8 matches found
Astra Linux – Vulnerability in Linux 5.10
In the Linux kernel, the following vulnerabilities have been resolved: NFSv4.2: fixed issues related to nfs42sscopen. A destination server, when performing a COPY operation, should not accept the passed-in filehandle if it is not a regular filehandle. If the allocfilepseudo function fails, we nee...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-004057)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004057 advisory. A flaw incorrect umask during file or directory modification in the Linux kernel NFS network file system functionality was found in the way user create and delete...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-993293)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993293 advisory. In the Linux kernel, the following vulnerability has been resolved: NFSv4.2 fix problems with nfs42sscopen A destination server while doing a COPY shouldn't accept...
SUSE-SU-2025:3742-1 Security update for the Linux Kernel (Live Patch 4 for SLE 15 SP6)
This update for the Linux Kernel 6.4.0-1506002322 fixes several issues. The following security issues were fixed: - CVE-2025-38678: netfilter: nftables: reject duplicate device on updates bsc1249534. - CVE-2025-38499: cloneprivatemnt: make sure that caller has CAPSYSADMIN in the right userns...
CVE-2023-53360
CVE-2023-53360 affects the Linux kernel NFSv4.2 path for READ_PLUS and can cause a hole-decode oops and scratch buffer NULL/length mismatch due to reworked scratch handling that reused an nfs_pgio_header across multiple requests. The root cause is that multiple reads could be sent with a single n...
kernel: NFSv4.2: fix nfs4_listxattr kernel BUG at mm/usercopy.c:102
A flaw was found in the Linux kernel. A system error can be reliably replicated with specific filesystem settings, allowing an attacker to cause a denial of service...
kernel: umask not applied on filesystem without ACL support
A vulnerability was found in NFSv4.2 in the Linux kernel, where a server fails to correctly apply umask when creating a new object on filesystem without ACL support for example, ext4 with the "noacl" mount option. This flaw allows a local attacker with a user privilege to cause a kernel informati...
DEBIAN-CVE-2020-35513
A flaw incorrect umask during file or directory modification in the Linux kernel NFS network file system functionality was found in the way user create and delete object using NFSv4.2 or newer if both simultaneously accessing the NFS by the other process that is not using new NFSv4.2. A user with...