Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2018-9517

Опубликовано: 14 сент. 2018
Источник: redhat
CVSS3: 4.7
EPSS Низкий

Описание

In pppol2tp_connect, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android kernel. Android ID: A-38159931.

A race condition between pppol2tp_session_create() and l2tp_eth_create() in net/l2tp/l2tp_netlink.c was found in the Linux kernel. Calling l2tp_tunnel_find() may result in a new tunnel being created with tunnel id of a previously removed tunnel which wouldn't be protected by the reference counter.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 5kernelNot affected
Red Hat Enterprise Linux 6kernelNot affected
Red Hat Enterprise Linux 7kernel-altNot affected
Red Hat Enterprise Linux 8kernelNot affected
Red Hat Enterprise Linux 8kernel-rtNot affected
Red Hat Enterprise MRG 2kernel-rtWill not fix
Red Hat Enterprise Linux 7kernel-rtFixedRHSA-2019:204307.08.2019
Red Hat Enterprise Linux 7kernelFixedRHSA-2019:202906.08.2019

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-367
https://bugzilla.redhat.com/show_bug.cgi?id=1631045kernel: l2tp: Race condition between pppol2tp_session_create() and l2tp_eth_create()

EPSS

Процентиль: 13%
0.00044
Низкий

4.7 Medium

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2018-9517

CVSS3: 6.7
ubuntu
больше 6 лет назад

In pppol2tp_connect, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android kernel. Android ID: A-38159931.

nvd логотип

CVE-2018-9517

CVSS3: 6.7
nvd
больше 6 лет назад

In pppol2tp_connect, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android kernel. Android ID: A-38159931.

debian логотип

CVE-2018-9517

CVSS3: 6.7
debian
больше 6 лет назад

In pppol2tp_connect, there is possible memory corruption due to a use ...

github логотип

GHSA-26v4-wj6c-25pg

CVSS3: 6.7
github
около 3 лет назад

In pppol2tp_connect, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android kernel. Android ID: A-38159931.

fstec логотип

BDU:2020-03256

CVSS3: 6.7
fstec
почти 8 лет назад

Уязвимость драйвера pppol2tp_connect операционной системы Android, позволяющая нарушителю повысить свои привилегии и выполнить произвольный код

EPSS

Процентиль: 13%
0.00044
Низкий

4.7 Medium

CVSS3