11 matches found
CLSA-2025-1763991095 Fix of 25 CVEs
Focal update: v5.4.291 upstream stable release LP: 2106002 // CVE-2025-21772 - partitions: mac: fix handling of bogus partition table CVE-url: https://ubuntu.com/security/CVE-2025-22079 - ocfs2: validate ltreedepth to avoid out-of-bounds access CVE-url: https://ubuntu.com/security/CVE-2024-58014 ...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989683)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989683 advisory. In the Linux kernel, the following vulnerability has been resolved: jfs: fix GPF in diFree Avoid passing inode with JFSSBIinode-isb-ipimap == NULL to diFree1. GFP wi...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989323)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989323 advisory. In the Linux kernel, the following vulnerability has been resolved: jfs: fix shift-out-of-bounds in dbSplit When dmtbudmin is less than zero, it causes errors in the...
CVE-2025-38204
In the Linux kernel, the following vulnerability has been resolved: jfs: fix array-index-out-of-bounds read in addmissingindices stbl is s8 but it must contain offsets into slot which can go from 0 to 127. Added a bound check for that error and return -EIO if the check fails. Also make jfsreaddir...
Security update for the Linux Kernel
The SUSE Linux Enterprise 15 SP4 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2024-53095: smb: client: Fix use-after-free of network namespace bsc1233642. CVE-2024-53146: NFSD: Prevent a potential integer overflow bsc1234853...
UBUNTU-CVE-2024-56597
In the Linux kernel, the following vulnerability has been resolved: jfs: fix shift-out-of-bounds in dbSplit When dmtbudmin is less than zero, it causes errors in the later stages. Added a check to return an error beforehand in dbAllocCtl itself...
CVE-2024-56598
In the Linux kernel, the following vulnerability has been resolved: jfs: array-index-out-of-bounds fix in dtReadFirst The value of stbl can be sometimes out of bounds due to a bad filesystem. Added a check with appopriate return of error code in that case...
CVE-2024-56597
In the Linux kernel, the following vulnerability has been resolved: jfs: fix shift-out-of-bounds in dbSplit When dmtbudmin is less than zero, it causes errors in the later stages. Added a check to return an error beforehand in dbAllocCtl itself...
CBL Mariner 2.0 Security Update: kernel (CVE-2024-49903)
The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-49903 advisory. - In the Linux kernel, the following vulnerability has been resolved: jfs: Fix uaf in dbFreeBits syzbot report...
CLSA-2024-1727816002 Fix of 60 CVEs
CVE-url: https://ubuntu.com/security/CVE-2024-26752 - l2tp: pass correct message length to ip6appenddata CVE-url: https://ubuntu.com/security/CVE-2023-52527 - ipv4, ipv6: Fix handling of transhdrlen in ip,6appenddata CVE-url: https://ubuntu.com/security/CVE-2024-43882 - exec: Fix ToCToU between...
CVE-2023-52599 jfs: fix array-index-out-of-bounds in diNewExt
In the Linux kernel, the following vulnerability has been resolved: jfs: fix array-index-out-of-bounds in diNewExt Syz report UBSAN: array-index-out-of-bounds in fs/jfs/jfsimap.c:2360:2 index -878706688 is out of range for type 'struct iagctl128' CPU: 1 PID: 5065 Comm: syz-executor282 Not tainted...