Null-Pointer Deference in hfs.ko (Linux 4.15.0-15.16)
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
linux (Ubuntu) |
Triaged
|
Undecided
|
Unassigned |
Bug Description
Dear all,
The following null pointer dereference bug was found by a modified version of the kAFL fuzzer (https:/
A local users who have been granted the privileges necessary to mount filesystems (or a system components which auto mounts filesystems) could trigger a null pointer dereference or a kernel panic (depending on panic_on_oops).
We can verify this issues for Linux 4.15.0-15.16 (Ubuntu 16.04.4 LTS / sources from "pull-lp-source linux"). The desktop version of ubuntu auto-mounts this file system if provided via USB.
Credits: Sergej Schumilo, Cornelius Aschermann (both of Ruhr-Universität Bochum)
Best regards,
Sergej Schumilo
CVE References
summary: |
- Null-Pointer Deference in hfs.ko + Null-Pointer Deference in hfs.ko (Linux 4.15.0-15.16) |
information type: | Private Security → Public Security |
Thanks for taking the time to report this bug and helping to make Ubuntu better.
Please report this issue to the upstream kernel developers by contacting <email address hidden>
Once the Linux kernel security team has evaluated the issue, and a proper fix is available, we will release a security update for Ubuntu.