Lucene search
K

21 matches found

RedhatCVE
RedhatCVE
added 5 days ago9 views

CVE-2026-53023

A flaw was found in the Linux kernel's NTFS3 file system driver. The ntfsfillsuper function, responsible for loading the volume label, did not properly null-terminate the converted UTF-8 label. This oversight could allow the ntfs3labelshow function to read beyond the allocated buffer when...

5.9AI score0.00172EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 6 days ago8 views

Linux Distros Unpatched Vulnerability : CVE-2026-53023

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - fs/ntfs3: terminate the cached volume label after UTF-8 conversion ntfsfillsuper loads the on-disk volume label with utf16stoutf8s and stores the result in...

5.8AI score0.00172EPSS
Exploits0References3
EUVD
EUVD
added last week7 views

EUVD-2026-38891

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: terminate the cached volume label after UTF-8 conversion ntfsfillsuper loads the on-disk volume label with utf16stoutf8s and stores the result in sbi-volume.label. The converted label is later exposed through...

5.7AI score0.00172EPSS
Exploits0References8
CVE
CVE
added last week7 views

CVE-2026-53023

CVE-2026-53023 affects Linux kernel ntfs3: ntfs_fill_super() converts the on-disk volume label from UTF-16 to UTF-8 and stores it in sbi->volume.label, but utf16s_to_utf8s() does not append a NUL terminator. If the converted label fills the fixed buffer, ntfs3_label_show() could read past the ...

5.7AI score0.00172EPSS
Exploits0References7
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.6 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: erofs: Fixed incorrect early exits in volume label handling. Crafted EROFS images containing valid volume labels may trigger incorrect early returns, resulting in folio reference leaks. However, this does not cause system crashes...

5.5CVSS5.6AI score0.00126EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/05/07 2:17 a.m.7 views

SUSE CVE-2026-43154

In the Linux kernel, the following vulnerability has been resolved: erofs: fix incorrect early exits in volume label handling Crafted EROFS images containing valid volume labels can trigger incorrect early returns, leading to folio reference leaks. However, this does not cause system crashes or...

5.8AI score0.00126EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/05/07 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2026-43154

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: erofs: fix incorrect early exits in volume label handling Crafted EROFS images containing...

5.5CVSS5.9AI score0.00126EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/06 12:30 p.m.6 views

EUVD-2026-27717

In the Linux kernel, the following vulnerability has been resolved: erofs: fix incorrect early exits in volume label handling Crafted EROFS images containing valid volume labels can trigger incorrect early returns, leading to folio reference leaks. However, this does not cause system crashes or...

5.8AI score0.00126EPSS
Exploits0References4
NVD
NVD
added 2026/05/06 12:16 p.m.9 views

CVE-2026-43154

In the Linux kernel, the following vulnerability has been resolved: erofs: fix incorrect early exits in volume label handling Crafted EROFS images containing valid volume labels can trigger incorrect early returns, leading to folio reference leaks. However, this does not cause system crashes or...

5.5CVSS0.00126EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/05/06 11:27 a.m.26 views

CVE-2026-43154 erofs: fix incorrect early exits in volume label handling

In the Linux kernel, the following vulnerability has been resolved: erofs: fix incorrect early exits in volume label handling Crafted EROFS images containing valid volume labels can trigger incorrect early returns, leading to folio reference leaks. However, this does not cause system crashes or...

0.00126EPSS
Exploits0References3
CVE
CVE
added 2026/05/06 11:27 a.m.13 views

CVE-2026-43154

The CVE-2026-43154 issue affects the Linux kernel EROFS filesystem, where crafted EROFS images with valid volume labels trigger incorrect early exits in volume label handling, leading to folio reference leaks. Affected component is the EROFS implementation in the kernel; root cause is improper co...

5.5CVSS5.8AI score0.00126EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2026/05/06 11:27 a.m.6 views

CVE-2026-43154

In the Linux kernel, the following vulnerability has been resolved: erofs: fix incorrect early exits in volume label handling Crafted EROFS images containing valid volume labels can trigger incorrect early returns, leading to folio reference leaks. However, this does not cause system crashes or...

5.5CVSS5.7AI score0.00126EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/05/06 12:0 a.m.10 views

PT-2026-37494

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description Crafted EROFS images containing valid volume labels can trigger incorrect early returns in volume label handling, leading to folio reference leaks. Folio reference leaks occur when the...

5.5CVSS5.8AI score0.00126EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-18538

Malware in sbrugna...

7.2CVSS6.4AI score0.00791EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 4:30 a.m.4 views

SUSE CVE-2018-6791

An issue was discovered in soliduiserver/deviceserviceaction.cpp in KDE Plasma Workspace before 5.12.0. When a vfat thumbdrive that contains or $ in its volume label is plugged in and mounted through the device notifier, it's interpreted as a shell command, leading to a possibility of arbitrary...

6.8CVSS7.5AI score0.00791EPSS
Exploits0References5
Gentoo Linux
Gentoo Linux
added 2018/03/07 12:0 a.m.39 views

util-linux: User-assisted execution of arbitrary code

Background util-linux is a suite of Linux programs including mount and umount, programs used to mount and unmount filesystems. Description It was discovered that the umount bash-completion as provided by util-linux does not escap mount point paths. Impact An attacker controlling a volume label...

7.8CVSS8.2AI score0.00457EPSS
Exploits0
OSV
OSV
added 2018/02/07 2:29 a.m.1 views

DEBIAN-CVE-2018-6791

An issue was discovered in soliduiserver/deviceserviceaction.cpp in KDE Plasma Workspace before 5.12.0. When a vfat thumbdrive that contains or $ in its volume label is plugged in and mounted through the device notifier, it's interpreted as a shell command, leading to a possibility of arbitrary...

6.8CVSS6.7AI score0.00791EPSS
Exploits0References1
Prion
Prion
added 2018/02/07 2:29 a.m.25 views

Command injection

An issue was discovered in soliduiserver/deviceserviceaction.cpp in KDE Plasma Workspace before 5.12.0. When a vfat thumbdrive that contains or $ in its volume label is plugged in and mounted through the device notifier, it's interpreted as a shell command, leading to a possibility of arbitrary...

7.2CVSS6.8AI score0.00791EPSS
Exploits0References3Affected Software2
OSV
OSV
added 2015/10/09 6:47 p.m.3 views

MGASA-2015-0393 Updated isodumper package fixes command injection

The volume label text could be injected and executed as a shell command in rawformat.py from isodumper...

7.1AI score
Exploits0References4
Mageia
Mageia
added 2015/10/09 6:47 p.m.19 views

Updated isodumper package fixes command injection

The volume label text could be injected and executed as a shell command in rawformat.py from isodumper...

2.7AI score
Exploits0References3
Rows per page
Query Builder