Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Date: Tue, 17 Aug 2010 11:37:20 +0800
From: Eugene Teo <>
CC: "Steven M. Christey" <>
Subject: Re: CVE request - kernel: integer overflow in ext4_ext_get_blocks()

> Use CVE-2010-3015
> What does an attacker have to do to exploit this? Mount a crafted file
> system?

To trigger this, the attacker needs to write to the last block of a file 
(of max file size) and sync it.

Thanks, Eugene
main(i) { putchar(182623909 >> (i-1) * 5&31|!!(i<7)<<6) && main(++i); }

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.