Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: jfs: Do not walk off the end of ealist. Add a check before visiting the members of ea to ensure that each ea remains within the ealist...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-005118)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005118 advisory. In the Linux kernel, the following vulnerability has been resolved: jfs: Fix array-index-out-of-bounds in diFree Tenable has extracted the preceding description bloc...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-993308)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993308 advisory. In the Linux kernel, the following vulnerability has been resolved: fs: jfs: fix shift-out-of-bounds in dbDiscardAG This should be applied to most URSAN bugs found...

Unity Linux 20.1050e Security Update: kernel (UTSA-2025-990011)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990011 advisory. In the Linux kernel, the following vulnerability has been resolved: jfs: don't walk off the end of ealist Add a check before visiting the members of ea to make sure...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990317)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990317 advisory. In the Linux kernel, the following vulnerability has been resolved: jfs: fix shift-out-of-bounds in dbSplit When dmtbudmin is less than zero, it causes errors in the...

CVE-2025-39743

CVE-2025-39743 refers to a Linux kernel vulnerability in the JFS file system where inode pages were not truncated during eviction when the inode’s hard link count was 0. The reproducer observed AGGR_RESERVED_I on the inode copy and eviction with hard link 0, causing clear_inode() to trigger becau...

Amazon Linux 2023 : bpftool6.12, kernel6.12, kernel6.12-devel (ALAS2023-2025-1170)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2025-1170 advisory. In the Linux kernel, the following vulnerability has been resolved: jfs: fix array-index-out-of-bounds read in addmissingindices CVE-2025-38204 In the Linux kernel, the following vulnerability...

CVE-2025-37742

In the Linux kernel, the following vulnerability has been resolved: jfs: Fix uninit-value access of imap allocated in the diMount function syzbot reports that hexdumptobuffer is using uninit-value: ===================================================== BUG: KMSAN: uninit-value in...

AZL-51330 CVE-2024-49903 affecting package kernel for versions less than 5.15.173.1-1

In the Linux kernel, the following vulnerability has been resolved: jfs: Fix uaf in dbFreeBits syzbot reported ================================================================== BUG: KASAN: slab-use-after-free in mutexlockcommon kernel/locking/mutex.c:587 inline BUG: KASAN: slab-use-after-free in...

UBUNTU-CVE-2021-47340

In the Linux kernel, the following vulnerability has been resolved: jfs: fix GPF in diFree Avoid passing inode with JFSSBIinode-isb-ipimap == NULL to diFree1. GFP will appear: struct inode ipimap = JFSSBIip-isb-ipimap; struct inomap imap = JFSIPipimap-iimap; JFSIP will return invalid pointer when...