PT-2018-10465 · Linux+5 · Linux Kernel+5

Syzbot

·

Publicado

2018-04-06

·

Atualizado

2019-10-09

·

CVE-2018-1130

CVSS v3.1

5.5

Média

VetorAV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 4.16-rc7
Description The issue allows a local user to cause a denial of service by making a number of certain crafted system calls. This is due to a null pointer dereference in the dccp write xmit() function in net/dccp/output.c.
Recommendations For Linux kernel versions prior to 4.16-rc7, update to version 4.16-rc7 or later to resolve the issue. As a temporary workaround, consider restricting access to the dccp write xmit() function until a patch is available.

Correção

DoS

NULL Pointer Dereference

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-476

Identificadores relacionados

ALT-PU-2018-1557
ALT-PU-2019-1433
CESA-2018_1854
CESA-2018_3083
CVE-2018-1130
DLA-1392-1
DLA-1422-1
DLA-1422-2
DLA-1423-1
MGASA-2018-0249
MGASA-2018-0264
MGASA-2018-0265
OPENSUSE-SU-2018_1418-1
OPENSUSE-SU-2018_2119-1
RHSA-2018:1854
RHSA-2018:3083
RHSA-2018:3096
RHSA-2018_1854
RHSA-2018_3083
RHSA-2018_3096
SUSE-SU-2018:1366-1
SUSE-SU-2018:1761-1
SUSE-SU-2018:1762-1
SUSE-SU-2018:1816-1
SUSE-SU-2018:1855-1
SUSE-SU-2018:1855-2
SUSE-SU-2018:2092-1
SUSE-SU-2018:2332-1
SUSE-SU-2018:2366-1
SUSE-SU-2018:2637-1
USN-3654-1
USN-3654-2
USN-3656-1
USN-3697-1
USN-3697-2
USN-3698-1
USN-3698-2

Produtos afetados

Alt Linux
Centos
Linux Kernel
Red Hat
Suse
Ubuntu