An issue was discovered in fs/f2fs/inline.c in the Linux kernel through 4.4. A denial of service (out-of-bounds memory access and BUG) can occur for a modified f2fs filesystem image in which an inline inode contains an invalid reserved blkaddr.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Configuration 4 (hide)
|
History
07 Oct 2022, 02:08
Type | Values Removed | Values Added |
---|---|---|
First Time |
Opensuse leap
Canonical ubuntu Linux Canonical Opensuse |
|
CPE | cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:* cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:* cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:* cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:* |
|
References | (BID) http://www.securityfocus.com/bid/104680 - Broken Link | |
References | (UBUNTU) https://usn.ubuntu.com/3932-1/ - Third Party Advisory | |
References | (CONFIRM) https://git.kernel.org/pub/scm/linux/kernel/git/tip/tip.git/commit/?id=3bfe2049c222b23342ff2a216cd5a869e8a14897 - Mailing List, Patch, Vendor Advisory | |
References | (UBUNTU) https://usn.ubuntu.com/3932-2/ - Third Party Advisory | |
References | (SUSE) http://lists.opensuse.org/opensuse-security-announce/2018-10/msg00033.html - Mailing List, Third Party Advisory | |
References | (MISC) http://packetstormsecurity.com/files/151420/Slackware-Security-Advisory-Slackware-14.2-kernel-Updates.html - Third Party Advisory, VDB Entry | |
References | (BUGTRAQ) https://seclists.org/bugtraq/2018/Oct/4 - Mailing List, Third Party Advisory | |
References | (UBUNTU) https://usn.ubuntu.com/4118-1/ - Third Party Advisory | |
References | (BUGTRAQ) https://seclists.org/bugtraq/2019/Jan/52 - Mailing List, Patch, Third Party Advisory | |
References | (MISC) https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=4dbe38dc386910c668c75ae616b99b823b59f3eb - Mailing List, Patch, Vendor Advisory | |
References | (UBUNTU) https://usn.ubuntu.com/4094-1/ - Third Party Advisory |
05 Jan 2021, 20:15
Type | Values Removed | Values Added |
---|---|---|
Summary | An issue was discovered in fs/f2fs/inline.c in the Linux kernel through 4.4. A denial of service (out-of-bounds memory access and BUG) can occur for a modified f2fs filesystem image in which an inline inode contains an invalid reserved blkaddr. | |
References |
|
Information
Published : 2018-07-03 10:29
Updated : 2023-12-10 12:30
NVD link : CVE-2018-13099
Mitre link : CVE-2018-13099
CVE.ORG link : CVE-2018-13099
JSON object : View
Products Affected
opensuse
- leap
canonical
- ubuntu_linux
debian
- debian_linux
linux
- linux_kernel
CWE
CWE-125
Out-of-bounds Read