CVE-2018-14609

Sažetak

An issue was discovered in the Linux kernel through 4.17.10. There is an invalid pointer dereference in __del_reloc_root() in fs/btrfs/relocation.c when mounting a crafted btrfs image, related to removing reloc rb_trees when reloc control has not been initialized.

Reference

http://www.securityfocus.com/bid/104917
https://bugzilla.kernel.org/show_bug.cgi?id=199833
https://lists.debian.org/debian-lts-announce/2018/10/msg00003.html
https://patchwork.kernel.org/patch/10500521/
https://usn.ubuntu.com/3821-1/
https://usn.ubuntu.com/3821-2/
https://usn.ubuntu.com/4094-1/
https://usn.ubuntu.com/4118-1/
https://www.debian.org/security/2018/dsa-4308

CVSS

Base:	7.1
Impact:	6.9
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	NONE	COMPLETE

CVSS vektor

AV:N/AC:M/Au:N/C:N/I:N/A:C

Zadnje važnije ažuriranje

13-08-2019 - 19:15

Objavljeno

27-07-2018 - 04:29