6 matches found
CVE-2018-1092
CVE-2018-1092 : Linux kernel ext4 mounting a crafted ext4 image can trigger a NULL pointer dereference in ext4_iget, causing denial of service. This vulnerability is confirmed in multiple advisories (e.g., Debian/Ubuntu RedHat CLIs) and is addressed by applying vendor kernel updates to fixed vers...
CVE-2018-1094
CVE-2018-1094 affects the Linux kernel ext4 subsystem: the ext4_fill_super routine in fs/ext4/super.c up to version 4.15.15 does not reliably initialize the crc32c checksum driver, enabling a crafted ext4 image to trigger a NULL pointer dereference in ext4_xattr_inode_hash and cause a denial of s...
CVE-2018-1093
CVE-2018-1093 affects the Linux kernel (ext4) where ext4_valid_block_bitmap() in fs/ext4/balloc.c can trigger an out-of-bounds read due to missing validation of bitmap block numbers in balloc.c/ialloc.c. The issue allows a local attacker who can mount a crafted ext4 image to cause a denial of ser...
CVE-2024-35819
CVE-2024-35819 affects the Linux kernel subsystem soc: fsl: qbman, where smp_call_function is used and can run callbacks in hard IRQ context; to prevent potential sleeping-task issues on PREEMPT_RT, the advisory specifies using a raw spinlock for cgr_lock. The root cause is that smp_call_function...
CVE-2024-35806
The CVE-2024-35806 entry concerns the Linux kernel vulnerability in soc: fsl: qbman where IRQs must be disabled when taking cgr_lock to avoid deadlocks. The description states that smp_call_function_single already disables IRQs in the affected code path and that qman_update_cgr and qman_delete_cg...
CVE-2018-1095
CVE-2018-1095 concerns the Linux kernel up to 4.15.15, where ext4_xattr_check_entries in fs/ext4/xattr.c fails to validate xattr sizes, causing misinterpretation of a size as an error code. This can enable a crafted ext4 image to trigger a get_acl NULL pointer dereference and crash the system, i....