0
OSV
OSV
added 2026/04/16 2:13 p.m.14 views

USN-8179-1 linux, linux-aws, linux-aws-6.8, linux-gcp, linux-gke, linux-gkeop, linux-ibm, linux-lowlatency, linux-lowlatency-hwe-6.8 vulnerabilities

Josh Eads, Kristoffer Janke, Eduardo Vela Nava, Tavis Ormandy, and Matteo Rizzo discovered that some AMD Zen processors did not properly verify the signature of CPU microcode. This flaw is known as EntrySign. A privileged attacker could possibly use this issue to cause load malicious CPU microcod...

9.8CVSS6.9AI score0.00378EPSS
Exploits0References175
OSV
OSV
added 2026/04/16 12:35 p.m.4 views

SUSE-SU-2026:1406-1 Security update for util-linux

This update for util-linux fixes the following issues: Security issue: - CVE-2026-3184: access control bypass due to improper hostname canonicalization in login bsc1258859. Non security issues: - recognize fuse 'portal' as a virtual file system bsc1234736. - fdisk: fix possible partition overlay...

5.3CVSS5.8AI score0.00436EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/03/26 7:11 a.m.7 views

CVE-2026-33179

A flaw was found in libfuse. A local user can exploit a NULL pointer dereference and memory leak vulnerability during the setup of the iouring input/output mechanism. This can occur when memory allocation or queue registration fails, leading to the FUSE daemon crashing or resource exhaustion. Thi...

5.5CVSS5.7AI score0.00197EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2026/03/26 6:57 a.m.7 views

CVE-2026-33150

A flaw was found in libfuse. A use-after-free vulnerability in the iouring subsystem allows a local attacker to potentially execute arbitrary code and crash FUSE Filesystem in Userspace filesystem processes. This occurs when iouring thread creation fails due to resource exhaustion, such as limits...

7.8CVSS6.1AI score0.0031EPSS
Exploits0References6
SUSE Linux
SUSE Linux
added 2026/03/24 3:11 a.m.3 views

Security update for util-linux

This update for util-linux fixes the following issues: Security issue: CVE-2026-3184: access control bypass due to improper hostname canonicalization in login bsc1258859. Non security issues: recognize fuse "portal" as a virtual file system bsc1234736. fdisk: fix possible partition overlay and da...

6.3CVSS5.8AI score0.00436EPSS
Exploits0References8
OSV
OSV
added 2026/03/24 3:11 a.m.3 views

SUSE-SU-2026:0987-1 Security update for util-linux

This update for util-linux fixes the following issues: Security issue: - CVE-2026-3184: access control bypass due to improper hostname canonicalization in login bsc1258859. Non security issues: - recognize fuse 'portal' as a virtual file system bsc1234736. - fdisk: fix possible partition overlay...

5.3CVSS5.8AI score0.00436EPSS
Exploits0References5
Rows per page
Query Builder