Astra Linux – Vulnerability found in Linux 5.15, Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: nilfs2: Fixed a shift-out-of-bounds/overflow issue in nilfssb2badoffset. The patch series “nilfs2: Fix UBSAN shift-out-of-bounds warnings during mount time” addresses this issue. The first patch fixes a bug reported by syzbot,...

PT-2026-39026

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the XFS file system where the l iclog roundoff value is set to 512 if the superblock does not list a log stripe unit. On disks with 4k physical sectors, this results i...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-006910)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006910 advisory. In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix shift-out-of-bounds/overflow in nilfssb2badoffset Patch series nilfs2: fix UBSAN...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990223)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990223 advisory. In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix inode number range checks Patch series nilfs2: fix potential issues related to reserv...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988984)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988984 advisory. In the Linux kernel, the following vulnerability has been resolved: ext4: filter out EXT4FCREPLAY from on-disk superblock field sstate The EXT4FCREPLAY bit in...

EUVD-2022-55676

The Core Config Manager CCM in Nagios XI versions prior to CCM 3.1.6 / Nagios XI 5.8.8 contains a cross-site scripting XSS vulnerability via the search and deletion interfaces. Insufficient validation or escaping of user-supplied input may allow an attacker to inject and execute arbitrary script ...

SUSE CVE-2022-50478

In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix shift-out-of-bounds/overflow in nilfssb2badoffset Patch series "nilfs2: fix UBSAN shift-out-of-bounds warnings on mount time". The first patch fixes a bug reported by syzbot, and the second one fixes the remaining bug...

CVE-2022-50478

In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix shift-out-of-bounds/overflow in nilfssb2badoffset Patch series "nilfs2: fix UBSAN shift-out-of-bounds warnings on mount time". The first patch fixes a bug reported by syzbot, and the second one fixes the remaining bug...

CVE-2022-50478

The CVE-2022-50478 issue affects the Linux kernel nilfs2 code. When an on-disk superblock block size exponent is corrupted, nilfs_sb2_bad_offset can trigger a shift-out-of-bounds warning and a kernel panic at mount time. The fix series adds preliminary sanity checks and changes the risky computat...

SUSE CVE-2022-49348

In the Linux kernel, the following vulnerability has been resolved: ext4: filter out EXT4FCREPLAY from on-disk superblock field sstate The EXT4FCREPLAY bit in sbi-smountstate is used to indicate that we are in the middle of replay the fast commit journal. This was actually a mistake, since the...

UBUNTU-CVE-2022-49348

In the Linux kernel, the following vulnerability has been resolved: ext4: filter out EXT4FCREPLAY from on-disk superblock field sstate The EXT4FCREPLAY bit in sbi-smountstate is used to indicate that we are in the middle of replay the fast commit journal. This was actually a mistake, since the...

kernel: ext4: filter out EXT4_FC_REPLAY from on-disk superblock field s_state

A flaw was found in the ext4 module in the Linux kernel. A specially crafted filesystem can cause an assertion failure when a specific operation is performed, possibly resulting in system instability and a denial of service...