251 matches found
CVE-2023-54032
CVE-2023-54032 affects the Linux kernel’s btrfs quota handling. The root cause is a race in deleting a quota root from the dirty_cowonly_roots list without acquiring trans_lock, which can race with concurrent list manipulation (e.g., add_root_to_dirty_list). This unsynchronized access may trigger...
CVE-2023-54032 btrfs: fix race when deleting quota root from the dirty cow roots list
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix race when deleting quota root from the dirty cow roots list When disabling quotas we are deleting the quota root from the list fsinfo-dirtycowonlyroots without taking the lock that protects it, which is struct...
CVE-2023-54032 btrfs: fix race when deleting quota root from the dirty cow roots list
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix race when deleting quota root from the dirty cow roots list When disabling quotas we are deleting the quota root from the list fsinfo-dirtycowonlyroots without taking the lock that protects it, which is struct...
How Brad Schlintz built a life of freedom and impact through security research
At Microsoft Security Response Center MSRC, we celebrate the diverse paths that bring researchers to our community. Brad Schlintz’s story is one of curiosity, resilience, and a relentless drive to learn, spanning rural beginnings, career pivots, and a life shaped by both technology and travel. In...
CVE-2025-40235
In the Linux kernel, the following vulnerability has been resolved: btrfs: directly free partially initialized fsinfo in btrfscheckleakedroots If fsinfo-supercopy or fsinfo-superforcommit allocated failed in btrfsgettreesubvol, then no need to call btrfsfreefsinfo. Otherwise btrfscheckleakedroots...
SUSE CVE-2025-40235
In the Linux kernel, the following vulnerability has been resolved: btrfs: directly free partially initialized fsinfo in btrfscheckleakedroots If fsinfo-supercopy or fsinfo-superforcommit allocated failed in btrfsgettreesubvol, then no need to call btrfsfreefsinfo. Otherwise btrfscheckleakedroots...
CVE-2025-40235
In the Linux kernel, the following vulnerability has been resolved: btrfs: directly free partially initialized fsinfo in btrfscheckleakedroots If fsinfo-supercopy or fsinfo-superforcommit allocated failed in btrfsgettreesubvol, then no need to call btrfsfreefsinfo. Otherwise btrfscheckleakedroots...
UBUNTU-CVE-2025-40235
In the Linux kernel, the following vulnerability has been resolved: btrfs: directly free partially initialized fsinfo in btrfscheckleakedroots If fsinfo-supercopy or fsinfo-superforcommit allocated failed in btrfsgettreesubvol, then no need to call btrfsfreefsinfo. Otherwise btrfscheckleakedroots...
CVE-2025-40235
CVE-2025-40235 : Linux kernel, btrfs subsystem, vulnerable in btrfs_check_leaked_roots() leading to a NULL dereference when fs_info allocated_roots is uninitialized if fs_info->super_copy/super_for_commit allocation failed earlier. Reported by syzkaller showing an OOPS during mount (page fault...
EUVD-2025-201224
In the Linux kernel, the following vulnerability has been resolved: btrfs: directly free partially initialized fsinfo in btrfscheckleakedroots If fsinfo-supercopy or fsinfo-superforcommit allocated failed in btrfsgettreesubvol, then no need to call btrfsfreefsinfo. Otherwise btrfscheckleakedroots...
CVE-2025-40235 btrfs: directly free partially initialized fs_info in btrfs_check_leaked_roots()
In the Linux kernel, the following vulnerability has been resolved: btrfs: directly free partially initialized fsinfo in btrfscheckleakedroots If fsinfo-supercopy or fsinfo-superforcommit allocated failed in btrfsgettreesubvol, then no need to call btrfsfreefsinfo. Otherwise btrfscheckleakedroots...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that originates from accessing uninitialized allocatedroots in btrfscheckleakedroots, which could lead to a null pointer...
TencentOS Server 4: python-certifi (TSSA-2024:0273)
The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0273 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...
TencentOS Server 3: ca-certificates bug fix and enhancement update (Low) (TSSA-2024:0591)
The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0591 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...
PT-2025-49062
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.15.8 Description The Linux kernel contains a flaw in the btrfs subsystem where btrfs check leaked roots may access a NULL pointer if fs info-super copy or fs info-super for commit allocation fails during btrfs...
EUVD-2022-7672
Malicious code in bioql PyPI...
EUVD-2024-0408
Malicious code in bioql PyPI...
EUVD-2025-25349
Malicious code in bioql PyPI...
EUVD-2023-59793
Malicious code in bioql PyPI...
CVE-2023-53183
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...