Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2018-1000200

Опубликовано: 05 июн. 2018
Источник: nvd
CVSS3: 5.5
CVSS2: 4.9
EPSS Низкий

Описание

The Linux Kernel versions 4.14, 4.15, and 4.16 has a null pointer dereference which can result in an out of memory (OOM) killing of large mlocked processes. The issue arises from an oom killed process's final thread calling exit_mmap(), which calls munlock_vma_pages_all() for mlocked vmas.This can happen synchronously with the oom reaper's unmap_page_range() since the vma's VM_LOCKED bit is cleared before munlocking (to determine if any other vmas share the memory and are mlocked).

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:linux:linux_kernel:4.14:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:4.15:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:4.16:*:*:*:*:*:*:*

EPSS

Процентиль: 24%
0.00084
Низкий

5.5 Medium

CVSS3

4.9 Medium

CVSS2

Дефекты

CWE-476

Связанные уязвимости

ubuntu логотип

CVE-2018-1000200

CVSS3: 5.5
ubuntu
больше 7 лет назад

The Linux Kernel versions 4.14, 4.15, and 4.16 has a null pointer dereference which can result in an out of memory (OOM) killing of large mlocked processes. The issue arises from an oom killed process's final thread calling exit_mmap(), which calls munlock_vma_pages_all() for mlocked vmas.This can happen synchronously with the oom reaper's unmap_page_range() since the vma's VM_LOCKED bit is cleared before munlocking (to determine if any other vmas share the memory and are mlocked).

redhat логотип

CVE-2018-1000200

CVSS3: 5.5
redhat
почти 8 лет назад

The Linux Kernel versions 4.14, 4.15, and 4.16 has a null pointer dereference which can result in an out of memory (OOM) killing of large mlocked processes. The issue arises from an oom killed process's final thread calling exit_mmap(), which calls munlock_vma_pages_all() for mlocked vmas.This can happen synchronously with the oom reaper's unmap_page_range() since the vma's VM_LOCKED bit is cleared before munlocking (to determine if any other vmas share the memory and are mlocked).

debian логотип

CVE-2018-1000200

CVSS3: 5.5
debian
больше 7 лет назад

The Linux Kernel versions 4.14, 4.15, and 4.16 has a null pointer dere ...

github логотип

GHSA-qrgv-ph7p-j565

CVSS3: 5.5
github
больше 3 лет назад

The Linux Kernel versions 4.14, 4.15, and 4.16 has a null pointer dereference which can result in an out of memory (OOM) killing of large mlocked processes. The issue arises from an oom killed process's final thread calling exit_mmap(), which calls munlock_vma_pages_all() for mlocked vmas.This can happen synchronously with the oom reaper's unmap_page_range() since the vma's VM_LOCKED bit is cleared before munlocking (to determine if any other vmas share the memory and are mlocked).

suse-cvrf логотип

SUSE-SU-2018:2092-1

suse-cvrf
больше 7 лет назад

Security update for the Linux Kernel

EPSS

Процентиль: 24%
0.00084
Низкий

5.5 Medium

CVSS3

4.9 Medium

CVSS2

Дефекты

CWE-476