Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-99wm-68jg-pfgc

Опубликовано: 19 мар. 2022
Источник: github
Github: Не прошло ревью
CVSS3: 5.5

Описание

In the Linux kernel before 5.15.3, fs/quota/quota_tree.c does not validate the block number in the quota tree (on disk). This can, for example, lead to a kernel/locking/rwsem.c use-after-free if there is a corrupted quota file.

In the Linux kernel before 5.15.3, fs/quota/quota_tree.c does not validate the block number in the quota tree (on disk). This can, for example, lead to a kernel/locking/rwsem.c use-after-free if there is a corrupted quota file.

EPSS

Процентиль: 48%
0.00242
Низкий

5.5 Medium

CVSS3

Дефекты

CWE-416

Связанные уязвимости

CVSS3: 5.5
ubuntu
больше 3 лет назад

In the Linux kernel before 5.15.3, fs/quota/quota_tree.c does not validate the block number in the quota tree (on disk). This can, for example, lead to a kernel/locking/rwsem.c use-after-free if there is a corrupted quota file.

CVSS3: 5.1
redhat
больше 3 лет назад

In the Linux kernel before 5.15.3, fs/quota/quota_tree.c does not validate the block number in the quota tree (on disk). This can, for example, lead to a kernel/locking/rwsem.c use-after-free if there is a corrupted quota file.

CVSS3: 5.5
nvd
больше 3 лет назад

In the Linux kernel before 5.15.3, fs/quota/quota_tree.c does not validate the block number in the quota tree (on disk). This can, for example, lead to a kernel/locking/rwsem.c use-after-free if there is a corrupted quota file.

CVSS3: 5.5
msrc
больше 3 лет назад

Описание отсутствует

CVSS3: 5.5
debian
больше 3 лет назад

In the Linux kernel before 5.15.3, fs/quota/quota_tree.c does not vali ...

EPSS

Процентиль: 48%
0.00242
Низкий

5.5 Medium

CVSS3

Дефекты

CWE-416