Vulnetix
Try Vulnetix Request Demo
CVE-2016-10208 PUBLISHED

The ext4_fill_super function in fs/ext4/super.c in the Linux kernel through 4.9.8 does not properly validate meta block groups, which allows physically proximate attackers to cause a denial of service (out-of-bounds read and system crash) via a crafted ext4 image.

EPSS 0.05% · 16.3th percentile

Risk Scores

EPSS Score
0.05%
16.3th percentile

Affected Products

VendorProductVersions
Ubuntu:22.04:LTSlinux-intel-iot-realtime5.15.0-1073.75, 0
Ubuntu:20.04:LTSlinux-gke5.4.0-1052.55, 5.4.0-1051.54, 5.4.0-1049.52
Ubuntu:20.04:LTSlinux-raspi25.4.0-1006.6, 5.4.0-1004.4, 5.3.0-1017.19
Ubuntu:20.04:LTSlinux-riscv5.4.0-30.34, 5.4.0-40.45, 5.4.0-39.44
Ubuntu:16.04:LTSlinux-raspi24.2.0-1013.19, 4.2.0-1014.21, 0
Ubuntu:22.04:LTSlinux-realtime0, 5.15.0-1032.35
Ubuntu:14.04:LTSlinux-lts-xenial4.4.0-42.62~14.04.1, 0, 4.4.0-13.29~14.04.1
Ubuntu:16.04:LTSlinux-hwe4.8.0-46.49~16.04.1, 4.8.0-49.52~16.04.1, 4.8.0-51.54~16.04.1
Ubuntu:16.04:LTSlinux-snapdragon4.4.0-1013.15, 4.4.0-1015.18, 4.4.0-1019.22
Ubuntu:20.04:LTSlinux-azure-fde5.4.0-1068.71+cvm1.1, 5.4.0-1103.109+cvm1.1, 5.4.0-1100.106+cvm1.1
Ubuntu:24.04:LTSlinux-raspi-realtime6.8.0-2019.20, 0
Ubuntu:16.04:LTSlinux-aws4.4.0-1001.10, 4.4.0-1003.12, 4.4.0-1004.13
Ubuntu:22.04:LTSlinux-riscv5.15.0-1022.26, 5.15.0-1020.23, 5.15.0-1019.22
Ubuntu:14.04:LTSlinux3.13.0-46.75, 3.13.0-46.77, 3.13.0-46.79
Ubuntu:16.04:LTSlinux4.4.0-66.87, 4.4.0-65.86, 4.4.0-64.85

Timeline

References

Open in Interactive Console →