CVE-2017-18595

Опубликовано: 04 сент. 2019

Источник: redhat

CVSS3: 7.8

EPSS Низкий

Описание

An issue was discovered in the Linux kernel before 4.14.11. A double free may be caused by the function allocate_trace_buffer in the file kernel/trace/trace.c.

A flaw was found in the allocate_trace_buffer in kernel/trace/trace.c in the debug subsystem, when failure to allocate a dynamic percpu area, a resource cleanup is called. The pointer (buf->buffer) still holds the address and is not set to NULL, which can cause a use-after-free problem, leading to a dangling pointer issue.

Меры по смягчению последствий

Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update as soon as possible.

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 5	kernel	Not affected
Red Hat Enterprise Linux 6	kernel	Not affected
Red Hat Enterprise Linux 8	kernel	Not affected
Red Hat Enterprise Linux 8	kernel-rt	Not affected
Red Hat Enterprise Linux 7	kernel-rt	Fixed	RHSA-2020:2085	12.05.2020
Red Hat Enterprise Linux 7	kernel	Fixed	RHSA-2020:2082	12.05.2020
Red Hat Enterprise Linux 7	kernel-alt	Fixed	RHSA-2020:2104	12.05.2020
Red Hat Enterprise Linux 7.2 Advanced Update Support	kernel	Fixed	RHSA-2020:2285	26.05.2020
Red Hat Enterprise Linux 7.3 Advanced Update Support	kernel	Fixed	RHSA-2020:2277	26.05.2020
Red Hat Enterprise Linux 7.3 Telco Extended Update Support	kernel	Fixed	RHSA-2020:2277	26.05.2020

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Important

Дефект:

CWE-416

https://bugzilla.redhat.com/show_bug.cgi?id=1758671kernel: double free may be caused by the function allocate_trace_buffer in the file kernel/trace/trace.c

EPSS

Процентиль: 13%

0.00044

Низкий

7.8 High

CVSS3

Связанные уязвимости

CVE-2017-18595

CVSS3: 7.8

ubuntu

почти 6 лет назад

An issue was discovered in the Linux kernel before 4.14.11. A double free may be caused by the function allocate_trace_buffer in the file kernel/trace/trace.c.

CVE-2017-18595

CVSS3: 7.8

nvd

почти 6 лет назад

An issue was discovered in the Linux kernel before 4.14.11. A double free may be caused by the function allocate_trace_buffer in the file kernel/trace/trace.c.

CVE-2017-18595

CVSS3: 7.8

debian

почти 6 лет назад

An issue was discovered in the Linux kernel before 4.14.11. A double f ...

GHSA-rqcm-ff8h-8mfx

CVSS3: 7.8

github

около 3 лет назад

An issue was discovered in the Linux kernel before 4.14.11. A double free may be caused by the function allocate_trace_buffer in the file kernel/trace/trace.c.

ELSA-2020-5508

oracle-oval

больше 5 лет назад

ELSA-2020-5508: Unbreakable Enterprise kernel security update (IMPORTANT)

EPSS

Процентиль: 13%

0.00044

Низкий

7.8 High

CVSS3