175 matches found
CVE-2023-52902 nommu: fix memory leak in do_mmap() error path
In the Linux kernel, the following vulnerability has been resolved: nommu: fix memory leak in dommap error path The preallocation of the maple tree nodes may leak if the error path to "errorjustfree" is taken. Fix this by moving the freeing of the maple tree nodes to a shared location for all err...
SUSE CVE-2024-37354
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix crash on racing fsync and size-extending write into prealloc We have been seeing crashes on duplicate keys in btrfssetitemkeysafe: BTRFS critical device vdb: slot 4 key 450 108 8192 new key 450 108 8192 ------------ cu...
AZL-67446 CVE-2024-37354 affecting package kernel 5.15.200.1-1
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix crash on racing fsync and size-extending write into prealloc We have been seeing crashes on duplicate keys in btrfssetitemkeysafe: BTRFS critical device vdb: slot 4 key 450 108 8192 new key 450 108 8192 ------------ cu...
AZL-67700 CVE-2024-35956 affecting package kernel 5.15.200.1-1
In the Linux kernel, the following vulnerability has been resolved: btrfs: qgroup: fix qgroup prealloc rsv leak in subvolume operations Create subvolume, create snapshot and delete subvolume all use btrfssubvolumereservemetadata to reserve metadata for the changes done to the parent subvolume's f...
kernel: ext4: fix rbtree traversal bug in ext4_mb_use_preallocated
A flaw was identified in the ext4 filesystem’s block preallocation allocator in the Linux kernel. During allocation, the code traverses an rbtree of per-inode preallocations.Concurrently, the helper ext4mbdiscardgrouppreallocation can mark PAs as deleted, which may cause a naive rbtree traversal ...
DEBIAN-CVE-2024-26704
In the Linux kernel, the following vulnerability has been resolved: ext4: fix double-free of blocks due to wrong extents movedlen In ext4moveextents, movedlen is only updated when all moves are successfully executed, and only discards originode and donorinode preallocations when movedlen is not...
UBUNTU-CVE-2024-26704
In the Linux kernel, the following vulnerability has been resolved: ext4: fix double-free of blocks due to wrong extents movedlen In ext4moveextents, movedlen is only updated when all moves are successfully executed, and only discards originode and donorinode preallocations when movedlen is not...
SUSE CVE-2008-5245
xine-lib before 1.1.15 performs V4L video frame preallocation before ascertaining the required length, which has unknown impact and attack vectors, possibly related to a buffer overflow in the openvideocapturedevice function in src/input/inputv4l.c...
GSD-2023-1001649 udf: Fix preallocation discarding at indirect extent boundary
udf: Fix preallocation discarding at indirect extent boundary This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.9.337 by commit...
GSD-2023-1001500 udf: Fix preallocation discarding at indirect extent boundary
udf: Fix preallocation discarding at indirect extent boundary This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.161 by commit...
GSD-2023-1000825 udf: Fix preallocation discarding at indirect extent boundary
udf: Fix preallocation discarding at indirect extent boundary This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.15 by commit...
GSD-2023-1000001 udf: Fix preallocation discarding at indirect extent boundary
udf: Fix preallocation discarding at indirect extent boundary This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.0.15 by commit...
PT-2023-33902 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.15 Description: The issue concerns a problem with preallocation discarding at indirect extent boundary. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel...
PT-2023-33274 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.10.161 Description: The issue is related to discarding preallocation before extending a file with a hole. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel...
PT-2023-33189 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.85 Description: The issue is related to discarding preallocation before extending a file with a hole. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel...
PT-2023-33185 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.85 Description: The issue concerns a problem with preallocation discarding at indirect extent boundary. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel...
PT-2023-33905 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.15 Description: The issue is related to discarding preallocation before extending a file with a hole. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel...
PT-2023-33522 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.18 Description: The issue is related to resolving backrefs for inline extent followed by prealloc in btrfs. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux...
PT-2023-34273 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.85 Description: The issue is related to a fix for preallocation discarding at indirect extent boundary. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel...
PT-2024-11817 · Linux +4 · Linux Kernel +4
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to the Universal Disk Format UDF in the Linux kernel, where a problem with preallocation discarding at indirect extent boundaries could lead to corruption of the...