Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15

In the Linux kernel, the following vulnerabilities have been resolved: hfs: Fixed a buffer overflow issue in hfsbnoderead. This patch introduces the isbnodeoffsetvalid method, which checks the requested offset value. It also introduces the checkandcorrectrequestedlength method, which checks and...

DEBIAN-CVE-2025-38715

In the Linux kernel, the following vulnerability has been resolved: hfs: fix slab-out-of-bounds in hfsbnoderead This patch introduces isbnodeoffsetvalid method that checks the requested offset value. Also, it introduces checkandcorrectrequestedlength method that checks and correct the requested...

Linux Kernel HFS子系统栈溢出漏洞

CVE ID: CVE-2009-4020 Linux Kernel是开放源码操作系统Linux所使用的内核。 Linux Kernel的fs/hfs/dir.c文件中的hfsreaddir函数存在栈溢出漏洞，特制的多级文件系统（HFS）可以在 hfsbnoderead函数的memcpy调用过程中触发这个溢出。攻击者可以提供源缓冲区和长度，目标缓冲区是固定长度的本地变量，这个变量存储在了hfsbnoderead调用程序的栈帧中（hfsreaddir）。由于在试图读取文件系统上目录时都会执行 hfsreaddir函数，因此用户试图检查任何文件系统内容时都会调用这个函数。 Linux...