CVE-2012-3400

 

Published at: - 03-10-2012 01:02

Last modified: - 17-01-2023 10:47

Total changes: - 2

Description

Heap-based buffer overflow in the udf_load_logicalvol function in fs/udf/super.c in the Linux kernel before 3.4.5 allows remote attackers to cause a denial of service (system crash) or possibly have unspecified other impact via a crafted UDF filesystem.

Common Vulnerability Scoring System (CVSS)

AV:N/AC:H/Au:N/C:C/I:C/A:C

 

Verification logic

 

Reference

• http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=1df2ae31c724e57be9d7ac00d78db8a5dabdd050
• [oss-security] 20120709 Re: CVE Request: Stability fixes in UDF Logical Volume Descriptor handling-Mailing List, Third Party Advisory
• https://bugzilla.redhat.com/show_bug.cgi?id=843139
• http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=adee11b2085bee90bd8f4f52123ffb07882d6256
• https://github.com/torvalds/linux/commit/1df2ae31c724e57be9d7ac00d78db8a5dabdd050
• https://github.com/torvalds/linux/commit/adee11b2085bee90bd8f4f52123ffb07882d6256
• http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.4.5
• USN-1557-1-Third Party Advisory
• USN-1529-1-Third Party Advisory
• 50506-Broken Link
• RHSA-2013:0594-Third Party Advisory
• USN-1556-1-Third Party Advisory
• USN-1555-1-Third Party Advisory
• SUSE-SU-2015:0812-Mailing List, Third Party Advisory
• http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10691

 

Keywords

NVD

 

CVE-2012-3400

 

CVE

 

Common vulnerabilities & exposures

 

CVSS

 

Common vulnerability scoring system

 

Security

 

Vulnerabilities

 

Exposures