PT-2018-14922 · Google · Gvisor
Max Justicz
·
Published
2018-11-17
·
Updated
2020-08-24
·
CVE-2018-19333
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Google gVisor versions prior to 2018-11-01
Description
The issue allows attackers to overwrite memory locations in processes running as root, but does not allow escape from the sandbox. This is achieved via vectors involving IPC RMID
shmctl calls, due to mishandled reference counting.Recommendations
For Google gVisor versions prior to 2018-11-01, update to a version released after 2018-11-01 to resolve the issue. As a temporary workaround, consider restricting access to the
shmctl calls to minimize the risk of exploitation.Exploit
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Gvisor