Azure Linux 3.0 Security Update: kernel (CVE-2024-38570)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-38570 advisory. - In the Linux kernel, the following vulnerability has been resolved: gfs2: Fix potential glock use-after- fre...

CVE-2025-68356

CVE-2025-68356 describes a Linux kernel issue in gfs2 where new_inode() could set inode address space GFP masks to GFP_HIGHUSER_MOVABLE, potentially including __GFP_FS and allowing memory reclaim to recurse into filesystem code, risking stack usage and deadlocks. The fix is to remove __GFP_FS fro...

Unity Linux 20.1050e Security Update: kernel (UTSA-2025-991142)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-991142 advisory. In the Linux kernel, the following vulnerability has been resolved: gfs2: Check sbbsizeshift after reading superblock Fuzzers like to scribble over sbbsizeshift but ...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-986395)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986395 advisory. In the Linux kernel, the following vulnerability has been resolved: gfs2: Fix use-after-free in gfs2glockshrinkscan The GLFLRU flag is checked under lrulock in...

AZL-66578 CVE-2025-38659 affecting package kernel for versions less than 6.6.104.2-1

In the Linux kernel, the following vulnerability has been resolved: gfs2: No more self recovery When a node withdraws and it turns out that it is the only node that has the filesystem mounted, gfs2 currently tries to replay the local journal to bring the filesystem back into a consistent state. N...

CVE-2022-49769 gfs2: Check sb_bsize_shift after reading superblock

In the Linux kernel, the following vulnerability has been resolved: gfs2: Check sbbsizeshift after reading superblock Fuzzers like to scribble over sbbsizeshift but in reality it's very unlikely that this field would be corrupted on its own. Nevertheless it should be checked to avoid the...

CVE-2022-49769

In the Linux kernel, the following vulnerability has been resolved: gfs2: Check sbbsizeshift after reading superblock Fuzzers like to scribble over sbbsizeshift but in reality it's very unlikely that this field would be corrupted on its own. Nevertheless it should be checked to avoid the...

CVE-2022-49769 gfs2: Check sb_bsize_shift after reading superblock

In the Linux kernel, the following vulnerability has been resolved: gfs2: Check sbbsizeshift after reading superblock Fuzzers like to scribble over sbbsizeshift but in reality it's very unlikely that this field would be corrupted on its own. Nevertheless it should be checked to avoid the...

The vulnerability of the gfs2_jindex_free() function in the fs/gfs2/super.c file of the GFS2 file system in the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the gfs2jindexfree function in the fs/gfs2/super.c file of the GFS2 file system in the Linux operating system is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failure...

Important: kernel-livepatch-5.10.227-219.884

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: gfs2: Fix slab-use-after-free in gfs2qddealloc CVE-2023-52760 In the Linux kernel, the following vulnerability has been resolved: gpiolib: cdev: Fix use after free in lineinfochangednotify CVE-2024-36899 In the...

CVE-2024-49956

In the Linux kernel, the following vulnerability has been resolved: gfs2: fix double destroyworkqueue error When gfs2fillsuper fails, destroyworkqueue is called within gfs2glhashclear, and the subsequent code path calls destroyworkqueue on the same work queue again. This issue can be fixed by...

CVE-2024-49956

CVE-2024-49956 pertains to the Linux kernel GFS2 subsystem. The issue is a double destroy_workqueue call: when gfs2_fill_super() fails, gfs2_gl_hash_clear() calls destroy_workqueue(), and the code path may call destroy_workqueue() again on the same workqueue. The root cause is that the workqueue ...

CVE-2024-42079

In the Linux kernel, the following vulnerability has been resolved: gfs2: Fix NULL pointer dereference in gfs2logflush In gfs2jindexfree, set sdp-sdjdesc to NULL under the log flush lock to provide exclusion against gfs2logflush. In gfs2logflush, check if sdp-sdjdesc is non-NULL before...

CVE-2024-38570

In the Linux kernel, the following vulnerability has been resolved: gfs2: Fix potential glock use-after-free on unmount When a DLM lockspace is released and there ares still locks in that lockspace, DLM will unlock those locks automatically. Commit fb6791d100d1b started exploiting this behavior t...

CVE-2024-38570 gfs2: Fix potential glock use-after-free on unmount

In the Linux kernel, the following vulnerability has been resolved: gfs2: Fix potential glock use-after-free on unmount When a DLM lockspace is released and there ares still locks in that lockspace, DLM will unlock those locks automatically. Commit fb6791d100d1b started exploiting this behavior t...

CVE-2023-52759

Removed by vendor...

USN-6339-2 linux-gcp-5.15, linux-gkeop-5.15 vulnerabilities

It was discovered that the NTFS file system implementation in the Linux kernel did not properly validate MFT flags in certain situations. An attacker could use this to construct a malicious NTFS image that, when mounted and operated on, could cause a denial of service system crash. CVE-2022-48425...

Important: Red Hat Security Advisory: kernel security and bug fix update

Updated kernel packages that fix two security issues and multiple bugs are now available for Red Hat Enterprise Linux 5.3 Extended Update Support. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores,...