PT-2012-3806 · Linux+2 · Linux Kernel+2

Eugene Teo

+1

·

Publicado

2012-04-12

·

Atualizado

2023-02-13

·

CVE-2012-2100

CVSS v2.0

7.1

Alta

VetorAV:N/AC:M/Au:N/C:N/I:N/A:C
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 3.2.2
Description The issue allows user-assisted remote attackers to trigger inconsistent filesystem-groups data and possibly cause a denial of service via a malformed ext4 filesystem containing a super block with a large FLEX BG group size (aka s log groups per flex value). This problem exists because of an incomplete fix for a previous issue.
Recommendations For Linux kernel versions prior to 3.2.2, update to version 3.2.2 or later to resolve the issue.

Correção

DoS

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-189

Identificadores relacionados

CESA-2012_1580
CVE-2012-2100
RHSA-2012:1445
RHSA-2012:1580
RHSA-2012_1445
RHSA-2012_1580
USN-1384-1
USN-1388-1
USN-1389-1
USN-1404-1
USN-1405-1
USN-1432-1
USN-1440-1
USN-1458-1

Produtos afetados

Centos
Linux Kernel
Red Hat