ext4 vulnerability

CVE-2026-46094 is a newly published Linux kernel ext4 vulnerability, disclosed by NVD on May 27, 2026, in which a faulty extended-attribute bounds check could allow a four-byte read past the valid xattr region during filesystem metadata validation. The fix is almost comically small: one changed...

CVE-2026-45858 is a Linux kernel ext4 vulnerability disclosed by kernel.org and published by NVD on May 27, 2026, involving stale data exposure when unwritten extents are split and converted under a temporary space shortage. The bug is not a Windows vulnerability, but it matters to WindowsForum...

CVE-2026-45942 is a Linux kernel ext4 vulnerability published by NVD on May 27, 2026, covering a race between folio migration and ext4 bitmap updates that can produce e4b bitmap inconsistency reports during mixed huge-page stress workloads in affected kernels under load. The bug is not a...

CVE-2026-45892 is a newly published Linux kernel ext4 vulnerability, disclosed by NVD on May 27, 2026, involving stale extent-cache state after a partial zeroout during unwritten-extent conversion. It is not yet scored by NVD, and the public record reads less like a finished exploit advisory...

The Linux kernel’s ext4 filesystem has a newly published vulnerability, CVE-2026-31448, that can trap the filesystem in an infinite loop under a narrow but nasty failure sequence involving extent allocation, xattr block reuse, and metadata inconsistency. NVD published the record on April 22...