CVE-2012-3400
Published: 9 July 2012
Heap-based buffer overflow in the udf_load_logicalvol function in fs/udf/super.c in the Linux kernel before 3.4.5 allows remote attackers to cause a denial of service (system crash) or possibly have unspecified other impact via a crafted UDF filesystem.
From the Ubuntu security team
Some errors where discovered in the Linux kernel's UDF file system, which is used to mount some CD-ROMs and DVDs. An unprivileged local user could use these flaws to crash the system.
Priority
Status
Notes
Author | Note |
---|---|
jdstrand | linux-armadaxp is maintained by OEM |
References
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3400
- http://www.openwall.com/lists/oss-security/2012/07/03/1
- https://ubuntu.com/security/notices/USN-1529-1
- https://ubuntu.com/security/notices/USN-1533-1
- https://ubuntu.com/security/notices/USN-1532-1
- https://ubuntu.com/security/notices/USN-1514-1
- https://ubuntu.com/security/notices/USN-1539-1
- https://ubuntu.com/security/notices/USN-1556-1
- https://ubuntu.com/security/notices/USN-1557-1
- https://ubuntu.com/security/notices/USN-1562-1
- https://ubuntu.com/security/notices/USN-1555-1
- NVD
- Launchpad
- Debian