PT-2018-2968 · Linux+5 · Linux Kernel+5
Chenxiang
·
Publicado
2018-09-25
·
Atualizado
2022-11-03
·
CVE-2018-20836
CVSS v2.0
9.3
Alta
| Vetor | AV:N/AC:M/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Linux kernel versions prior to 4.20
Description
The issue is related to errors in synchronization when using a shared resource, specifically a race condition in the
smp task timedout() and smp task done() functions in the drivers/scsi/libsas/sas expander.c file. This could allow a remote attacker to impact the confidentiality, integrity, and availability of protected information. The race condition leads to a use-after-free scenario.Recommendations
For Linux kernel versions prior to 4.20, update to version 4.20 or later to resolve the issue.
As a temporary workaround, consider restricting access to the
sas expander.c file or the affected functions smp task timedout() and smp task done() to minimize the risk of exploitation.Correção
Race Condition
Use After Free
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Identificadores relacionados
Produtos afetados
Alt Linux
Centos
Linux Kernel
Red Hat
Suse
Ubuntu