what you don't know can hurt you

Register | Login

Home Files News Services About Contact Add New

Showing 1 - 4 of 4

CVE-2018-13093

Status Candidate

Overview

An issue was discovered in fs/xfs/xfs_icache.c in the Linux kernel through 4.17.3. There is a NULL pointer dereference and panic in lookup_slow() on a NULL inode->i_ops pointer when doing pathwalks on a corrupted xfs image. This occurs because of a lack of proper validation that cached inodes are free during allocation.

Related Files

Ubuntu Security Notice USN-4118-1: Posted Sep 3, 2019; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 4118-1 - It was discovered that the alarmtimer implementation in the Linux kernel contained an integer overflow vulnerability. A local attacker could use this to cause a denial of service. Wen Xu discovered that the XFS filesystem implementation in the Linux kernel did not properly track inode validations. An attacker could use this to construct a malicious XFS image that, when mounted, could cause a denial of service. Various other issues were also addressed.; tags | advisory, denial of service, overflow, kernel, local; systems | linux, ubuntu; advisories | CVE-2018-13053, CVE-2018-13093, CVE-2018-13098, CVE-2018-13099, CVE-2018-13100, CVE-2018-14610, CVE-2018-14611, CVE-2018-14612, CVE-2018-14614, CVE-2018-14616, CVE-2018-14617, CVE-2018-16862, CVE-2018-19985, CVE-2018-20169, CVE-2018-20511, CVE-2018-20784, CVE-2018-20856, CVE-2018-5383, CVE-2019-0136, CVE-2019-10126, CVE-2019-10207, CVE-2019-10638, CVE-2019-10639, CVE-2019-11085, CVE-2019-11487, CVE-2019-11599; MD5 | 606239d761ad7f615ccb6ead5cc82c96; Download | Favorite | View

Ubuntu Security Notice USN-4094-1: Posted Aug 13, 2019; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 4094-1 - It was discovered that the alarmtimer implementation in the Linux kernel contained an integer overflow vulnerability. A local attacker could use this to cause a denial of service. Wen Xu discovered that the XFS filesystem implementation in the Linux kernel did not properly track inode validations. An attacker could use this to construct a malicious XFS image that, when mounted, could cause a denial of service. Various other issues were also addressed.; tags | advisory, denial of service, overflow, kernel, local; systems | linux, ubuntu; advisories | CVE-2018-13053, CVE-2018-13093, CVE-2018-13096, CVE-2018-13098, CVE-2018-13099, CVE-2018-13100, CVE-2018-14609, CVE-2018-14610, CVE-2018-14613, CVE-2018-14614, CVE-2018-14617, CVE-2018-16862, CVE-2018-20169, CVE-2018-20511, CVE-2018-20856, CVE-2018-5383, CVE-2019-10126, CVE-2019-1125, CVE-2019-12614, CVE-2019-12818, CVE-2019-12819, CVE-2019-12984, CVE-2019-13233, CVE-2019-13272, CVE-2019-2024, CVE-2019-2101, CVE-2019-3846; MD5 | 3b73671d729375d8de90582cb3d31f24; Download | Favorite | View

Red Hat Security Advisory 2019-2043-01: Posted Aug 6, 2019; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2019-2043-01 - The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Issues addressed include buffer overflow, denial of service, information leakage, null pointer, and use-after-free vulnerabilities.; tags | advisory, denial of service, overflow, kernel, vulnerability; systems | linux, redhat; advisories | CVE-2018-10853, CVE-2018-13053, CVE-2018-13093, CVE-2018-13094, CVE-2018-13095, CVE-2018-14625, CVE-2018-14734, CVE-2018-15594, CVE-2018-16658, CVE-2018-16885, CVE-2018-18281, CVE-2018-7755, CVE-2018-8087, CVE-2018-9363, CVE-2018-9516, CVE-2018-9517, CVE-2019-11599, CVE-2019-11810, CVE-2019-11833, CVE-2019-3459, CVE-2019-3460, CVE-2019-3882, CVE-2019-3900, CVE-2019-5489, CVE-2019-7222; MD5 | 396c021234e85bd85be4ed53ce333c58; Download | Favorite | View

Red Hat Security Advisory 2019-2029-01: Posted Aug 6, 2019; Authored by Red Hat | Site access.redhat.com; Red Hat Security Advisory 2019-2029-01 - The kernel packages contain the Linux kernel, the core of any Linux operating system. Issues addressed include buffer overflow, denial of service, information leakage, null pointer, and use-after-free vulnerabilities.; tags | advisory, denial of service, overflow, kernel, vulnerability; systems | linux, redhat; advisories | CVE-2018-10853, CVE-2018-13053, CVE-2018-13093, CVE-2018-13094, CVE-2018-13095, CVE-2018-14625, CVE-2018-14734, CVE-2018-15594, CVE-2018-16658, CVE-2018-16885, CVE-2018-18281, CVE-2018-7755, CVE-2018-8087, CVE-2018-9363, CVE-2018-9516, CVE-2018-9517, CVE-2019-11599, CVE-2019-11810, CVE-2019-11833, CVE-2019-3459, CVE-2019-3460, CVE-2019-3882, CVE-2019-3900, CVE-2019-5489, CVE-2019-7222; MD5 | 91bf814ce959e44a2c4748ee469254c3; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 155 files
Ubuntu 64 files
Gentoo 13 files
LiquidWorm 12 files
Google Security Research 10 files
George Tsimpidas 5 files
Alexei Kojenov 5 files
Glazvunov 4 files
Jyotsna Adhana 4 files
Ankita Pal 4 files

File Tags

File Archives

Systems

AIX (418)
Apple (1,742)
BSD (368)
Cisco (1,898)
Debian (5,945)
Fedora (1,688)
FreeBSD (1,241)
Gentoo (3,957)
HPUX (872)
iOS (274)
iPhone (108)
IRIX (220)
Juniper (67)
Linux (38,640)
Mac OS X (669)
Mandriva (3,105)
NetBSD (255)
OpenBSD (472)
RedHat (9,183)
Slackware (941)
Solaris (1,593)
SUSE (1,444)
Ubuntu (6,935)
UNIX (8,758)
UnixWare (179)
Windows (5,675)
Other

packet storm

© 2020 Packet Storm. All rights reserved.

Site Links: News by Month; News Tags; Files by Month; File Tags; File Directory

About Us: History & Purpose; Contact Information; Terms of Service; Privacy Statement; Copyright Information

Services: Security Services
Hosting By: Rokasec