Stack Consumption Vulnerability in Linux Kernel's parse_rock_ridge_inode_internal Function

Stack Consumption Vulnerability in Linux Kernel's parse_rock_ridge_inode_internal Function

CVE-2014-5471 · MEDIUM Severity

AV:L/AC:H/AU:N/C:N/I:N/A:C

Stack consumption vulnerability in the parse_rock_ridge_inode_internal function in fs/isofs/rock.c in the Linux kernel through 3.16.1 allows local users to cause a denial of service (uncontrolled recursion, and system crash or reboot) via a crafted iso9660 image with a CL entry referring to a directory entry that has a CL entry.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.