1. Home
  2. Vulnerabilities
  3. CVE-2016-10208

CVE-2016-10208

CVSS v3.0 4.3 (Medium)
43% Progress
CVSS v2.0 4.9 (Medium)
49% Progress
EPSS 0.06 % (28th)
0.06% Progress
Affected Products 1
Advisories 11
Info CVSS EPSS CAPEC Affected Configurations References Security Advisories Packages & Software OVAL Tools, Exploits & PoC Graph Web & Social Timeline

The ext4_fill_super function in fs/ext4/super.c in the Linux kernel through 4.9.8 does not properly validate meta block groups, which allows physically proximate attackers to cause a denial of service (out-of-bounds read and system crash) via a crafted ext4 image.

Weaknesses
CWE-125
Out-of-bounds Read
CVE Status
PUBLISHED
CNA
MITRE
Published Date
2017-02-06 06:59:00
(7 years ago)
Updated Date
2018-08-24 10:29:00
(6 years ago)

Affected Products

Linux

Configuration #1

    CPE23 From Up To
  Linux Kernel 4.9.8 and prior versions cpe:2.3:o:linux:linux_kernel <= 4.9.8