25 matches found
SUSE CVE-2026-31714
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid memory leak in f2fsrename syzbot reported a f2fs bug as below: BUG: memory leak unreferenced object 0xffff888127f70830 size 16: comm "syz.0.23", pid 6144, jiffies 4294943712 hex dump first 16 bytes: 3c af 57 72...
CVE-2026-31714
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid memory leak in f2fsrename syzbot reported a f2fs bug as below: BUG: memory leak unreferenced object 0xffff888127f70830 size 16: comm "syz.0.23", pid 6144, jiffies 4294943712 hex dump first 16 bytes: 3c af 57 72...
CVE-2026-31714
The CVE-2026-31714 issue affects the Linux kernel F2FS component, where a memory leak occurs in f2fs_rename() due to an unpaired call to f2fs_free_filename() after f2fs_setup_filename() was added in commit 40b2d55e0452. Exploitation details are local (AV:L/AC:L) with a high availability impact (A...
Apptainer ineffectively applies selinux and apparmor --security options
Impact In Apptainer versions less than 1.4.5, a container can disable two of the forms of the little used --security option, in particular the forms --security=apparmor: and --security=selinux: which otherwise put restrictions on operations that containers can do. The --security option has always...
Race Condition Enabling Link Following
Overview Affected versions of this package are vulnerable to Race Condition Enabling Link Following in the handling of procfs file writes. An attacker can cause arbitrary writes to sensitive files or trigger a denial of service by redirecting write operations through race conditions and...
EUVD-2021-26453
Malware in sbrugna...
CVE-2024-32900
In lwisfencesignal of lwisdebug.c, there is a possible Use after Free due to improper locking. This could lead to local escalation of privilege from halcameradefault SELinux label with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2024-32900
The CVE-2024-32900 issue affects the LWIS (lwis_fence_signal) path in lwis_debug.c. It describes a Use-After-Free caused by improper locking, enabling local escalation of privilege from the hal_camera_default SELinux label without additional execution privileges. The vulnerability is documented a...
CVE-2024-32900
In lwisfencesignal of lwisdebug.c, there is a possible Use after Free due to improper locking. This could lead to local escalation of privilege from halcameradefault SELinux label with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2024-32900
In lwisfencesignal of lwisdebug.c, there is a possible Use after Free due to improper locking. This could lead to local escalation of privilege from halcameradefault SELinux label with no additional execution privileges needed. User interaction is not needed for exploitation...
PUB-A-322327063
In lwisfencesignal of lwisdebug.c, there is a possible Use after Free due to improper locking. This could lead to local escalation of privilege from halcameradefault SELinux label with no additional execution privileges needed. User interaction is not needed for exploitation...
SUSE CVE-2015-1334
attach.c in LXC 1.1.2 and earlier uses the proc filesystem in a container, which allows local container users to escape AppArmor or SELinux confinement by mounting a proc filesystem with a crafted 1 AppArmor profile or 2 SELinux label...
CLSA-2022-1646071990 Fix of CVE: CVE-2021-3667, CVE-2021-3631
CVE-2021-3631: security: fix SELinux label generation logic - CVE-2021-3667: storagedriver: Unlock object on ACL fail in storagePoolLookupByTargetPath...
OPENSUSE-SU-2021:2812-1 Security update for libvirt
This update for libvirt fixes the following issues: Security issues fixed: - CVE-2021-3631: fix SELinux label generation logic bsc1187871 - CVE-2021-3667: Unlock object on ACL fail in storagePoolLookupByTargetPath bsc1188843 Non-security issues fixed: - virtlockd: Don't report error if lockspace...
SUSE-SU-2021:2812-1 Security update for libvirt
This update for libvirt fixes the following issues: Security issues fixed: - CVE-2021-3631: fix SELinux label generation logic bsc1187871 - CVE-2021-3667: Unlock object on ACL fail in storagePoolLookupByTargetPath bsc1188843 Non-security issues fixed: - virtlockd: Don't report error if lockspace...
OPENSUSE-SU-2021:1119-1 Security update for libvirt
This update for libvirt fixes the following issues: - CVE-2021-3631: fix SELinux label generation logic bsc1187871 This update was imported from the SUSE:SLE-15-SP2:Update update project...
SUSE-SU-2021:2471-1 Security update for libvirt
This update for libvirt fixes the following issues: - CVE-2021-3631: fix SELinux label generation logic bsc1187871...
USN-4412-1 linux, linux-aws, linux-aws-5.3, linux-azure, linux-azure-5.3, linux-gcp, linux-gcp-5.3, linux-gke-5.3, linux-hwe, linux-kvm, linux-oracle, linux-oracle-5.3, linux-raspi2-5.3 vulnerabilities
Matthew Sheets discovered that the SELinux network label handling implementation in the Linux kernel could be coerced into de-referencing a NULL pointer. A remote attacker could use this to cause a denial of service system crash. CVE-2020-10711 It was discovered that the SCSI generic sg driver in...
fusermount - user_allow_other Restriction Bypass and SELinux Label Control Exploit
Exploit for linux platform in category dos / poc / It is possible to bypass fusermount's restrictions on the use of the "allowother" mount option as follows if SELinux is active. Here's a minimal demo, tested on a Debian system with SELinux enabled in permissive mode:...
fusermount Restriction Bypass
fusermount userallowother restriction bypass and SELinux label control CVE-2018-10906 It is possible to bypass fusermount's restrictions on the use of the "allowother" mount option as follows if SELinux is active. Here's a minimal demo, tested on a Debian system with SELinux enabled in permissive...