CVE-2018-11412

MEDIUM

Linux Kernel 4.13-4.16.11 - Use-After-Free in ext4_read_inline_data

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2018-11412. PoCs published by Google Security Research.

AI-analyzed exploit summary This exploit demonstrates a memory corruption vulnerability in the ext4 filesystem driver (CVE-2018-11412) by crafting a corrupted filesystem image with malformed extended attributes. The PoC triggers an out-of-bounds memcpy when reading a file with inline data stored in a dedicated inode, leading to potential privilege escalation or denial of service.

Description

In the Linux kernel 4.13 through 4.16.11, ext4_read_inline_data() in fs/ext4/inline.c performs a memcpy with an untrusted length value in certain circumstances involving a crafted filesystem that stores the system.data extended attribute value in a dedicated inode.

Exploits (1)

exploitdb WORKING POC

by Google Security Research · textdoslinux

https://www.exploit-db.com/exploits/44832

View Code ZIP pw:eip

This exploit demonstrates a memory corruption vulnerability in the ext4 filesystem driver (CVE-2018-11412) by crafting a corrupted filesystem image with malformed extended attributes. The PoC triggers an out-of-bounds memcpy when reading a file with inline data stored in a dedicated inode, leading to potential privilege escalation or denial of service.

Classification

Working Poc 100%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: Linux kernel ext4 filesystem (v4.13+)

No auth needed

Prerequisites: Access to create and mount a corrupted ext4 filesystem image · Kernel version 4.13 or newer with ext4 inline data support

MITRE ATT&CK