Launchpad.net

CVE 2009-4308

The ext4_decode_error function in fs/ext4/super.c in the ext4 filesystem in the Linux kernel before 2.6.32 allows user-assisted remote attackers to cause a denial of service (NULL pointer dereference), and possibly have unspecified other impact, via a crafted read-only filesystem that lacks a journal.

Related bugs and status

CVE-2009-4308 (Candidate) is related to these bugs:

Bug #487010: ip6table modules are not included in the -virtual kernel packages

Summary				In	Importance	Status
	487010	ip6table modules are not included in the -virtual kernel packages		linux (Ubuntu)	Undecided	Invalid
	487010	ip6table modules are not included in the -virtual kernel packages		linux (Ubuntu Hardy)	Low	Fix Released

Bug #513241: please enable CONFIG_TIMER_STATS on imx51

Summary				In	Importance	Status
	513241	please enable CONFIG_TIMER_STATS on imx51		linux-fsl-imx51 (Ubuntu)	Medium	Fix Released
	513241	please enable CONFIG_TIMER_STATS on imx51		linux-fsl-imx51 (Ubuntu Lucid)	Medium	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2009-4308

Related bugs and status

Related bugs

References