CVE-2026-40188

goshs is a SimpleHTTPServer written in Go. From 1.0.7 to before 2.0.0-beta.4, the SFTP command rename sanitizes only the source path and not the destination, so it is possible to write outside of the root directory of the SFTP. This vulnerability is fixed in 2.0.0-beta.4...

PT-2025-54474

Name of the Vulnerable Software and Affected Versions Apache NuttX RTOS versions 7.20 through 12.10 Description A Use After Free issue was identified in the fs/vfs/fs rename code of the Apache NuttX RTOS. The issue stems from a recursive implementation and the use of a single buffer by two...

Linux Distros Unpatched Vulnerability : CVE-2022-50755

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - udf: Avoid double brelse in udfrename syzbot reported a warning like below 1: VFS: brelse: Trying to free free buffer WARNING: CPU: 2 PID: 7301 at...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988712)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988712 advisory. In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to do sanity check for inline inode Yanming reported a kernel bug in Bugzilla kernel 1,...

Linux Distros Unpatched Vulnerability : CVE-2024-43845

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: udf: Fix bogus checksum computation in udfrename Syzbot reports uninitialized memory access ...

Linux Distros Unpatched Vulnerability : CVE-2024-41034

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - nilfs2: fix kernel bug on rename operation of broken directory Syzbot reported that in rename directory operation on broken directory on nilfs2,...

SUSE CVE-2024-42305

In the Linux kernel, the following vulnerability has been resolved: ext4: check dot and dotdot of dxroot before making dir indexed Syzbot reports a issue as follows: ============================================ BUG: unable to handle page fault for address: ffffed11022e24fe PGD 23ffee067 P4D...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the nfsdrename function incorrectly cleaning up paths...

CVE-2017-18458

cPanel before 62.0.17 allows file overwrite when renaming an account SEC-219...

USN-2517-1 linux-lts-utopic vulnerabilities

A flaw was discovered in the Kernel Virtual Machine's KVM emulation of the SYSTENTER instruction when the guest OS does not initialize the SYSENTER MSRs. A guest OS user could exploit this flaw to cause a denial of service of the guest OS crash or potentially gain privileges on the guest OS...

kernel: gfs2: rename causes kernel panic

The gfs2direntfindspace function in fs/gfs2/dir.c in the Linux kernel before 2.6.35 uses an incorrect size value in calculations associated with sentinel directory entries, which allows local users to cause a denial of service NULL pointer dereference and panic and possibly have unspecified other...