Lucene search

K

MitreCVELIST:CVE-2018-5332

HistoryJan 11, 2018 - 7:00 a.m.

CVE-2018-5332

2018-01-1107:00:00

mitre

www.cve.org

1

8.5 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

28.1%

In the Linux kernel through 3.2, the rds_message_alloc_sgs() function does not validate a value that is used during DMA page allocation, leading to a heap-based out-of-bounds write (related to the rds_rdma_extra_size function in net/rds/rdma.c).

References

git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=c095508770aebf1b9218e77026e48345d719b17c

www.securityfocus.com/bid/102507

access.redhat.com/errata/RHSA-2018:0470

git.kernel.org/pub/scm/linux/kernel/git/tip/tip.git/commit/?id=60daca9efbb3e4109ebc1f7069543e5573fc124e

github.com/torvalds/linux/commit/c095508770aebf1b9218e77026e48345d719b17c

lists.debian.org/debian-lts-announce/2018/05/msg00000.html

usn.ubuntu.com/3617-1/

usn.ubuntu.com/3617-2/

usn.ubuntu.com/3617-3/

usn.ubuntu.com/3619-1/

usn.ubuntu.com/3619-2/

usn.ubuntu.com/3620-1/

usn.ubuntu.com/3620-2/

usn.ubuntu.com/3632-1/

www.debian.org/security/2018/dsa-4187

8.5 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

28.1%

Related for CVELIST:CVE-2018-5332

ubuntucve1 veracode1 redhatcve1 cve1 f51 debiancve1 nvd1 prion1 nessus33 photon5 redhat1 fedora24 openvas45 virtuozzo2 ubuntu8 suse10 oraclelinux3 ibm1 osv2 debian3 cloudfoundry1