Back to search
CVE-2009-4308
Published: Dec 13, 2009
Modified: Aug 7, 2024
PUBLISHED
Description
The ext4_decode_error function in fs/ext4/super.c in the ext4 filesystem in the Linux kernel before 2.6.32 allows user-assisted remote attackers to cause a denial of service (NULL pointer dereference), and possibly have unspecified other impact, via a crafted read-only filesystem that lacks a journal.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
38276
third-party-advisory
x_refsource_SECUNIA
RHSA-2010:0147
vendor-advisory
x_refsource_REDHAT
MDVSA-2010:198
vendor-advisory
x_refsource_MANDRIVA
SUSE-SA:2010:001
vendor-advisory
x_refsource_SUSE
SUSE-SA:2010:012
vendor-advisory
x_refsource_SUSE
43315
third-party-advisory
x_refsource_SECUNIA
oval:org.mitre.oval:def:11103
vdb-entry
signature
x_refsource_OVAL
37658
third-party-advisory
x_refsource_SECUNIA
http://www.vmware.com/security/advisories/VMSA-2011-0003.html
x_refsource_CONFIRM
SUSE-SA:2010:005
vendor-advisory
x_refsource_SUSE
DSA-2005
vendor-advisory
x_refsource_DEBIAN
20110211 VMSA-2011-0003 Third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX
mailing-list
x_refsource_BUGTRAQ
38017
third-party-advisory
x_refsource_SECUNIA
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.32
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now