Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Buffer overflow in the ISO9660 file system component for Linux kernel 2.4.x, 2.5.x and 2.6.x, allows local users with physical access to overflow kernel memory and execute arbitrary code via a malformed CD containing a long symbolic link entry.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Linux Kernel ISO9660文件系统缓冲区溢出漏洞
Vulnerability Description
Linux是一款开放源代码操作系统。 Linux内核没有对存储在ISO9660文件系统上的符号连接进行正确的长度检查,本地攻击者可以利用这个漏洞获得root用户权限。 ISO9660文件系统上的符号连接由'Rock Ridge'扩展到标准格式支持,通过在恶意构建ISO文件系统,当内核在执行目录列表及尝试通过畸形符号连接访问文件时触发。几个相关的受影响函数如下: fs/isofs/rock.c: rock_ridge_symlink_readpage() fs/isofs/rock.c: get_symli
CVSS Information
N/A
Vulnerability Type
N/A