PT-2018-2204 · Procps Ng+5 · Procps-Ng+5

Published

2018-05-17

Updated

2024-06-15

CVE-2018-1124

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions procps-ng versions prior to 3.3.15

Description The issue is caused by an integer overflow in the file2strvec function of the procps-ng set of console applications for monitoring and terminating system processes. This can allow an attacker to execute arbitrary code, potentially leading to privilege escalation for a local attacker who can create entries in procfs by starting processes. The exploitation could result in crashes or arbitrary code execution in proc utilities run by other users.

Recommendations For procps-ng versions prior to 3.3.15, update to version 3.3.15 or later to resolve the issue. As a temporary workaround, consider restricting access to the file2strvec function until a patch is available.

Exploit

Fix

Integer Overflow

Memory Corruption

Heap Based Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-190CWE-787CWE-122

Related Identifiers

ALT-PU-2019-1749

BDU:2019-00182

CESA-2018_1700

CESA-2018_1777

CVE-2018-1124

DLA-1390-1

DSA-4208-1

OPENSUSE-SU-2018_1848-1

OPENSUSE-SU-2019:2376-1

OPENSUSE-SU-2019:2379-1

OPENSUSE-SU-2019_0291-1

OPENSUSE-SU-2019_2376-1

OPENSUSE-SU-2019_2379-1

OPENSUSE-SU-2024:11195-1

OPENSUSE-SU-2024:12565-1

RHSA-2018:1700

RHSA-2018:1777

RHSA-2018:1820

RHSA-2018:2267

RHSA-2018:2268

RHSA-2018_1700

RHSA-2018_1777

RHSA-2019:1944

RHSA-2019:2401

SUSE-SU-2018:1836-1

SUSE-SU-2018:2042-1

SUSE-SU-2018:2451-2

SUSE-SU-2019:0450-1

SUSE-SU-2019:0450-2

SUSE-SU-2019:2730-1

USN-3658-1

USN-3658-2

Affected Products

Alt Linux

Centos

Red Hat

Suse

Ubuntu

Procps-Ng

PT-2018-2204 · Procps Ng+5 · Procps-Ng+5

CVE-2018-1124

Weakness Enumeration

Related Identifiers

Affected Products

References · 101