Astra Linux – Vulnerability in Linux 5.10, Linux, Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: ubifs: A memory leak was fixed in allocwbufs. kmemleak reported a series of memory leaks, as follows: - Unreferenced object 0xffff8881575f8400 size 1024: Command: “mount”, PID: 19625, Jiffies: 4297119604 Age: 20.383 seconds He...

Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-411032)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-411032 advisory. In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix null-ptr-deref when journal load failed. During the mounting process, if journalreset...

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: f2fs: fixed the issue where preallocated blocks were truncated in f2fsfileopen. Chenyuwen has reported the following f2fs bugs: Unable to handle a NULL pointer dereferencing at the virtual address 0000000000000011...

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: ocfs2: Fixed the nullptrderef issue when the journal load failed. During the mounting process, if journalReset fails due to a too-short journal, it causes jbd2journalload to fail with a NULL jsbbuffer. Subsequently,...

SUSE CVE-2024-49957

In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix null-ptr-deref when journal load failed. During the mounting process, if journalreset fails because of too short journal, then lead to jbd2journalload fails with NULL jsbbuffer. Subsequently, ocfs2journalshutdown calls...

UBUNTU-CVE-2024-50014

In the Linux kernel, the following vulnerability has been resolved: ext4: fix access to uninitialised lock in fc replay path The following kernel trace can be triggered with fstest generic/629 when executed against a filesystem with fast-commit feature enabled: INFO: trying to register non-static...

AZL-51781 CVE-2024-49957 affecting package kernel for versions less than 5.15.173.1-1

In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix null-ptr-deref when journal load failed. During the mounting process, if journalreset fails because of too short journal, then lead to jbd2journalload fails with NULL jsbbuffer. Subsequently, ocfs2journalshutdown calls...

UBUNTU-CVE-2024-49957

In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix null-ptr-deref when journal load failed. During the mounting process, if journalreset fails because of too short journal, then lead to jbd2journalload fails with NULL jsbbuffer. Subsequently, ocfs2journalshutdown calls...

AZL-67767 CVE-2024-40998 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: ext4: fix uninitialized ratelimitstate-lock access in ext4fillsuper In the following concurrency we will access the uninitialized rs-lock: ext4fillsuper ext4registersysfs // sysfs registered msgratelimitintervalms // Other...

IBM Tivoli Storage Manager (TSM) FastBack Mount Process Buffer Overflow Vulnerability

IBM Tivoli Storage Manager is a data protection platform that provides organizations with a single point of control and management for backup and recovery. A buffer overflow vulnerability in the IBM Tivoli Storage Manager TSM FastBack mount process allows an attacker to exploit the vulnerability ...

Ubuntu 12.04 LTS : linux vulnerabilities (USN-2356-1)

Jack Morgenstein reported a flaw in the page handling of the KVM Kerenl Virtual Machine subsystem in the Linux kernel. A guest OS user could exploit this flaw to cause a denial of service host OS memory corruption or possibly have other unspecified impact on the host OS. CVE-2014-3601 Chris Evans...

USN-2359-1: Linux kernel vulnerabilities

Jack Morgenstein reported a flaw in the page handling of the KVM Kerenl Virtual Machine subsystem in the Linux kernel. A guest OS user could exploit this flaw to cause a denial of service host OS memory corruption or possibly have other unspecified impact on the host OS. CVE-2014-3601 Jason...

USN-2356-1: Linux kernel vulnerabilities

Jack Morgenstein reported a flaw in the page handling of the KVM Kerenl Virtual Machine subsystem in the Linux kernel. A guest OS user could exploit this flaw to cause a denial of service host OS memory corruption or possibly have other unspecified impact on the host OS. CVE-2014-3601 Chris Evans...

CVE-2014-5472

The parserockridgeinodeinternal function in fs/isofs/rock.c in the Linux kernel through 3.16.1 allows local users to cause a denial of service unkillable mount process via a crafted iso9660 image with a self-referential CL entry...

CVE-2014-5472

The CVE-2014-5472 entry affects the Linux kernel up to 3.16.1, where the parse_rock_ridge_inode_internal function in fs/isofs/rock.c is exploitable by local users via a crafted iso9660 image with a self-referential CL entry to cause a denial-of-service (unkillable mount process). Connected Nessus...