A vulnerability in the Linux kernel's isofs component could allow an attacker to perform out-of-bounds memory access via a maliciously crafted ISO 9660 filesystem.

The isofs filesystem driver fails to validate the rs->cont_extent field from Rock Ridge CE records against the volume size. This allows a crafted ISO image to force the kernel to read blocks outside the intended range, potentially accessing sensitive data from adjacent filesystems.

The CVSS score of 8.2 (High) signifies a serious risk for systems that mount untrusted ISO images. Successful exploitation could lead to information disclosure or system instability, potentially exposing memory or data from other mounted volumes or system processes.

Immediate Action: Apply the kernel patch that adds an ISOFS_SB(sb)->s_nzones bounds check to the rock_continue() function.

Proactive Monitoring: Review system logs for kernel panics or filesystem errors when mounting external media or disk images.

Compensating Controls: Implement strict policies regarding the mounting of untrusted or externally sourced ISO images on production Linux systems.

Public Exploit Available: false

Administrators should update their Linux kernel versions as soon as vendor-supplied patches become available for their specific distributions. Until patches are applied, avoid mounting ISO images from untrusted or unverified sources.