The UDF filesystem implementation in the Linux kernel before 3.18.2 does not validate certain lengths, which allows local users to cause a denial of service (buffer over-read and system crash) via a crafted filesystem image, related to fs/udf/inode.c and fs/udf/symlink.c.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: redhat
Published: 2015-08-31T10:00:00
Updated: 2024-08-06T13:55:03.931Z
Reserved: 2015-06-03T00:00:00
Link: CVE-2014-9728
Vulnrichment
No data.
NVD
Status : Modified
Published: 2015-08-31T10:59:00.127
Modified: 2016-12-22T02:59:22.267
Link: CVE-2014-9728
Redhat