CVE-2014-9730

Published: Aug 31, 2015

Modified: Aug 6, 2024

PUBLISHED

Description

The udf_pc_to_char function in fs/udf/symlink.c in the Linux kernel before 3.18.2 relies on component lengths that are unused, which allows local users to cause a denial of service (system crash) via a crafted UDF filesystem image.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

[oss-security] 20150602 CVE request Linux kernel: fs: udf heap overflow in __udf_adinicb_readpage

mailing-list

x_refsource_MLIST

https://github.com/torvalds/linux/commit/e237ec37ec154564f8690c5bd1795339955eeef9

x_refsource_CONFIRM

SUSE-SU-2015:1611

vendor-advisory

x_refsource_SUSE

SUSE-SU-2015:1324

vendor-advisory

x_refsource_SUSE

https://bugzilla.redhat.com/show_bug.cgi?id=1228229

x_refsource_CONFIRM

74964

vdb-entry

x_refsource_BID

openSUSE-SU-2015:1382

vendor-advisory

x_refsource_SUSE

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=e237ec37ec154564f8690c5bd1795339955eeef9

x_refsource_CONFIRM

http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.18.2

x_refsource_CONFIRM

SUSE-SU-2015:1224

vendor-advisory

x_refsource_SUSE

SUSE-SU-2015:1592

vendor-advisory

x_refsource_SUSE

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2014-9730

Description

Affected Products

References