CVE-2018-1093

Summary

The ext4_valid_block_bitmap function in fs/ext4/balloc.c in the Linux kernel through 4.15.15 allows attackers to cause a denial of service (out-of-bounds read and system crash) via a crafted ext4 image because balloc.c and ialloc.c do not validate bitmap block numbers.

Affected Software

VendorProductVersion RangeStatus
n/aLinux kernel through version 4.15Linux kernel through version 4.15affected

Weaknesses

  • out-of-bounds read

ADP Enrichment

CVE Program Container

Additional References

References