Lucene search
K

13 matches found

RedhatCVE
RedhatCVE
added 2026/06/23 7:53 p.m.10 views

CVE-2026-46303

A flaw was found in the Linux kernel's isofs filesystem. This vulnerability allows a local attacker, by mounting a specially crafted ISO image, to read data beyond the boundaries of the intended ISO 9660 volume. This out-of-bounds read could lead to information disclosure, potentially exposing...

8.2CVSS5.8AI score0.00278EPSS
Exploits0References4
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability in Linux, Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: isofs: Fixed out-of-bound access for corrupted isofs images. When an isofs image is corrupted, isofsread inode can read data beyond the end of the buffer. It is necessary to sanity-check the length of the directory entry befor...

5.5CVSS5.5AI score0.00234EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/08 12:0 a.m.13 views

PT-2026-47374

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified openSUSE Tumbleweed versions prior to kernel-devel-7.0.12-1.1 Description The rock continue function in the isofs component reads the rs-cont extent from the Rock Ridge CE record and passes it to sb...

9.1CVSS5.4AI score0.00457EPSS
Exploits1References67
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.3 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002833)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002833 advisory. The getrockridgefilename function in fs/isofs/rock.c in the Linux kernel before 4.5.5 mishandles NM aka alternate name entries containing \0 characters, which allows...

7.8CVSS6.8AI score0.00512EPSS
Exploits0References30
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2016-5888

Malware in sbrugna...

7.8CVSS6.6AI score0.00512EPSS
Exploits0References33
Amazon
Amazon
added 2016/06/02 12:0 a.m.57 views

Low: kernel

Issue Overview: The getrockridgefilename function in fs/isofs/rock.c in the Linux kernel before 4.5.5 mishandles NM aka alternate name entries containing \\0 characters, which allows local users to obtain sensitive information from kernel memory or possibly have unspecified other impact via a...

7.8CVSS6.7AI score0.00512EPSS
Exploits0
NVD
NVD
added 2016/05/23 10:59 a.m.29 views

CVE-2016-4913

The getrockridgefilename function in fs/isofs/rock.c in the Linux kernel before 4.5.5 mishandles NM aka alternate name entries containing \0 characters, which allows local users to obtain sensitive information from kernel memory or possibly have unspecified other impact via a crafted isofs...

7.8CVSS7.5AI score0.00512EPSS
Exploits0References27
OSV
OSV
added 2016/05/23 10:59 a.m.10 views

CVE-2016-4913

The getrockridgefilename function in fs/isofs/rock.c in the Linux kernel before 4.5.5 mishandles NM aka alternate name entries containing \0 characters, which allows local users to obtain sensitive information from kernel memory or possibly have unspecified other impact via a crafted isofs...

7.8CVSS7.5AI score
Exploits0References27
Cvelist
Cvelist
added 2016/05/23 10:0 a.m.31 views

CVE-2016-4913

The getrockridgefilename function in fs/isofs/rock.c in the Linux kernel before 4.5.5 mishandles NM aka alternate name entries containing \0 characters, which allows local users to obtain sensitive information from kernel memory or possibly have unspecified other impact via a crafted isofs...

7.6AI score0.00512EPSS
Exploits0References27
CVE
CVE
added 2016/05/23 10:0 a.m.217 views

CVE-2016-4913

The CVE-2016-4913 issue affects the Linux kernel (fs/isofs/rock.c) and concerns get_rock_ridge_filename mishandling of NM (alternate name) entries containing a NUL character. A local attacker mounting a crafted isofs filesystem could read kernel memory due to this information leak. The vulnerabil...

7.8CVSS7.4AI score0.00512EPSS
Exploits0References27Affected Software1
Debian CVE
Debian CVE
added 2016/05/23 10:0 a.m.47 views

CVE-2016-4913

The getrockridgefilename function in fs/isofs/rock.c in the Linux kernel before 4.5.5 mishandles NM aka alternate name entries containing \0 characters, which allows local users to obtain sensitive information from kernel memory or possibly have unspecified other impact via a crafted isofs...

7.8CVSS7AI score0.00512EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2016/05/23 12:0 a.m.8 views

PT-2016-6183 · Linux +5 · Linux Kernel +5

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 4.5.5 Description: The issue is related to the get rock ridge filename function in the Linux kernel, which mishandles NM entries containing 0 characters. This allows local users to obtain sensitive information...

10CVSS7.5AI score0.80855EPSS
Exploits125References567
RedHat Linux
RedHat Linux
added 2015/04/14 1:0 p.m.4 views

kernel: isofs: unbound recursion when processing relocated directories

It was found that the parserockridgeinodeinternal function of the Linux kernel's ISOFS implementation did not correctly check relocated directories when processing Rock Ridge child link CL tags. An attacker with physical access to the system could use a specially crafted ISO image to crash the...

4CVSS6.7AI score0.00505EPSS
Exploits1References4
Rows per page
Query Builder