286 matches found
CVE-2023-53391 shmem: use ramfs_kill_sb() for kill_sb method of ramfs-based tmpfs
In the Linux kernel, the following vulnerability has been resolved: shmem: use ramfskillsb for killsb method of ramfs-based tmpfs As the ramfs-based tmpfs uses ramfsinitfscontext for the initfscontext method, which allocates fc-sfsinfo, use ramfskillsb to free it and avoid a memory leak...
CVE-2023-53391
CVE-2023-53391 patches the Linux kernel shmem:ramfs-based tmpfs memory leak by replacing kill_sb with ramfs_kill_sb() in ramfs-based tmpfs, freeing fc->s_fs_info during init_fs_context() cleanup. Affected: Linux kernel ramfs/tmpfs shmem path; root cause: memory leak in kill_sb/init_fs_context ...
CVE-2023-53391 shmem: use ramfs_kill_sb() for kill_sb method of ramfs-based tmpfs
In the Linux kernel, the following vulnerability has been resolved: shmem: use ramfskillsb for killsb method of ramfs-based tmpfs As the ramfs-based tmpfs uses ramfsinitfscontext for the initfscontext method, which allocates fc-sfsinfo, use ramfskillsb to free it and avoid a memory leak...
CVE-2023-53391
In the Linux kernel, the following vulnerability has been resolved: shmem: use ramfskillsb for killsb method of ramfs-based tmpfs As the ramfs-based tmpfs uses ramfsinitfscontext for the initfscontext method, which allocates fc-sfsinfo, use ramfskillsb to free it and avoid a memory leak...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from ramfs-based tmpfs not properly freeing fc-sfsinfo, which could lead to a memory leak...
Linux Distros Unpatched Vulnerability : CVE-2021-3732
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the Linux kernel's OverlayFS subsystem in the way the user mounts the TmpFS filesystem with OverlayFS. This flaw allows a local user to gain...
Linux Distros Unpatched Vulnerability : CVE-2022-50014
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: mm/gup: fix FOLLFORCE COW security issue and remove FOLLCOW Ever since the Dirty COW...
CVE-2021-43395
An issue was discovered in illumos before f859e7171bb5db34321e45585839c6c3200ebb90, OmniOS Community Edition r151038, OpenIndiana Hipster 2021.04, and SmartOS 20210923. A local unprivileged user can cause a deadlock and kernel panic via crafted rename and rmdir calls on tmpfs filesystems. Oracle...
Linux kernel tmpfs module race condition vulnerability
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a contention issue when handling dquot rbtree. No details of the vulnerability are provided at this time...
CVE-2024-53143
In the Linux kernel, the following vulnerability has been resolved: fsnotify: Fix ordering of iput and watchedobjects decrement Ensure the superblock is kept alive until we're done with iput. Holding a reference to an inode is not allowed unless we ensure the superblock stays alive, which fsnotif...
UBUNTU-CVE-2024-53143
In the Linux kernel, the following vulnerability has been resolved: fsnotify: Fix ordering of iput and watchedobjects decrement Ensure the superblock is kept alive until we're done with iput. Holding a reference to an inode is not allowed unless we ensure the superblock stays alive, which fsnotif...
CVE-2024-53143 fsnotify: Fix ordering of iput() and watched_objects decrement
In the Linux kernel, the following vulnerability has been resolved: fsnotify: Fix ordering of iput and watchedobjects decrement Ensure the superblock is kept alive until we're done with iput. Holding a reference to an inode is not allowed unless we ensure the superblock stays alive, which fsnotif...
CVE-2024-53143 fsnotify: Fix ordering of iput() and watched_objects decrement
In the Linux kernel, the following vulnerability has been resolved: fsnotify: Fix ordering of iput and watchedobjects decrement Ensure the superblock is kept alive until we're done with iput. Holding a reference to an inode is not allowed unless we ensure the superblock stays alive, which fsnotif...
DEBIAN-CVE-2024-53136
In the Linux kernel, the following vulnerability has been resolved: mm: revert "mm: shmem: fix data-race in shmemgetattr" Revert d949d1d14fa2 "mm: shmem: fix data-race in shmemgetattr" as suggested by Chuck 1. It is causing deadlocks when accessing tmpfs over NFS. As Hugh commented, "added just t...
UBUNTU-CVE-2024-53136
In the Linux kernel, the following vulnerability has been resolved: mm: revert "mm: shmem: fix data-race in shmemgetattr" Revert d949d1d14fa2 "mm: shmem: fix data-race in shmemgetattr" as suggested by Chuck 1. It is causing deadlocks when accessing tmpfs over NFS. As Hugh commented, "added just t...
CVE-2024-53136 mm: revert "mm: shmem: fix data-race in shmem_getattr()"
In the Linux kernel, the following vulnerability has been resolved: mm: revert "mm: shmem: fix data-race in shmemgetattr" Revert d949d1d14fa2 "mm: shmem: fix data-race in shmemgetattr" as suggested by Chuck 1. It is causing deadlocks when accessing tmpfs over NFS. As Hugh commented, "added just t...
CVE-2024-50222
In the Linux kernel, the following vulnerability has been resolved: ioviter: fix copypagefromiteratomic if KMAPLOCALFORCEMAP generic/077 on x8632 CONFIGDEBUGKMAPLOCALFORCEMAP=y with highmem, on huge=always tmpfs, issues a warning and then hangs interruptibly: WARNING: CPU: 5 PID: 3517 at...
The vulnerability of the tmpfs component in the Linux operating system’s kernel allows a hacker to trigger a service failure.
The vulnerability of the tmpfs component in the Linux operating system’s kernel is related to the state of the race condition. Exploiting this vulnerability can allow an attacker to increase their privileges within the system...
kernel: Linux kernel: Memory leak in shmem's ramfs-based tmpfs leads to denial of service
A flaw was found in the Linux kernel's shared memory shmem component, specifically within its ramfs-based temporary file system tmpfs implementation. A local user could exploit this vulnerability due to improper memory deallocation. This oversight can lead to a memory leak, potentially causing a...
CVE-2024-50222 iov_iter: fix copy_page_from_iter_atomic() if KMAP_LOCAL_FORCE_MAP
In the Linux kernel, the following vulnerability has been resolved: ioviter: fix copypagefromiteratomic if KMAPLOCALFORCEMAP generic/077 on x8632 CONFIGDEBUGKMAPLOCALFORCEMAP=y with highmem, on huge=always tmpfs, issues a warning and then hangs interruptibly: WARNING: CPU: 5 PID: 3517 at...