Количество 49
Количество 49
CVE-2022-50367
In the Linux kernel, the following vulnerability has been resolved: fs: fix UAF/GPF bug in nilfs_mdt_destroy In alloc_inode, inode_init_always() could return -ENOMEM if security_inode_alloc() fails, which causes inode->i_private uninitialized. Then nilfs_is_metadata_file_inode() returns true and nilfs_free_inode() wrongly calls nilfs_mdt_destroy(), which frees the uninitialized inode->i_private and leads to crashes(e.g., UAF/GPF). Fix this by moving security_inode_alloc just prior to this_cpu_inc(nr_inodes)
CVE-2022-50367
In the Linux kernel, the following vulnerability has been resolved: f ...
ELSA-2025-19930
ELSA-2025-19930: kernel security update (MODERATE)
SUSE-SU-2026:0474-1
Security update for the Linux Kernel
GHSA-hjrq-8p9v-7m4p
In the Linux kernel, the following vulnerability has been resolved: mm: fix zswap writeback race condition The zswap writeback mechanism can cause a race condition resulting in memory corruption, where a swapped out page gets swapped in with data that was written to a different page. The race unfolds like this: 1. a page with data A and swap offset X is stored in zswap 2. page A is removed off the LRU by zpool driver for writeback in zswap-shrink work, data for A is mapped by zpool driver 3. user space program faults and invalidates page entry A, offset X is considered free 4. kswapd stores page B at offset X in zswap (zswap could also be full, if so, page B would then be IOed to X, then skip step 5.) 5. entry A is replaced by B in tree->rbroot, this doesn't affect the local reference held by zswap-shrink work 6. zswap-shrink work writes back A at X, and frees zswap entry A 7. swapin of slot X brings A in memory instead of B The fix: Once the swap page cache has been...
GHSA-4hcm-79j9-x472
In the Linux kernel, the following vulnerability has been resolved: fs: fix UAF/GPF bug in nilfs_mdt_destroy In alloc_inode, inode_init_always() could return -ENOMEM if security_inode_alloc() fails, which causes inode->i_private uninitialized. Then nilfs_is_metadata_file_inode() returns true and nilfs_free_inode() wrongly calls nilfs_mdt_destroy(), which frees the uninitialized inode->i_private and leads to crashes(e.g., UAF/GPF). Fix this by moving security_inode_alloc just prior to this_cpu_inc(nr_inodes)
BDU:2026-06094
Уязвимость функции zswap_writeback_entry() в модуле mm/zswap.c подсистемы управления памятью ядра операционной системы Linux, позволяющая нарушителю вызвать отказ в обслуживании
BDU:2026-02180
Уязвимость функции inode_init_always() в модуле fs/inode.c файловой системы ядра операционной системы Linux, позволяющая нарушителю оказать воздействие на конфиденциальность, целостность и доступность защищаемой информации
ROS-20260414-73-0011
Уязвимость kernel-lt
ELSA-2025-21118
ELSA-2025-21118: kernel security update (MODERATE)
ELSA-2025-19409
ELSA-2025-19409: kernel security update (MODERATE)
SUSE-SU-2025:03626-1
Security update for the Linux Kernel
SUSE-SU-2025:03614-1
Security update for the Linux Kernel
SUSE-SU-2026:0200-1
Security update for the Linux Kernel (Live Patch 73 for SUSE Linux Enterprise 12 SP5)
SUSE-SU-2026:0155-1
Security update for the Linux Kernel (Live Patch 72 for SUSE Linux Enterprise 12 SP5)
SUSE-SU-2026:0154-1
Security update for the Linux Kernel (Live Patch 63 for SUSE Linux Enterprise 12 SP5)
SUSE-SU-2026:0617-1
Security update for the Linux Kernel
SUSE-SU-2025:03628-1
Security update for the Linux Kernel
SUSE-SU-2025:03615-1
Security update for the Linux Kernel
SUSE-SU-2025:3725-1
Security update for the Linux Kernel
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2022-50367 In the Linux kernel, the following vulnerability has been resolved: fs: fix UAF/GPF bug in nilfs_mdt_destroy In alloc_inode, inode_init_always() could return -ENOMEM if security_inode_alloc() fails, which causes inode->i_private uninitialized. Then nilfs_is_metadata_file_inode() returns true and nilfs_free_inode() wrongly calls nilfs_mdt_destroy(), which frees the uninitialized inode->i_private and leads to crashes(e.g., UAF/GPF). Fix this by moving security_inode_alloc just prior to this_cpu_inc(nr_inodes) | CVSS3: 7.8 | 0% Низкий | 9 месяцев назад |
| CVE-2022-50367 In the Linux kernel, the following vulnerability has been resolved: f ... | CVSS3: 7.8 | 0% Низкий | 9 месяцев назад |
| ELSA-2025-19930 ELSA-2025-19930: kernel security update (MODERATE) | 7 месяцев назад | ||
 | SUSE-SU-2026:0474-1 Security update for the Linux Kernel | 4 месяца назад | ||
| GHSA-hjrq-8p9v-7m4p In the Linux kernel, the following vulnerability has been resolved: mm: fix zswap writeback race condition The zswap writeback mechanism can cause a race condition resulting in memory corruption, where a swapped out page gets swapped in with data that was written to a different page. The race unfolds like this: 1. a page with data A and swap offset X is stored in zswap 2. page A is removed off the LRU by zpool driver for writeback in zswap-shrink work, data for A is mapped by zpool driver 3. user space program faults and invalidates page entry A, offset X is considered free 4. kswapd stores page B at offset X in zswap (zswap could also be full, if so, page B would then be IOed to X, then skip step 5.) 5. entry A is replaced by B in tree->rbroot, this doesn't affect the local reference held by zswap-shrink work 6. zswap-shrink work writes back A at X, and frees zswap entry A 7. swapin of slot X brings A in memory instead of B The fix: Once the swap page cache has been... | CVSS3: 4.7 | 0% Низкий | 9 месяцев назад |
| GHSA-4hcm-79j9-x472 In the Linux kernel, the following vulnerability has been resolved: fs: fix UAF/GPF bug in nilfs_mdt_destroy In alloc_inode, inode_init_always() could return -ENOMEM if security_inode_alloc() fails, which causes inode->i_private uninitialized. Then nilfs_is_metadata_file_inode() returns true and nilfs_free_inode() wrongly calls nilfs_mdt_destroy(), which frees the uninitialized inode->i_private and leads to crashes(e.g., UAF/GPF). Fix this by moving security_inode_alloc just prior to this_cpu_inc(nr_inodes) | CVSS3: 7.8 | 0% Низкий | 9 месяцев назад |
 | BDU:2026-06094 Уязвимость функции zswap_writeback_entry() в модуле mm/zswap.c подсистемы управления памятью ядра операционной системы Linux, позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 4.7 | 0% Низкий | около 3 лет назад |
| BDU:2026-02180 Уязвимость функции inode_init_always() в модуле fs/inode.c файловой системы ядра операционной системы Linux, позволяющая нарушителю оказать воздействие на конфиденциальность, целостность и доступность защищаемой информации | CVSS3: 7.8 | 0% Низкий | почти 4 года назад |
 | ROS-20260414-73-0011 Уязвимость kernel-lt | CVSS3: 4.7 | 0% Низкий | 2 месяца назад |
| ELSA-2025-21118 ELSA-2025-21118: kernel security update (MODERATE) | 7 месяцев назад | ||
| ELSA-2025-19409 ELSA-2025-19409: kernel security update (MODERATE) | 8 месяцев назад | ||
| SUSE-SU-2025:03626-1 Security update for the Linux Kernel | 8 месяцев назад | ||
| SUSE-SU-2025:03614-1 Security update for the Linux Kernel | 8 месяцев назад | ||
| SUSE-SU-2026:0200-1 Security update for the Linux Kernel (Live Patch 73 for SUSE Linux Enterprise 12 SP5) | 5 месяцев назад | ||
| SUSE-SU-2026:0155-1 Security update for the Linux Kernel (Live Patch 72 for SUSE Linux Enterprise 12 SP5) | 5 месяцев назад | ||
| SUSE-SU-2026:0154-1 Security update for the Linux Kernel (Live Patch 63 for SUSE Linux Enterprise 12 SP5) | 5 месяцев назад | ||
| SUSE-SU-2026:0617-1 Security update for the Linux Kernel | 4 месяца назад | ||
| SUSE-SU-2025:03628-1 Security update for the Linux Kernel | 8 месяцев назад | ||
| SUSE-SU-2025:03615-1 Security update for the Linux Kernel | 8 месяцев назад | ||
| SUSE-SU-2025:3725-1 Security update for the Linux Kernel | 8 месяцев назад |
Уязвимостей на страницу