fs/btrfs/volumes.c in the Linux kernel before 5.1 allows a btrfs_verify_dev_extents NULL pointer dereference via a crafted btrfs image because fs_devices->devices is mishandled within find_device, aka CID-09ba3bc9dd15.
Advisories
Source ID Title
Debian DLA Debian DLA DLA-2323-1 linux-4.19 new package
EUVD EUVD EUVD-2019-8573 fs/btrfs/volumes.c in the Linux kernel before 5.1 allows a btrfs_verify_dev_extents NULL pointer dereference via a crafted btrfs image because fs_devices->devices is mishandled within find_device, aka CID-09ba3bc9dd15.
Ubuntu USN Ubuntu USN USN-4254-1 Linux kernel vulnerabilities
Ubuntu USN Ubuntu USN USN-4254-2 Linux kernel (Xenial HWE) vulnerabilities
Ubuntu USN Ubuntu USN USN-4258-1 Linux kernel vulnerabilities
Ubuntu USN Ubuntu USN USN-4287-1 Linux kernel vulnerabilities
Ubuntu USN Ubuntu USN USN-4287-2 Linux kernel (Azure) vulnerabilities
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2024-08-05T02:02:39.701Z

Reserved: 2019-11-12T00:00:00

Link: CVE-2019-18885

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2019-11-14T14:15:11.630

Modified: 2024-11-21T04:33:46.677

Link: CVE-2019-18885

cve-icon Redhat

Severity : Low

Publid Date: 2019-01-19T00:00:00Z

Links: CVE-2019-18885 - Bugzilla

cve-icon OpenCVE Enrichment

No data.