3 matches found
SUSE CVE-2024-26982
In the Linux kernel, the following vulnerability has been resolved: Squashfs: check the inode number is not the invalid value of zero Syskiller has produced an out of bounds access in fillmetaindex. That out of bounds access is ultimately caused because the inode has an inode number with the...
CVE-2024-26982 Squashfs: check the inode number is not the invalid value of zero
In the Linux kernel, the following vulnerability has been resolved: Squashfs: check the inode number is not the invalid value of zero Syskiller has produced an out of bounds access in fillmetaindex. That out of bounds access is ultimately caused because the inode has an inode number with the...
Linux内核Ext3无效索引节点序号拒绝服务攻击漏洞
Secunia Advisory:SA21369 Linux内核被报告一个漏洞,该漏洞可被恶意用户操作进行拒绝服务攻击Denial of Service。 该漏洞是由处理一个无效索引节点序号(inode number)时ext3内的一个错误引起的。盖漏洞可被操作发送一个特殊处理的带有V2程序例如 V2LOOKUP的NFS请求使其列入无效索引节点序号。 成功操作会致使输出目录被重置为只读。 该漏洞已经在版本2.6.14.4、2.6.17.6和2.6.17.7中被证实。其他版本可能同样被影响。 Linux Kernel 2.6.x 仅同意信任用户访问受影响系统。...