PT-2016-4041 · Linux+4 · Linux Kernel+4

Andrej Nemec

Published

2016-03-17

Updated

2020-10-02

CVE-2015-8839

CVSS v3.1

5.1

Medium

Vector

AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 4.5

Description The issue is related to multiple race conditions in the ext4 filesystem implementation. It allows local users to cause a denial of service, resulting in disk corruption, by writing to a page associated with a different user's file after unsynchronized hole punching and page-fault handling.

Recommendations For Linux kernel versions prior to 4.5, update to version 4.5 or later to resolve the issue.

Exploit

Fix

DoS

Race Condition

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-362

Related Identifiers

ALT-PU-2016-1262

ALT-PU-2017-1330

CESA-2017_1842

CVE-2015-8839

DLA-2241-1

DLA-2241-2

RHSA-2017:1842

RHSA-2017:2077

RHSA-2017:2669

RHSA-2017_1842

RHSA-2017_2077

USN-3005-1

USN-3006-1

USN-3007-1

Affected Products

Alt Linux

Centos

Linux Kernel

Red Hat

Ubuntu

PT-2016-4041 · Linux+4 · Linux Kernel+4

CVE-2015-8839

Weakness Enumeration

Related Identifiers

Affected Products

References · 56