Lucene search

K
cve[email protected]CVE-2008-4934
HistoryNov 05, 2008 - 3:00 p.m.

CVE-2008-4934

2008-11-0515:00:14
CWE-20
web.nvd.nist.gov
47
7
cve-2008-4934
linux kernel
hfsplus
denial of service
vulnerability
nvd

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

AI Score

4.9

Confidence

High

EPSS

0.002

Percentile

61.0%

The hfsplus_block_allocate function in fs/hfsplus/bitmap.c in the Linux kernel before 2.6.28-rc1 does not check a certain return value from the read_mapping_page function before calling kmap, which allows attackers to cause a denial of service (system crash) via a crafted hfsplus filesystem image.

Affected configurations

NVD
Node
linuxlinux_kernelRange<2.6.28
Node
debiandebian_linuxMatch4.0
Node
canonicalubuntu_linuxMatch6.06lts
OR
canonicalubuntu_linuxMatch7.10
OR
canonicalubuntu_linuxMatch8.04lts
OR
canonicalubuntu_linuxMatch8.10

References

Social References

More

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

AI Score

4.9

Confidence

High

EPSS

0.002

Percentile

61.0%