Thursday, November 02, 2006

MOKB-02-11-2006: Linux 2.6.x squashfs double free

The squashfs module of the Linux kernel (2.6.x) fails to properly handle corrupted fs structures, leading to a denial of service and possible data corruption condition. A specially crafted squashfs image will cause the kernel to double free a buffer when a read operation is performed on the corrupted filesystem.

More details: