Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2018-10879

Опубликовано: 26 июл. 2018
Источник: nvd
CVSS3: 4.2
CVSS3: 7.8
CVSS2: 6.1
EPSS Низкий

Описание

A flaw was found in the Linux kernel's ext4 filesystem. A local user can cause a use-after-free in ext4_xattr_set_entry function and a denial of service or unspecified other impact may occur by renaming a file in a crafted ext4 filesystem image.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
Конфигурация 2
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Версия до 4.17.6 (исключая)
Конфигурация 3
cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
Конфигурация 4

Одно из

cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*

EPSS

Процентиль: 15%
0.00048
Низкий

4.2 Medium

CVSS3

7.8 High

CVSS3

6.1 Medium

CVSS2

Дефекты

CWE-416
CWE-416

Связанные уязвимости

ubuntu логотип

CVE-2018-10879

CVSS3: 4.2
ubuntu
почти 7 лет назад

A flaw was found in the Linux kernel's ext4 filesystem. A local user can cause a use-after-free in ext4_xattr_set_entry function and a denial of service or unspecified other impact may occur by renaming a file in a crafted ext4 filesystem image.

redhat логотип

CVE-2018-10879

CVSS3: 4.2
redhat
около 7 лет назад

A flaw was found in the Linux kernel's ext4 filesystem. A local user can cause a use-after-free in ext4_xattr_set_entry function and a denial of service or unspecified other impact may occur by renaming a file in a crafted ext4 filesystem image.

debian логотип

CVE-2018-10879

CVSS3: 4.2
debian
почти 7 лет назад

A flaw was found in the Linux kernel's ext4 filesystem. A local user c ...

github логотип

GHSA-hwv5-xg68-86fh

CVSS3: 7.8
github
около 3 лет назад

A flaw was found in the Linux kernel's ext4 filesystem. A local user can cause a use-after-free in ext4_xattr_set_entry function and a denial of service or unspecified other impact may occur by renaming a file in a crafted ext4 filesystem image.

oracle-oval логотип

ELSA-2019-4594

oracle-oval
около 6 лет назад

ELSA-2019-4594: Unbreakable Enterprise kernel security update (IMPORTANT)

EPSS

Процентиль: 15%
0.00048
Низкий

4.2 Medium

CVSS3

7.8 High

CVSS3

6.1 Medium

CVSS2

Дефекты

CWE-416
CWE-416