Multiple Memory Corruption Issues in ntfs.ko (Linux 4.15.0-15.16)
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
linux (Ubuntu) |
Triaged
|
Undecided
|
Unassigned |
Bug Description
Dear all,
The following memory corruption issues in ntfs.ko (such as use-after-frees, stack- and heap-out-of-bounds accesses and BUG_ON / BUG assertion fails) were found by a modified version of the kAFL fuzzer (https:/
A local users who have been granted the privileges necessary to mount filesystems (or a system components which auto mounts filesystems) could trigger a kernel oops, a kernel panic (depending on panic_on_oops) or exploit those bugs to raise privileges.
We can verify this issues for Linux 4.15.0-15.16 (Ubuntu 16.04.4 LTS / sources from "pull-lp-source linux").
Credits: Sergej Schumilo, Cornelius Aschermann (both of Ruhr-Universität Bochum)
Best regards,
Sergej Schumilo
CVE References
information type: | Public Security → Public |
information type: | Public → Public Security |
information type: | Public Security → Public |
Thanks for taking the time to report this bug and helping to make Ubuntu better.
Please report this issue to the upstream kernel developers by contacting <email address hidden>
Once the Linux kernel security team has evaluated the issue, and a proper fix is available, we will release a security update for Ubuntu.