CVE-2018-11508

Опубликовано: 28 мая 2018

Источник: debian

EPSS Низкий

Описание

The compat_get_timex function in kernel/compat.c in the Linux kernel before 4.16.9 allows local users to obtain sensitive information from kernel memory via adjtimex.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
linux	fixed	4.16.12-1		package
linux	not-affected		stretch	package
linux	not-affected		jessie	package
linux	not-affected		wheezy	package

Примечания

https://bugs.chromium.org/p/project-zero/issues/detail?id=1574
Fixed by: https://git.kernel.org/linus/0a0b98734479aa5b3c671d5190e86273372cab95

EPSS

Процентиль: 81%

0.01537

Низкий

Связанные уязвимости

CVE-2018-11508

CVSS3: 5.5

ubuntu

больше 7 лет назад

The compat_get_timex function in kernel/compat.c in the Linux kernel before 4.16.9 allows local users to obtain sensitive information from kernel memory via adjtimex.

CVE-2018-11508

CVSS3: 3.3

redhat

больше 7 лет назад

The compat_get_timex function in kernel/compat.c in the Linux kernel before 4.16.9 allows local users to obtain sensitive information from kernel memory via adjtimex.

CVE-2018-11508

CVSS3: 5.5

nvd

больше 7 лет назад

The compat_get_timex function in kernel/compat.c in the Linux kernel before 4.16.9 allows local users to obtain sensitive information from kernel memory via adjtimex.

GHSA-j435-p44w-r9xj

CVSS3: 5.5

github

больше 3 лет назад

The compat_get_timex function in kernel/compat.c in the Linux kernel before 4.16.9 allows local users to obtain sensitive information from kernel memory via adjtimex.

EPSS

Процентиль: 81%

0.01537

Низкий