GCVE - cpe:2.3:a:kernel:heap-based_buffer_overflow_in

Approved changes feed: RSS · Atom

cpe:2.3:a:kernel:heap-based_buffer_overflow_in_fs/ext4/xattr.c:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Kernel (`c880aa60-3c99-58c6-bee5-be0739d6b25b`)
Product	Heap Based Buffer Overflow In Fs/Ext4/Xattr.C (`a71c4354-0015-509a-b5a8-2fcdd2cd1acd`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2018-10840`	vulnerable	2026-06-03 14:38:00.253841	Details available MEDIUM (5.2) Linux kernel is vulnerable to a heap-based buffer overflow in the fs/ext4/xattr.c:ext4_xattr_set_entry() function. An attacker could exploit this by operating on a mounted crafted ext4 image. Published: 2018-07-16T20:00:00.000Z Updated: 2024-08-05T07:46:47.078Z Open on db.gcve.eu Reference links https://usn.ubuntu.com/3752-2/ https://usn.ubuntu.com/3752-3/ https://access.redhat.com/errata/RHSA-2019:0162 https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10840 http://www.securityfocus.com/bid/104858	Imported from gcve-enriched-dumps CVE data

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.