CVE-2008-4934

Published: 05 November 2008

The hfsplus_block_allocate function in fs/hfsplus/bitmap.c in the Linux kernel before 2.6.28-rc1 does not check a certain return value from the read_mapping_page function before calling kmap, which allows attackers to cause a denial of service (system crash) via a crafted hfsplus filesystem image.

Priority

Low

Status

Package Release Status
linux
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.28~rc1)
Patches:
upstream: 649f1ee6c705aab644035a7998d7b574193a598a
linux-source-2.6.15
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.28~rc1)
linux-source-2.6.22
Launchpad, Ubuntu, Debian
Upstream
Released (2.6.28~rc1)