CVE Vulnerabilities

CVE-2014-6410

Published: Sep 28, 2014 | Modified: Nov 07, 2023
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4.7 MEDIUM
AV:L/AC:M/Au:N/C:N/I:N/A:C
RedHat/V2
RedHat/V3
Ubuntu

The __udf_read_inode function in fs/udf/inode.c in the Linux kernel through 3.16.3 does not restrict the amount of ICB indirection, which allows physically proximate attackers to cause a denial of service (infinite loop or stack consumption) via a UDF filesystem with a crafted inode.

Affected Software

Name Vendor Start Version End Version
Linux_kernel Linux 3.16.0 3.16.0
Linux_kernel Linux 3.16.2 3.16.2
Linux_kernel Linux * 3.16.3
Linux_kernel Linux 3.16.1 3.16.1

References