Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.2
CVSSv2

CVE-2018-14634

Published: 25/09/2018 Updated: 13/02/2023
CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9
CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8
VMScore: 725
Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Subscribe to Linux Kernel

Vulnerability Summary

An integer overflow flaw was found in the Linux kernel's create_elf_tables() function. An unprivileged local user with access to SUID (or otherwise privileged) binary could use this flaw to escalate their privileges on the system. Kernel versions 2.6.x, 3.10.x and 4.14.x are believed to be vulnerable.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

linux linux kernel

redhat enterprise linux desktop 7.0

redhat enterprise linux workstation 7.0

redhat enterprise linux server 7.0

redhat enterprise linux server aus 6.6

redhat enterprise linux server aus 6.5

redhat enterprise linux desktop 6.0

redhat enterprise linux server 6.0

redhat enterprise linux workstation 6.0

redhat enterprise linux server eus 7.5

redhat enterprise linux server eus 6.7

redhat enterprise linux server tus 7.6

redhat enterprise linux server eus 7.6

redhat enterprise linux server aus 7.6

redhat enterprise linux server tus 6.6

canonical ubuntu linux 14.04

canonical ubuntu linux 12.04

netapp active iq performance analytics services -

Vendor Advisories

Ubuntu Security Notice: linux-lts-trusty vulnerabilities
Several security issues were fixed in the Linux kernel ...
Ubuntu Security Notice: linux vulnerabilities
Several security issues were fixed in the Linux kernel ...
Ubuntu Security Notice: linux vulnerabilities
Several security issues were fixed in the Linux kernel ...
Amazon Linux AMI: ALAS-2018-1087
NOTE: CVE-2018-14634 was already fixed in the 414 kernel released with the 201803 AMI release The advisory release date does not accurately reflect the date this was fixed The actual date of the fix being released is: 2018-04-23 An integer overflow flaw was found in the Linux kernel's create_elf_tables() function An unprivileged local user w ...
Red Hat: Important: kernel-rt security and bug fix update
Synopsis Important: kernel-rt security and bug fix update Type/Severity Security Advisory: Important Topic An update for kernel-rt is now available for Red Hat Enterprise MRG 2Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVS ...
Red Hat: Important: kernel security, bug fix, and enhancement update
Synopsis Important: kernel security, bug fix, and enhancement update Type/Severity Security Advisory: Important Topic An update for kernel is now available for Red Hat Enterprise Linux 74 Extended Update SupportRed Hat Product Security has rated this update as having a security impact of Important A Comm ...
Red Hat: Important: kernel security and bug fix update
Synopsis Important: kernel security and bug fix update Type/Severity Security Advisory: Important Topic An update for kernel is now available for Red Hat Enterprise Linux 72 Advanced Update Support, Red Hat Enterprise Linux 72 Telco Extended Update Support, and Red Hat Enterprise Linux 72 Update Services ...
Red Hat: Important: kernel security and bug fix update
Synopsis Important: kernel security and bug fix update Type/Severity Security Advisory: Important Topic An update for kernel is now available for Red Hat Enterprise Linux 6Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) b ...
Red Hat: Important: kernel security and bug fix update
Synopsis Important: kernel security and bug fix update Type/Severity Security Advisory: Important Topic An update for kernel is now available for Red Hat Enterprise Linux 66 Advanced Update Support and Red Hat Enterprise Linux 66 Telco Extended Update SupportRed Hat Product Security has rated this update ...
Red Hat: Important: kernel security and bug fix update
Synopsis Important: kernel security and bug fix update Type/Severity Security Advisory: Important Topic An update for kernel is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (CVSS) b ...
Red Hat: Important: kernel security and bug fix update
Synopsis Important: kernel security and bug fix update Type/Severity Security Advisory: Important Topic An update for kernel is now available for Red Hat Enterprise Linux 65 Advanced Update SupportRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerabili ...
Red Hat: Important: kernel security update
Synopsis Important: kernel security update Type/Severity Security Advisory: Important Topic An update for kernel is now available for Red Hat Enterprise Linux 64 Advanced Update SupportRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring S ...
Red Hat: Important: kernel security and bug fix update
Synopsis Important: kernel security and bug fix update Type/Severity Security Advisory: Important Topic An update for kernel is now available for Red Hat Enterprise Linux 73 Extended Update SupportRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerabili ...
Red Hat: Important: kernel security and bug fix update
Synopsis Important: kernel security and bug fix update Type/Severity Security Advisory: Important Topic An update for kernel is now available for Red Hat Enterprise Linux 67 Extended Update SupportRed Hat Product Security has rated this update as having a security impact of Important A Common Vulnerabili ...
Red Hat: Important: kernel-rt security and bug fix update
Synopsis Important: kernel-rt security and bug fix update Type/Severity Security Advisory: Important Topic An update for kernel-rt is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System (C ...
Amazon Linux 2: ALAS2-2018-1087
NOTE: CVE-2018-14634 was already fixed in the 414 kernel released with the Amazon Linux 2 LTS release The advisory release date does not accurately reflect the date this was fixed An integer overflow flaw was found in the Linux kernel's create_elf_tables() function An unprivileged local user with access to SUID (or otherwise privileged) binary ...
Red Hat: CVE-2018-14634
An integer overflow flaw was found in the Linux kernel's create_elf_tables() function An unprivileged local user with access to SUID (or otherwise privileged) binary could use this flaw to escalate their privileges on the system ...
Palo Alto Networks Security Advisory: CVE-2018-14634 Privilege Escalation in PAN-OS
CVE-2018-14634 Privilege Escalation in PAN-OS ...

Exploits

Exploit DB: Linux Kernel 2.6.x / 3.10.x / 4.14.x (RedHat / Debian / CentOS) (x64) - 'Mutagen Astronomy' Local Privilege Escalation
/* EDB-Note: Systems with less than 32GB of RAM are unlikely to be affected by this issue, due to memory demands during exploitation EDB Note: poc-exploitc */ /* * poc-exploitc for CVE-2018-14634 * Copyright (C) 2018 Qualys, Inc * * This program is free software: you can redistribute it and/or modify * it under the terms of the GNU Gener ...

Mailing Lists

Full Disclosure: System Down: A systemd-journald exploit
<!--X-Body-Begin--> <!--X-User-Header--> Full Disclosure mailing list archives <!--X-User-Header-End--> <!--X-TopPNI--> By Date By Thread </form> <!--X-TopPNI-End--> <!--X-MsgBody--> <!--X-Subject-Header-Begin--> System Down: A systemd-journald exploit <!--X-Subject-Header-End--> <!--X-Head-of-Message--> From: Qualys Security A ...
Full Disclosure: CVE-2021-33910: Denial of service (stack exhaustion) in systemd (PID 1)
<!--X-Body-Begin--> <!--X-User-Header--> oss-sec mailing list archives <!--X-User-Header-End--> <!--X-TopPNI--> By Date By Thread </form> <!--X-TopPNI-End--> <!--X-MsgBody--> <!--X-Subject-Header-Begin--> CVE-2021-33910: Denial of service (stack exhaustion) in systemd (PID 1) <!--X-Subject-Header-End--> <!--X-Head-of-Message--> ...

Github Repositories

https://github.com/luan0ap/cve-2018-14634

proof-of-concept (PoC) for linux dists based on Debian, CentOS and RedHat - exploit 1

cve-2018-14634 This is a exploit published for researchers discovered by cloud-based security and compliance solution provider Qualys Affect kernel versions 26x, 310x and 414x To successfully exploit this vulnerability, attackers need to have access to the targeted system and run their exploit that leads to a buffer overflow, thereby resulting in the execution of maliciou

Recent Articles

Facebook monetizes 2FA, Singapore monetizes hacker, and ransomware creeps monetize US Democrats
The Register • Shaun Nichols in San Francisco • 29 Sep 2018

BBFC gets a side job shilling shoes

Roundup One or two things happened this week on the security front, like the elimination of the White House cyber czar, the massive leak of code from Aeroflot , and the debut of UEFI rootkits. A few other stories may have slipped your radar this week. Such as: When they weren't losing tens of millions of user account log-ins this week, the folks over at the house of Zuck were taking heat for another privacy blunder, this time involving two-factor authentication. It seems Facebook has been using ...

Read more...
Linux kernel 'give me root, now' security hole sighted, dubbed 'Mutagen Astronomy'
The Register • John Leyden • 27 Sep 2018

Red Hat Enterprise and CentOS users at risk

A Linux kernel vulnerability that can only be exploited locally is nonetheless proving a bit of a nuisance. It's a classic local privilege escalation bug, dubbed CVE-2018-14634, and lets an intruder or logged-in rogue user obtain root-level control over the machine. Eggheads at cloud security biz Qualys discovered the programming blunder, which stems from an integer overflow in the open-source kernel's create_elf_tables() function. It's not remotely exploitable, thank $deity, but on a vulnerable...

Read more...

References

CWE-190https://www.openwall.com/lists/oss-security/2018/09/25/4https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-14634https://access.redhat.com/errata/RHSA-2018:2763https://access.redhat.com/errata/RHSA-2018:2748http://www.securityfocus.com/bid/105407https://www.exploit-db.com/exploits/45516/https://usn.ubuntu.com/3775-2/https://usn.ubuntu.com/3779-1/https://usn.ubuntu.com/3775-1/https://access.redhat.com/errata/RHSA-2018:2846https://access.redhat.com/errata/RHSA-2018:2933https://access.redhat.com/errata/RHSA-2018:2925https://access.redhat.com/errata/RHSA-2018:2924https://access.redhat.com/errata/RHSA-2018:3591https://access.redhat.com/errata/RHSA-2018:3590https://access.redhat.com/errata/RHSA-2018:3586https://access.redhat.com/errata/RHSA-2018:3540https://access.redhat.com/errata/RHSA-2018:3643https://security.netapp.com/advisory/ntap-20190204-0002/https://security.paloaltonetworks.com/CVE-2018-14634http://www.openwall.com/lists/oss-security/2021/07/20/2https://support.f5.com/csp/article/K20934447?utm_source=f5support&%3Butm_medium=RSShttps://nvd.nist.govhttps://github.com/luan0ap/cve-2018-14634https://usn.ubuntu.com/3775-2/https://www.exploit-db.com/exploits/45516/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-3675CVE-2024-3400CVE-2024-23557mass assignmentCVE-2023-1389local file inclusionCVE-2024-32596file uploadCVE-2024-32593
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook