CVE-2026-36178

The factory reset functionality in GNCC GP5 v7.1.76 fails to clear sensitive cryptographic material in the JFFS2 configuration partition, possibly allowing attackers to recover and obtain sensitive user data...

CVE-2026-36178

The factory reset functionality in GNCC GP5 v7.1.76 fails to clear sensitive cryptographic material in the JFFS2 configuration partition, possibly allowing attackers to recover and obtain sensitive user data...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-993057)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993057 advisory. In the Linux kernel, the following vulnerability has been resolved: jffs2: prevent xattr node from overflowing the eraseblock Add a check to make sure that the...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the rtime decompression routine for the JFFS2 file system not adequately checking boundaries, which could le...

UBUNTU-CVE-2024-38599

In the Linux kernel, the following vulnerability has been resolved: jffs2: prevent xattr node from overflowing the eraseblock Add a check to make sure that the requested xattr node size is no larger than the eraseblock minus the cleanmarker. Unlike the usual inode nodes, the xattr nodes aren't...

SUSE CVE-2007-4849

JFFS2, as used on One Laptop Per Child OLPC build 542 and possibly other Linux systems, when POSIX ACL support is enabled, does not properly store permissions during 1 inode creation or 2 ACL setting, which might allow local users to access restricted files or directories after a remount of a...