CVE-2014-5471 in Linux Kernel
Summary
Stack consumption vulnerability in the parse_rock_ridge_inode_internal function in fs/isofs/rock.c in the Linux kernel through 3.16.1 allows local users to cause a denial of service (uncontrolled recursion, and system crash or reboot) via a crafted iso9660 image with a CL entry referring to a directory entry that has a CL entry.
Reservation
08/26/2014
Disclosure
08/31/2014
Entries
VulDB provides additional information and datapoints for this CVE:
| ID | Vulnerability | CWE | Exp | Cou | CVE |
|---|---|---|---|---|---|
| 70785 | Linux Kernel parse_rock_ridge_inode_internal resource management | 399 | Not defined | Official fix | CVE-2014-5471 |