14 matches found
Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1
In the Linux kernel, the following vulnerabilities have been resolved: jfs: xattr: fixed buffer overflow for invalid xattr values. When the xattr size is not as expected, it is printed out to the kernel log in hexadecimal format as a form of debugging. However, when that xattr size is larger than...
Unity Linux 20.1050e Security Update: kernel (UTSA-2026-005155)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005155 advisory. In the Linux kernel, the following vulnerability has been resolved: jfs: Fix uninit-value access of newea in eabuffer syzbot reports that lzo1x1docompress is using...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992880)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992880 advisory. In the Linux kernel, the following vulnerability has been resolved: jfs: Fix uninit-value access of newea in eabuffer syzbot reports that lzo1x1docompress is using...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990492)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990492 advisory. In the Linux kernel, the following vulnerability has been resolved: jfs: xattr: fix buffer overflow for invalid xattr When an xattr size is not what is expected, it ...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990122)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990122 advisory. In the Linux kernel, the following vulnerability has been resolved: jfs: xattr: fix buffer overflow for invalid xattr When an xattr size is not what is expected, it ...
The vulnerability of the ea_get() function in the fs/jfs/xattr.c module of the Linux operating system allows a hacker to gain unauthorized access to protected information.
The vulnerability of the eaget function in the fs/jfs/xattr.c module of the Linux kernel relates to the use of an uninitialized resource. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: jfs: Fixed the uninit-value access to newea in eabuffer syzbot reports that lzo1x1docompress uses uninit-value: ===================================================== BUG: KMSAN: Uninit-value in lzo1x1docompress+0x19f9/0x2510,...
SUSE CVE-2024-49900
In the Linux kernel, the following vulnerability has been resolved: jfs: Fix uninit-value access of newea in eabuffer syzbot reports that lzo1x1docompress is using uninit-value: ===================================================== BUG: KMSAN: uninit-value in lzo1x1docompress+0x19f9/0x2510...
DEBIAN-CVE-2024-49900
In the Linux kernel, the following vulnerability has been resolved: jfs: Fix uninit-value access of newea in eabuffer syzbot reports that lzo1x1docompress is using uninit-value: ===================================================== BUG: KMSAN: uninit-value in lzo1x1docompress+0x19f9/0x2510...
AZL-51485 CVE-2024-49900 affecting package kernel for versions less than 5.15.173.1-1
In the Linux kernel, the following vulnerability has been resolved: jfs: Fix uninit-value access of newea in eabuffer syzbot reports that lzo1x1docompress is using uninit-value: ===================================================== BUG: KMSAN: uninit-value in lzo1x1docompress+0x19f9/0x2510...
Security update for the Linux Kernel
The SUSE Linux Enterprise 11 SP4 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2024-38538: net: bridge: xmit: make sure we have at least eth header len bytes bsc1226606. CVE-2024-40902: jfs: xattr: fix buffer overflow for invalid xattr...
CLSA-2024-1722523708 Fix of 10 CVEs
CVE-url: https://ubuntu.com/security/CVE-2024-25744 - x86/sev: Rename memencrypt.c to memencryptamd.c - x86: Introduce ia32enabled - x86/coco: Disable 32-bit emulation by default on TDX and SEV CVE-url: https://ubuntu.com/security/CVE-2024-36016 - tty: ngsm: fix frame reception handling - tty:...
SUSE CVE-2024-40902
In the Linux kernel, the following vulnerability has been resolved: jfs: xattr: fix buffer overflow for invalid xattr When an xattr size is not what is expected, it is printed out to the kernel log in hex format as a form of debugging. But when that xattr size is bigger than the expected size,...
Linux kernel memory corruption vulnerability (CNVD-2018-12154)
Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. A memory corruption vulnerability exists in the 'eaget' function of the fs/jfs/xattr.c file in versions of Linux kernel prior to 4.17.1, which can be exploited by an...