CVE-2018-13094

2018-07-0300:00:00

ubuntu.com

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.003 Low

EPSS

Percentile

69.3%

JSON

An issue was discovered in fs/xfs/libxfs/xfs_attr_leaf.c in the Linux
kernel through 4.17.3. An OOPS may occur for a corrupted xfs image after
xfs_da_shrink_inode() is called with a NULL bp.

OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchlinux< 4.15.0-33.36UNKNOWN
ubuntu14.04noarchlinux< 3.13.0-157.207UNKNOWN
ubuntu16.04noarchlinux< 4.4.0-134.160UNKNOWN
ubuntu18.04noarchlinux-aws< 4.15.0-1020.20UNKNOWN
ubuntu14.04noarchlinux-aws< 4.4.0-1028.31UNKNOWN
ubuntu16.04noarchlinux-aws< 4.4.0-1066.76UNKNOWN
ubuntu18.04noarchlinux-azure< 4.15.0-1022.23UNKNOWN
ubuntu16.04noarchlinux-azure< 4.15.0-1022.22~16.04.1UNKNOWN
ubuntu16.04noarchlinux-azure-edge< 4.15.0-1022.23UNKNOWN
ubuntu18.04noarchlinux-gcp< 4.15.0-1018.19UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	18.04	noarch	linux	< 4.15.0-33.36	UNKNOWN
ubuntu	14.04	noarch	linux	< 3.13.0-157.207	UNKNOWN
ubuntu	16.04	noarch	linux	< 4.4.0-134.160	UNKNOWN
ubuntu	18.04	noarch	linux-aws	< 4.15.0-1020.20	UNKNOWN
ubuntu	14.04	noarch	linux-aws	< 4.4.0-1028.31	UNKNOWN
ubuntu	16.04	noarch	linux-aws	< 4.4.0-1066.76	UNKNOWN
ubuntu	18.04	noarch	linux-azure	< 4.15.0-1022.23	UNKNOWN
ubuntu	16.04	noarch	linux-azure	< 4.15.0-1022.22~16.04.1	UNKNOWN
ubuntu	16.04	noarch	linux-azure-edge	< 4.15.0-1022.23	UNKNOWN
ubuntu	18.04	noarch	linux-gcp	< 4.15.0-1018.19	UNKNOWN