CVE-2018-10879

Published: Jul 26, 2018Modified: Nov 21, 2024

7.8

Vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.8 / Impact: 5.9

Source: NVD

Description

A flaw was found in the Linux kernel's ext4 filesystem. A local user can cause a use-after-free in ext4_xattr_set_entry function and a denial of service or unspecified other impact may occur by renaming a file in a crafted ext4 filesystem image.

Affected (9)

Products: Canonical: Ubuntu Linux · Linux: Linux Kernel · Debian: Debian Linux · +1 more

Show all products

Canonical: Ubuntu Linux · Linux: Linux Kernel · Debian: Debian Linux · Redhat: Enterprise Linux, Enterprise Linux Desktop, Enterprise Linux Server, Enterprise Linux Workstation

1 product

1 product

1 product

4 products

Enterprise Linux Desktop

Enterprise Linux Server

Enterprise Linux Workstation

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Canonical Ubuntu Linux	Version 14.04
Canonical Ubuntu Linux	Version 16.04
Canonical Ubuntu Linux	Version 18.04

Configuration B

1 vulnerable

Vulnerable Software	Affected Versions
Linux Linux Kernel	Before 4.17.6

Configuration C

1 vulnerable

Vulnerable Software	Affected Versions
Debian Debian Linux	Version 8.0

Configuration D

4 vulnerable

Vulnerable Software	Affected Versions
Redhat Enterprise Linux	Version 7.0
Redhat Enterprise Linux Desktop	Version 7.0
Redhat Enterprise Linux Server	Version 7.0
Redhat Enterprise Linux Workstation	Version 7.0

Related CWEs

CWE-416

Use After Free

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

References (34)

http://patchwork.ozlabs.org/patch/928666/

Source: secalert@redhat.com

PatchThird Party Advisory

http://patchwork.ozlabs.org/patch/928667/

Source: secalert@redhat.com

PatchThird Party Advisory

http://www.securityfocus.com/bid/104902

Source: secalert@redhat.com

Third Party AdvisoryVDB Entry

https://access.redhat.com/errata/RHSA-2018:2948

Source: secalert@redhat.com

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:3083

Source: secalert@redhat.com

Third Party Advisory

https://access.redhat.com/errata/RHSA-2018:3096

Source: secalert@redhat.com

Third Party Advisory

https://bugzilla.kernel.org/show_bug.cgi?id=200001

Source: secalert@redhat.com

ExploitIssue TrackingVendor Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10879

Source: secalert@redhat.com

Issue TrackingPatchThird Party Advisory

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=513f86d73855ce556ea9522b6bfd79f87356dc3a

Source: secalert@redhat.com

PatchVendor Advisory

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=5369a762c882c0b6e9599e4ebbb3a9ba9eee7e2d

Source: secalert@redhat.com

PatchVendor Advisory

https://lists.debian.org/debian-lts-announce/2018/07/msg00020.html

Source: secalert@redhat.com

Mailing ListThird Party Advisory

https://usn.ubuntu.com/3753-1/

Source: secalert@redhat.com

Third Party Advisory

https://usn.ubuntu.com/3753-2/

Source: secalert@redhat.com

Third Party Advisory

https://usn.ubuntu.com/3871-1/

Source: secalert@redhat.com

Third Party Advisory

https://usn.ubuntu.com/3871-3/

Source: secalert@redhat.com

Third Party Advisory

https://usn.ubuntu.com/3871-4/

Source: secalert@redhat.com

Third Party Advisory

https://usn.ubuntu.com/3871-5/

Source: secalert@redhat.com

Third Party Advisory

http://patchwork.ozlabs.org/patch/928666/