Lucene search
K

25 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.5 views

Astra Linux – Vulnerability in Linux 5.15

In the Linux kernel up to version 6.2.7, fs/ntfs3/inode.c contains an invalid kfree function because it does not validate the MFT flags before replaying logs...

7.8CVSS7AI score0.00264EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability in Linux 5.15

In the Linux kernel before version 6.1.3, fs/ntfs3/inode.c does not validate the attribute name offset. A unhandled page fault may occur...

7.8CVSS6.6AI score0.00266EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/04/22 12:0 a.m.7 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013429)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013429 advisory. In the Linux kernel before 6.1.3, fs/ntfs3/inode.c does not validate the attribute name offset. An unhandled page fault may occur. Tenable has extracted the precedin...

7.8CVSS6.6AI score0.00266EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/04/22 12:0 a.m.4 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013468)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013468 advisory. In the Linux kernel through 6.2.7, fs/ntfs3/inode.c has an invalid kfree because it does not validate MFT flags before replaying logs. Tenable has extracted the...

7.8CVSS7.1AI score0.00264EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.6 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-010744)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-010744 advisory. In the Linux kernel through 6.2.7, fs/ntfs3/inode.c has an invalid kfree because it does not validate MFT flags before replaying logs. Tenable has extracted the...

7.8CVSS7.2AI score0.00264EPSS
Exploits0References3
Redos
Redos
added 2026/01/13 12:0 a.m.5 views

ROS-20260113-7367

A vulnerability in the fs/ntfs3/inode.c component of the Linux operating system kernel is related to an operation exceeding buffer boundaries in memory. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

5.5CVSS6.6AI score0.00218EPSS
Exploits0
OSV
OSV
added 2025/12/24 1:16 p.m.4 views

UBUNTU-CVE-2022-50739

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Add null pointer check for inode operations This adds a sanity check for the iop pointer of the inode which is returned after reading Root directory MFT record. We should check the iop is valid before trying to create t...

5.7AI score0.002EPSS
Exploits0References6
NVD
NVD
added 2025/09/07 4:15 p.m.4 views

CVE-2025-39734

In the Linux kernel, the following vulnerability has been resolved: Revert "fs/ntfs3: Replace inodetrylock with inodelock" This reverts commit 69505fe98f198ee813898cbcaf6770949636430b. Initially, conditional lock acquisition was removed to fix an xfstest bug that was observed during internal...

5.5CVSS0.00136EPSS
Exploits0References8
CVE
CVE
added 2025/09/07 3:16 p.m.27 views

CVE-2025-39734

CVE-2025-39734 affects the Linux kernel component fs/ntfs3 in the NTFS file-system path. The issue stems from a revert of the inode_trylock versus inode_lock handling (commit 69505fe98f198ee813898cbcaf6770949636430b). The description notes that previously conditional lock acquisition was removed ...

5.5CVSS5.8AI score0.00136EPSS
Exploits0References8Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/08/15 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2022-48425

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel through 6.2.7, fs/ntfs3/inode.c has an invalid kfree because it does not validate MFT flags before replaying logs. CVE-2022-48425 Note that...

7.8CVSS7AI score0.00264EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/11 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2022-48424

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel before 6.1.3, fs/ntfs3/inode.c does not validate the attribute name offset. An unhandled page fault may occur. CVE-2022-48424 Note that Ness...

7.8CVSS6.5AI score0.00266EPSS
Exploits0References2
OSV
OSV
added 2025/04/25 2:4 p.m.10 views

OESA-2025-1446 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: ntbhwswitchtec: Fix shift-out-of-bounds in switchtecntbmwsettrans There is a kernel API ntbmwcleartrans would pass 0 to both addr and size. This would make...

7.8CVSS6AI score0.13944EPSS
Exploits1References134
Amazon
Amazon
added 2023/07/17 12:0 a.m.4 views

Important: kernel-livepatch-6.1.29-47.49

Issue Overview: In the Linux kernel through 6.2.7, fs/ntfs3/inode.c has an invalid kfree because it does not validate MFT flags before replaying logs. CVE-2022-48425 Affected Packages: kernel-livepatch-6.1.29-47.49 Issue Correction: Please ensure you have live patching enabled. Run dnf update...

7.8CVSS6.6AI score0.00264EPSS
Exploits0
Amazon
Amazon
added 2023/06/28 12:0 a.m.11 views

Important: kernel

Issue Overview: In the Linux kernel through 6.2.7, fs/ntfs3/inode.c has an invalid kfree because it does not validate MFT flags before replaying logs. CVE-2022-48425 In the Linux kernel, the following vulnerability has been resolved: binder: fix UAF of alloc-vma in race with munmap CVE-2022-50240...

7.8CVSS6.5AI score0.06127EPSS
Exploits3
OSV
OSV
added 2023/04/11 11:5 a.m.6 views

OESA-2023-1209 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel before 5.19, drivers/gpu/drm/arm/malidpplanes.c misinterprets the getsgtable return value expects it to be NULL in the error case, whereas it is actually an error pointer.CVE-2023-23004 A use-after-free flaw w...

7.8CVSS6.7AI score0.16642EPSS
Exploits0References12
BDU FSTEC
BDU FSTEC
added 2023/03/30 12:0 a.m.5 views

The vulnerability of the ntfs_read_mft() function in the fs/ntfs3/inode.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the ntfsreadmft function in the fs/ntfs3/inode.c file of the Linux kernel is related to the lack of checks for valid attribute sizes. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected...

7.8CVSS7.1AI score0.00264EPSS
Exploits0References25Affected Software4
Microsoft CVE
Microsoft CVE
added 2023/03/24 12:0 a.m.4 views

In the Linux kernel through 6.2.7 fs/ntfs3/inode.c has an invalid kfree because it does not validate MFT flags before replaying logs.

...

7.8CVSS7.2AI score0.00264EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2023/03/21 3:14 a.m.5 views

SUSE CVE-2022-48424

In the Linux kernel before 6.1.3, fs/ntfs3/inode.c does not validate the attribute name offset. An unhandled page fault may occur...

7.8CVSS6.4AI score0.00266EPSS
Exploits0References3
OSV
OSV
added 2023/03/19 3:15 a.m.7 views

DEBIAN-CVE-2022-48424

In the Linux kernel before 6.1.3, fs/ntfs3/inode.c does not validate the attribute name offset. An unhandled page fault may occur...

7.8CVSS6.3AI score0.00266EPSS
Exploits0References1
OSV
OSV
added 2023/03/19 3:15 a.m.9 views

AZL-25693 CVE-2022-48424 affecting package kernel for versions less than 5.15.102.1-3

In the Linux kernel before 6.1.3, fs/ntfs3/inode.c does not validate the attribute name offset. An unhandled page fault may occur...

7.8CVSS6.6AI score0.00266EPSS
Exploits0References1
Rows per page
Query Builder