PT-2017-3940 · Linux+4 · Linux Kernel+4

Dmitry Alexeev

Publicado

2017-10-16

Atualizado

2020-04-08

CVE-2018-7191

CVSS v3.1

5.5

Média

Vetor

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 4.13.14

Description The issue is related to a null pointer dereference in the dev get valid name function of the TUN subsystem in the Linux kernel. This can be exploited by local users to cause a denial of service, resulting in a system panic, by making an ioctl(TUNSETIFF) call with a dev name containing a / character.

Recommendations For Linux kernel versions prior to 4.13.14, update to version 4.13.14 or later to resolve the issue. As a temporary workaround, consider restricting access to the TUN subsystem to minimize the risk of exploitation. Avoid using the ioctl(TUNSETIFF) call with a dev name containing a / character until the issue is resolved.

Exploit

Correção

DoS

NULL Pointer Dereference

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-476

Identificadores relacionados

ALT-PU-2017-2665

ALT-PU-2018-1991

BDU:2020-02562

CESA-2020_1016

CVE-2018-7191

OPENSUSE-SU-2019:1479-1

OPENSUSE-SU-2019:1579-1

OPENSUSE-SU-2019_1479-1

OPENSUSE-SU-2019_1570-1

OPENSUSE-SU-2019_1579-1

RHSA-2020:1016

RHSA-2020:1070

RHSA-2020:2522

RHSA-2020:2851

RHSA-2020_1016

RHSA-2020_1070

SUSE-SU-2019:1527-1

SUSE-SU-2019:1529-1

SUSE-SU-2019:1530-1

SUSE-SU-2019:1532-1

SUSE-SU-2019:1534-1

SUSE-SU-2019:1535-1

SUSE-SU-2019:1536-1

SUSE-SU-2019:1550-1

SUSE-SU-2019:1870-1

SUSE-SU-2019:2430-1

Produtos afetados

Alt Linux

Centos

Linux Kernel

Red Hat

Suse

PT-2017-3940 · Linux+4 · Linux Kernel+4

CVE-2018-7191

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 724