A flaw was found in the Linux kernel’s ext4 filesystem. A local user can cause an out-of-bounds write in jbd2_journal_dirty_metadata(), a denial of service, and a system crash by mounting and operating on a crafted ext4 filesystem image. (CVE-2018-10883)
Impact
A local user may be able to obtain sensitive information to cause a denial-of-service (DoS) attack and disrupt service by using a crafted ext4 filesystem image.