CVE-2026-46169

In the Linux kernel, the following vulnerability has been resolved: hfsplus: fix uninit-value by validating catalog record size Syzbot reported a KMSAN uninit-value issue in hfsplusstrcasecmp. The root cause is that hfsbrecread doesn't validate that the on-disk record size matches the expected si...

Astra Linux - уязвимость в mariadb-10.3

It has been discovered that MariaDB Server v10.6 and earlier contains a use-after-free in the mystrcasecmp8bit component, which can be exploited through specially crafted SQL statements...

Astra Linux - уязвимость в linux-5.10, linux-5.15, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: hfsplus: fix slab-out-of-bounds read in hfsplusstrcasecmp The hfsplusstrcasecmp logic can trigger the issue: 117.317703 T9855 ================================================================== 117.318353 T9855 BUG: KASAN:...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013664)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013664 advisory. In the Linux kernel, the following vulnerability has been resolved: hfsplus: fix slab-out-of-bounds read in hfsplusstrcasecmp The hfsplusstrcasecmp logic can trigger...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-011279)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011279 advisory. In the Linux kernel, the following vulnerability has been resolved: hfsplus: fix slab-out-of-bounds read in hfsplusstrcasecmp The hfsplusstrcasecmp logic can trigger...

hfsplus: fix slab-out-of-bounds read in hfsplus_strcasecmp()

...

CVE-2025-40088

In the Linux kernel, the following vulnerability has been resolved: hfsplus: fix slab-out-of-bounds read in hfsplusstrcasecmp The hfsplusstrcasecmp logic can trigger the issue: 117.317703 T9855 ================================================================== 117.318353 T9855 BUG: KASAN:...

CVE-2025-40088

CVE-2025-40088 refers to a slab-out-of-bounds read in the Linux kernel's hfsplus_strcasecmp(), fixed by the upstream patch that resolves the oob access. The description shows a KASAN slab-out-of-bounds report in hfsplus_strcasecmp()+0x1bc/0x490, with a read of size 2 at a kernel address during a ...

CVE-2025-40088

In the Linux kernel, the following vulnerability has been resolved: hfsplus: fix slab-out-of-bounds read in hfsplusstrcasecmp The hfsplusstrcasecmp logic can trigger the issue: 117.317703 T9855 ================================================================== 117.318353 T9855 BUG: KASAN:...

CVE-2025-40088 hfsplus: fix slab-out-of-bounds read in hfsplus_strcasecmp()

In the Linux kernel, the following vulnerability has been resolved: hfsplus: fix slab-out-of-bounds read in hfsplusstrcasecmp The hfsplusstrcasecmp logic can trigger the issue: 117.317703 T9855 ================================================================== 117.318353 T9855 BUG: KASAN:...

CVE-2025-40088 hfsplus: fix slab-out-of-bounds read in hfsplus_strcasecmp()

In the Linux kernel, the following vulnerability has been resolved: hfsplus: fix slab-out-of-bounds read in hfsplusstrcasecmp The hfsplusstrcasecmp logic can trigger the issue: 117.317703 T9855 ================================================================== 117.318353 T9855 BUG: KASAN:...

PT-2025-44378

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.17.0-rc6 Description The Linux kernel contains a flaw in the hfsplus strcasecmp function that can lead to a slab-out-of-bounds read. The issue is related to the logic within hfsplus strcasecmp. This can result ...

Linux Distros Unpatched Vulnerability : CVE-2022-27383

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - MariaDB Server v10.6 and below was discovered to contain an use-after-free in the component mystrcasecmp8bit, which is exploited via specially crafted SQL...

mariadb: use-after-poison in my_strcasecmp_8bit() of ctype-simple.c

A flaw was found in the MariaDB Server. A use-after-free in the component, mystrcasecmp8bit, can be exploited via specially crafted SQL statements, impacting availability...

mariadb: use-after-poison in my_strcasecmp_8bit() of ctype-simple.c

A flaw was found in the MariaDB Server. A use-after-free in the component, mystrcasecmp8bit, can be exploited via specially crafted SQL statements, impacting availability...

mariadb: use-after-poison in my_strcasecmp_8bit() of ctype-simple.c

A flaw was found in the MariaDB Server. A use-after-free in the component, mystrcasecmp8bit, can be exploited via specially crafted SQL statements, impacting availability...

AZL-9694 CVE-2022-27383 affecting package mariadb for versions less than 10.6.8-1

MariaDB Server v10.6 and below was discovered to contain an use-after-free in the component mystrcasecmp8bit, which is exploited via specially crafted SQL statements...

UBUNTU-CVE-2022-27383

MariaDB Server v10.6 and below was discovered to contain an use-after-free in the component mystrcasecmp8bit, which is exploited via specially crafted SQL statements...

MariaDB 资源管理错误漏洞

MariaDB is a free and open source database management system from the MariaDB Foundation and a forked version of MySQL with the Maria storage engine. A security vulnerability exists in MariaDB Server v10.6 and lower, which stems from the inclusion of use-after-free in the component...