CVE-2018-1130

MEDIUM

Description

Linux kernel before version 4.16-rc7 is vulnerable to a null pointer dereference in dccp_write_xmit() function in net/dccp/output.c in that allows a local user to cause a denial of service by a number of certain crafted system calls.

References

https://access.redhat.com/errata/RHSA-2018:1854

https://access.redhat.com/errata/RHSA-2018:3083

https://access.redhat.com/errata/RHSA-2018:3096

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-1130

https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=67f93df79aeefc3add4e4b31a752600f834236e2

https://lists.debian.org/debian-lts-announce/2018/06/msg00000.html

https://lists.debian.org/debian-lts-announce/2018/07/msg00015.html

https://lists.debian.org/debian-lts-announce/2018/07/msg00016.html

https://lists.debian.org/debian-lts-announce/2018/07/msg00020.html

https://marc.info/?l=linux-netdev&m=152036596825220&w=2

https://syzkaller.appspot.com/bug?id=833568de043e0909b2aeaef7be136db39d21ba94

https://usn.ubuntu.com/3654-1/

https://usn.ubuntu.com/3654-2/

https://usn.ubuntu.com/3656-1/

https://usn.ubuntu.com/3697-1/

https://usn.ubuntu.com/3697-2/

https://usn.ubuntu.com/3698-1/

https://usn.ubuntu.com/3698-2/

Details

Source: MITRE

Published: 2018-05-10

Updated: 2018-10-31

Type: CWE-476

Risk Information

CVSS v2.0

Base Score: 4.9

Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C

Impact Score: 6.9

Exploitability Score: 3.9

Severity: MEDIUM

CVSS v3.0

Base Score: 5.5

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Impact Score: 3.6

Exploitability Score: 1.8

Severity: MEDIUM

Vulnerable Software

ID	Name	Product	Family	Severity
122414	EulerOS 2.0 SP2 : kernel (EulerOS-SA-2019-1062)	Nessus	Huawei Local Security Checks	high
120067	SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2018:2092-1) (Spectre)	Nessus	SuSE Local Security Checks	high
119187	Scientific Linux Security Update : kernel on SL7.x x86_64	Nessus	Scientific Linux Local Security Checks	high
118990	CentOS 7 : kernel (CESA-2018:3083)	Nessus	CentOS Local Security Checks	high
118770	Oracle Linux 7 : kernel (ELSA-2018-3083)	Nessus	Oracle Linux Local Security Checks	high
118528	RHEL 7 : kernel-rt (RHSA-2018:3096)	Nessus	Red Hat Local Security Checks	high
118525	RHEL 7 : kernel (RHSA-2018:3083)	Nessus	Red Hat Local Security Checks	high
118272	SUSE SLES12 Security Update : kernel (SUSE-SU-2018:1855-2)	Nessus	SuSE Local Security Checks	high
117741	EulerOS 2.0 SP3 : kernel (EulerOS-SA-2018-1297)	Nessus	Huawei Local Security Checks	medium
117572	EulerOS Virtualization 2.5.1 : kernel (EulerOS-SA-2018-1263)	Nessus	Huawei Local Security Checks	high
111833	SUSE SLES11 Security Update : kernel (SUSE-SU-2018:2366-1) (Foreshadow)	Nessus	SuSE Local Security Checks	high
111782	SUSE SLES11 Security Update : kernel (SUSE-SU-2018:2332-1) (Foreshadow)	Nessus	SuSE Local Security Checks	high
111414	openSUSE Security Update : the Linux Kernel (openSUSE-2018-762) (Spectre)	Nessus	SuSE Local Security Checks	high
111165	Debian DLA-1423-1 : linux-4.9 new package (Spectre)	Nessus	Debian Local Security Checks	high
111144	Oracle Linux 6 : Unbreakable Enterprise kernel (ELSA-2018-4172)	Nessus	Oracle Linux Local Security Checks	high
111082	Debian DLA-1422-2 : linux security update (Spectre)	Nessus	Debian Local Security Checks	high
111022	OracleVM 3.3 : Unbreakable / etc (OVMSA-2018-0237)	Nessus	OracleVM Local Security Checks	high
111021	OracleVM 3.4 : Unbreakable / etc (OVMSA-2018-0236)	Nessus	OracleVM Local Security Checks	critical
110998	Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2018-4164)	Nessus	Oracle Linux Local Security Checks	high
110997	Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2018-4161)	Nessus	Oracle Linux Local Security Checks	critical
110900	Ubuntu 14.04 LTS : linux vulnerabilities (USN-3698-1)	Nessus	Ubuntu Local Security Checks	medium
110899	Ubuntu 16.04 LTS : linux-oem vulnerabilities (USN-3697-2)	Nessus	Ubuntu Local Security Checks	medium
110898	Ubuntu 17.10 : linux, linux-raspi2 vulnerabilities (USN-3697-1)	Nessus	Ubuntu Local Security Checks	medium
110887	Scientific Linux Security Update : kernel on SL6.x i386/x86_64 (Spectre)	Nessus	Scientific Linux Local Security Checks	high
110838	SUSE SLES12 Security Update : kernel (SUSE-SU-2018:1855-1)	Nessus	SuSE Local Security Checks	high
110701	Oracle Linux 6 : kernel (ELSA-2018-1854) (Spectre)	Nessus	Oracle Linux Local Security Checks	high
110645	CentOS 6 : kernel (CESA-2018:1854) (Spectre)	Nessus	CentOS Local Security Checks	critical
110637	SUSE SLES12 Security Update : kernel (SUSE-SU-2018:1762-1)	Nessus	SuSE Local Security Checks	high
110636	SUSE SLES12 Security Update : kernel (SUSE-SU-2018:1761-1)	Nessus	SuSE Local Security Checks	high
110600	RHEL 6 : kernel (RHSA-2018:1854) (Spectre)	Nessus	Red Hat Local Security Checks	high
110314	Debian DLA-1392-1 : linux security update	Nessus	Debian Local Security Checks	high
110311	Virtuozzo 7 : readykernel-patch (VZA-2018-038)	Nessus	Virtuozzo Local Security Checks	medium
110136	EulerOS 2.0 SP1 : kernel (EulerOS-SA-2018-1132)	Nessus	Huawei Local Security Checks	high
110104	openSUSE Security Update : the Linux Kernel (openSUSE-2018-514) (Spectre)	Nessus	SuSE Local Security Checks	high
110051	Ubuntu 16.04 LTS : linux-raspi2, linux-snapdragon vulnerabilities (USN-3656-1)	Nessus	Ubuntu Local Security Checks	high
110049	Ubuntu 14.04 LTS : linux-lts-xenial, linux-aws vulnerabilities (USN-3654-2) (Spectre)	Nessus	Ubuntu Local Security Checks	high
110048	Ubuntu 16.04 LTS : linux, linux-aws, linux-kvm, vulnerabilities (USN-3654-1) (Spectre)	Nessus	Ubuntu Local Security Checks	high
110033	SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2018:1366-1) (Spectre)	Nessus	SuSE Local Security Checks	high
109801	Virtuozzo 6 : parallels-server-bm-release / vzkernel / etc (VZA-2018-029)	Nessus	Virtuozzo Local Security Checks	high