Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2018-14734

Опубликовано: 01 июн. 2018
Источник: redhat
CVSS3: 5.3
EPSS Низкий

Описание

drivers/infiniband/core/ucma.c in the Linux kernel through 4.17.11 allows ucma_leave_multicast to access a certain data structure after a cleanup step in ucma_process_join, which allows attackers to cause a denial of service (use-after-free).

A flaw was found in the Linux Kernel in the ucma_leave_multicast() function in drivers/infiniband/core/ucma.c which allows access to a certain data structure after freeing it in ucma_process_join(). This allows an attacker to cause a use-after-free bug and to induce kernel memory corruption, leading to a system crash or other unspecified impact. Due to the nature of the flaw, privilege escalation cannot be fully ruled out, although we believe it is unlikely.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 5kernelWill not fix
Red Hat Enterprise Linux 6kernelWill not fix
Red Hat Enterprise Linux 8kernelNot affected
Red Hat Enterprise MRG 2realtime-kernelWill not fix
Red Hat Enterprise Linux 7kernel-rtFixedRHSA-2019:204307.08.2019
Red Hat Enterprise Linux 7kernel-altFixedRHSA-2019:083123.04.2019
Red Hat Enterprise Linux 7kernelFixedRHSA-2019:202906.08.2019

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-416
https://bugzilla.redhat.com/show_bug.cgi?id=1611005kernel: use-after-free in ucma_leave_multicast in drivers/infiniband/core/ucma.c

EPSS

Процентиль: 17%
0.00055
Низкий

5.3 Medium

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2018-14734

CVSS3: 7.8
ubuntu
почти 7 лет назад

drivers/infiniband/core/ucma.c in the Linux kernel through 4.17.11 allows ucma_leave_multicast to access a certain data structure after a cleanup step in ucma_process_join, which allows attackers to cause a denial of service (use-after-free).

nvd логотип

CVE-2018-14734

CVSS3: 7.8
nvd
почти 7 лет назад

drivers/infiniband/core/ucma.c in the Linux kernel through 4.17.11 allows ucma_leave_multicast to access a certain data structure after a cleanup step in ucma_process_join, which allows attackers to cause a denial of service (use-after-free).

debian логотип

CVE-2018-14734

CVSS3: 7.8
debian
почти 7 лет назад

drivers/infiniband/core/ucma.c in the Linux kernel through 4.17.11 all ...

suse-cvrf логотип

SUSE-SU-2019:1489-1

suse-cvrf
около 6 лет назад

Security update for the Linux Kernel (Live Patch 0 for SLE 15)

suse-cvrf логотип

SUSE-SU-2019:1437-1

suse-cvrf
около 6 лет назад

Security update for the Linux Kernel (Live Patch 1 for SLE 15)

EPSS

Процентиль: 17%
0.00055
Низкий

5.3 Medium

CVSS3