Security Advisory

CVE-2014-9731

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2015-08-31 10:00:00

Last updated 2024-08-06 13:55:05

Assigner redhat

State PUBLISHED

Description

The UDF filesystem implementation in the Linux kernel before 3.18.2 does not ensure that space is available for storing a symlink targets name along with a trailing 0 character, which allows local users to obtain sensitive information via a crafted filesystem image, related to fs/udf/symlink.c and fs/udf/unicode.c.

← Browse all CVEs View on cve.org ↗