Early Access — Mondoo Vulnerability Intelligence is currently in preview.
An issue was discovered in fs/f2fs/super.c in the Linux kernel through 4.17.3. There is an out-of-bounds read or a divide-by-zero error for an incorrect user_block_count in a corrupted f2fs image, leading to a denial of service (BUG).
Exploitability
AV:LAC:LPR:NUI:RScope
S:UImpact
C:NI:NA:H5.5/CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H