CVE-2018-14613
Description
An issue was discovered in the Linux kernel through 4.17.10. There is an invalid pointer dereference in io_ctl_map_page() when mounting and operating a crafted btrfs image, because of a lack of block group item validation in check_leaf_item in fs/btrfs/tree-checker.c.
Risk Information
Base Score
5.5
MODERATE
Vector
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
0.105
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| SUSE-SU-2018:3003-1(SUSE Linux Enterprise Desktop 12-SP3 ) kernel-default-4.4.156-94.57.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3003-1(SUSE Linux Enterprise Server 12-SP3 ) kernel-default-base-4.4.156-94.57.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3003-1(SUSE Linux Enterprise Server 12-SP3 ) kernel-default-base-debuginfo-4.4.156-94.57.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3003-1(SUSE Linux Enterprise Desktop 12-SP3 ) kernel-default-debuginfo-4.4.156-94.57.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3003-1(SUSE Linux Enterprise Desktop 12-SP3 ) kernel-default-debugsource-4.4.156-94.57.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3003-1(SUSE Linux Enterprise Desktop 12-SP3 ) kernel-default-devel-4.4.156-94.57.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3003-1(SUSE Linux Enterprise Desktop 12-SP3 ) kernel-default-extra-4.4.156-94.57.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3003-1(SUSE Linux Enterprise Desktop 12-SP3 ) kernel-default-extra-debuginfo-4.4.156-94.57.1.x86_64.rpm | Linux |
| SUSE-SU-2018:3003-1(SUSE Linux Enterprise Desktop 12-SP3 ) kernel-devel-4.4.156-94.57.1.noarch.rpm | Linux |
| SUSE-SU-2018:3003-1(SUSE Linux Enterprise Desktop 12-SP3 ) kernel-macros-4.4.156-94.57.1.noarch.rpm | Linux |
| SUSE-SU-2018:3003-1(SUSE Linux Enterprise Desktop 12-SP3 ) kernel-source-4.4.156-94.57.1.noarch.rpm | Linux |
| SUSE-SU-2018:3003-1(SUSE Linux Enterprise Desktop 12-SP3 ) kernel-syms-4.4.156-94.57.1.x86_64.rpm | Linux |
| Linux kernel (USN-4094-1) linux-image-gcp_4.15.0.1040.42_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-gcp_4.15.0.1040.54_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-gke_4.15.0.1040.43_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-gke_4.15.0.1040.54_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-kvm_4.15.0.1042.42_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-oem_4.15.0.58.79_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-oem_4.15.0.1050.54_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-azure_4.15.0.1055.58_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-oracle_4.15.0.1021.15_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-oracle_4.15.0.1021.24_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-generic_4.15.0.58.60_i386.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-generic_4.15.0.58.60_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-virtual_4.15.0.58.60_i386.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-virtual_4.15.0.58.60_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-gke-4.15_4.15.0.1040.43_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-lowlatency_4.15.0.58.60_i386.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-lowlatency_4.15.0.58.60_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-4.15.0-1040-gcp_4.15.0-1040.42_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-4.15.0-1040-gcp_4.15.0-1040.42~16.04.1_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-4.15.0-1040-gke_4.15.0-1040.42_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-4.15.0-1042-kvm_4.15.0-1042.42_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-4.15.0-1050-oem_4.15.0-1050.57_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-4.15.0-1055-azure_4.15.0-1055.60_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-4.15.0-58-generic_4.15.0-58.64_i386.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-4.15.0-58-generic_4.15.0-58.64_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-4.15.0-58-generic_4.15.0-58.64~16.04.1_i386.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-4.15.0-58-generic_4.15.0-58.64~16.04.1_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-generic-hwe-16.04_4.15.0.58.79_i386.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-generic-hwe-16.04_4.15.0.58.79_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-virtual-hwe-16.04_4.15.0.58.79_i386.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-virtual-hwe-16.04_4.15.0.58.79_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-4.15.0-1021-oracle_4.15.0-1021.23_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-4.15.0-1021-oracle_4.15.0-1021.23~16.04.1_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-4.15.0-58-lowlatency_4.15.0-58.64_i386.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-4.15.0-58-lowlatency_4.15.0-58.64_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-4.15.0-58-lowlatency_4.15.0-58.64~16.04.1_i386.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-4.15.0-58-lowlatency_4.15.0-58.64~16.04.1_amd64.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-lowlatency-hwe-16.04_4.15.0.58.79_i386.deb | Linux |
| Linux kernel (USN-4094-1) linux-image-lowlatency-hwe-16.04_4.15.0.58.79_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-4118-1) linux-image-aws_4.15.0.1047.46_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-4118-1) linux-image-aws-hwe_4.15.0.1047.47_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-4118-1) linux-image-4.15.0-1047-aws_4.15.0-1047.49_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS) systems (USN-4118-1) linux-image-4.15.0-1047-aws_4.15.0-1047.49~16.04.1_amd64.deb | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234