12 matches found
Astra Linux - уязвимость в linux-6.1
In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Added a timeout to acquiring the command queue semaphore. Prevented forced completion handling on an entry that has not yet been assigned an index, causing an out-of-bounds access at idx = -22. Instead of waiting...
EUVD-2025-36461
In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: reject index allocation if $BITMAP is empty but blocks exist Index allocation requires at least one bit in the $BITMAP attribute to track usage of index entries. If the bitmap is empty while index blocks are already...
CVE-2025-40067
CVE-2025-40067 affects the Linux kernel’s ntfs3 filesystem. It describes a condition where index allocations can occur with an empty $BITMAP bitmap while index blocks exist, causing on-disk corruption. Triggered by a malformed NTFS image during a long filename rename, where the empty bitmap allow...
CVE-2025-40067
In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: reject index allocation if $BITMAP is empty but blocks exist Index allocation requires at least one bit in the $BITMAP attribute to track usage of index entries. If the bitmap is empty while index blocks are already...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from not verifying that the $BITMAP attribute is null, which could lead to improper index allocation...
DEBIAN-CVE-2024-38556
In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Add a timeout to acquire the command queue semaphore Prevent forced completion handling on an entry that has not yet been assigned an index, causing an out of bounds access on idx = -22. Instead of waiting indefinitely...
AZL-57841 CVE-2024-38556 affecting package kernel 5.15.200.1-1
In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Add a timeout to acquire the command queue semaphore Prevent forced completion handling on an entry that has not yet been assigned an index, causing an out of bounds access on idx = -22. Instead of waiting indefinitely...
UBUNTU-CVE-2024-38556
In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Add a timeout to acquire the command queue semaphore Prevent forced completion handling on an entry that has not yet been assigned an index, causing an out of bounds access on idx = -22. Instead of waiting indefinitely...
DEBIAN-CVE-2023-1583
A NULL pointer dereference was found in iofilebitmapget in iouring/filetable.c in the iouring sub-component in the Linux Kernel. When fixed files are unregistered, some context information fileallocstart,end and allochint is not cleared. A subsequent request that has auto index selection enabled...
UBUNTU-CVE-2023-1583
A NULL pointer dereference was found in iofilebitmapget in iouring/filetable.c in the iouring sub-component in the Linux Kernel. When fixed files are unregistered, some context information fileallocstart,end and allochint is not cleared. A subsequent request that has auto index selection enabled...
SUSE CVE-2023-1583
A NULL pointer dereference was found in iofilebitmapget in iouring/filetable.c in the iouring sub-component in the Linux Kernel. When fixed files are unregistered, some context information fileallocstart,end and allochint is not cleared. A subsequent request that has auto index selection enabled...
AZL-11517 CVE-2022-4127 affecting package kernel for versions less than 5.15.82.1-1
A NULL pointer dereference issue was discovered in the Linux kernel in iofilesupdatewithindexalloc. A local user could use this flaw to potentially crash the system causing a denial of service...