CVE-2025-40241 erofs: fix crafted invalid cases for encoded extents

In the Linux kernel, the following vulnerability has been resolved: erofs: fix crafted invalid cases for encoded extents Robert recently reported two corrupted images that can cause system crashes, which are related to the new encoded extents introduced in Linux 6.15: - The first one 1 has plen !...

CVE-2025-40241

Summary (CVE-2025-40241): In the Linux kernel, the erofs code fix addresses two crafted invalid extents related to the new encoded extents introduced in Linux 6.15. The issues involve: (1) a crafted plen != 0 case where plen is not zero and the plen mask check fails, affecting representation of s...

CVE-2025-40241

In the Linux kernel, the following vulnerability has been resolved: erofs: fix crafted invalid cases for encoded extents Robert recently reported two corrupted images that can cause system crashes, which are related to the new encoded extents introduced in Linux 6.15: - The first one 1 has plen !...

SUSE CVE-2013-2915

Google Chrome before 30.0.1599.66 preserves pending NavigationEntry objects in certain invalid circumstances, which allows remote attackers to spoof the address bar via a URL with a malformed scheme, as demonstrated by a nonexistent:12121 URL...