GCVE - cpe:2.3:a:n/a:linux_kernel_through_version

Approved changes feed: RSS · Atom

cpe:2.3:a:n/a:linux_kernel_through_version_4.15:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	N/A (`22f567d3-1203-528c-8f0e-3eb9c2f6ca78`)
Product	Linux Kernel Through Version 4.15 (`b37fd479-69c6-575e-a270-04797f58ffd7`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2018-1095`	vulnerable	2026-06-08 05:11:16.887783	Details available The ext4_xattr_check_entries function in fs/ext4/xattr.c in the Linux kernel through 4.15.15 does not properly validate xattr sizes, which causes misinterpretation of a size as an error code, and consequently allows attackers to cause a denial of service (get_acl NULL pointer dereference and system crash) via a crafted ext4 image. Published: 2018-04-02T03:00:00.000Z Updated: 2024-08-05T03:51:48.616Z Open on db.gcve.eu Reference links https://git.kernel.org/pub/scm/linux/kernel/git/tytso/ext4.git/commit/?id=ce3fd194fcc6fbdc00ce095a852f22df97baa401 http://openwall.com/lists/oss-security/2018/03/29/1 https://usn.ubuntu.com/3695-1/ https://usn.ubuntu.com/3695-2/ https://access.redhat.com/errata/RHSA-2018:2948	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-1094`	vulnerable	2026-06-08 05:11:16.887251	Details available The ext4_fill_super function in fs/ext4/super.c in the Linux kernel through 4.15.15 does not always initialize the crc32c checksum driver, which allows attackers to cause a denial of service (ext4_xattr_inode_hash NULL pointer dereference and system crash) via a crafted ext4 image. Published: 2018-04-02T03:00:00.000Z Updated: 2024-08-05T03:51:48.938Z Open on db.gcve.eu Reference links https://bugzilla.redhat.com/show_bug.cgi?id=1560788 https://access.redhat.com/errata/RHSA-2018:3083 https://git.kernel.org/pub/scm/linux/kernel/git/tytso/ext4.git/commit/?id=18db4b4e6fc31eda838dd1c1296d67dbcb3dc957 http://openwall.com/lists/oss-security/2018/03/29/1 https://usn.ubuntu.com/3695-1/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-1093`	vulnerable	2026-06-08 05:11:16.886794	Details available The ext4_valid_block_bitmap function in fs/ext4/balloc.c in the Linux kernel through 4.15.15 allows attackers to cause a denial of service (out-of-bounds read and system crash) via a crafted ext4 image because balloc.c and ialloc.c do not validate bitmap block numbers. Published: 2018-04-02T03:00:00.000Z Updated: 2024-08-05T03:51:49.081Z Open on db.gcve.eu Reference links https://usn.ubuntu.com/3752-2/ https://usn.ubuntu.com/3676-1/ https://lists.debian.org/debian-lts-announce/2018/07/msg00015.html http://openwall.com/lists/oss-security/2018/03/29/1 https://usn.ubuntu.com/3752-3/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2018-1092`	vulnerable	2026-06-08 05:11:16.886251	Details available The ext4_iget function in fs/ext4/inode.c in the Linux kernel through 4.15.15 mishandles the case of a root directory with a zero i_links_count, which allows attackers to cause a denial of service (ext4_process_freed_data NULL pointer dereference and OOPS) via a crafted ext4 image. Published: 2018-04-02T03:00:00.000Z Updated: 2024-08-05T03:51:48.417Z Open on db.gcve.eu Reference links https://usn.ubuntu.com/3676-1/ https://usn.ubuntu.com/3678-2/ https://access.redhat.com/errata/RHSA-2018:3083 http://openwall.com/lists/oss-security/2018/03/29/1 https://www.debian.org/security/2018/dsa-4187	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Linux Kernel Through Version 4.15

PURL mappings

Vulnerability references

Contribute