Carl Henrik Lunde

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 3.19.1 **Description** The issue is related to the `udf read inode` function in the Linux kernel, which does not validate certain length values. This allows local users to cause a denial of service, resulting in incorrect data representation or integer overflow, and potentially leading to an OOPS (kernel panic) via a crafted UDF filesystem. **Recommendations** For Linux kernel versions prior to 3.19.1, update to version 3.19.1 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 3.18.2 **Description** The issue concerns a function in the Linux kernel that does not properly validate a length value in a specific field of an iso9660 image, allowing local users to access sensitive information from kernel memory by using a crafted image. **Recommendations** For versions prior to 3.18.2, update to version 3.18.2 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 3.18.2 **Description** The issue is related to the UDF filesystem implementation in the Linux kernel, which does not validate certain lengths. This allows local users to cause a denial of service, resulting in a buffer over-read and system crash, via a crafted filesystem image. The problem is associated with the files fs/udf/inode.c and fs/udf/symlink.c. **Recommendations** For Linux kernel versions prior to 3.18.2, update to version 3.18.2 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 3.18.2 **Description** The issue allows local users to cause a denial of service, resulting in a system crash, by utilizing a crafted UDF filesystem image. This is due to the `udf pc to char` function relying on unused component lengths. **Recommendations** For versions prior to 3.18.2, update to version 3.18.2 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 3.18.2 **Description** The issue is related to the UDF filesystem implementation in the Linux kernel, where it does not ensure sufficient space for storing a symlink target's name along with a trailing 0 character. This allows local users to obtain sensitive information via a crafted filesystem image, related to the fs/udf/symlink.c and fs/udf/unicode.c files. **Recommendations** For Linux kernel versions prior to 3.18.2, update to version 3.18.2 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** policycoreutils version 2.2.5 policycoreutils versions prior to 2.2.5-r4 **Description** The issue concerns a problem where a program executes in a way that alters the relationship between the setuid system call and the getresuid saved set-user-ID value. This makes it easier for local users to gain privileges by exploiting a program that mistakenly expected it could permanently drop privileges. The vulnerability may lead to a violation of confidentiality, integrity, and availability of protected information and can be exploited locally. **Recommendations** For policycoreutils version 2.2.5, consider updating to a version newer than 2.2.5-r4 to resolve the issue. For policycoreutils versions prior to 2.2.5-r4, update to version 2.2.5-r4 or newer to fix the problem. As a temporary workaround, consider restricting the use of the setuid system call or the getresuid function to minimize the risk of exploitation.