OpenBSD FFS and EXT2FS Filesystems nlink DoS

1999-02-25T00:00:00
ID OSVDB:6129
Type osvdb
Reporter OSVDB
Modified 1999-02-25T00:00:00

Description

Vulnerability Description

OpenBSD contains a flaw that may allow a local denial of service. The issue is triggered due to a flaw in the FFS and EXT2FS link(2) library function when an unbounded increment is made on the nlink value, which may allow a malicious user to crash the system.

Solution Description

Currently, there are no known workarounds or upgrades to correct this issue. However, OpenBSD has released a patch to address this vulnerability.

Short Description

OpenBSD contains a flaw that may allow a local denial of service. The issue is triggered due to a flaw in the FFS and EXT2FS link(2) library function when an unbounded increment is made on the nlink value, which may allow a malicious user to crash the system.

References:

Vendor Specific Solution URL: ftp://ftp.openbsd.org/pub/OpenBSD/patches/2.4/common/nlink.patch Vendor Specific Advisory URL ISS X-Force ID: 1827 CVE-1999-0483