Lucene search
K

18 matches found

AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.12 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: f2fs: a fix was made to avoid a Use-After-Free issue in f2fswriteendio. According to syzbot, a use-after-free issue occurred in f2fswriteendio. This issue is caused by the following race condition: Loop device umount...

7.8CVSS5.7AI score0.00119EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/05/01 1:56 p.m.4 views

CVE-2026-31715

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix UAF caused by decrementing sbi-nrpages in f2fswriteendio The xfstests case "generic/107" and syzbot have both reported a NULL pointer dereference. The concurrent scenario that triggers the panic is as follows:...

7.8CVSS5.7AI score0.0012EPSS
Exploits0References6Affected Software1
CVE
CVE
added 2026/05/01 1:56 p.m.34 views

CVE-2026-31715

In Linux kernel (f2fs), CVE-2026-31715 is a use-after-free triggered by decrementing sbi->nr_pages[] during F2FS_WB_CP_DATA handling. The root cause is that f2fs_put_super() calls iput(sbi->node_inode) and NULLs the node_inode after the counter reaches zero, allowing f2fs_in_warm_node_list(...

7.8CVSS5.8AI score0.0012EPSS
Exploits0References8Affected Software1
Debian CVE
Debian CVE
added 2026/05/01 1:56 p.m.4 views

CVE-2026-31702

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix use-after-free of sbi in f2fscompresswriteendio In f2fscompresswriteendio, decpagecountsbi, type can bring the F2FSWBCPDATA counter to zero, unblocking f2fswaitonallpages in f2fsputsuper on a concurrent unmount CPU. The...

7.8CVSS5.7AI score0.00119EPSS
Exploits0
CNNVD
CNNVD
added 2026/05/01 12:0 a.m.10 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the improper order of calls to decpagecount in f2fscompresswriteendio. This could lead to accessi...

7.8CVSS5.8AI score0.00119EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/01 12:0 a.m.9 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the reuse of freed memory during the decrementing of sbi-nrpages in f2fswriteendio. This could le...

7.8CVSS5.8AI score0.0012EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/01 12:0 a.m.6 views

PT-2026-36345

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A use-after-free condition exists in the f2fs component of the Linux kernel. The issue occurs in the f2fs write end io function when sbi-nr pagesF2FS WB CP DATA is decremented to zero...

9.8CVSS6.1AI score0.00501EPSS
Exploits12References297
EUVD
EUVD
added 2026/03/18 6:31 p.m.4 views

EUVD-2026-12904

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to do sanity check on node footer in read,writeendio ----------- cut here ------------ kernel BUG at fs/f2fs/data.c:358! Call Trace: blkupdaterequest+0x5eb/0xe70 block/blk-mq.c:987 blkmqendrequest+0x3e/0x70...

5.7AI score0.00112EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/03/18 5:44 p.m.3 views

CVE-2026-23265

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to do sanity check on node footer in read,writeendio ----------- cut here ------------ kernel BUG at fs/f2fs/data.c:358! Call Trace: blkupdaterequest+0x5eb/0xe70 block/blk-mq.c:987 blkmqendrequest+0x3e/0x70...

5.7AI score0.00112EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2026/03/18 5:44 p.m.16 views

CVE-2026-23265

Summary: CVE-2026-23265 relates to the Linux kernel F2FS filesystem. The issue arises from a faulty sanity check on the node footer during read/end_io paths, leading to an inconsistency between the node page index (nid) and footer.nid. If a node page footer is corrupted (e.g., in a fuzzed image) ...

5.5CVSS5.7AI score0.00112EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/03/18 5:44 p.m.24 views

CVE-2026-23265 f2fs: fix to do sanity check on node footer in {read,write}_end_io

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to do sanity check on node footer in read,writeendio ----------- cut here ------------ kernel BUG at fs/f2fs/data.c:358! Call Trace: blkupdaterequest+0x5eb/0xe70 block/blk-mq.c:987 blkmqendrequest+0x3e/0x70...

0.00112EPSS
Exploits0References3
OSV
OSV
added 2026/03/18 5:44 p.m.4 views

CVE-2026-23265 f2fs: fix to do sanity check on node footer in {read,write}_end_io

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to do sanity check on node footer in read,writeendio ----------- cut here ------------ kernel BUG at fs/f2fs/data.c:358! Call Trace: blkupdaterequest+0x5eb/0xe70 block/blk-mq.c:987 blkmqendrequest+0x3e/0x70...

5.5CVSS5.7AI score0.00112EPSS
Exploits0References6
EUVD
EUVD
added 2026/03/04 3:30 p.m.3 views

EUVD-2026-9406

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid UAF in f2fswriteendio As syzbot reported an use-after-free issue in f2fswriteendio. It is caused by below race condition: loop device umount - workerthread - loopprocesswork - doreqfilebacked - lorwaio -...

5.8AI score0.00119EPSS
Exploits0References9
NVD
NVD
added 2026/03/04 3:16 p.m.7 views

CVE-2026-23234

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid UAF in f2fswriteendio As syzbot reported an use-after-free issue in f2fswriteendio. It is caused by below race condition: loop device umount - workerthread - loopprocesswork - doreqfilebacked - lorwaio -...

7.8CVSS0.00119EPSS
Exploits0References8
OSV
OSV
added 2026/03/04 3:16 p.m.4 views

UBUNTU-CVE-2026-23234

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid UAF in f2fswriteendio As syzbot reported an use-after-free issue in f2fswriteendio. It is caused by below race condition: loop device umount - workerthread - loopprocesswork - doreqfilebacked - lorwaio -...

7.8CVSS5.7AI score0.00119EPSS
Exploits0References19
Debian CVE
Debian CVE
added 2026/03/04 2:36 p.m.4 views

CVE-2026-23234

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid UAF in f2fswriteendio As syzbot reported an use-after-free issue in f2fswriteendio. It is caused by below race condition: loop device umount - workerthread - loopprocesswork - doreqfilebacked - lorwaio -...

7.8CVSS5.2AI score0.00119EPSS
Exploits0
Cvelist
Cvelist
added 2026/03/04 2:36 p.m.37 views

CVE-2026-23234 f2fs: fix to avoid UAF in f2fs_write_end_io()

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid UAF in f2fswriteendio As syzbot reported an use-after-free issue in f2fswriteendio. It is caused by below race condition: loop device umount - workerthread - loopprocesswork - doreqfilebacked - lorwaio -...

0.00119EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2026/03/04 12:0 a.m.7 views

PT-2026-22920

Name of the Vulnerable Software and Affected Versions Linux Kernel affected versions not specified Description The Linux kernel contains a use-after-free issue in the f2fs write end io function. This issue occurs due to a race condition where memory associated with the superblock sbi is freed whi...

7.8CVSS6AI score0.00119EPSS
Exploits0
Rows per page
Query Builder