Количество 16
Количество 16
CVE-2023-52759
In the Linux kernel, the following vulnerability has been resolved: gfs2: ignore negated quota changes When lots of quota changes are made, there may be cases in which an inode's quota information is increased and then decreased, such as when blocks are added to a file, then deleted from it. If the timing is right, function do_qc can add pending quota changes to a transaction, then later, another call to do_qc can negate those changes, resulting in a net gain of 0. The quota_change information is recorded in the qc buffer (and qd element of the inode as well). The buffer is added to the transaction by the first call to do_qc, but a subsequent call changes the value from non-zero back to zero. At that point it's too late to remove the buffer_head from the transaction. Later, when the quota sync code is called, the zero-change qd element is discovered and flagged as an assert warning. If the fs is mounted with errors=panic, the kernel will panic. This is usually seen when files are tr...
CVE-2023-52759
[REJECTED CVE] In the Linux kernel, the following vulnerability has been resolved: gfs2: ignore negated quota changes The Linux kernel CVE team has assigned CVE-2023-52759 to this issue.
CVE-2023-52759
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
GHSA-g582-9mpv-vv22
In the Linux kernel, the following vulnerability has been resolved: gfs2: ignore negated quota changes When lots of quota changes are made, there may be cases in which an inode's quota information is increased and then decreased, such as when blocks are added to a file, then deleted from it. If the timing is right, function do_qc can add pending quota changes to a transaction, then later, another call to do_qc can negate those changes, resulting in a net gain of 0. The quota_change information is recorded in the qc buffer (and qd element of the inode as well). The buffer is added to the transaction by the first call to do_qc, but a subsequent call changes the value from non-zero back to zero. At that point it's too late to remove the buffer_head from the transaction. Later, when the quota sync code is called, the zero-change qd element is discovered and flagged as an assert warning. If the fs is mounted with errors=panic, the kernel will panic. This is usually seen when files are...
BDU:2024-10396
Уязвимость функции qd_check_sync() компонента imon ядра операционных систем Linux, позволяющая нарушителю вызвать отказ в обслуживании
ROS-20241119-01
Множественные уязвимости kernel-lt
SUSE-SU-2024:1979-1
Security update for the Linux Kernel
SUSE-SU-2024:2184-1
Security update for the Linux Kernel
SUSE-SU-2024:1983-1
Security update for the Linux Kernel
SUSE-SU-2024:2571-1
Security update for the Linux Kernel
SUSE-SU-2024:2189-1
Security update for the Linux Kernel
SUSE-SU-2024:2896-1
Security update for the Linux Kernel
SUSE-SU-2024:2019-1
Security update for the Linux Kernel
SUSE-SU-2024:2190-1
Security update for the Linux Kernel
SUSE-SU-2024:2008-1
Security update for the Linux Kernel
SUSE-SU-2024:2973-1
Security update for the Linux Kernel
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2023-52759 In the Linux kernel, the following vulnerability has been resolved: gfs2: ignore negated quota changes When lots of quota changes are made, there may be cases in which an inode's quota information is increased and then decreased, such as when blocks are added to a file, then deleted from it. If the timing is right, function do_qc can add pending quota changes to a transaction, then later, another call to do_qc can negate those changes, resulting in a net gain of 0. The quota_change information is recorded in the qc buffer (and qd element of the inode as well). The buffer is added to the transaction by the first call to do_qc, but a subsequent call changes the value from non-zero back to zero. At that point it's too late to remove the buffer_head from the transaction. Later, when the quota sync code is called, the zero-change qd element is discovered and flagged as an assert warning. If the fs is mounted with errors=panic, the kernel will panic. This is usually seen when files are tr... | около 1 года назад | ||
 | CVE-2023-52759 [REJECTED CVE] In the Linux kernel, the following vulnerability has been resolved: gfs2: ignore negated quota changes The Linux kernel CVE team has assigned CVE-2023-52759 to this issue. | CVSS3: 5.5 | около 1 года назад | |
 | CVE-2023-52759 Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. | около 1 года назад | ||
| GHSA-g582-9mpv-vv22 In the Linux kernel, the following vulnerability has been resolved: gfs2: ignore negated quota changes When lots of quota changes are made, there may be cases in which an inode's quota information is increased and then decreased, such as when blocks are added to a file, then deleted from it. If the timing is right, function do_qc can add pending quota changes to a transaction, then later, another call to do_qc can negate those changes, resulting in a net gain of 0. The quota_change information is recorded in the qc buffer (and qd element of the inode as well). The buffer is added to the transaction by the first call to do_qc, but a subsequent call changes the value from non-zero back to zero. At that point it's too late to remove the buffer_head from the transaction. Later, when the quota sync code is called, the zero-change qd element is discovered and flagged as an assert warning. If the fs is mounted with errors=panic, the kernel will panic. This is usually seen when files are... | около 1 года назад | ||
 | BDU:2024-10396 Уязвимость функции qd_check_sync() компонента imon ядра операционных систем Linux, позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 5.5 | больше 1 года назад | |
 | ROS-20241119-01 Множественные уязвимости kernel-lt | CVSS3: 8.8 | 7 месяцев назад | |
 | SUSE-SU-2024:1979-1 Security update for the Linux Kernel | около 1 года назад | ||
| SUSE-SU-2024:2184-1 Security update for the Linux Kernel | 12 месяцев назад | ||
| SUSE-SU-2024:1983-1 Security update for the Linux Kernel | около 1 года назад | ||
| SUSE-SU-2024:2571-1 Security update for the Linux Kernel | 11 месяцев назад | ||
| SUSE-SU-2024:2189-1 Security update for the Linux Kernel | 12 месяцев назад | ||
| SUSE-SU-2024:2896-1 Security update for the Linux Kernel | 10 месяцев назад | ||
| SUSE-SU-2024:2019-1 Security update for the Linux Kernel | около 1 года назад | ||
| SUSE-SU-2024:2190-1 Security update for the Linux Kernel | 12 месяцев назад | ||
| SUSE-SU-2024:2008-1 Security update for the Linux Kernel | около 1 года назад | ||
| SUSE-SU-2024:2973-1 Security update for the Linux Kernel | 10 месяцев назад |
Уязвимостей на страницу