PT-2018-11349 · Linux · Linux Kernel

Icytxw

Publicado

2018-06-24

Atualizado

2024-06-15

CVE-2018-12714

CVSS v2.0

Crítica

Vetor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 4.17.3

Description The issue is related to the filter parsing in the Linux kernel, which can be called with no filter. This can lead to a denial of service (slab out-of-bounds write) or possibly have other unspecified impacts via crafted perf event open and mmap system calls.

Recommendations For Linux kernel versions prior to 4.17.3, update to version 4.17.3 or later to resolve the issue.

Exploit

Correção

Memory Corruption

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-787

Identificadores relacionados

CVE-2018-12714

OPENSUSE-SU-2024:10728-1

OPENSUSE-SU-2024:13704-1

Produtos afetados

Linux Kernel

PT-2018-11349 · Linux · Linux Kernel

CVE-2018-12714

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 206