Lucene search
K
LinuxLinux Kernel4.17.10

9 matches found

CVE
CVE
added 2018/07/27 4:0 a.m.186 views

CVE-2018-14609

CVE-2018-14609 affects the Linux kernel (up to 4.17.10) with an invalid pointer dereference in __del_reloc_root() of fs/btrfs/relocation.c when mounting a crafted Btrfs image. The issue is triggered by removing reloc rb_trees when reloc control has not been initialized, leading to potential denia...

7.1CVSS5.8AI score0.02691EPSS
CVE
CVE
added 2018/07/27 4:0 a.m.178 views

CVE-2018-14617

CVE-2018-14617 affects the Linux kernel up to 4.17.10. A NULL pointer dereference and panic occur in hfsplus_lookup() when opening a file in an HFS+ filesystem with malformed catalog data mounted read-only without a metadata directory, potentially causing a kernel panic. Connected Nessus entry co...

7.1CVSS5.9AI score0.02523EPSS
CVE
CVE
added 2018/07/27 4:0 a.m.160 views

CVE-2018-14613

CVE-2018-14613 affects the Linux kernel up to 4.17.10. It involves an invalid pointer dereference in io_ctl_map_page() when mounting/operating a crafted btrfs image, caused by a lack of block group item validation in fs/btrfs/tree-checker.c (check_leaf_item). The issue yields a local, likely kern...

7.1CVSS5.8AI score0.02512EPSS
CVE
CVE
added 2018/07/27 4:0 a.m.159 views

CVE-2018-14612

CVE-2018-14612 affects the Linux kernel (through 4.17.10) with an invalid pointer dereference in btrfs_root_node() when mounting a crafted btrfs image. The root cause is lack of validation in btrfs_read_block_groups (fs/btrfs/extent-tree.c) and missing empty-tree checks in check_leaf (fs/btrfs/tr...

7.1CVSS5.8AI score0.0259EPSS
CVE
CVE
added 2018/07/27 4:0 a.m.138 views

CVE-2018-14610

CVE-2018-14610 concerns the Linux kernel up to 4.17.10. A crafted btrfs image mounting scenario can trigger an out-of-bounds access in write_extent_buffer() due to insufficient verification that each block group has a corresponding chunk at mount time (in fs/btrfs/extent-tree.c). This can lead to...

7.1CVSS5.8AI score0.02523EPSS
CVE
CVE
added 2018/07/27 4:0 a.m.131 views

CVE-2018-14614

CVE-2018-14614 concerns a Linux kernel issue up to version 4.17.10 where mounting an f2fs image triggers an out-of-bounds access in __remove_dirty_segment() within fs/f2fs/segment.c. Publicly documented details identify the affected component as the kernel’s f2fs filesystem driver, with a local a...

7.1CVSS5.9AI score0.01892EPSS
CVE
CVE
added 2018/07/27 4:0 a.m.130 views

CVE-2018-14611

CVE-2018-14611 affects the Linux kernel up to version 4.17.10. The vulnerability is a use-after-free in try_merge_free_space() when mounting a crafted Btrfs image, caused by missing chunk type flag checks in fs/btrfs/volumes.c via btrfs_check_chunk_valid . In the provided connected documents, Nes...

7.1CVSS5.8AI score0.02518EPSS
CVE
CVE
added 2018/07/27 4:0 a.m.128 views

CVE-2018-14616

CVE-2018-14616 involves a NULL pointer dereference in the Linux kernel before 4.17.10. The flaw occurs in fscrypt_do_page_crypto() (fs/crypto/crypto.c) when handling a file inside a corrupted f2fs image. Affects the Linux kernel up to 4.17.10; the issue can cause a kernel crash (availability impa...

7.1CVSS5.9AI score0.02166EPSS
CVE
CVE
added 2018/07/27 4:0 a.m.94 views

CVE-2018-14615

CVE-2018-14615 concerns a buffer overflow in the Linux kernel up to version 4.17.10, triggered in truncate_inline_inode() within fs/f2fs/inline.c when unmounting an f2fs image because a length value may be negative. The connected Nessus entries repeat the same description and tie the issue to the...

7.1CVSS7AI score0.02306EPSS