Описание
The befs_follow_link function in fs/befs/linuxvfs.c in the Linux kernel before 3.1-rc3 does not validate the length attribute of long symlinks, which allows local users to cause a denial of service (incorrect pointer dereference and OOPS) by accessing a long symlink on a malformed Be filesystem.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 3.0.0-10.16 |
| hardy | released | 2.6.24-29.94 |
| lucid | released | 2.6.32-35.78 |
| maverick | released | 2.6.35-30.60 |
| natty | released | 2.6.38-12.51 |
| oneiric | not-affected | 3.0.0-10.16 |
| upstream | released | 3.1~rc3 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| hardy | DNE | |
| lucid | released | 2.6.32-319.39 |
| maverick | ignored | end of life |
| natty | DNE | |
| oneiric | DNE | |
| upstream | released | 3.1~rc3 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| hardy | DNE | |
| lucid | released | 2.6.31-611.29 |
| maverick | DNE | |
| natty | DNE | |
| oneiric | DNE | |
| upstream | released | 3.1~rc3 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| hardy | DNE | |
| lucid | released | 2.6.35-30.60~lucid1 |
| maverick | DNE | |
| natty | DNE | |
| oneiric | DNE | |
| upstream | released | 3.1~rc3 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| hardy | DNE | |
| lucid | released | 2.6.38-12.51~lucid1 |
| maverick | DNE | |
| natty | DNE | |
| oneiric | DNE | |
| upstream | released | 3.1~rc3 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| hardy | DNE | |
| lucid | not-affected | |
| maverick | DNE | |
| natty | DNE | |
| oneiric | DNE | |
| upstream | released | 3.1~rc3 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| hardy | DNE | |
| lucid | released | 2.6.32-219.37 |
| maverick | released | 2.6.32-419.37 |
| natty | DNE | |
| oneiric | DNE | |
| upstream | released | 3.1~rc3 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 3.0.0-1205.10 |
| hardy | DNE | |
| lucid | DNE | |
| maverick | released | 2.6.35-903.25 |
| natty | released | 2.6.38-1209.16 |
| oneiric | not-affected | 3.0.0-1205.10 |
| upstream | released | 3.1~rc3 |
Показывать по
Ссылки на источники
EPSS
4.9 Medium
CVSS2
Связанные уязвимости
The befs_follow_link function in fs/befs/linuxvfs.c in the Linux kernel before 3.1-rc3 does not validate the length attribute of long symlinks, which allows local users to cause a denial of service (incorrect pointer dereference and OOPS) by accessing a long symlink on a malformed Be filesystem.
The befs_follow_link function in fs/befs/linuxvfs.c in the Linux kerne ...
The befs_follow_link function in fs/befs/linuxvfs.c in the Linux kernel before 3.1-rc3 does not validate the length attribute of long symlinks, which allows local users to cause a denial of service (incorrect pointer dereference and OOPS) by accessing a long symlink on a malformed Be filesystem.
EPSS
4.9 Medium
CVSS2