64 matches found
Linux Distros Unpatched Vulnerability : CVE-2025-38230
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - jfs: validate AG parameters in dbMount to prevent crashes Validate dbagheight, dbagwidth, and dbagstart in dbMount to catch corrupted metadata early and avoid...
Linux Distros Unpatched Vulnerability : CVE-2020-0067
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In f2fsxattrgenericlist of xattr.c, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure with...
Linux Distros Unpatched Vulnerability : CVE-2025-23130
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - f2fs: fix to avoid panic once fallocation fails for pinfile syzbot reports a f2fs bug as below: ------------ cut here ------------ kernel BUG at...
The vulnerability of the nfs_get_client() function in the fs/nfs/client.c module of the Linux file system support module allows a hacker to cause a service failure.
The vulnerability of the nfsgetclient function in the fs/nfs/client.c module of the Linux file system support module is related to the use of the NULL pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the f2fs_do_shutdown() function in the fs/f2fs/file.c module of the F2FS file system support module for Linux operating systems allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the f2fsdoshutdown function in the fs/f2fs/file.c module of the Linux file system support module is related to the reutilization of previously released memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibilit...
The vulnerability of the ext4_fill_super() function in the fs/ext4/super.c module of the Linux file system support module allows a hacker to cause a service failure.
The vulnerability of the ext4fillsuper function in the fs/ext4/super.c module of the Linux file system support module is related to improper memory release before deleting the last reference „memory leak“. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the simple_inode_init_ts() function in the Linux file system allows a hacker to trigger a service failure.
The vulnerability of the simpleinodeinitts function in the Linux file system is related to the reutilization of previously freed memory. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the ext4handle_error() function in the fs/ext4/super.c module of the Linux file system support module allows a hacker to trigger a service failure.
The vulnerability of the ext4handleerror function in the fs/ext4/super.c module of the Linux file system support module is related to incorrect validation of input data. Exploiting this vulnerability could allow an attacker to cause a service failure...
SUSE CVE-2022-49360
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to do sanity check on totaldatablocks As Yanming reported in bugzilla: https://bugzilla.kernel.org/showbug.cgi?id=215916 The kernel message is shown below: kernel BUG at fs/f2fs/segment.c:2560! Call Trace:...
CVE-2022-2482
A vulnerability exists in Nokia’s ASIK AirScale system module versions 474021A.101 and 474021A.102 that could allow an attacker to place a script on the file system accessible from Linux. A script placed in the appropriate place could allow for arbitrary code execution in the bootloader...
CVE-2020-29026
A directory traversal vulnerability exists in the file upload function of the GateManager that allows an authenticated attacker with administrative permissions to read and write arbitrary files in the Linux file system. This issue affects: GateManager all versions prior to 9.2c...
The vulnerability in the fs/cachefiles/ondemand.c module of the Linux file system’s cachefiles module allows a hacker to cause a service failure.
The vulnerability in the fs/cachefiles/ondemand.c module of the Linux file system is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the ea_get() function in the file system jfs of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the eaget function in the fs/jfs/xattr.c file of the JFS file system in the Linux operating system is related to memory writing beyond the allocated buffer. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility o...
CVE-2024-20343
A vulnerability in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker to read any file in the file system of the underlying Linux operating system. The attacker must have valid credentials on the affected device. This vulnerability is due to incorrect validation of the...
PT-2024-18650 · Cisco · Cisco Ios Xr
Name of the Vulnerable Software and Affected Versions: Cisco IOS XR Software affected versions not specified Description: A vulnerability in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker to read any file in the file system of the underlying Linux operating system...
The vulnerability of the NTFS3 file system driver in Linux operating systems allows attackers to compromise the confidentiality, integrity, and accessibility of protected information, or enhance their own privileges.
The vulnerability of the NTFS3 file system driver in Linux operating systems is related to the reallocation of previously released memory due to competitive access to resources during operations like remount and unmount. Exploiting this vulnerability allows an attacker to compromise the...
PT-2024-11334 · Linux +1 · Linux Kernel +1
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is an use-after-free problem during f2fs recovery. This occurs when multiple f2fs filesystem instances race to access the global fsync entry slab pointer, resulting in a...
DEBIAN-CVE-2024-26773
In the Linux kernel, the following vulnerability has been resolved: ext4: avoid allocating blocks from corrupted group in ext4mbtrybestfound Determine if the group block bitmap is corrupted before using acbex in ext4mbtrybestfound to avoid allocating blocks from a group with a corrupted block...
OESA-2024-1298 kernel security update
The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: btrfs: fix deadlock when cloning inline extents and using qgroups There are a few exceptional cases where cloning an inline extent needs to copy the inline exten...
CVE-2023-20261
A vulnerability in the web UI of Cisco Catalyst SD-WAN Manager could allow an authenticated, remote attacker to retrieve arbitrary files from an affected system. This vulnerability is due to improper validation of parameters that are sent to the web UI. An attacker could exploit this vulnerabilit...