Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The xfs_da3_fixhashpath function in fs/xfs/xfs_da_btree.c in the xfs implementation in the Linux kernel before 3.14.2 does not properly compare btree hash values, which allows local users to cause a denial of service (filesystem corruption, and OOPS or panic) via operations on directories that have hash collisions, as demonstrated by rmdir operations.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Linux kernel 拒绝服务漏洞
Vulnerability Description
Linux kernel是美国Linux基金会发布的开源操作系统Linux所使用的内核。NFSv4 implementation是其中的一个分布式文件系统协议。 Linux kernel 3.14.2之前版本的xfs实现中的fs/xfs/xfs_da_btree.c文件中‘xfs_da3_fixhashpath’函数存在安全漏洞,该漏洞源于程序没有正确比较btree散列值。本地攻击者可借助哈希碰撞利用该漏洞造成拒绝服务(文件系统崩溃,OOPS或系统意外终止)。
CVSS Information
N/A
Vulnerability Type
N/A