CVE-2018-25015

Опубликовано: 07 июн. 2021

Источник: debian

EPSS Низкий

Описание

An issue was discovered in the Linux kernel before 4.14.16. There is a use-after-free in net/sctp/socket.c for a held lock after a peel off, aka CID-a0ff660058b8.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
linux	fixed	4.14.17-1		package
linux	fixed	4.9.80-1	stretch	package

Примечания

https://git.kernel.org/linus/a0ff660058b88d12625a783ce9e5c1371c87951f

EPSS

Процентиль: 21%

0.00069

Низкий

Связанные уязвимости

CVE-2018-25015

CVSS3: 7.8

ubuntu

больше 4 лет назад

An issue was discovered in the Linux kernel before 4.14.16. There is a use-after-free in net/sctp/socket.c for a held lock after a peel off, aka CID-a0ff660058b8.

CVE-2018-25015

CVSS3: 7.4

redhat

около 8 лет назад

An issue was discovered in the Linux kernel before 4.14.16. There is a use-after-free in net/sctp/socket.c for a held lock after a peel off, aka CID-a0ff660058b8.

CVE-2018-25015

CVSS3: 7.8

nvd

больше 4 лет назад

An issue was discovered in the Linux kernel before 4.14.16. There is a use-after-free in net/sctp/socket.c for a held lock after a peel off, aka CID-a0ff660058b8.

GHSA-rwrg-4798-hg93

github

больше 3 лет назад

An issue was discovered in the Linux kernel before 4.14.16. There is a use-after-free in net/sctp/socket.c for a held lock after a peel off, aka CID-a0ff660058b8.

EPSS

Процентиль: 21%

0.00069

Низкий