Описание
A code execution vulnerability exists in the directory rehashing functionality of E2fsprogs e2fsck 1.45.4. A specially crafted ext4 directory can cause an out-of-bounds write on the stack, resulting in code execution. An attacker can corrupt a partition to trigger this vulnerability.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 1.44.1-1ubuntu1.3 |
| devel | released | 1.45.3-4ubuntu3 |
| disco | released | 1.44.6-1ubuntu0.2 |
| eoan | released | 1.45.3-4ubuntu2.1 |
| esm-infra-legacy/trusty | released | 1.42.9-3ubuntu1.3+esm2 |
| esm-infra/bionic | released | 1.44.1-1ubuntu1.3 |
| esm-infra/xenial | released | 1.42.13-1ubuntu1.2 |
| precise/esm | not-affected | 1.42-1ubuntu2.5 |
| trusty | ignored | end of standard support |
| trusty/esm | released | 1.42.9-3ubuntu1.3+esm2 |
Показывать по
EPSS
4.4 Medium
CVSS2
7.5 High
CVSS3
Связанные уязвимости
A code execution vulnerability exists in the directory rehashing functionality of E2fsprogs e2fsck 1.45.4. A specially crafted ext4 directory can cause an out-of-bounds write on the stack, resulting in code execution. An attacker can corrupt a partition to trigger this vulnerability.
A code execution vulnerability exists in the directory rehashing functionality of E2fsprogs e2fsck 1.45.4. A specially crafted ext4 directory can cause an out-of-bounds write on the stack, resulting in code execution. An attacker can corrupt a partition to trigger this vulnerability.
A code execution vulnerability exists in the directory rehashing funct ...
EPSS
4.4 Medium
CVSS2
7.5 High
CVSS3