CVE-2018-13098

Sažetak

An issue was discovered in fs/f2fs/inode.c in the Linux kernel through 4.17.3. A denial of service (slab out-of-bounds read and BUG) can occur for a modified f2fs filesystem image in which FI_EXTRA_ATTR is set in an inode.

Reference

http://lists.opensuse.org/opensuse-security-announce/2018-10/msg00033.html
https://bugzilla.kernel.org/show_bug.cgi?id=200173
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=76d56d4ab4f2a9e4f085c7d77172194ddaccf7d2
https://usn.ubuntu.com/4094-1/
https://usn.ubuntu.com/4118-1/

CVSS

Base:	4.3
Impact:	2.9
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	NONE	PARTIAL

CVSS vektor

AV:N/AC:M/Au:N/C:N/I:N/A:P

Zadnje važnije ažuriranje

13-08-2019 - 19:15

Objavljeno

03-07-2018 - 10:29