CVE-2010-3015 (retired)

Priority
Description
Integer overflow in the ext4_ext_get_blocks function in fs/ext4/extents.c
in the Linux kernel before 2.6.34 allows local users to cause a denial of
service (BUG and system crash) via a write operation on the last block of a
large file, followed by a sync operation.
Ubuntu-Description
Toshiyuki Okajima discovered that ext4 did not correctly check certain
parameters. A local attacker could exploit this to crash the system or
overwrite the last block of large files.
Assigned-to
sconklin
Package
Upstream:needs-triage
Package
Upstream:needs-triage
Package
Upstream:needs-triage
Package
Upstream:needs-triage
More Information

Updated: 2019-03-26 11:52:41 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)