59 matches found
kernel: NFSv4.2 fix problems with __nfs42_ssc_open
In the Linux kernel, the following vulnerability has been resolved: NFSv4.2 fix problems with nfs42sscopen A destination server while doing a COPY shouldn't accept using the passed in filehandle if its not a regular filehandle. If allocfilepseudo has failed, we need to decrement a reference on th...
CVE-2020-11935
It was discovered that aufs improperly managed inode reference counts in the vfsubdentryopen method. A local attacker could use this vulnerability to cause a denial of service attack...
Buffer overflow
It was discovered that aufs improperly managed inode reference counts in the vfsubdentryopen method. A local attacker could use this vulnerability to cause a denial of service attack...
CVE-2020-11935
Removed by vendor...
SUSE CVE-2020-11935
It was discovered that aufs improperly managed inode reference counts in the vfsubdentryopen method. A local attacker could use this vulnerability to cause a denial of service attack...
GSD-2022-1001383 ceph: fix inode reference leakage in ceph_get_snapdir()
ceph: fix inode reference leakage in cephgetsnapdir This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.16.20 by commit...
CVE-2020-11935
A flaw improperly managed inode reference counts in the vfsubdentryopen in the Linux kernel aufs subsystem was found in the way local user calls vfsubdentryopen method. A local user could use this flaw to crash the system...
LSN-0070-1 Kernel Live Patch Security Notice
Mauricio Faria de Oliveira discovered that the aufs implementation in the Linux kernel improperly managed inode reference counts in the vfsubdentryopen method. A local attacker could use this vulnerability to cause a denial of service. CVE-2020-11935...
USN-4440-1: linux kernel vulnerabilities
It was discovered that the network block device nbd implementation in the Linux kernel did not properly check for error conditions in some situations. An attacker could possibly use this to cause a denial of service system crash. CVE-2019-16089 It was discovered that the kernel-user space relay...
Ubuntu 18.04 LTS : linux kernel vulnerabilities (USN-4440-1)
The remote Ubuntu 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4440-1 advisory. It was discovered that the network block device nbd implementation in the Linux kernel did not properly check for error conditions in some situations. An...
Ubuntu 18.04 LTS : Linux kernel vulnerabilities (USN-4439-1)
The remote Ubuntu 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4439-1 advisory. It was discovered that the network block device nbd implementation in the Linux kernel did not properly check for error conditions in some situations. An...
USN-4427-1: Linux kernel vulnerabilities
It was discovered that the Kvaser CAN/USB driver in the Linux kernel did not properly initialize memory in certain situations. A local attacker could possibly use this to expose sensitive information kernel memory. CVE-2019-19947 Chuhong Yuan discovered that go7007 USB audio device driver in the...
Linux kernel denial of service vulnerability (CNVD-2020-52622)
Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. A security vulnerability exists in the 'vfsubdentryopen' function in the Linux kernel. The vulnerability stems from an implementation of aufs that does not properly...
Ubuntu 18.04 LTS / 20.04 LTS : Linux kernel vulnerabilities (USN-4425-1)
The remote Ubuntu 18.04 LTS / 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4425-1 advisory. It was discovered that the network block device nbd implementation in the Linux kernel did not properly check for error conditions in some...
Ubuntu 16.04 LTS / 18.04 LTS : Linux kernel vulnerabilities (USN-4426-1)
The remote Ubuntu 16.04 LTS / 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4426-1 advisory. Jason A. Donenfeld discovered that the ACPI implementation in the Linux kernel did not properly restrict loading SSDT code from an EFI...
CVE-2020-11935
It was discovered that aufs improperly managed inode reference counts in the vfsubdentryopen method. A local attacker could use this vulnerability to cause a denial of service attack...
UBUNTU-CVE-2020-11935
It was discovered that aufs improperly managed inode reference counts in the vfsubdentryopen method. A local attacker could use this vulnerability to cause a denial of service attack...
PT-2020-12933 · None +2 · Aufs +2
Name of the Vulnerable Software and Affected Versions: aufs affected versions not specified Description: A local attacker could exploit the improper management of inode reference counts in the vfsub dentry open method to cause a denial of service attack. Recommendations: At the moment, there is n...
kernel: futex: refcount issue in case of requeue
A flaw was found in the way the Linux kernel's futex subsystem handled reference counting when requeuing futexes during futexwait. A local, unprivileged user could use this flaw to zero out the reference counter of an inode or an mm struct that backs up the memory area of the futex, which could...