Out-of-Bounds Access in write_extent_buffer() in Btrfs File System

Out-of-Bounds Access in write_extent_buffer() in Btrfs File System

CVE-2018-14610 · HIGH Severity

AV:N/AC:M/AU:N/C:N/I:N/A:C

An issue was discovered in the Linux kernel through 4.17.10. There is out-of-bounds access in write_extent_buffer() when mounting and operating a crafted btrfs image, because of a lack of verification that each block group has a corresponding chunk at mount time, within btrfs_read_block_groups in fs/btrfs/extent-tree.c.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.