Wind River Support Network


SCP7-895 : Security Advisory - linux - CVE-2018-14617

Created: Jul 31, 2018    Updated: Oct 26, 2018
Resolved Date: Aug 27, 2018
Found In Version:
Fix Version:
Severity: Standard
Applicable for: Wind River Linux 7
Component/s: Kernel


An issue was discovered in the Linux kernel through 4.17.10. There is a NULL pointer dereference and panic in hfsplus_lookup() in fs/hfsplus/dir.c when opening a file (that is purportedly a hard link) in an hfs+ filesystem that has malformed catalog data, and is mounted read-only without a metadata directory.

Other Downloads

Live chat