Linux : Security Vulnerabilities, CVEs, Published In April 2018 (Memory corruption)
The xfs_bmap_extents_to_btree function in fs/xfs/libxfs/xfs_bmap.c in the Linux kernel through 4.16.3 allows local users to cause a denial of service (xfs_bmapi_write NULL pointer dereference) via a crafted xfs image.
Max CVSS
5.5
EPSS Score
0.04%
Published
2018-04-24
Updated
2020-09-08
The hi3660_stub_clk_probe function in drivers/clk/hisilicon/clk-hi3660-stub.c in the Linux kernel before 4.16 allows local users to cause a denial of service (NULL pointer dereference) by triggering a failure of resource retrieval.
Max CVSS
5.5
EPSS Score
0.04%
Published
2018-04-12
Updated
2018-05-22
The ext4_xattr_check_entries function in fs/ext4/xattr.c in the Linux kernel through 4.15.15 does not properly validate xattr sizes, which causes misinterpretation of a size as an error code, and consequently allows attackers to cause a denial of service (get_acl NULL pointer dereference and system crash) via a crafted ext4 image.
Max CVSS
7.1
EPSS Score
0.14%
Published
2018-04-02
Updated
2023-02-13
The ext4_fill_super function in fs/ext4/super.c in the Linux kernel through 4.15.15 does not always initialize the crc32c checksum driver, which allows attackers to cause a denial of service (ext4_xattr_inode_hash NULL pointer dereference and system crash) via a crafted ext4 image.
Max CVSS
7.1
EPSS Score
0.20%
Published
2018-04-02
Updated
2023-02-13
The ext4_iget function in fs/ext4/inode.c in the Linux kernel through 4.15.15 mishandles the case of a root directory with a zero i_links_count, which allows attackers to cause a denial of service (ext4_process_freed_data NULL pointer dereference and OOPS) via a crafted ext4 image.
Max CVSS
7.1
EPSS Score
0.25%
Published
2018-04-02
Updated
2023-02-12
5 vulnerabilities found