Lucene search
K

14 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1

In the Linux kernel, the following vulnerabilities have been resolved: jfs: xattr: fixed buffer overflow for invalid xattr values. When the xattr size is not as expected, it is printed out to the kernel log in hexadecimal format as a form of debugging. However, when that xattr size is larger than...

7.8CVSS6.7AI score0.00317EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/01/27 12:0 a.m.6 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-005155)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005155 advisory. In the Linux kernel, the following vulnerability has been resolved: jfs: Fix uninit-value access of newea in eabuffer syzbot reports that lzo1x1docompress is using...

7.1CVSS6.7AI score0.00279EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/12/31 12:0 a.m.4 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992880)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992880 advisory. In the Linux kernel, the following vulnerability has been resolved: jfs: Fix uninit-value access of newea in eabuffer syzbot reports that lzo1x1docompress is using...

7.1CVSS6.3AI score0.00279EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/11/06 12:0 a.m.2 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990492)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990492 advisory. In the Linux kernel, the following vulnerability has been resolved: jfs: xattr: fix buffer overflow for invalid xattr When an xattr size is not what is expected, it ...

7.8CVSS6.4AI score0.00317EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.2 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990122)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990122 advisory. In the Linux kernel, the following vulnerability has been resolved: jfs: xattr: fix buffer overflow for invalid xattr When an xattr size is not what is expected, it ...

7.8CVSS6.4AI score0.00317EPSS
Exploits1References3
BDU FSTEC
BDU FSTEC
added 2025/03/24 12:0 a.m.7 views

The vulnerability of the ea_get() function in the fs/jfs/xattr.c module of the Linux operating system allows a hacker to gain unauthorized access to protected information.

The vulnerability of the eaget function in the fs/jfs/xattr.c module of the Linux kernel relates to the use of an uninitialized resource. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...

7.1CVSS7.2AI score0.00279EPSS
Exploits0References28Affected Software6
AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.4 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: jfs: Fixed the uninit-value access to newea in eabuffer syzbot reports that lzo1x1docompress uses uninit-value: ===================================================== BUG: KMSAN: Uninit-value in lzo1x1docompress+0x19f9/0x2510,...

7.1CVSS6.6AI score0.00279EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2024/10/26 3:2 a.m.3 views

SUSE CVE-2024-49900

In the Linux kernel, the following vulnerability has been resolved: jfs: Fix uninit-value access of newea in eabuffer syzbot reports that lzo1x1docompress is using uninit-value: ===================================================== BUG: KMSAN: uninit-value in lzo1x1docompress+0x19f9/0x2510...

5.8CVSS6.4AI score0.00279EPSS
Exploits0References18
OSV
OSV
added 2024/10/21 6:15 p.m.1 views

DEBIAN-CVE-2024-49900

In the Linux kernel, the following vulnerability has been resolved: jfs: Fix uninit-value access of newea in eabuffer syzbot reports that lzo1x1docompress is using uninit-value: ===================================================== BUG: KMSAN: uninit-value in lzo1x1docompress+0x19f9/0x2510...

7.1CVSS6.2AI score0.00279EPSS
Exploits0References1
OSV
OSV
added 2024/10/21 6:15 p.m.5 views

AZL-51485 CVE-2024-49900 affecting package kernel for versions less than 5.15.173.1-1

In the Linux kernel, the following vulnerability has been resolved: jfs: Fix uninit-value access of newea in eabuffer syzbot reports that lzo1x1docompress is using uninit-value: ===================================================== BUG: KMSAN: uninit-value in lzo1x1docompress+0x19f9/0x2510...

7.1CVSS6.7AI score0.00279EPSS
Exploits0References1
SUSE Linux
SUSE Linux
added 2024/10/14 12:7 p.m.2 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 11 SP4 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2024-38538: net: bridge: xmit: make sure we have at least eth header len bytes bsc1226606. CVE-2024-40902: jfs: xattr: fix buffer overflow for invalid xattr...

6.9CVSS8AI score0.00317EPSS
Exploits1References22
OSV
OSV
added 2024/08/01 2:48 p.m.7 views

CLSA-2024-1722523708 Fix of 10 CVEs

CVE-url: https://ubuntu.com/security/CVE-2024-25744 - x86/sev: Rename memencrypt.c to memencryptamd.c - x86: Introduce ia32enabled - x86/coco: Disable 32-bit emulation by default on TDX and SEV CVE-url: https://ubuntu.com/security/CVE-2024-36016 - tty: ngsm: fix frame reception handling - tty:...

8.8CVSS7AI score0.00322EPSS
Exploits1References1
SUSE CVE
SUSE CVE
added 2024/07/16 2:35 a.m.2 views

SUSE CVE-2024-40902

In the Linux kernel, the following vulnerability has been resolved: jfs: xattr: fix buffer overflow for invalid xattr When an xattr size is not what is expected, it is printed out to the kernel log in hex format as a form of debugging. But when that xattr size is bigger than the expected size,...

5.5CVSS6.8AI score0.00317EPSS
Exploits1References16
CNVD
CNVD
added 2018/06/14 12:0 a.m.3 views

Linux kernel memory corruption vulnerability (CNVD-2018-12154)

Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. A memory corruption vulnerability exists in the 'eaget' function of the fs/jfs/xattr.c file in versions of Linux kernel prior to 4.17.1, which can be exploited by an...

7.8CVSS6.8AI score0.02342EPSS
Exploits0References1
Rows per page
Query Builder