CVE-2019-18885

MEDIUM

Linux Kernel < 5.1 - NULL Pointer Dereference in btrfs_verify_dev_extents

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2019-18885. PoCs published by bobfuzzer.

AI-analyzed exploit summary This repository provides a detailed technical analysis of CVE-2019-18885, a null pointer dereference vulnerability in the BTRFS filesystem of the Linux kernel. It includes root cause analysis, debugger output, and KASAN logs, but does not contain functional exploit code.

Description

fs/btrfs/volumes.c in the Linux kernel before 5.1 allows a btrfs_verify_dev_extents NULL pointer dereference via a crafted btrfs image because fs_devices->devices is mishandled within find_device, aka CID-09ba3bc9dd15.

Exploits (1)

nomisec WRITEUP 2 stars

by bobfuzzer · poc

https://github.com/bobfuzzer/CVE-2019-18885

View Code ZIP pw:eip

This repository provides a detailed technical analysis of CVE-2019-18885, a null pointer dereference vulnerability in the BTRFS filesystem of the Linux kernel. It includes root cause analysis, debugger output, and KASAN logs, but does not contain functional exploit code.

Classification

Writeup 95%

Attack Type

Dos

Complexity

Moderate

Reliability

Reliable

Target: Linux Kernel 5.0.21 BTRFS filesystem

No auth needed

Prerequisites: Crafted BTRFS image · Mounting the image on a vulnerable system

MITRE ATT&CK