Уязвимость CVE-2018-1118

Пакет	Статус	Версия исправления	Релиз	Тип
linux	fixed	4.17.3-1		package
linux	fixed	4.9.110-1	stretch	package
linux	not-affected		jessie	package
linux	not-affected		wheezy	package

CVE-2018-1118

CVSS3: 2.3

ubuntu

около 7 лет назад

Linux kernel vhost since version 4.8 does not properly initialize memory in messages passed between virtual guests and the host operating system in the vhost/vhost.c:vhost_new_msg() function. This can allow local privileged users to read some kernel memory contents when reading from the /dev/vhost-net device file.

CVE-2018-1118

CVSS3: 2.3

redhat

около 7 лет назад

Linux kernel vhost since version 4.8 does not properly initialize memory in messages passed between virtual guests and the host operating system in the vhost/vhost.c:vhost_new_msg() function. This can allow local privileged users to read some kernel memory contents when reading from the /dev/vhost-net device file.

CVE-2018-1118

CVSS3: 2.3

nvd

около 7 лет назад

Linux kernel vhost since version 4.8 does not properly initialize memory in messages passed between virtual guests and the host operating system in the vhost/vhost.c:vhost_new_msg() function. This can allow local privileged users to read some kernel memory contents when reading from the /dev/vhost-net device file.

GHSA-h6c2-frm7-53hm

CVSS3: 5.5

github

около 3 лет назад

Linux kernel vhost since version 4.8 does not properly initialize memory in messages passed between virtual guests and the host operating system in the vhost/vhost.c:vhost_new_msg() function. This can allow local privileged users to read some kernel memory contents when reading from the /dev/vhost-net device file.

BDU:2021-01420

CVSS3: 5.5

fstec

около 7 лет назад

Уязвимость функции vhost_new_msg() ядра операционной системы Linux, позволяющая нарушителю получить доступ к конфиденциальным данным

exploitDog

CVE-2018-1118

Описание

Пакеты

Примечания

Связанные уязвимости