PT-2018-2204 · Procps Ng+5 · Procps-Ng+5

Publicado

2018-05-17

·

Atualizado

2024-06-15

·

CVE-2018-1124

CVSS v3.1

7.8

Alta

VetorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions procps-ng versions prior to 3.3.15
Description The issue is caused by an integer overflow in the file2strvec function of the procps-ng set of console applications for monitoring and terminating system processes. This can allow an attacker to execute arbitrary code, potentially leading to privilege escalation for a local attacker who can create entries in procfs by starting processes. The exploitation could result in crashes or arbitrary code execution in proc utilities run by other users.
Recommendations For procps-ng versions prior to 3.3.15, update to version 3.3.15 or later to resolve the issue. As a temporary workaround, consider restricting access to the file2strvec function until a patch is available.

Exploit

Correção

Integer Overflow

Memory Corruption

Heap Based Buffer Overflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-190CWE-787CWE-122

Identificadores relacionados

ALT-PU-2019-1749
BDU:2019-00182
CESA-2018_1700
CESA-2018_1777
CVE-2018-1124
DLA-1390-1
DSA-4208-1
OPENSUSE-SU-2018_1848-1
OPENSUSE-SU-2019:2376-1
OPENSUSE-SU-2019:2379-1
OPENSUSE-SU-2019_0291-1
OPENSUSE-SU-2019_2376-1
OPENSUSE-SU-2019_2379-1
OPENSUSE-SU-2024:11195-1
OPENSUSE-SU-2024:12565-1
RHSA-2018:1700
RHSA-2018:1777
RHSA-2018:1820
RHSA-2018:2267
RHSA-2018:2268
RHSA-2018_1700
RHSA-2018_1777
RHSA-2019:1944
RHSA-2019:2401
SUSE-SU-2018:1836-1
SUSE-SU-2018:2042-1
SUSE-SU-2018:2451-2
SUSE-SU-2019:0450-1
SUSE-SU-2019:0450-2
SUSE-SU-2019:2730-1
USN-3658-1
USN-3658-2

Produtos afetados

Alt Linux
Centos
Red Hat
Suse
Ubuntu
Procps-Ng