INFO

CVE-2026-46094 ext4: fix bounds check in check_xattrs() to prevent out-of-bounds access

Microsoft Security Response Center • May 28, 2026

INFO

CVE-2026-46046 ext4: fix missing brelse() in ext4_xattr_inode_dec_ref_all()

Microsoft Security Response Center • May 28, 2026

INFO

CVE-2026-45899 ext4: drop extent cache when splitting extent fails

Microsoft Security Response Center • May 28, 2026

INFO

CVE-2026-46002 ext2: reject inodes with zero i_nlink and valid mode in ext2_iget()

Microsoft Security Response Center • May 28, 2026

INFO

CVE-2026-45861 gfs2: Fix slab-use-after-free in qd_put

Microsoft Security Response Center • May 28, 2026

INFO

CVE-2026-45991 udf: fix partition descriptor append bookkeeping

Microsoft Security Response Center • May 28, 2026

INFO

CVE-2026-31702 f2fs: fix use-after-free of sbi in f2fs_compress_write_end_io()

Microsoft Security Response Center • May 19, 2026

MEDIUM

CVE-2025-22113 ext4: avoid journaling sb update on error if journal is destroying

Microsoft Security Response Center • May 11, 2026

INFO

CVE-2026-43474 fs: init flags_valid before calling vfs_fileattr_get

Microsoft Security Response Center • May 11, 2026

INFO

CVE-2026-31577 nilfs2: fix NULL i_assoc_inode dereference in nilfs_mdt_save_to_shadow_map

Microsoft Security Response Center • Apr 26, 2026

INFO

CVE-2026-31596 ocfs2: handle invalid dinode in ocfs2_group_extend

Microsoft Security Response Center • Apr 26, 2026

LOW

CVE-2026-31598 ocfs2: fix possible deadlock between unlink and dio_end_io_write

Microsoft Security Response Center • Apr 26, 2026

MEDIUM

Chromium: CVE-2026-6360 Use after free in FileSystem

Microsoft Security Response Center • Apr 17, 2026

HIGH

GLSA 202604-03: FUSE: Multiple Vulnerabilities

Gentoo GLSA • Apr 17, 2026