CVE-2018-13100

Опубликовано: 03 июл. 2018

Источник: debian

EPSS Низкий

Описание

An issue was discovered in fs/f2fs/super.c in the Linux kernel through 4.17.3, which does not properly validate secs_per_zone in a corrupted f2fs image, as demonstrated by a divide-by-zero error.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
linux	fixed	4.18.10-1		package
linux	fixed	4.9.144-1	stretch	package
linux	ignored		jessie	package

Примечания

https://bugzilla.kernel.org/show_bug.cgi?id=200183
https://git.kernel.org/pub/scm/linux/kernel/git/chao/linux.git/commit/?h=f2fs-dev&id=977f9bb558cb4a95d53b10301f5c739ed8867d4d

EPSS

Процентиль: 52%

0.00294

Низкий

Связанные уязвимости

CVE-2018-13100

CVSS3: 5.5

ubuntu

больше 7 лет назад

An issue was discovered in fs/f2fs/super.c in the Linux kernel through 4.17.3, which does not properly validate secs_per_zone in a corrupted f2fs image, as demonstrated by a divide-by-zero error.

CVE-2018-13100

CVSS3: 5

redhat

больше 7 лет назад

An issue was discovered in fs/f2fs/super.c in the Linux kernel through 4.17.3, which does not properly validate secs_per_zone in a corrupted f2fs image, as demonstrated by a divide-by-zero error.

CVE-2018-13100

CVSS3: 5.5

nvd

больше 7 лет назад

An issue was discovered in fs/f2fs/super.c in the Linux kernel through 4.17.3, which does not properly validate secs_per_zone in a corrupted f2fs image, as demonstrated by a divide-by-zero error.

GHSA-p3q8-89q5-qcj2

CVSS3: 5.5

github

больше 3 лет назад

An issue was discovered in fs/f2fs/super.c in the Linux kernel through 4.17.3, which does not properly validate secs_per_zone in a corrupted f2fs image, as demonstrated by a divide-by-zero error.

BDU:2020-03263

CVSS3: 5.5

fstec

больше 7 лет назад

Уязвимость функции secs_per_zone ядра операционной системы Linux, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 52%

0.00294

Низкий