Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.9
CVSSv2

CVE-2018-10876

Published: 26/07/2018 Updated: 13/02/2023
CVSS v2 Base Score: 4.9 | Impact Score: 6.9 | Exploitability Score: 3.9
CVSS v3 Base Score: 5.5 | Impact Score: 3.6 | Exploitability Score: 1.8
VMScore: 436
Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C
Subscribe to Linux

Vulnerability Summary

A flaw was found in Linux kernel in the ext4 filesystem code. A use-after-free is possible in ext4_ext_remove_space() function when mounting and operating a crafted ext4 image.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

linux linux kernel -

canonical ubuntu linux 16.04

canonical ubuntu linux 14.04

canonical ubuntu linux 18.04

debian debian linux 8.0

Vendor Advisories

Red Hat: Moderate: kernel-alt security and bug fix update
Synopsis Moderate: kernel-alt security and bug fix update Type/Severity Security Advisory: Moderate Topic An update for kernel-alt is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CV ...
Ubuntu Security Notice: linux regression
Multiple regressions were fixed in the Linux kernel ...
Ubuntu Security Notice: linux-azure vulnerabilities
Several security issues were fixed in the Linux kernel ...
Ubuntu Security Notice: linux-lts-xenial, linux-aws vulnerabilities
Several security issues were fixed in the Linux kernel ...
Ubuntu Security Notice: linux-aws, linux-gcp, linux-kvm, linux-oem, linux-raspi2 vulnerabilities
Several security issues were fixed in the Linux kernel ...
Ubuntu Security Notice: linux vulnerabilities
Several security issues were fixed in the Linux kernel ...
Ubuntu Security Notice: linux-hwe, linux-aws-hwe, linux-gcp vulnerabilities
Several security issues were fixed in the Linux kernel ...
Ubuntu Security Notice: linux, linux-aws, linux-kvm, linux-raspi2, linux-snapdragon vulnerabilities
Several security issues were fixed in the Linux kernel ...

Github Repositories

https://github.com/rm511130/BBL

Playing with BBL (Bosh Boot Loader)

bbl (bosh-bootloader) Also known as "bubble", bbl or bosh-bootloader is a command line utility for standing up BOSH on an IaaS without the need for an Ops Manager It supports AWS, GCP, Microsoft Azure, Openstack and vSphere Note: it's has been my experience that using Ops Manager to (a) create Bosh, (b) deal with IaaS idiosyncrasies, and (c) maintain stemcells,

References

CWE-416https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=8844618d8aa7a9973e7b527d038a2a589665002chttps://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10876https://bugzilla.kernel.org/show_bug.cgi?id=199403http://patchwork.ozlabs.org/patch/929239/https://lists.debian.org/debian-lts-announce/2018/07/msg00020.htmlhttps://usn.ubuntu.com/3753-2/https://usn.ubuntu.com/3753-1/http://www.securityfocus.com/bid/106503https://usn.ubuntu.com/3871-1/https://usn.ubuntu.com/3871-4/https://usn.ubuntu.com/3871-3/https://usn.ubuntu.com/3871-5/https://access.redhat.com/errata/RHSA-2019:0525http://www.securityfocus.com/bid/104904https://access.redhat.com/errata/RHSA-2019:0525https://nvd.nist.govhttps://github.com/rm511130/BBLhttps://usn.ubuntu.com/3871-2/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-2907hardcodedinjectCVE-2024-20359CVE-2024-2467CVE-2024-4077CVE-2024-22391cameraCVE-2024-20353
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook