Wind River Support Network

HomeDefectsLIN8-8962

Fixed

LIN8-8962 : Security Advisory - linux - CVE-2018-1093

Created: Apr 2, 2018 Updated: Dec 3, 2018

Resolved Date: Jun 29, 2018

Found In Version: 8.0.0.25

Fix Version: 8.0.0.27

Severity: Standard

Applicable for: Wind River Linux 8

Component/s: Kernel

Description

The ext4_valid_block_bitmap function in fs/ext4/balloc.c in the Linux kernel through 4.15.15 allows attackers to cause a denial of service (out-of-bounds read and system crash) via a crafted ext4 image because balloc.c and ialloc.c do not validate bitmap block numbers.

https://nvd.nist.gov/vuln/detail/CVE-2018-1093

Other Downloads

Wind River Linux 8.0.0.27
Wind River Linux 8.0.0.28
Wind River Linux 8.0.0.29
Wind River Linux 8.0.0.30
Wind River Linux 8.0.0.31
Wind River Linux 8.0.0.32
Wind River Linux 8.0.0.33
Wind River Linux 8.0.0.34

CVEs

CVE-2018-1093