UBUNTU-CVE-2018-13095

Advisory lineage Upstream: 1 Downstream: 2
Upstream
CVE-2018-13095
Published: 03 Jul 2018, 10:29
Last modified:03 Jun 2026, 13:32

Vulnerability Summary

Overall Risk (default)
low
22/100
CVSS Score
5.5 MEDIUM
3.0 (osv_ubuntu)
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected

Timeline

03 Jul 2018, 10:29
Published
Vulnerability first disclosed
03 Jun 2026, 13:32
Last Modified
Vulnerability information updated

Description

An issue was discovered in fs/xfs/libxfs/xfs_inode_buf.c in the Linux kernel through 4.17.3. A denial of service (memory corruption and BUG) can occur for a corrupted xfs image upon encountering an inode that is in extent format, but has more extents than fit in the inode fork.

CVSS Metrics

  • v3.0MEDIUMScore: 5.5CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Affected Systems

  • ubuntulinux

    all | < 4.4.0-208.240 | < 4.15.0-141.145

  • ubuntulinux-aws

    < 4.4.0-1090.94 | < 4.4.0-1126.140 | < 4.15.0-1098.105

  • ubuntulinux-aws-fips

    < 4.15.0-2041.43 | all

  • ubuntulinux-aws-hwe

    < 4.15.0-1098.105~16.04.1

  • ubuntulinux-azure

    < 4.15.0-1112.124~14.04.1 | < 4.15.0-1112.124~16.04.1 | < 4.18.0-1011.11~18.04.1

  • ubuntulinux-azure-4.15

    < 4.15.0-1112.125

  • ubuntulinux-azure-fde

    all

  • ubuntulinux-azure-fde-5.15

    all

  • ubuntulinux-azure-fips

    < 4.15.0-2024.27 | all

  • ubuntulinux-bluefield

    all

  • ubuntulinux-dell300x

    < 4.15.0-1016.20

  • ubuntulinux-fips

    < 4.4.0-1060.66 | all | < 4.15.0-1057.65

  • ubuntulinux-gcp

    < 4.15.0-1097.110~16.04.1 | < 5.0.0-1020.20~18.04.1

  • ubuntulinux-gcp-4.15

    < 4.15.0-1097.110

  • ubuntulinux-gcp-fips

    all

  • ubuntulinux-gke-4.15

    all

  • ubuntulinux-hwe

    < 4.15.0-142.146~16.04.1

  • ubuntulinux-hwe-edge

    all

  • ubuntulinux-intel-iot-realtime

    all

  • ubuntulinux-kvm

    < 4.4.0-1091.100 | < 4.15.0-1089.91

  • ubuntulinux-lts-xenial

    < 4.4.0-208.240~14.04.1

  • ubuntulinux-nvidia

    all

  • ubuntulinux-oem

    all

  • ubuntulinux-oracle

    < 4.15.0-1069.77~16.04.1 | < 4.15.0-1069.77

  • ubuntulinux-raspi-realtime

    all

  • ubuntulinux-raspi2

    < 4.4.0-1150.161 | < 4.15.0-1083.88

  • ubuntulinux-realtime

    all

  • ubuntulinux-riscv

    all

  • ubuntulinux-snapdragon

    < 4.4.0-1154.164 | < 4.15.0-1100.109

References (7)