CVE-2024-8946 MicroPython VFS Unmount vfs.c mp_vfs_umount heap-based overflow

A vulnerability was found in MicroPython 1.23.0. It has been classified as critical. Affected is the function mpvfsumount of the file extmod/vfs.c of the component VFS Unmount Handler. The manipulation leads to heap-based buffer overflow. It is possible to launch the attack remotely. The exploit...

CVE-2024-8946 MicroPython VFS Unmount vfs.c mp_vfs_umount heap-based overflow

A vulnerability was found in MicroPython 1.23.0. It has been classified as critical. Affected is the function mpvfsumount of the file extmod/vfs.c of the component VFS Unmount Handler. The manipulation leads to heap-based buffer overflow. It is possible to launch the attack remotely. The exploit...

CVE-2024-8946

CVE-2024-8946 affects MicroPython 1.23.0 in the VFS unmount handler (mp_vfs_umount). The vulnerability arises from comparing the mounted path and unmount request solely by the unmount string length, enabling a heap-based buffer overflow read. The description notes the issue can be exploited remot...

CVE-2024-8946

A vulnerability was found in MicroPython 1.23.0. It has been classified as critical. Affected is the function mpvfsumount of the file extmod/vfs.c of the component VFS Unmount Handler. The manipulation leads to heap-based buffer overflow. It is possible to launch the attack remotely. The exploit...

MicroPython 安全漏洞

MicroPython is a small open source Python programming language interpreter open-sourced by MicroPython. A security vulnerability exists in MicroPython version 1.23.0, which originates in the mpvfsumount function in the VFS Unmount Handler component, which compares a mount path string and an unmou...

PT-2024-39331 · Unknown +2 · Micropython +2

Name of the Vulnerable Software and Affected Versions: MicroPython version 1.23.0 Description: A critical issue has been found in the VFS Unmount Handler component, specifically in the function mp vfs umount of the file extmod/vfs.c. This issue leads to a heap-based buffer overflow. The attack ca...

gfs2: Fix potential glock use-after-free on unmount

...

SUSE CVE-2024-44972

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

CVE-2024-44972

A flaw was found in the btrfs module in the Linux kernel. A specific workload can cause a data leak when unmounting a btrfs file system, causing leak detection warnings, potentially impacting system stability, and resulting in a denial of service...

CVE-2024-44972

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

DEBIAN-CVE-2024-44972

In the Linux kernel, the following vulnerability has been resolved: btrfs: do not clear page dirty inside extentwritelockedrange BUG For subpage + zoned case, the following workload can lead to rsv data leak at unmount time: mkfs.btrfs -f -s 4k $dev mount $dev $mnt fsstress -w -n 8 -d $mnt -s...

CVE-2024-44972

...

CVE-2024-44972 btrfs: do not clear page dirty inside extent_write_locked_range()

In the Linux kernel, the following vulnerability has been resolved: btrfs: do not clear page dirty inside extentwritelockedrange BUG For subpage + zoned case, the following workload can lead to rsv data leak at unmount time: mkfs.btrfs -f -s 4k $dev mount $dev $mnt fsstress -w -n 8 -d $mnt -s...

kernel: gfs2: Fix potential glock use-after-free on unmount

A vulnerability was found in the Linux kernel within the gfs2 component, where potential use-after-free issues could occur on unmount. When DLM lockspaces are released with remaining locks, callbacks for asynchronous lock contention may access freed objects, causing unexpected behavior...

kernel: gfs2: Fix potential glock use-after-free on unmount

A vulnerability was found in the Linux kernel within the gfs2 component, where potential use-after-free issues could occur on unmount. When DLM lockspaces are released with remaining locks, callbacks for asynchronous lock contention may access freed objects, causing unexpected behavior...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an issue with clearing page dirty flags in the extrawritelockedrange function of the btrfs filesystem, which...

kernel: gfs2: Fix potential glock use-after-free on unmount

A vulnerability was found in the Linux kernel within the gfs2 component, where potential use-after-free issues could occur on unmount. When DLM lockspaces are released with remaining locks, callbacks for asynchronous lock contention may access freed objects, causing unexpected behavior...

CVE-2022-48920

In the Linux kernel, the following vulnerability has been resolved: btrfs: get rid of warning on transaction commit when using flushoncommit When using the flushoncommit mount option, during almost every transaction commit we trigger a warning from writebackinodessbnr: $ cat fs/fs-writeback.c:...

kernel: gfs2: Fix potential glock use-after-free on unmount

A vulnerability was found in the Linux kernel within the gfs2 component, where potential use-after-free issues could occur on unmount. When DLM lockspaces are released with remaining locks, callbacks for asynchronous lock contention may access freed objects, causing unexpected behavior...

SUSE CVE-2024-42297

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to don't dirty inode for readonly filesystem syzbot reports f2fs bug as below: kernel BUG at fs/f2fs/inode.c:933! RIP: 0010:f2fsevictinode+0x1576/0x1590 fs/f2fs/inode.c:933 Call Trace: evict+0x2a4/0x620 fs/inode.c:664...