** Description changed: - [properly ignore component length for component types that do not use - it] + The udf_pc_to_char function in fs/udf/symlink.c in the Linux kernel + before 3.18.2 relies on component lengths that are unused, which allows + local users to cause a denial of service (system crash) via a crafted + UDF filesystem image. Break-Fix: - e237ec37ec154564f8690c5bd1795339955eeef9
-- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1462167 Title: CVE-2014-9730 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1462167/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
