CVE-2018-1095
Advisory lineage Upstream: 0 Downstream: 8
Modified
Published: 02 Apr 2018, 03:00
Last modified:05 Aug 2024, 03:51
Vulnerability Summary
Overall Risk (default)
medium
38/100 CVSS Score
7.1 HIGH
v2.0 (nvd)
EPSS Score
0.15% LOW
0% probability 0.00%
KEV
Not listed
Ransomware
No reports
Public exploits
1 found
Dark Web
Not detected
Timeline
02 Apr 2018, 03:00
Published
Vulnerability first disclosed
05 Aug 2024, 03:51
Last Modified
Vulnerability information updated
Description
The ext4_xattr_check_entries function in fs/ext4/xattr.c in the Linux kernel through 4.15.15 does not properly validate xattr sizes, which causes misinterpretation of a size as an error code, and consequently allows attackers to cause a denial of service (get_acl NULL pointer dereference and system crash) via a crafted ext4 image.
CVSS Metrics
- v3.0•MEDIUM•Score: 5.5CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
- v2.0•HIGH•Score: 7.1AV:N/AC:M/Au:N/C:N/I:N/A:C
EPSS Trends
Current EPSS score: 0.15%• Percentile: 36%
Techniques & Countermeasures
- CWE-476•NULL Pointer Dereference
The product dereferences a pointer that it expects to be valid but is NULL.
Affected Systems
- linux•linux_kernel
≤ 4.15.15
References (7)
- https://git.kernel.org/pub/scm/linux/kernel/git/tytso/ext4.git/commit/?id=ce3fd194fcc6fbdc00ce095a852f22df97baa401
- http://openwall.com/lists/oss-security/2018/03/29/1
- https://usn.ubuntu.com/3695-1/
- https://usn.ubuntu.com/3695-2/
- https://access.redhat.com/errata/RHSA-2018:2948
- https://bugzilla.kernel.org/show_bug.cgi?id=199185
- https://bugzilla.redhat.com/show_bug.cgi?id=1560793