PT-2026-45516

Input validation bypass in SMB volume mount handling in CloudFoundry Foundation diego-release allows low-privileged CF space developer to inject arbitrary kernel CIFS mount options via bypassing the mount-option allowlist, enabling privilege escalation and security control bypass on multi-tenant...

erofs: fix UAF issue for file-backed mounts w/ directio option

...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003754)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003754 advisory. Linux kernel CIFS implementation, version 4.9.0 is vulnerable to a relative paths injection in directory entry lists. Tenable has extracted the preceding description...

kernel: NFSD: Avoid calling OPDESC() with ops->opnum == OP_ILLEGAL

In the Linux kernel, the following vulnerability has been resolved: NFSD: Avoid calling OPDESC with ops-opnum == OPILLEGAL OPDESC simply indexes into nfsd4ops by the op's operation number, without range checking that value. It assumes callers are careful to avoid calling it with an out-of-bounds...

EUVD-2017-0781

Malware in sbrugna...

EUVD-2017-4682

Malware in sbrugna...

EUVD-2025-9947

Malicious code in bioql PyPI...

Huawei HarmonyOS kernel file system module Competitive Condition Vulnerability Vulnerability

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A competitive condition vulnerability exists in the Huawei HarmonyOS kernel file system module, which can be exploited by attackers to affect availability...

CVE-2025-54625

Race condition vulnerability in the kernel file system module. Impact: Successful exploitation of this vulnerability may affect availability...

CVE-2025-54625

CVE-2025-54625 affects Huawei HarmonyOS, involving a race condition in the kernel file system module. Public references describe a local impact vector with potential availability disruption; CVSS metrics vary (NVD: 4.7 base, MEDIUM; Huawei CNA: 6.7, MEDIUM) and do not specify a concrete patch. No...

PT-2025-32067 · Kernel · Kernel

Name of the Vulnerable Software and Affected Versions: kernel file system module affected versions not specified Description: A race condition exists within the kernel file system module. Successful exploitation of this issue may impact system availability. Recommendations: At the moment, there i...

kernel: cifs: Fix memory and information leak in smb3_reconfigure()

A memory and information leak vulnerability was found in the Linux kernel's CIFS/SMB3 filesystem driver. When smb3reconfigure fails during smb3syncsessionctxpasswords, the newly allocated password buffers newpassword and newpassword2 are not freed or securely erased. This causes a memory leak and...

CVE-2025-31171

File read permission bypass vulnerability in the kernel file system module Impact: Successful exploitation of this vulnerability may affect service confidentiality...

CVE-2025-31171

File read permission bypass vulnerability in the kernel file system module Impact: Successful exploitation of this vulnerability may affect service confidentiality...

CVE-2025-31171

File read permission bypass vulnerability in the kernel file system module Impact: Successful exploitation of this vulnerability may affect service confidentiality...

CVE-2025-31171

File read permission bypass vulnerability in the kernel file system module Impact: Successful exploitation of this vulnerability may affect service confidentiality...

PT-2025-15178 · Huawei · Harmonyos

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: A file read permission bypass vulnerability exists in the kernel file system module. Successful exploitation of this issue may affect service confidentiality. Recommendations: At the moment,...

CVE-2025-21634

In the Linux kernel, the following vulnerability has been resolved: cgroup/cpuset: remove kernfs active break A warning was found: WARNING: CPU: 10 PID: 3486953 at fs/kernfs/file.c:828 CPU: 10 PID: 3486953 Comm: rmdir Kdump: loaded Tainted: G RIP: 0010:kernfsshoulddrainopenfiles+0x1a1/0x1b0 RSP:...

DEBIAN-CVE-2024-47736

In the Linux kernel, the following vulnerability has been resolved: erofs: handle overlapped pclusters out of crafted images properly syzbot reported a task hang issue due to a deadlock case where it is waiting for the folio lock of a cached folio that will be used for cache I/Os. After looking...

SUSE CVE-2024-46701

In the Linux kernel, the following vulnerability has been resolved: libfs: fix infinite directory reads for offset dir After we switch tmpfs dir operations from simplediroperations to simpleoffsetdiroperations, every rename happened will fill new dentry to dest dir's maple...