CVE-2017-18257

Published: Apr 4, 2018

Modified: Aug 5, 2024

PUBLISHED

Description

The __get_data_block function in fs/f2fs/data.c in the Linux kernel before 4.11 allows local users to cause a denial of service (integer overflow and loop) via crafted use of the open and fallocate system calls with an FS_IOC_FIEMAP ioctl.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

USN-3696-1

vendor-advisory

x_refsource_UBUNTU

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=b86e33075ed1909d8002745b56ecf73b833db143

x_refsource_MISC

https://github.com/torvalds/linux/commit/b86e33075ed1909d8002745b56ecf73b833db143

x_refsource_MISC

DSA-4188

vendor-advisory

x_refsource_DEBIAN

USN-3696-2

vendor-advisory

x_refsource_UBUNTU

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2017-18257

Description

Affected Products

References