Astra Linux – Vulnerability found in Linux 5.15, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix the return value of f2fsconvertInline inode If the device is read-only, make f2fsconvertInline inode return EROFS instead of zero. Otherwise, it may trigger a panic during the writing of dirty pages of inline inodes, as...

CVE-2023-54182

CVE-2023-54182 affects the Linux kernel’s f2fs filesystem. The vulnerability arises from a faulty readonly-detection path during remounts, which can occur when mounting multiple devices with rw and at least one device is read-only, leading to a kernel panic (BUG at fs/f2fs/inline.c:258). The desc...

CVE-2022-49178

In the Linux kernel, the following vulnerability has been resolved: memstick/msproblock: fix handling of read-only devices Use setdiskro to propagate the read-only state to the block layer instead of checking for it in -open and leaking a reference in case of a read-only device...

CVE-2022-49178 memstick/mspro_block: fix handling of read-only devices

In the Linux kernel, the following vulnerability has been resolved: memstick/msproblock: fix handling of read-only devices Use setdiskro to propagate the read-only state to the block layer instead of checking for it in -open and leaking a reference in case of a read-only device...

CVE-2022-49178

CVE-2022-49178 concerns the Linux kernel memstick/mspro_block code. The vulnerability stems from leaking a reference when a read-only device is encountered and from how read-only state was checked. The fix propagates the read-only state to the block layer by using set_disk_ro, instead of performi...