CVE-2014-9729

Published: Aug 31, 2015

Modified: Aug 6, 2024

PUBLISHED

Description

The udf_read_inode function in fs/udf/inode.c in the Linux kernel before 3.18.2 does not ensure a certain data-structure size consistency, which allows local users to cause a denial of service (system crash) via a crafted UDF filesystem image.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

[oss-security] 20150602 CVE request Linux kernel: fs: udf heap overflow in __udf_adinicb_readpage

mailing-list

x_refsource_MLIST

SUSE-SU-2015:1611

vendor-advisory

x_refsource_SUSE

SUSE-SU-2015:1324

vendor-advisory

x_refsource_SUSE

https://github.com/torvalds/linux/commit/e159332b9af4b04d882dbcfe1bb0117f0a6d4b58

x_refsource_CONFIRM

https://bugzilla.redhat.com/show_bug.cgi?id=1228229

x_refsource_CONFIRM

74964

vdb-entry

x_refsource_BID

openSUSE-SU-2015:1382

vendor-advisory

x_refsource_SUSE

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=e159332b9af4b04d882dbcfe1bb0117f0a6d4b58

x_refsource_CONFIRM

http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.18.2

x_refsource_CONFIRM

SUSE-SU-2015:1224

vendor-advisory

x_refsource_SUSE

SUSE-SU-2015:1592

vendor-advisory

x_refsource_SUSE

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2014-9729

Description

Affected Products

References