The error-reporting functionality in (1) fs/ext2/dir.c, (2) fs/ext3/dir.c, and possibly (3) fs/ext4/dir.c in the Linux kernel 2.6.26.5 does not limit the number of printk console messages that report directory corruption, which allows physically proximate attackers to cause a denial of service (temporary system hang) by mounting a filesystem that has corrupted dir->i_size and dir->i_blocks values and performing (a) read or (b) write operations. NOTE: there are limited scenarios in which this crosses privilege boundaries.
References
Configurations
History
07 Nov 2023, 02:02
Type | Values Removed | Values Added |
---|---|---|
Summary | The error-reporting functionality in (1) fs/ext2/dir.c, (2) fs/ext3/dir.c, and possibly (3) fs/ext4/dir.c in the Linux kernel 2.6.26.5 does not limit the number of printk console messages that report directory corruption, which allows physically proximate attackers to cause a denial of service (temporary system hang) by mounting a filesystem that has corrupted dir->i_size and dir->i_blocks values and performing (a) read or (b) write operations. NOTE: there are limited scenarios in which this crosses privilege boundaries. |
Information
Published : 2008-09-27 10:30
Updated : 2024-02-28 11:21
NVD link : CVE-2008-3528
Mitre link : CVE-2008-3528
CVE.ORG link : CVE-2008-3528
JSON object : View
Products Affected
linux
- linux_kernel
CWE
CWE-264
Permissions, Privileges, and Access Controls