PT-2018-17205 · Linux · Linux Kernel

Andrey Konovalov

Publicado

2018-07-06

Atualizado

2023-07-19

CVE-2018-5873

CVSS v3.1

7.0

Alta

Vetor

AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 4.11

Description: A race condition in the ns get path function in fs/nsfs.c can lead to a Use After Free condition when accessing files. This issue also affects Android releases from CAF using the Linux kernel before security patch level 2018-07-05.

Recommendations: For Linux kernel versions prior to 4.11, update to version 4.11 or later to resolve the issue. For Android releases from CAF using the Linux kernel, apply the security patch level 2018-07-05 or later.

Correção

Race Condition

Use After Free

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-362CWE-416

Identificadores relacionados

CVE-2018-5873

Produtos afetados

Linux Kernel

PT-2018-17205 · Linux · Linux Kernel

CVE-2018-5873

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 13