An issue was discovered in the Linux kernel through 4.17.10. There is a use-after-free in try_merge_free_space() when mounting a crafted btrfs image, because of a lack of chunk type flag checks in btrfs_check_chunk_valid in fs/btrfs/volumes.c.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/104917 | Third Party Advisory VDB Entry |
https://bugzilla.kernel.org/show_bug.cgi?id=199839 | Exploit Issue Tracking Third Party Advisory |
https://lists.debian.org/debian-lts-announce/2019/03/msg00017.html | Mailing List Third Party Advisory |
https://lists.debian.org/debian-lts-announce/2020/06/msg00011.html | |
https://lists.debian.org/debian-lts-announce/2020/06/msg00013.html | |
https://patchwork.kernel.org/patch/10503099/ | Patch Third Party Advisory |
https://usn.ubuntu.com/3932-1/ | |
https://usn.ubuntu.com/3932-2/ | |
https://usn.ubuntu.com/4094-1/ | |
https://usn.ubuntu.com/4118-1/ |
Configurations
History
No history.
Information
Published : 2018-07-27 04:29
Updated : 2024-02-04 20:03
NVD link : CVE-2018-14611
Mitre link : CVE-2018-14611
CVE.ORG link : CVE-2018-14611
JSON object : View
Products Affected
debian
- debian_linux
linux
- linux_kernel
CWE
CWE-416
Use After Free