Acknowledged
Created: Jul 15, 2018
Updated: Aug 28, 2018
Found In Version: 7.0.0.28
Severity: Standard
Applicable for: Wind River Linux 7
Component/s: Kernel
An issue was discovered in fs/xfs/xfs_icache.c in the Linux kernel through 4.17.3. There is a NULL pointer dereference and panic in lookup_slow() on a NULL inode->i_ops pointer when doing pathwalks on a corrupted xfs image. This occurs because of a lack of proper validation that cached inodes are free during allocation.
https://nvd.nist.gov/vuln/detail/CVE-2018-13093
