PT-2018-2960 · Linux+3 · Linux Kernel+3

Paolo Abeni

Published

2014-04-02

Updated

2023-02-13

CVE-2018-16885

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Linux kernel version 3.10.x

Description The issue is related to a flaw in the Linux kernel that allows userspace to call functions like memcpy fromiovecend() with a zero offset and buffer length, causing a read beyond buffer boundaries. This can lead to a memory access fault and a system halt by accessing an invalid memory address. The exploitation of this issue may allow an attacker to cause a denial of service.

Recommendations For Linux kernel version 3.10.x, consider disabling the memcpy fromiovecend() function as a temporary workaround until a patch is available. Restrict access to similar functions that may cause buffer boundary overflows to minimize the risk of exploitation.

Exploit

Fix

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-125

Related Identifiers

ALT-PU-2014-1422

BDU:2019-02779

CESA-2019_2029

CVE-2018-16885

RHSA-2019:2029

RHSA-2019:2043

RHSA-2019_2029

RHSA-2019_2043

RHSA-2026:14823

RHSA-2026:14869

RHSA-2026:14925

Affected Products

Alt Linux

Centos

Linux Kernel

Red Hat

PT-2018-2960 · Linux+3 · Linux Kernel+3

CVE-2018-16885

Weakness Enumeration

Related Identifiers

Affected Products

References · 18