1. Home
  2. Vulnerabilities
  3. CVE-2014-9728

CVE-2014-9728

CVSS v2.0 4.9 (Medium)
49% Progress
EPSS 0.04 % (11th)
0.04% Progress
Affected Products 1
Advisories 14
Info CVSS EPSS CAPEC Affected Configurations References Security Advisories Packages & Software OVAL Tools, Exploits & PoC Graph Web & Social Timeline

The UDF filesystem implementation in the Linux kernel before 3.18.2 does not validate certain lengths, which allows local users to cause a denial of service (buffer over-read and system crash) via a crafted filesystem image, related to fs/udf/inode.c and fs/udf/symlink.c.

Weaknesses
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CVE Status
PUBLISHED
CNA
Red Hat, Inc.
Published Date
2015-08-31 10:59:00
(9 years ago)
Updated Date
2016-12-22 02:59:22
(7 years ago)

Affected Products

Linux

Configuration #1

    CPE23 From Up To
  Linux Kernel 3.18.1 and prior versions cpe:2.3:o:linux:linux_kernel <= 3.18.1