CVE-2017-10663

2017-08-14T08:48:33
ID RH:CVE-2017-10663
Type redhatcve
Reporter redhat.com
Modified 2020-04-08T19:59:05

Description

The sanity_check_ckpt function in fs/f2fs/super.c in the Linux kernel before version 4.12.4 does not validate the blkoff and segno arrays. This allows an unprivileged, local user to cause a system panic and DoS. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although we believe it is unlikely.