PT-2008-6874 · Linux+1 · Linux+1
Eric Sesterhenn
·
Published
1970-01-01
·
Updated
2018-11-02
·
CVE-2008-4934
CVSS v2.0
7.8
High
| Vector | AV:N/AC:L/Au:N/C:N/I:N/A:C |
Name of the Vulnerable Software and Affected Versions
linux-headers-2.6.18-6 versions 2.6.18-6 and earlier
linux-image-2.6.18-6 versions 2.6.18-6 and earlier
linux-modules-2.6.18-6 versions 2.6.18-6 and earlier
linux-support-2.6.18-6 versions 2.6.18-6 and earlier
linux-tree-2.6.18 versions 2.6.18 and earlier
linux-source-2.6.18 versions 2.6.18 and earlier
linux-doc-2.6.18 versions 2.6.18 and earlier
linux-manual-2.6.18 versions 2.6.18 and earlier
linux-patch-debian-2.6.18 versions 2.6.18 and earlier
Description
The issue is related to multiple vulnerabilities in the Linux kernel, specifically in the 2.6.18-6 version, which can lead to a denial of service (system crash) when exploited. The vulnerabilities can be exploited remotely. The
hfsplus block allocate function in fs/hfsplus/bitmap.c does not check a certain return value from the read mapping page function before calling kmap, allowing attackers to cause a system crash via a crafted hfsplus filesystem image.Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
DoS
Buffer Overflow
RCE
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Linux
Red Hat