Published: 19/09/2018 Updated: 24/02/2023

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8

VMScore: 726

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

An issue exists in the Linux kernel up to and including 4.18.8. The vmacache_flush_all function in mm/vmacache.c mishandles sequence number overflows. An attacker can trigger a use-after-free (and possibly gain privileges) via certain thread creation, map, unmap, invalidation, and dereference operations.

Vulnerable Product	Search on Vulmon	Subscribe to Product
linux linux kernel
canonical ubuntu linux 16.04
canonical ubuntu linux 14.04
canonical ubuntu linux 18.04
debian debian linux 8.0
debian debian linux 9.0
netapp element software -
netapp active iq performance analytics services -

Synopsis Important: kernel-alt security and bug fix update Type/Severity Security Advisory: Important Topic An update for kernel-alt is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Important A Common Vulnerability Scoring System ...

Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks CVE-2018-6554 A memory leak in the irda_bind function in the irda subsystem was discovered A local user can take advantage of this flaw to cause a denial of service (memory consumption) CVE ...

A security flaw was found in the chap_server_compute_md5() function in the ISCSI target code in the Linux kernel in a way an authentication request from an ISCSI initiator is processed An unauthenticated remote attacker can cause a stack buffer overflow and smash up to 17 bytes of the stack The attack requires the iSCSI target to be enabled on th ...

Several security issues were fixed in the Linux kernel ...

A security flaw was found in the chap_server_compute_md5() function in the ISCSI target code in the Linux kernel in a way an authentication request from an ISCSI initiator is processed An unauthenticated remote attacker can cause a stack buffer overflow and smash up to 17 bytes of the stack The attack requires the iSCSI target to be enabled on th ...

A security flaw was discovered in the Linux kernel The vmacache_flush_all() function in mm/vmacachec mishandles sequence number overflows An attacker can trigger a use-after-free (and possibly gain privileges) via certain thread creation, map, unmap, invalidation, and dereference operations ...

An issue was discovered in the Linux kernel through 4188 The vmacache_flush_all function in mm/vmacachec mishandles sequence number overflows An attacker can trigger a use-after-free (and possibly gain privileges) via certain thread creation, map, unmap, invalidation, and dereference operations ...

Since commit 615d6e8756c8 ("mm: per-thread vma caching", first in 315), Linux has per-task VMA caches that contain up to four VMA pointers for fast lookup VMA caches are invalidated by bumping the 32-bit per-mm sequence number mm->vmacache_seqnum; when the sequence number wraps, vmacache_flush_all() scans through all running tasks and wipes th ...

Linux 内核VMA-UAF 提权漏洞（CVE-2018-17182）,0day

CVE-2018-17182 Linux 内核VMA-UAF 提权漏洞（CVE-2018-17182） About Google Project Zero的网络安全研究人员发布了详细信息，并针对自内核版本316到4188以来Linux内核中存在的高严重性漏洞的概念验证（PoC）漏洞利用。由白帽黑客Jann Horn发现，内核漏洞（CVE-2018-17182）是Linux内存管理子系统中的缓存失�

CWE-416 https://www.openwall.com/lists/oss-security/2018/09/18/4 https://github.com/torvalds/linux/commit/7a9cdebdcc17e426fb5287e4a82db1dfe86339b2 http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=7a9cdebdcc17e426fb5287e4a82db1dfe86339b2 https://www.exploit-db.com/exploits/45497/https://www.debian.org/security/2018/dsa-4308 https://usn.ubuntu.com/3777-2/https://usn.ubuntu.com/3777-1/https://usn.ubuntu.com/3776-2/https://usn.ubuntu.com/3776-1/http://www.securitytracker.com/id/1041748 http://www.securityfocus.com/bid/105417 https://lists.debian.org/debian-lts-announce/2018/10/msg00003.html https://usn.ubuntu.com/3777-3/https://access.redhat.com/errata/RHSA-2018:3656 http://www.securityfocus.com/bid/106503 https://security.netapp.com/advisory/ntap-20190204-0001/https://access.redhat.com/errata/RHSA-2018:3656 https://nvd.nist.gov https://github.com/jas502n/CVE-2018-17182 https://www.exploit-db.com/exploits/45497/https://www.debian.org/security/./dsa-4308 https://usn.ubuntu.com/3776-1/

CVE-2018-17182

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Exploits

Github Repositories

References

Vulmon Search

About

Products

Connect