Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:51 p.m.10 views

CVE-2025-70100

A divide-by-zero vulnerability in the ext4blocksetlbsize function in src/ext4blockdev.c of the lwext4 1.0.0 library allows attackers to cause a denial of service by providing a malformed ext4 filesystem image that results in a zero logical block size. The vulnerability is triggered during mount o...

5.5CVSS5.5AI score0.00155EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.4 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002586)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002586 advisory. A flaw was found in the Linux kernel's ext4 filesystem. A local user can cause an out-of-bounds write in jbd2journaldirtymetadata, a denial of service, and a system...

5.5CVSS6.3AI score0.0053EPSS
Exploits0References17
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.2 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002907)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002907 advisory. A flaw was found in Linux kernel in the ext4 filesystem code. A use-after-free is possible in ext4extremovespace function when mounting and operating a crafted ext4...

5.5CVSS6.4AI score0.00774EPSS
Exploits1References17
OSV
OSV
added 2024/10/21 6:15 p.m.10 views

AZL-52293 CVE-2024-49968 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: ext4: filesystems without casefold feature cannot be mounted with siphash When mounting the ext4 filesystem, if the default hash version is set to DXHASHSIPHASH but the casefold feature is not set, exit the mounting...

5.5CVSS6.8AI score0.00244EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2020/01/27 12:0 a.m.7 views

Vulnerabilities of functions ext4_put_super and dump_orphan_list in the Linux operating system’s kernel, which allow attackers to compromise the confidentiality, integrity, and accessibility of protected information

The vulnerability of the ext4putsuper function fs/ext4/super.c and the dumporphanlist function fs/ext4/super.c in the Linux kernel is related to the use of memory after it is freed. Exploiting this vulnerability allows a remote attacker to compromise the confidentiality, integrity, and...

7.8CVSS6.9AI score0.03539EPSS
Exploits1References21Affected Software2
RedHat Linux
RedHat Linux
added 2018/10/30 10:4 a.m.13 views

kernel: NULL pointer dereference in ext4/mballoc.c:ext4_process_freed_data() when mounting crafted ext4 image

The Linux kernel is vulnerable to a NULL pointer dereference in the ext4/mballoc.c:ext4processfreeddata function. An attacker could trick a legitimate user or a privileged attacker could exploit this by mounting a crafted ext4 image to cause a kernel panic...

7.1CVSS6.7AI score0.01999EPSS
Exploits0References4
OSV
OSV
added 2018/07/26 12:0 a.m.4 views

UBUNTU-CVE-2018-10876

A flaw was found in Linux kernel in the ext4 filesystem code. A use-after-free is possible in ext4extremovespace function when mounting and operating a crafted ext4 image...

5.5CVSS6.7AI score0.00774EPSS
Exploits1References10
Rows per page
Query Builder