9 matches found
CVE-2018-14609
CVE-2018-14609 affects the Linux kernel (up to 4.17.10) with an invalid pointer dereference in __del_reloc_root() of fs/btrfs/relocation.c when mounting a crafted Btrfs image. The issue is triggered by removing reloc rb_trees when reloc control has not been initialized, leading to potential denia...
CVE-2018-14617
CVE-2018-14617 affects the Linux kernel up to 4.17.10. A NULL pointer dereference and panic occur in hfsplus_lookup() when opening a file in an HFS+ filesystem with malformed catalog data mounted read-only without a metadata directory, potentially causing a kernel panic. Connected Nessus entry co...
CVE-2018-14613
CVE-2018-14613 affects the Linux kernel up to 4.17.10. It involves an invalid pointer dereference in io_ctl_map_page() when mounting/operating a crafted btrfs image, caused by a lack of block group item validation in fs/btrfs/tree-checker.c (check_leaf_item). The issue yields a local, likely kern...
CVE-2018-14612
CVE-2018-14612 affects the Linux kernel (through 4.17.10) with an invalid pointer dereference in btrfs_root_node() when mounting a crafted btrfs image. The root cause is lack of validation in btrfs_read_block_groups (fs/btrfs/extent-tree.c) and missing empty-tree checks in check_leaf (fs/btrfs/tr...
CVE-2018-14610
CVE-2018-14610 concerns the Linux kernel up to 4.17.10. A crafted btrfs image mounting scenario can trigger an out-of-bounds access in write_extent_buffer() due to insufficient verification that each block group has a corresponding chunk at mount time (in fs/btrfs/extent-tree.c). This can lead to...
CVE-2018-14614
CVE-2018-14614 concerns a Linux kernel issue up to version 4.17.10 where mounting an f2fs image triggers an out-of-bounds access in __remove_dirty_segment() within fs/f2fs/segment.c. Publicly documented details identify the affected component as the kernel’s f2fs filesystem driver, with a local a...
CVE-2018-14611
CVE-2018-14611 affects the Linux kernel up to version 4.17.10. The vulnerability is a use-after-free in try_merge_free_space() when mounting a crafted Btrfs image, caused by missing chunk type flag checks in fs/btrfs/volumes.c via btrfs_check_chunk_valid . In the provided connected documents, Nes...
CVE-2018-14616
CVE-2018-14616 involves a NULL pointer dereference in the Linux kernel before 4.17.10. The flaw occurs in fscrypt_do_page_crypto() (fs/crypto/crypto.c) when handling a file inside a corrupted f2fs image. Affects the Linux kernel up to 4.17.10; the issue can cause a kernel crash (availability impa...
CVE-2018-14615
CVE-2018-14615 concerns a buffer overflow in the Linux kernel up to version 4.17.10, triggered in truncate_inline_inode() within fs/f2fs/inline.c when unmounting an f2fs image because a length value may be negative. The connected Nessus entries repeat the same description and tie the issue to the...