summaryrefslogtreecommitdiffstats
path: root/retired/CVE-2018-13099
blob: 5b2378a3413975060a8f6f17d138b36b0fe8bd67 (plain) (blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
Description: use-after-free in update_sit_entry() when operating on a corrupted f2fs image 
References:
 https://bugzilla.kernel.org/show_bug.cgi?id=200179
 https://git.kernel.org/pub/scm/linux/kernel/git/chao/linux.git/commit/?h=f2fs-dev&id=67d88628bd1dcc9ded6f0b7dfc363d1370688004
 https://sourceforge.net/p/linux-f2fs/mailman/message/36356878/
Notes:
Bugs:
upstream: released (4.19-rc1) [4dbe38dc386910c668c75ae616b99b823b59f3eb]
4.19-upstream-stable: N/A "Fixed before branch point"
4.9-upstream-stable: released (4.9.128) [7e0782ceebaaed70b0c4b775c27b81e8f8cf6ddb]
3.16-upstream-stable: ignored "Hard to backport and low priority outside of Android"
sid: released (4.18.10-1)
4.9-stretch-security: released (4.9.110-3+deb9u5) [bugfix/all/f2fs-fix-to-do-sanity-check-with-reserved-blkaddr-of.patch]
3.16-jessie-security: ignored "Hard to backport and low priority outside of Android"

© 2014-2024 Faster IT GmbH | imprint | privacy policy