Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: jbd2: Check ‘jh-btransaction’ before removing it from the checkpoint. The following process will corrupt the ext4 image: Step 1: jbd2journalcommittransaction jbd2journalinsertcheckpointjh, committransaction // Place jh into...

Astra Linux – Vulnerability found in Linux 5.15, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: f2fs: fixed the issue of tagging the “gcing” flag on the page during block migration. It is necessary to add the missing “gcing” flag on the page during block migration, in order to ensure that the migrated data is persisted duri...

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: f2fs: compress: Fixed to ensure that compressed blocks are persisted during checkpointing. If the data block in a compressed cluster is not persisted with metadata during a checkpoint, after SPOR, the data may become corrupted. W...

CVE-2026-46160

A flaw was found in the Linux kernel's Btrfs filesystem. This vulnerability occurs when the lastunlinktrans field is not properly updated during directory removal. If a user maintains an open file descriptor to a removed directory and subsequently performs a filesystem synchronization fsync...

CVE-2026-23465

A flaw was found in the Linux kernel's btrfs filesystem. This vulnerability occurs when the system attempts to log the parent directory of a conflicting inode, failing to properly record new directory entries. Consequently, if a power failure happens after a file system synchronization fsync...

CVE-2026-23465

In the Linux kernel, the following vulnerability has been resolved: btrfs: log new dentries when logging parent dir of a conflicting inode If we log the parent directory of a conflicting inode, we are not logging the new dentries of the directory, so when we finish we have the parent directory's...

PT-2026-30159

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the btrfs subsystem related to how it handles logging of directory entries dentries when a conflicting inode is encountered. Specifically, when...

CVE-2025-71183

In the Linux kernel, the following vulnerability has been resolved: btrfs: always detect conflicting inodes when logging inode refs After rename exchanging either with the rename exchange operation or regular renames in multiple non-atomic steps two inodes and at least one of them is a directory,...

Linux Kernel Security Vulnerabilities

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the lack of proper conflict detection when recording inode references. This vulnerability may lea...

EUVD-2006-1143

Malware in sbrugna...

CVE-2023-53526

In the Linux kernel, the following vulnerability has been resolved: jbd2: check 'jh-btransaction' before removing it from checkpoint Following process will corrupt ext4 image: Step 1: jbd2journalcommittransaction jbd2journalinsertcheckpointjh, committransaction // Put jh into trans1-tcheckpointli...

UBUNTU-CVE-2023-53526

In the Linux kernel, the following vulnerability has been resolved: jbd2: check 'jh-btransaction' before removing it from checkpoint Following process will corrupt ext4 image: Step 1: jbd2journalcommittransaction jbd2journalinsertcheckpointjh, committransaction // Put jh into trans1-tcheckpointli...

CVE-2023-53526 jbd2: check 'jh->b_transaction' before removing it from checkpoint

In the Linux kernel, the following vulnerability has been resolved: jbd2: check 'jh-btransaction' before removing it from checkpoint Following process will corrupt ext4 image: Step 1: jbd2journalcommittransaction jbd2journalinsertcheckpointjh, committransaction // Put jh into trans1-tcheckpointli...

TP-Link KP303 安全漏洞

TP-Link KP303 is a smart plug-in board from China P&L TP-Link. A security vulnerability exists in the TP-Link KP303 version prior to 1.1.0, which stems from the ability to issue unauthenticated protocol commands that could result in unexpected power loss and information disclosure...

CVE-2021-47072

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix removed dentries still existing after log is synced When we move one inode from one directory to another and both the inode and its previous parent directory were logged before, we are not supposed to have the dentry f...

GaugeController.remove_gauge() may indefinitely trap user voting power

Lines of code Vulnerability details Impact Users will permanently lose voting power equal to their power used to vote in the removed gauge unless the gauge is re-added and users re-vote to remove their voting power from the gauge. Proof of Concept GaugeController.sol does not have any function fo...

container-tools:rhel8 bug fix and enhancement update

An update is available for fuse-overlayfs, container-selinux, udica, containers-common, runc, toolbox, podman, conmon, skopeo, crun, libslirp, oci-seccomp-bpf-hook, python-podman, slirp4netns, containernetworking-plugins, buildah, criu, cockpit-podman. This update affects Rocky Linux 8. A Common...

PT-2024-11150 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The vulnerability is related to the btrfs file system in the Linux kernel. When an inode is moved from one directory to another and both the inode and its previous parent directory wer...

Denial of Service Vulnerability in Mitsubishi FX5U Series PLCs

Mitsubishi FX5U series PLC is the latest generation of Mitsubishi Electric Mitsubishi small programmable controller. A denial of service vulnerability exists in the Mitsubishi FX5U Series PLC. An attacker can send specially crafted packets to cause the device to fail to resume operation it also...

Tesla Killer: The Fuzzed and the Furious

The Tesla doesn’t have a conventional OBDII port onboard diagnostics as such. There’s a connector, but it’s just provided with +12V/ground in order to power things like insurance telematics dongles. Instead, there’s the Tesla diagnostics connector X427 which is where things get a bit weird. That...