{"id":"CVE-2018-20976","details":"An issue was discovered in fs/xfs/xfs_super.c in the Linux kernel before 4.18. A use after free exists, related to xfs_fs_fill_super failure.","modified":"2026-03-12T22:53:09.872168Z","published":"2019-08-19T02:15:10.217Z","related":["SUSE-SU-2019:14218-1","SUSE-SU-2019:2412-1","SUSE-SU-2019:2414-1","SUSE-SU-2019:2424-1","SUSE-SU-2019:2648-1","SUSE-SU-2019:2651-1","SUSE-SU-2019:2658-1","SUSE-SU-2019:2738-1","SUSE-SU-2019:2756-1","SUSE-SU-2019:2949-1","SUSE-SU-2019:2950-1","SUSE-SU-2019:2984-1","openSUSE-SU-2019:2173-1","openSUSE-SU-2019:2181-1"],"references":[{"type":"WEB","url":"http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00064.html"},{"type":"WEB","url":"http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00066.html"},{"type":"WEB","url":"https://usn.ubuntu.com/4144-1/"},{"type":"WEB","url":"https://usn.ubuntu.com/4145-1/"},{"type":"WEB","url":"http://packetstormsecurity.com/files/155212/Slackware-Security-Advisory-Slackware-14.2-kernel-Updates.html"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2019/09/msg00025.html"},{"type":"WEB","url":"https://seclists.org/bugtraq/2019/Nov/11"},{"type":"WEB","url":"https://support.f5.com/csp/article/K10269585?utm_source=f5support&amp%3Butm_medium=RSS"},{"type":"WEB","url":"http://packetstormsecurity.com/files/154951/Kernel-Live-Patch-Security-Notice-LSN-0058-1.html"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2020/03/msg00001.html"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2020:0543"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2020:0592"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2020:0609"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2020:0178"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2020:0661"},{"type":"ADVISORY","url":"https://security.netapp.com/advisory/ntap-20190905-0002/"},{"type":"FIX","url":"https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=c9fbd7bbc23dbdd73364be4d045e5d3612cf6e82"}],"affected":[{"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2018-20976.json","unresolved_ranges":[{"events":[{"introduced":"0"},{"fixed":"4.18"}]}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}]}