Description
A NULL pointer dereference flaw in diFree in fs/jfs/inode.c in Journaled File System (JFS)in the Linux kernel. This could allow a local attacker to crash the system or leak kernel internal information.
References (2)
Core 2
Core References
Third Party Advisory
https://security.netapp.com/advisory/ntap-20221228-0007/
Scores
CVSS v3
7.1
EPSS
0.0003
EPSS Percentile
7.6%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
Details
CWE
CWE-476
Status
published
Products (6)
linux/linux_kernel
< 4.9.311
netapp/h300s_firmware
netapp/h410c_firmware
netapp/h410s_firmware
netapp/h500s_firmware
netapp/h700s_firmware
Published
Sep 14, 2022
Tracked Since
Feb 18, 2026