Published: 25/02/2018 Updated: 24/02/2023

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8

VMScore: 641

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

The blkcg_init_queue function in block/blk-cgroup.c in the Linux kernel prior to 4.11 allows local users to cause a denial of service (double free) or possibly have unspecified other impact by triggering a creation failure.

Vulnerable Product	Search on Vulmon	Subscribe to Product
linux linux kernel
canonical ubuntu linux 16.04
canonical ubuntu linux 14.04
debian debian linux 9.0

Several security issues were fixed in the Linux kernel ...

Several security issues were addressed in the Linux kernel ...

Several vulnerabilities have been discovered in the Linux kernel that may lead to a privilege escalation, denial of service or information leaks CVE-2017-5715 Multiple researchers have discovered a vulnerability in various processors supporting speculative execution, enabling an attacker controlling an unprivileged process to read mem ...

The blkcg_init_queue function in block/blk-cgroupc in the Linux kernel, before 411, allows local users to cause a denial of service (double free) or possibly have unspecified other impact by triggering a creation failure ...

CWE-415 https://github.com/torvalds/linux/commit/9b54d816e00425c3a517514e0d677bb3cec49258 http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=9b54d816e00425c3a517514e0d677bb3cec49258 https://www.debian.org/security/2018/dsa-4188 https://usn.ubuntu.com/3654-2/https://usn.ubuntu.com/3654-1/https://usn.ubuntu.com/3656-1/https://nvd.nist.gov https://usn.ubuntu.com/3656-1/

CVE-2018-7480

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect