19 matches found
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001820)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001820 advisory. The dofollowlink function in fs/namei.c in the Linux kernel before 2.6.33 does not properly handle the last pathname component during use of certain filesystems, whi...
The vulnerability in the `udf_symlink()` function of the `fs/udf/namei.c` module in the Linux kernel file system allows a attacker to cause a service failure.
The vulnerability of the udfsymlink function in the fs/udf/namei.c module of the Linux file system’s support for the file system is related to the dereferencing of the NULL pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the ntfs3 component in the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the ntfs3 component in the Linux operating system’s kernel is related to incorrect blocking in the ntfsdhash function in fs/ntfs3/namei.c. Exploiting this vulnerability can allow an attacker to cause a service failure...
EulerOS 2.0 SP5 : kernel (EulerOS-SA-2023-1507)
According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A use-after-free flaw was found in fs/ext4/namei.c:dxinsertblock in the Linux kernels filesystem sub-component. This flaw allows a local attacker...
SUSE CVE-2009-0746
The makeindexeddir function in fs/ext4/namei.c in the Linux kernel 2.6.27 before 2.6.27.19 and 2.6.28 before 2.6.28.7 does not validate a certain reclen field, which allows local users to cause a denial of service OOPS by attempting to mount a crafted ext4 filesystem...
Vulnerability of the dx_insert_block() function (fs/ext4/namei.c) in the Linux operating system kernel, which allows a hacker to cause a service failure
The vulnerability of the dxinsertblock function fs/ext4/namei.c in the Linux file system is related to the use of memory after it is freed. Exploiting this vulnerability could allow an attacker to cause a service failure...
Mageia: Security Advisory (MGASA-2020-0073)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Mageia: Security Advisory (MGASA-2013-0343)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2020-8428
fs/namei.c in the Linux kernel before 5.5 has a maycreateinsticky use-after-free, which allows local users to cause a denial of service OOPS or possibly obtain sensitive information from kernel memory, aka CID-d0cb50185ae9. One attack vector may be an open system call for a UNIX domain socket, if...
CVE-2020-8428
fs/namei.c in the Linux kernel before 5.5 has a maycreateinsticky use-after-free, which allows local users to cause a denial of service OOPS or possibly obtain sensitive information from kernel memory, aka CID-d0cb50185ae9. One attack vector may be an open system call for a UNIX domain socket, if...
Design/Logic Flaw
The mountpointlast function in fs/namei.c in the Linux kernel before 3.15.8 does not properly maintain a certain reference count during attempts to use the umount system call in conjunction with a symlink, which allows local users to cause a denial of service memory consumption or use-after-free ...
CVE-2014-5045
CVE-2014-5045 – Linux kernel mountpoint_last bug (pre-3.15.8) Affected: Linux kernel versions prior to 3.15.8.Root cause: The mountpoint_last function in fs/namei.c does not properly maintain a reference count when unmount is used in conjunction with a symlink.Impact: Local users could cause deni...
Design/Logic Flaw
The dofollowlink function in fs/namei.c in the Linux kernel before 2.6.33 does not properly handle the last pathname component during use of certain filesystems, which allows local users to cause a denial of service incorrect free operations and system crash via an open system call...
CVE-2014-0203
CVE-2014-0203 affects the Linux kernel up to version 2.6.32.x, where the __do_follow_link function in fs/namei.c mishandles the last pathname component for certain filesystems, enabling a local attacker to trigger a denial of service (incorrect free operations and system crash) via an open() call...
CVE-2013-2188
A certain Red Hat patch to the dofilpopen function in fs/namei.c in the kernel package before 2.6.32-358.11.1.el6 on Red Hat Enterprise Linux RHEL 6 does not properly handle failure to obtain write permissions, which allows local users to cause a denial of service system crash by leveraging acces...
CVE-2012-6548
CVE-2012-6548 affects the Linux kernel: the udf_encode_fh function in fs/udf/namei.c does not initialize a structure member in kernels before 3.6, enabling a local user to read sensitive information from kernel heap memory via a crafted application. Several connected advisories (e.g., Red Hat RHS...
Linux Kernel NFS自动加载符号链接拒绝服务漏洞
BUGTRAQ ID: 39044 CVE ID: CVE-2010-1088 Linux Kernel是开放源码操作系统Linux所使用的内核 Linux Kernel的fs/namei.c有时没有跟随NFS自动加载符号链接,用户加载恶意文件系统就会导致拒绝服务。 Linux kernel 2.6.18 - 2.6.34 厂商补丁: Linux ----- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...
CVE-2010-1088
fs/namei.c in Linux kernel 2.6.18 through 2.6.34 does not always follow NFS automount "symlinks," which allows attackers to have an unknown impact, related to LOOKUPFOLLOW...
CVE-2008-3275
The 1 reallookup and 2 lookuphash functions in fs/namei.c in the vfs implementation in the Linux kernel before 2.6.25.15 do not prevent creation of a child dentry for a deleted aka SDEAD directory, which allows local users to cause a denial of service "overflow" of the UBIFS orphan area via a...