EUVD-2023-59824

Malicious code in bioql PyPI...

kernel: ovl: fix UAF in ovl_dentry_update_reval by moving dput() in ovl_link_up

A use after free vulnerability exists in the linux kernel such that dputupper is being called before ovldentryupdatereval, while upper-dflags was still accessed in ovldentryremote...

PT-2025-54159

Name of the Vulnerable Software and Affected Versions Linux kernel versions 6.3.0-12064-g2edfa098e750-dirty and earlier Description The Linux kernel contains a flaw in the ovl get acl rcu function, which can lead to a null pointer dereference. The issue occurs during the process of obtaining an...

SUSE CVE-2016-6197

fs/overlayfs/dir.c in the OverlayFS filesystem implementation in the Linux kernel before 4.6 does not properly verify the upper dentry before proceeding with unlink and rename system-call processing, which allows local users to cause a denial of service system crash via a rename system call that...

kernel: overlayfs: missing upper dentry verification before unlink and rename

It was found that the unlink and rename functionality in overlayfs did not verify the upper dentry for staleness. A local, unprivileged user could use the rename syscall on overlayfs on top of xfs to panic or crash the system...

kernel: overlayfs: missing upper dentry verification before unlink and rename

It was found that the unlink and rename functionality in overlayfs did not verify the upper dentry for staleness. A local, unprivileged user could use the rename syscall on overlayfs on top of xfs to panic or crash the system...