The ext4_fill_super function in fs/ext4/super.c in the Linux kernel through 4.15.15 does not always initialize the crc32c checksum driver, which allows attackers to cause a denial of service (ext4_xattr_inode_hash NULL pointer dereference and system crash) via a crafted ext4 image.
References
Link | Resource |
---|---|
http://openwall.com/lists/oss-security/2018/03/29/1 | Mailing List Third Party Advisory |
https://access.redhat.com/errata/RHSA-2018:2948 | Third Party Advisory |
https://access.redhat.com/errata/RHSA-2018:3083 | Third Party Advisory |
https://access.redhat.com/errata/RHSA-2018:3096 | Third Party Advisory |
https://bugzilla.kernel.org/show_bug.cgi?id=199183 | Exploit Issue Tracking |
https://bugzilla.redhat.com/show_bug.cgi?id=1560788 | Issue Tracking Third Party Advisory |
https://git.kernel.org/pub/scm/linux/kernel/git/tytso/ext4.git/commit/?id=18db4b4e6fc31eda838dd1c1296d67dbcb3dc957 | Third Party Advisory |
https://git.kernel.org/pub/scm/linux/kernel/git/tytso/ext4.git/commit/?id=a45403b51582a87872927a3e0fc0a389c26867f1 | Patch |
https://usn.ubuntu.com/3695-1/ | Third Party Advisory |
https://usn.ubuntu.com/3695-2/ | Third Party Advisory |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
History
13 Feb 2023, 04:53
Type | Values Removed | Values Added |
---|---|---|
Summary | The ext4_fill_super function in fs/ext4/super.c in the Linux kernel through 4.15.15 does not always initialize the crc32c checksum driver, which allows attackers to cause a denial of service (ext4_xattr_inode_hash NULL pointer dereference and system crash) via a crafted ext4 image. | |
References |
|
02 Feb 2023, 21:18
Type | Values Removed | Values Added |
---|---|---|
Summary | The Linux kernel is vulnerable to a NULL pointer dereference in the ext4/xattr.c:ext4_xattr_inode_hash() function. An attacker could trick a legitimate user or a privileged attacker could exploit this to cause a NULL pointer dereference with a crafted ext4 image. | |
References |
|
Information
Published : 2018-04-02 03:29
Updated : 2023-12-10 12:30
NVD link : CVE-2018-1094
Mitre link : CVE-2018-1094
CVE.ORG link : CVE-2018-1094
JSON object : View
Products Affected
redhat
- enterprise_linux_desktop
- enterprise_linux_workstation
- enterprise_linux_server
linux
- linux_kernel
canonical
- ubuntu_linux
CWE
CWE-476
NULL Pointer Dereference