CVE-2018-17182

high
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

An issue was discovered in the Linux kernel through 4.18.8. The vmacache_flush_all function in mm/vmacache.c mishandles sequence number overflows. An attacker can trigger a use-after-free (and possibly gain privileges) via certain thread creation, map, unmap, invalidation, and dereference operations.

References

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=7a9cdebdcc17e426fb5287e4a82db1dfe86339b2

http://www.securityfocus.com/bid/105417

http://www.securityfocus.com/bid/106503

http://www.securitytracker.com/id/1041748

https://access.redhat.com/errata/RHSA-2018:3656

https://github.com/torvalds/linux/commit/7a9cdebdcc17e426fb5287e4a82db1dfe86339b2

https://lists.debian.org/debian-lts-announce/2018/10/msg00003.html

https://security.netapp.com/advisory/ntap-20190204-0001/

https://usn.ubuntu.com/3776-1/

https://usn.ubuntu.com/3776-2/

https://usn.ubuntu.com/3777-1/

https://usn.ubuntu.com/3777-2/

https://usn.ubuntu.com/3777-3/

https://www.debian.org/security/2018/dsa-4308

https://www.exploit-db.com/exploits/45497/

https://www.openwall.com/lists/oss-security/2018/09/18/4

Details

Source: MITRE

Published: 2018-09-19

Updated: 2019-03-05

Type: CWE-416

Risk Information

CVSS v2

Base Score: 7.2

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Impact Score: 10

Exploitability Score: 3.9

Severity: HIGH

CVSS v3

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Impact Score: 5.9

Exploitability Score: 1.8

Severity: HIGH

Vulnerable Software

Configuration 1

OR

cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* versions up to 4.18.8 (inclusive)

Configuration 2

OR

cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*

Configuration 3

OR

cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*

cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*

Configuration 4

OR

cpe:2.3:a:netapp:active_iq_performance_analytics_services:-:*:*:*:*:*:*:*

cpe:2.3:a:netapp:element_software:-:*:*:*:*:*:*:*

Tenable Plugins

View all (33 total)

IDNameProductFamilySeverity
132254RancherOS < 1.4.2 Local Privilege EscalationNessusMisc.
high
124979EulerOS Virtualization for ARM 64 3.0.1.0 : kernel (EulerOS-SA-2019-1526)NessusHuawei Local Security Checks
high
123329openSUSE Security Update : the Linux Kernel (openSUSE-2019-769)NessusSuSE Local Security Checks
high
121208SUSE SLES12 Security Update : kernel (SUSE-SU-2019:0095-1)NessusSuSE Local Security Checks
high
120871Fedora 28 : kernel / kernel-headers (2018-e820fccd83)NessusFedora Local Security Checks
high
120303Fedora 29 : kernel / kernel-headers (2018-272cf2f9f4)NessusFedora Local Security Checks
high
120130SUSE SLED15 / SLES15 Security Update : kernel (SUSE-SU-2018:3159-1)NessusSuSE Local Security Checks
high
119170RHEL 7 : kernel-alt (RHSA-2018:3656)NessusRed Hat Local Security Checks
high
118861Oracle Linux 7 : Unbreakable Enterprise kernel (ELSA-2018-4270)NessusOracle Linux Local Security Checks
high
118322Ubuntu 16.04 LTS / 18.04 LTS : Linux kernel (Azure) vulnerabilities (USN-3777-3) (Spectre)NessusUbuntu Local Security Checks
high
118223SUSE SLES12 Security Update : kernel (SUSE-SU-2018:3238-1)NessusSuSE Local Security Checks
high
118194openSUSE Security Update : the Linux Kernel (openSUSE-2018-1184)NessusSuSE Local Security Checks
high
118175SUSE SLES12 Security Update : kernel (SUSE-SU-2018:3173-1)NessusSuSE Local Security Checks
high
118174SUSE SLES12 Security Update : kernel (SUSE-SU-2018:3172-1)NessusSuSE Local Security Checks
high
118173SUSE SLES12 Security Update : kernel (SUSE-SU-2018:3171-1)NessusSuSE Local Security Checks
high
118079SUSE SLES11 Security Update : kernel (SUSE-SU-2018:3100-1)NessusSuSE Local Security Checks
high
118054Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2018-4244)NessusOracle Linux Local Security Checks
high
118052OracleVM 3.4 : Unbreakable / etc (OVMSA-2018-0266)NessusOracleVM Local Security Checks
high
118041Amazon Linux 2 : kernel (ALAS-2018-1086)NessusAmazon Linux Local Security Checks
high
118034SUSE SLES12 Security Update : kernel (SUSE-SU-2018:3084-1)NessusSuSE Local Security Checks
high
118033SUSE SLES12 Security Update : kernel (SUSE-SU-2018:3083-1)NessusSuSE Local Security Checks
high
117990SUSE SLES12 Security Update : kernel (SUSE-SU-2018:3032-1)NessusSuSE Local Security Checks
high
117988openSUSE Security Update : the Linux Kernel (openSUSE-2018-1140)NessusSuSE Local Security Checks
high
117933SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2018:3003-1)NessusSuSE Local Security Checks
high
117923Amazon Linux AMI : kernel (ALAS-2018-1086)NessusAmazon Linux Local Security Checks
high
117908Debian DLA-1531-1 : linux-4.9 security updateNessusDebian Local Security Checks
high
117873Ubuntu 16.04 LTS : linux-hwe, linux-gcp vulnerabilities (USN-3777-2)NessusUbuntu Local Security Checks
high
117872Ubuntu 18.04 LTS : linux, linux-aws, linux-gcp, linux-kvm, linux-oem, linux-raspi2 vulnerabilities (USN-3777-1)NessusUbuntu Local Security Checks
high
117871Ubuntu 14.04 LTS : linux-lts-xenial, linux-aws vulnerabilities (USN-3776-2)NessusUbuntu Local Security Checks
high
117870Ubuntu 16.04 LTS : linux, linux-aws, linux-kvm, linux-raspi2, linux-snapdragon vulnerabilities (USN-3776-1)NessusUbuntu Local Security Checks
high
117862Debian DSA-4308-1 : linux - security updateNessusDebian Local Security Checks
high
117720Fedora 27 : kernel / kernel-headers (2018-d77cc41f35)NessusFedora Local Security Checks
high
117653Slackware 14.2 : Slackware 14.2 kernel (SSA:2018-264-01)NessusSlackware Local Security Checks
high