Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2018-1068

Опубликовано: 05 мар. 2018
Источник: redhat
CVSS3: 8.1
EPSS Низкий

Описание

A flaw was found in the Linux 4.x kernel's implementation of 32-bit syscall interface for bridging. This allowed a privileged user to arbitrarily write to a limited range of kernel memory.

A flaw was found in the Linux kernel's implementation of 32-bit syscall interface for bridging. This allowed a privileged user to arbitrarily write to a limited range of kernel memory.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 5kernelNot affected
Red Hat Enterprise Linux 6kernelNot affected
Red Hat Enterprise Linux 8kernelNot affected
Red Hat Enterprise Linux 7kernel-rtFixedRHSA-2018:135508.05.2018
Red Hat Enterprise Linux 7kernelFixedRHSA-2018:131808.05.2018
Red Hat Enterprise Linux 7kernel-altFixedRHSA-2018:294830.10.2018
Red Hat Enterprise Linux 7.3 Advanced Update SupportkernelFixedRHSA-2019:415910.12.2019
Red Hat Enterprise Linux 7.3 Telco Extended Update SupportkernelFixedRHSA-2019:415910.12.2019
Red Hat Enterprise Linux 7.3 Update Services for SAP SolutionskernelFixedRHSA-2019:415910.12.2019
Red Hat Enterprise Linux 7.4 Extended Update SupportkernelFixedRHSA-2019:117014.05.2019

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Important
Дефект:
CWE-119
https://bugzilla.redhat.com/show_bug.cgi?id=1552048kernel: Out-of-bounds write via userland offsets in ebt_entry struct in netfilter/ebtables.c

EPSS

Процентиль: 17%
0.00053
Низкий

8.1 High

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2018-1068

CVSS3: 6.7
ubuntu
больше 7 лет назад

A flaw was found in the Linux 4.x kernel's implementation of 32-bit syscall interface for bridging. This allowed a privileged user to arbitrarily write to a limited range of kernel memory.

nvd логотип

CVE-2018-1068

CVSS3: 6.7
nvd
больше 7 лет назад

A flaw was found in the Linux 4.x kernel's implementation of 32-bit syscall interface for bridging. This allowed a privileged user to arbitrarily write to a limited range of kernel memory.

debian логотип

CVE-2018-1068

CVSS3: 6.7
debian
больше 7 лет назад

A flaw was found in the Linux 4.x kernel's implementation of 32-bit sy ...

github логотип

GHSA-xfrv-5h7j-4qvx

CVSS3: 6.7
github
около 3 лет назад

A flaw was found in the Linux 4.x kernel's implementation of 32-bit syscall interface for bridging. This allowed a privileged user to arbitrarily write to a limited range of kernel memory.

fstec логотип

BDU:2018-00604

CVSS3: 6.7
fstec
больше 7 лет назад

Уязвимость интерфейса системных вызовов (SCI) ядра операционной системы Linux, позволяющая нарушителю повысить свои привилегии

EPSS

Процентиль: 17%
0.00053
Низкий

8.1 High

CVSS3