ocfs2

A subtle accounting error inside the OCFS2 filesystem’s Direct I/O path has been fixed as CVE-2024-42077 — a bug that could exhaust journaling transaction credits during large or heavily fragmented DIO writes and force the filesystem to abort, producing kernel panics and a complete loss of...

The short, practical answer is: Microsoft’s public advisory for CVE-2025-22079 names Azure Linux as the Microsoft product that has been inspected and confirmed to include the vulnerable OCFS2 code, but that attestation is a product‑scoped inventory statement — it is not proof that other...

A newly reported OCFS2 filesystem vulnerability described as "relax BUG to ocfs2_error in __ocfs2_move_extent" highlights a recurring class of Linux kernel filesystem defects where aggressive kernel assertions escalate recoverable metadata inconsistencies into host‑crashing kernel BUGs...

A subtle caching bug in the OCFS2 kernel code — tracked as CVE-2025-40233 — can leave the filesystem’s extent map cache stale after extent moves or defragmentation, allowing later I/O to observe outdated extent flags and triggering a kernel BUG; maintainers fixed the issue by explicitly clearing...

A small change in the OCFS2 kernel code — setting a freed pointer to NULL — resolved a formally assigned CVE but highlights a perennial class of Linux kernel risks: double‑free memory corruption that can destabilize hosts, complicate multi‑tenant environments, and, in some cases, provide a local...