Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerabilities have been resolved: kernfs: A use-after-free occurred in kernfsremove. Syzkaller managed to trigger concurrent calls to kernfsremovebynamens for the same file, resulting in a KASAN-use-after-free condition. This race condition occurs when the roo...

CVE-2026-27139

On Unix platforms, when listing the contents of a directory using File.ReadDir or File.Readdir the returned FileInfo could reference a file outside of the Root in which the File was opened. The impact of this escape is limited to reading metadata provided by lstat from arbitrary locations on the...

Linux Distros Unpatched Vulnerability : CVE-2022-50432

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - kernfs: fix use-after-free in kernfsremove Syzkaller managed to trigger concurrent calls to kernfsremovebynamens for the same file resulting in a KASAN detected...

EUVD-2025-31975

Malicious code in bioql PyPI...

SUSE CVE-2022-50432

In the Linux kernel, the following vulnerability has been resolved: kernfs: fix use-after-free in kernfsremove Syzkaller managed to trigger concurrent calls to kernfsremovebynamens for the same file resulting in a KASAN detected use-after-free. The race occurs when the root node is freed during...

CVE-2022-50432

In the Linux kernel, the following vulnerability has been resolved: kernfs: fix use-after-free in kernfsremove Syzkaller managed to trigger concurrent calls to kernfsremovebynamens for the same file resulting in a KASAN detected use-after-free. The race occurs when the root node is freed during...

CVE-2022-50432 kernfs: fix use-after-free in __kernfs_remove

In the Linux kernel, the following vulnerability has been resolved: kernfs: fix use-after-free in kernfsremove Syzkaller managed to trigger concurrent calls to kernfsremovebynamens for the same file resulting in a KASAN detected use-after-free. The race occurs when the root node is freed during...

CVE-2022-50432 kernfs: fix use-after-free in __kernfs_remove

In the Linux kernel, the following vulnerability has been resolved: kernfs: fix use-after-free in kernfsremove Syzkaller managed to trigger concurrent calls to kernfsremovebynamens for the same file resulting in a KASAN detected use-after-free. The race occurs when the root node is freed during...

CVE-2022-50432

CVE-2022-50432 : The Linux kernel kernfs use-after-free is caused by a race where the root node is freed during kernfs_drain(), allowing concurrent kernfs_remove_by_name_ns() calls to dereference freed memory. The fix adds an extra reference to the root of the tree before calling __kernfs_remove(...

PT-2025-40117

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.0.0-rc3-00363-g7726d4c3e60b Description The Linux kernel contained a use-after-free flaw within the kernfs subsystem, specifically in the kernfs remove function. This issue stemmed from concurrent calls to kern...

In btrfs_get_root_ref in fs/btrfs/disk-io.c in the Linux kernel through 6.7.1 there can be an assertion failure and crash because a subvolume can be read out too soon after its root item is inserted upon subvolume creation.

...

DEBIAN-CVE-2024-23850

In btrfsgetrootref in fs/btrfs/disk-io.c in the Linux kernel through 6.7.1, there can be an assertion failure and crash because a subvolume can be read out too soon after its root item is inserted upon subvolume creation...

Kernel: btrfs: double free in btrfs_get_root_ref()

...

SUSE CVE-2023-4389

A flaw was found in btrfsgetrootref in fs/btrfs/disk-io.c in the btrfs filesystem in the Linux Kernel due to a double decrement of the reference count. This issue may allow a local attacker with user privilege to crash the system or may lead to leaked internal kernel information...

CVE-2023-4389

A flaw was found in btrfsgetrootref in fs/btrfs/disk-io.c in the btrfs filesystem in the Linux Kernel due to a double decrement of the reference count. This issue may allow a local attacker with user privilege to crash the system or may lead to leaked internal kernel information...