PT-2018-6732 · Linux+5 · Linux Kernel+5

Published

2017-12-08

Updated

2018-07-09

CVE-2017-18203

CVSS v3.1

4.7

Medium

Vector

AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 4.14.3

Description: The issue allows local users to cause a denial of service by leveraging a race condition with dm destroy during creation and removal of DM devices. This is due to a problem in the dm get from kobject function in drivers/md/dm.c.

Recommendations: For versions prior to 4.14.3, update to version 4.14.3 or later to resolve the issue.

Fix

DoS

Race Condition

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-362

Related Identifiers

ALT-PU-2017-2771

ALT-PU-2018-1991

CESA-2018_1062

CESA-2018_1854

CVE-2017-18203

DLA-1369-1

DSA-4187-1

RHSA-2018:0676

RHSA-2018:1062

RHSA-2018:1854

RHSA-2018_0676

RHSA-2018_1062

RHSA-2018_1854

RHSA-2019:4154

SUSE-SU-2018:1080-1

SUSE-SU-2018:1172-1

SUSE-SU-2018:1220-1

SUSE-SU-2018:1221-1

SUSE-SU-2018:1309-1

USN-3619-1

USN-3619-2

USN-3653-1

USN-3653-2

USN-3655-1

USN-3655-2

USN-3657-1

Affected Products

Alt Linux

Centos

Linux Kernel

Red Hat

Suse

Ubuntu

PT-2018-6732 · Linux+5 · Linux Kernel+5

CVE-2017-18203

Weakness Enumeration

Related Identifiers

Affected Products

References · 182