Note:
This project will be discontinued after December 13, 2021. [more]
2018-07-03
An issue was discovered in fs/f2fs/super.c in the Linux kernel through 4.17.3. There is an out-of-bounds read or a divide-by-zero error for an incorrect user_block_count in a corrupted f2fs image, leading to a denial of service (BUG).
| Products | Linux_kernel |
| Type | Out-of-bounds Read (CWE-125) Divide By Zero (CWE-369) |
| First patch | - None (likely due to unavailable code) |
| Links |
• https://lists.debian.org/debian-lts-announce/2019/03/msg00017.html
• https://usn.ubuntu.com/3932-1/ • https://bugzilla.kernel.org/show_bug.cgi?id=200171 • https://git.kernel.org/pub/scm/linux/kernel/git/chao/linux.git/commit/?h=f2fs-dev&id=78bbd741456e31e0acb983283a8d3993ba859c15 • https://usn.ubuntu.com/3932-2/ |