Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2017-18224

Опубликовано: 15 нояб. 2017
Источник: redhat
CVSS3: 5.5

Описание

In the Linux kernel before 4.15, fs/ocfs2/aops.c omits use of a semaphore and consequently has a race condition for access to the extent tree during read operations in DIRECT mode, which allows local users to cause a denial of service (BUG) by modifying a certain e_cpos field.

A flaw was found in the Linux kernel that fs/ocfs2/aops.c omits use of a semaphore and consequently has a race condition for access to the extent tree during read operations in DIRECT mode. This allows local users to cause a denial of service by modifying a certain e_cpos field.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 5kernelNot affected
Red Hat Enterprise Linux 6kernelNot affected
Red Hat Enterprise Linux 7kernelNot affected
Red Hat Enterprise Linux 7kernel-altNot affected
Red Hat Enterprise Linux 7kernel-rtNot affected
Red Hat Enterprise Linux 8kernelNot affected
Red Hat Enterprise MRG 2realtime-kernelNot affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-362
https://bugzilla.redhat.com/show_bug.cgi?id=1557555kernel: race condition due to concurrent access to extent tree in fs/ocfs2/aops.c

5.5 Medium

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2017-18224

CVSS3: 4.7
ubuntu
почти 8 лет назад

In the Linux kernel before 4.15, fs/ocfs2/aops.c omits use of a semaphore and consequently has a race condition for access to the extent tree during read operations in DIRECT mode, which allows local users to cause a denial of service (BUG) by modifying a certain e_cpos field.

nvd логотип

CVE-2017-18224

CVSS3: 4.7
nvd
почти 8 лет назад

In the Linux kernel before 4.15, fs/ocfs2/aops.c omits use of a semaphore and consequently has a race condition for access to the extent tree during read operations in DIRECT mode, which allows local users to cause a denial of service (BUG) by modifying a certain e_cpos field.

debian логотип

CVE-2017-18224

CVSS3: 4.7
debian
почти 8 лет назад

In the Linux kernel before 4.15, fs/ocfs2/aops.c omits use of a semaph ...

github логотип

GHSA-6434-jhwc-gm9v

CVSS3: 4.7
github
больше 3 лет назад

In the Linux kernel before 4.15, fs/ocfs2/aops.c omits use of a semaphore and consequently has a race condition for access to the extent tree during read operations in DIRECT mode, which allows local users to cause a denial of service (BUG) by modifying a certain e_cpos field.

suse-cvrf логотип

SUSE-SU-2018:3593-1

suse-cvrf
больше 7 лет назад

Security update for the Linux Kernel

5.5 Medium

CVSS3