Updated: 2023-12-06
CWE: Out-of-bounds Read
Description:
Linux kernel ext4 filesystem is vulnerable to an out-of-bound access in the ext4_ext_drop_refs() function when operating on a crafted ext4 filesystem image.
CVSS3: 6.5
| OS | Vendor version | Errata |
|---|---|---|
| Ubuntu 18.04 | 4.15.0-44.47 | USN-3871-1 |
| Ubuntu 18.04 AWS | 4.15.0-1032.34 | USN-3871-3 |
| Ubuntu 16.04 HWE | 4.15.0-45.48~16.04.1 | USN-3871-4 |
| Ubuntu 16.04 AWS HWE | 4.15.0-1032.34~16.04.1 | USN-3871-4 |
| Ubuntu 18.04 GCP | 4.15.0-1027.28 | USN-3871-3 |
| Ubuntu 16.04 GCP | 4.15.0-1027.28~16.04.1 | USN-3871-4 |
| Ubuntu 18.04 Azure | 4.15.0-1037.39 | USN-3871-5 |
| Ubuntu 16.04 Azure | 4.15.0-1037.39~16.04.1 | USN-3871-5 |
| OS | Original kernel version | State |
|---|---|---|
| Ubuntu 18.04 |
4.15.0-20.21
show all
hide all
4.15.0-29.31
4.15.0-31.33
4.15.0-42.45
4.15.0-33.36
4.15.0-24.26
4.15.0-36.39
4.15.0-34.37
4.15.0-39.42
4.15.0-43.46
4.15.0-32.35
4.15.0-35.38
4.15.0-38.41
4.15.0-23.25
4.15.0-22.24
4.15.0-30.32
|
Released |
| Ubuntu 18.04 AWS |
4.15.0-1027.27
show all
hide all
4.15.0-1021.21
4.15.0-1031.33
4.15.0-1023.23
4.15.0-1029.30
|
Released |
| Ubuntu 16.04 HWE |
4.15.0-24.26~16.04.1
show all
hide all
4.15.0-34.37~16.04.1
4.15.0-39.42~16.04.1
4.15.0-42.45~16.04.1
4.15.0-33.36~16.04.1
4.15.0-30.32~16.04.1
4.15.0-36.39~16.04.1
4.15.0-29.31~16.04.1
4.15.0-35.38~16.04.1
4.15.0-38.41~16.04.1
4.15.0-32.35~16.04.1
4.15.0-43.46~16.04.1
|
Released |
| Ubuntu 16.04 AWS HWE |
4.15.0-1030.31~16.04.1
show all
hide all
4.15.0-1031.33~16.04.1
|
Released |
| Debian 9 |
4.9.65-3+deb9u2
show all
hide all
4.9.65-3
4.9.80-2
4.9.82-1+deb9u3
4.9.82-1+deb9u2
4.9.30-2+deb9u1
4.9.88-1
4.9.88-1+deb9u1
4.9.51-1
4.9.30-2+deb9u5
4.9.65-1
4.9.80-1
4.9.30-2+deb9u4
4.9.65-3+deb9u1
4.9.30-2+deb9u3
4.9.30-2
4.9.30-2+deb9u2
4.9.107-1
|
Released |
| Debian 8 backports |
4.9.30-2+deb9u2~bpo8+1
show all
hide all
4.9.30-2+deb9u5~bpo8+1
4.9.30-2~bpo8+1
4.9.51-1~bpo8+1
4.9.65-3+deb9u1~bpo8+1
4.9.65-3+deb9u2~bpo8+1
4.9.65-3~bpo8+1
4.9.82-1+deb9u3~bpo8+1
4.9.88-1+deb9u1~bpo8+1
4.9.88-1~bpo8+1
|
Released |
| Proxmox VE 5 |
4.15.18-7-pve-4.15.18-27
show all
hide all
4.15.18-6-pve_4.15.18-25
4.15.18-8-pve_4.15.18-28
4.15.18-1-pve_4.15.18-15
4.15.18-2-pve_4.15.18-20
4.15.17-3-pve_4.15.17-12
4.15.10-1-pve_4.15.10-4
4.15.15-1-pve_4.15.15-6
4.15.17-1-pve_4.15.17-9
4.15.17-2-pve_4.15.17-10
4.15.18-1-pve_4.15.18-16
4.15.18-1-pve_4.15.18-17
4.15.18-1-pve_4.15.18-19
4.15.18-2-pve_4.15.18-21
4.15.18-4-pve_4.15.18-23
4.15.18-7-pve_4.15.18-26
4.15.18-9-pve_4.15.18-30
4.15.3-1-pve_4.15.3-1
4.15.18-3-pve_4.15.18-22
4.15.18-5-pve_4.15.18-24
|
Released |
| Ubuntu 18.04 GCP |
4.15.0-1006.6
show all
hide all
4.15.0-1014.14
4.15.0-1010.10
4.15.0-1015.15
4.15.0-1025.26
4.15.0-1024.25
4.15.0-1018.19
4.15.0-1026.27
4.15.0-1021.22
4.15.0-1017.18
4.15.0-1009.9
4.15.0-1008.8
4.15.0-1019.20
|
Released |
| Ubuntu 16.04 GCP |
4.15.0-1024.25~16.04.2
show all
hide all
4.15.0-1021.22~16.04.1
4.15.0-1019.20~16.04.1
4.15.0-1017.18~16.04.1
4.15.0-1018.19~16.04.2
4.15.0-1014.14~16.04.1
4.15.0-1026.27~16.04.1
4.15.0-1025.26~16.04.1
4.15.0-1015.15~16.04.1
|
Released |
| Endurance 6 elrepo |
4.4.112-1.el6.elrepo
|
Released |
| Endurance 7 eig 4.14 | |
Ready For Release |
| Proofpoint | |
Ready For Release |
| Ubuntu 18.04 Azure |
4.15.0-1014.14
show all
hide all
4.15.0-1031.32
4.15.0-1025.26
4.15.0-1012.12
4.15.0-1021.21
4.15.0-1022.23
4.15.0-1009.9
4.15.0-1018.18
4.15.0-1028.29
4.15.0-1030.31
4.15.0-1032.33
4.15.0-1035.36
4.15.0-1019.19
4.15.0-1013.13
4.15.0-1023.24
4.15.0-1036.38
|
Released |
| Ubuntu 16.04 Azure |
4.15.0-1036.38~16.04.1
show all
hide all
4.15.0-1025.26~16.04.1
4.15.0-1019.19~16.04.1
4.15.0-1023.24~16.04.1
4.15.0-1014.14~16.04.1
4.15.0-1022.22~16.04.1
4.15.0-1035.36~16.04.1
4.15.0-1021.21~16.04.1
4.15.0-1031.32~16.04.1
4.15.0-1018.18~16.04.1
4.15.0-1028.29~16.04.1
4.15.0-1030.31~16.04.1
4.15.0-1032.33~16.04.1
4.15.0-1013.13~16.04.2
|
Released |
| Debian 10 cloud | |
Will Not Fix |
| Debian 9 backports | |
Will Not Fix |