CVE-2013-2015

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 3.7.3

Description The issue allows physically proximate attackers to cause a denial of service (system hang) via a crafted filesystem on removable media. This is due to the ext4 orphan del function in fs/ext4/namei.c not properly handling orphan-list entries for non-journal filesystems. Multiple vulnerabilities in the Linux package of the Debian GNU/Linux operating system can be exploited by a local attacker, potentially leading to breaches of confidentiality, integrity, and availability of protected information.

Recommendations For Linux kernel versions prior to 3.7.3, update to version 3.7.3 or later to resolve the issue. At the moment, there is no information about additional mitigation measures for other affected versions.