Published: 03/07/2018 Updated: 03/04/2019

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

CVSS v3 Base Score: 5.5 | Impact Score: 3.6 | Exploitability Score: 1.8

VMScore: 383

Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P

An issue exists in fs/f2fs/super.c in the Linux kernel up to and including 4.17.3, which does not properly validate secs_per_zone in a corrupted f2fs image, as demonstrated by a divide-by-zero error.

Vulnerable Product	Search on Vulmon	Subscribe to Product
linux linux kernel
debian debian linux 8.0

Several security issues were fixed in the Linux kernel ...

An issue was discovered in fs/f2fs/superc in the Linux kernel, which does not properly validate secs_per_zone in a corrupted f2fs image This may lead to a divide-by-zero error and a system crash ...

CWE-369 https://bugzilla.kernel.org/show_bug.cgi?id=200183 http://www.securityfocus.com/bid/104679 https://lists.debian.org/debian-lts-announce/2019/03/msg00017.html https://usn.ubuntu.com/3932-2/https://usn.ubuntu.com/3932-1/https://usn.ubuntu.com/4094-1/https://usn.ubuntu.com/4118-1/https://seclists.org/bugtraq/2019/Jan/52 https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=42bf546c1fe3f3654bdf914e977acbc2b80a5be5 http://lists.opensuse.org/opensuse-security-announce/2018-10/msg00033.html http://packetstormsecurity.com/files/151420/Slackware-Security-Advisory-Slackware-14.2-kernel-Updates.html https://nvd.nist.gov https://usn.ubuntu.com/4094-1/

CVE-2018-13100

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect