Wind River Support Network

HomeDefectsLIN8-9558
Fixed

LIN8-9558 : Security Advisory - linux - CVE-2018-14611

Created: Jul 31, 2018    Updated: Jan 4, 2019
Resolved Date: Dec 27, 2018
Found In Version: 8.0
Fix Version: 8.0.0.29
Severity: Standard
Applicable for: Wind River Linux 8
Component/s: Kernel

Description

An issue was discovered in the Linux kernel through 4.17.10. There is a use-after-free in try_merge_free_space() when mounting a crafted btrfs image, because of a lack of chunk type flag checks in btrfs_check_chunk_valid in fs/btrfs/volumes.c.

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14611

CVEs

Live chat
Online
  • Linkedin
  • Facebook
  • Twitter
  • Youtube