Linux Kernel EXT4 Error Handling Denial Of Service Vulnerability

Mounting a crafted EXT4 image as read-only leads to a kernel panic. Since the mounting procedure is a privileged operation, an attacker is probably not able to trigger this vulnerability on the commandline. Instead the automatic mounting feature of the GUI via a crafted USB-device is required...

Linux Kernel EXT4 Error Handling Denial Of Service

OS-S Security Advisory 2016-23 Local DoS: Linux Kernel EXT4 Error Handling EXT4 calling panic Date: October 31th, 2016 Authors: Sergej Schumilo, Hendrik Schwartke, Ralf Spenneberg CVE: Not yet assigned CVSS: 4.9 AV:L/AC:L/Au:N/C:N/I:N/A:C Severity: Critical Ease of Exploitation: Trivial...