Lucene search
K

66 matches found

OSV
OSV
added 2018/07/18 3:29 p.m.9 views

CVE-2018-10877

Linux kernel ext4 filesystem is vulnerable to an out-of-bound access in the ext4extdroprefs function when operating on a crafted ext4 filesystem image...

6.5CVSS6AI score0.02252EPSS
Exploits0References12
OSV
OSV
added 2018/05/24 6:29 p.m.8 views

CVE-2018-11412

In the Linux kernel 4.13 through 4.16.11, ext4readinlinedata in fs/ext4/inline.c performs a memcpy with an untrusted length value in certain circumstances involving a crafted filesystem that stores the system.data extended attribute value in a dedicated inode...

5.9CVSS6AI score
Exploits0References8
OSV
OSV
added 2018/04/02 3:29 a.m.4 views

CVE-2018-1094

The ext4fillsuper function in fs/ext4/super.c in the Linux kernel through 4.15.15 does not always initialize the crc32c checksum driver, which allows attackers to cause a denial of service ext4xattrinodehash NULL pointer dereference and system crash via a crafted ext4 image...

5.5CVSS5.4AI score
Exploits0References10
0day.today
0day.today
added 2016/11/02 12:0 a.m.30 views

Linux Kernel EXT4 Error Handling Denial Of Service Vulnerability

Mounting a crafted EXT4 image as read-only leads to a kernel panic. Since the mounting procedure is a privileged operation, an attacker is probably not able to trigger this vulnerability on the commandline. Instead the automatic mounting feature of the GUI via a crafted USB-device is required...

6.6AI score
Exploits0
Packet Storm
Packet Storm
added 2016/11/01 12:0 a.m.47 views

Linux Kernel EXT4 Error Handling Denial Of Service

OS-S Security Advisory 2016-23 Local DoS: Linux Kernel EXT4 Error Handling EXT4 calling panic Date: October 31th, 2016 Authors: Sergej Schumilo, Hendrik Schwartke, Ralf Spenneberg CVE: Not yet assigned CVSS: 4.9 AV:L/AC:L/Au:N/C:N/I:N/A:C Severity: Critical Ease of Exploitation: Trivial...

Exploits0
RedHat Linux
RedHat Linux
added 2013/12/05 4:58 p.m.5 views

kernel: ext4: AIO vs fallocate stale data exposure

Race condition in fs/ext4/extents.c in the Linux kernel before 3.4.16 allows local users to obtain sensitive information from a deleted file by reading an extent that was not properly marked as uninitialized...

1.9CVSS5.8AI score0.00285EPSS
Exploits0References4
Rows per page
Query Builder