CVE-2018-10675

Published: May 2, 2018Modified: Nov 21, 2024

7.8

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.8 / Impact: 5.9

Source: NVD

Description

The do_get_mempolicy function in mm/mempolicy.c in the Linux kernel before 4.12.9 allows local users to cause a denial of service (use-after-free) or possibly have unspecified other impact via crafted system calls.

Affected (29)

Products: Linux: Linux Kernel · Redhat: Enterprise Linux Desktop, Enterprise Linux Server, Enterprise Linux Server Aus, Enterprise Linux Server Eus, Enterprise Linux Server Tus, Enterprise Linux Workstation, Virtualization Host · Canonical: Ubuntu Linux

1 product

7 products

Enterprise Linux Desktop

Enterprise Linux Server

Enterprise Linux Server Aus

Enterprise Linux Server Eus

Enterprise Linux Server Tus

Enterprise Linux Workstation

Virtualization Host

1 product

Configuration A

7 vulnerable

Vulnerable Software	Affected Versions
Linux Linux Kernel	Before 3.2.95
Linux Linux Kernel	From 3.17 to 3.18.67
Linux Linux Kernel	From 3.19 to 4.1.45
Linux Linux Kernel	From 3.3 to 3.16.50
Linux Linux Kernel	From 4.10 to 4.12.9
Linux Linux Kernel	From 4.2 to 4.4.84
Linux Linux Kernel	From 4.5 to 4.9.45

Configuration B

21 vulnerable

Vulnerable Software	Affected Versions
Redhat Enterprise Linux Desktop	Version 6.0
Redhat Enterprise Linux Server	Version 6.0
Redhat Enterprise Linux Server Aus	Version 6.4
Redhat Enterprise Linux Server Aus	Version 6.5
Redhat Enterprise Linux Server Aus	Version 6.6
Redhat Enterprise Linux Server Aus	Version 7.2
Redhat Enterprise Linux Server Aus	Version 7.3
Redhat Enterprise Linux Server Aus	Version 7.4
Redhat Enterprise Linux Server Aus	Version 7.6
Redhat Enterprise Linux Server Eus	Version 6.7
Redhat Enterprise Linux Server Eus	Version 7.3
Redhat Enterprise Linux Server Eus	Version 7.4
Redhat Enterprise Linux Server Eus	Version 7.5
Redhat Enterprise Linux Server Eus	Version 7.6
Redhat Enterprise Linux Server Tus	Version 6.6
Redhat Enterprise Linux Server Tus	Version 7.2
Redhat Enterprise Linux Server Tus	Version 7.3
Redhat Enterprise Linux Server Tus	Version 7.4
Redhat Enterprise Linux Server Tus	Version 7.6
Redhat Enterprise Linux Workstation	Version 6.0
Redhat Virtualization Host	Version 4.0

Configuration C

1 vulnerable

Vulnerable Software	Affected Versions
Canonical Ubuntu Linux	Version 14.04

Related CWEs

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

References (36)

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=73223e4e2e3867ebf033a5a8eb2e5df0158ccc99

Source: cve@mitre.org

PatchVendor Advisory

http://www.securityfocus.com/bid/104093

Source: cve@mitre.org

Third Party AdvisoryVDB Entry

https://access.redhat.com/errata/RHSA-2018:2164

Source: cve@mitre.org

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:2384

Source: cve@mitre.org

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:2395

Source: cve@mitre.org

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:2785

Source: cve@mitre.org

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:2791

Source: cve@mitre.org

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:2924

Source: cve@mitre.org

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:2925

Source: cve@mitre.org

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:2933

Source: cve@mitre.org

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:3540

Source: cve@mitre.org

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:3586

Source: cve@mitre.org

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:3590

Source: cve@mitre.org

Third Party Advisory

https://github.com/torvalds/linux/commit/73223e4e2e3867ebf033a5a8eb2e5df0158ccc99

Source: cve@mitre.org

PatchVendor Advisory

https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0

Source: cve@mitre.org

Third Party Advisory

https://usn.ubuntu.com/3754-1/

Source: cve@mitre.org

Third Party Advisory

https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.12.9

Source: cve@mitre.org

Release Notes

https://www.oracle.com/security-alerts/cpujul2020.html

Source: cve@mitre.org

Third Party Advisory

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=73223e4e2e3867ebf033a5a8eb2e5df0158ccc99

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://www.securityfocus.com/bid/104093

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

https://access.redhat.com/errata/RHSA-2018:2164

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:2384

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:2395

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:2785

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:2791

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:2924

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:2925

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:2933

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:3540

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:3586

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:3590

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://github.com/torvalds/linux/commit/73223e4e2e3867ebf033a5a8eb2e5df0158ccc99

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

https://help.ecostruxureit.com/display/public/UADCE725/Security+fixes+in+StruxureWare+Data+Center+Expert+v7.6.0

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://usn.ubuntu.com/3754-1/

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.12.9

Source: af854a3a-2127-422b-91ae-364da2661108

Release Notes

https://www.oracle.com/security-alerts/cpujul2020.html

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

Timeline

No history available yet.