2120 matches found
SUSE CVE-2025-29918
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. A PCRE rule can be written that leads to an infinite loop when negated PCRE is used. Packet processing thread becomes stuck in infinite loop limiting visibility and availability i...
DEBIAN-CVE-2025-38405
In the Linux kernel, the following vulnerability has been resolved: nvmet: fix memory leak of bio integrity If nvmet receives commands with metadata there is a continuous memory leak of kmalloc-128 slab or more precisely bio-biintegrity. Since commit bf4c89fc8797 "block: don't call biouninit from...
UBUNTU-CVE-2025-38405
In the Linux kernel, the following vulnerability has been resolved: nvmet: fix memory leak of bio integrity If nvmet receives commands with metadata there is a continuous memory leak of kmalloc-128 slab or more precisely bio-biintegrity. Since commit bf4c89fc8797 "block: don't call biouninit from...
CVE-2025-38405
In CVE-2025-38405, the Linux kernel nvmet subsystem was vulnerable to a memory leak in bio integrity (bio->bi_integrity) when commands carried metadata. The root cause was that after bio_init, some users (including nvmet inline bios) did not call bio_uninit, preventing proper deallocation. The...
PT-2025-35974
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw where a maliciously fuzzed file system can trigger a BUG ON in the ext4 update inline data function when an inode has the INLINE DATA FL flag set but is...
Malicious code in htmlbars-inline-precompile (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8c4a212f0a71820f5e5ac4def1449d454a87b95082eae0de676cc3e27006831a Any computer that has this package installed or running should be considered...
MAL-2025-5700 Malicious code in htmlbars-inline-precompile (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8c4a212f0a71820f5e5ac4def1449d454a87b95082eae0de676cc3e27006831a Any computer that has this package installed or running should be considered...
SUSE CVE-2025-38222
In the Linux kernel, the following vulnerability has been resolved: ext4: inline: fix len overflow in ext4prepareinlinedata When running the following code on an ext4 filesystem with inlinedata feature enabled, it will lead to the bug below. fd = open"file1", ORDWR | OCREAT | OTRUNC, 0666;...
Malicious code in confluence-inline-tasks (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c9108ffab0ab767db4d505617face5df5b4ffd6d83b9ad5b0be43b22f50f77f7 Any computer that has this package installed or running should be considered...
MAL-2025-5679 Malicious code in confluence-inline-tasks (npm)
The package communicates with a domain associated with malicious activity. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c9108ffab0ab767db4d505617face5df5b4ffd6d83b9ad5b0be43b22f50f77f7 Any computer that has this package installed or running should be considered...
CVE-2025-38222
In the Linux kernel, the following vulnerability has been resolved: ext4: inline: fix len overflow in ext4prepareinlinedata When running the following code on an ext4 filesystem with inlinedata feature enabled, it will lead to the bug below. fd = open"file1", ORDWR | OCREAT | OTRUNC, 0666;...
AZL-64746 CVE-2025-38222 affecting package kernel for versions less than 6.6.96.1-1
In the Linux kernel, the following vulnerability has been resolved: ext4: inline: fix len overflow in ext4prepareinlinedata When running the following code on an ext4 filesystem with inlinedata feature enabled, it will lead to the bug below. fd = open"file1", ORDWR | OCREAT | OTRUNC, 0666;...
DEBIAN-CVE-2025-38222
In the Linux kernel, the following vulnerability has been resolved: ext4: inline: fix len overflow in ext4prepareinlinedata When running the following code on an ext4 filesystem with inlinedata feature enabled, it will lead to the bug below. fd = open"file1", ORDWR | OCREAT | OTRUNC, 0666;...
UBUNTU-CVE-2025-38222
In the Linux kernel, the following vulnerability has been resolved: ext4: inline: fix len overflow in ext4prepareinlinedata When running the following code on an ext4 filesystem with inlinedata feature enabled, it will lead to the bug below. fd = open"file1", ORDWR | OCREAT | OTRUNC, 0666;...
CVE-2025-38222 ext4: inline: fix len overflow in ext4_prepare_inline_data
In the Linux kernel, the following vulnerability has been resolved: ext4: inline: fix len overflow in ext4prepareinlinedata When running the following code on an ext4 filesystem with inlinedata feature enabled, it will lead to the bug below. fd = open"file1", ORDWR | OCREAT | OTRUNC, 0666;...
CVE-2025-38222
Summary : CVE-2025-38222 refers to a Linux kernel vulnerability in ext4 inline data handling. When inline_data is enabled, a length parameter (len) is incorrectly treated as an unsigned int, causing a truncation of pos+len in ext4_prepare_inline_data. This leads to an incorrect len being passed t...
CVE-2025-38222 ext4: inline: fix len overflow in ext4_prepare_inline_data
In the Linux kernel, the following vulnerability has been resolved: ext4: inline: fix len overflow in ext4prepareinlinedata When running the following code on an ext4 filesystem with inlinedata feature enabled, it will lead to the bug below. fd = open"file1", ORDWR | OCREAT | OTRUNC, 0666;...
CVE-2025-38222
In the Linux kernel, the following vulnerability has been resolved: ext4: inline: fix len overflow in ext4prepareinlinedata When running the following code on an ext4 filesystem with inlinedata feature enabled, it will lead to the bug below. fd = open"file1", ORDWR | OCREAT | OTRUNC, 0666;...
PT-2025-27997
Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to the fixed version Description: A vulnerability has been identified in the Linux kernel related to the ext4 filesystem with the inline data feature enabled. The issue arises from a length overflow in the ext4...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an improperly typed len parameter in the ext4prepareinlinedata function, which could lead to an integer...