CVE-2018-14609

Опубликовано: 26 мая 2018

Источник: redhat

CVSS3: 4.6

EPSS Низкий

Описание

An issue was discovered in the Linux kernel through 4.17.10. There is an invalid pointer dereference in __del_reloc_root() in fs/btrfs/relocation.c when mounting a crafted btrfs image, related to removing reloc rb_trees when reloc control has not been initialized.

An issue was discovered in the btrfs filesystem code in the Linux kernel. An invalid pointer dereference in __del_reloc_root() in fs/btrfs/relocation.c when mounting a crafted btrfs image could lead to a system crash and a denial of service.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 5	kernel	Not affected
Red Hat Enterprise Linux 6	kernel	Not affected
Red Hat Enterprise Linux 7	kernel	Fix deferred
Red Hat Enterprise Linux 7	kernel-alt	Not affected
Red Hat Enterprise Linux 7	kernel-rt	Fix deferred
Red Hat Enterprise Linux 8	kernel	Not affected
Red Hat Enterprise MRG 2	realtime-kernel	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

Дефект:

CWE-476->CWE-400

https://bugzilla.redhat.com/show_bug.cgi?id=1610074kernel: Invalid pointer dereference in fs/btrfs/relocation.c:__del_reloc_root() when mounting crafted btrfs image

EPSS

Процентиль: 43%

0.00204

Низкий

4.6 Medium

CVSS3

Связанные уязвимости

CVE-2018-14609

CVSS3: 5.5

ubuntu

почти 7 лет назад

CVE-2018-14609

CVSS3: 5.5

nvd

почти 7 лет назад

CVE-2018-14609

CVSS3: 5.5

debian

почти 7 лет назад

An issue was discovered in the Linux kernel through 4.17.10. There is ...

GHSA-6f8v-6cc2-9p3f

CVSS3: 5.5

github

около 3 лет назад

ELSA-2019-4533

oracle-oval

больше 6 лет назад

ELSA-2019-4533: Unbreakable Enterprise kernel security update (IMPORTANT)

EPSS

Процентиль: 43%

0.00204

Низкий

4.6 Medium

CVSS3