Lucene search

PRIOn knowledge basePRION:CVE-2018-10880

HistoryJul 25, 2018 - 1:29 p.m.

Stack overflow

2018-07-2513:29:00

PRIOn knowledge base

www.prio-n.com

6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

44.7%

JSON

Linux kernel is vulnerable to a stack-out-of-bounds write in the ext4 filesystem code when mounting and writing to a crafted ext4 image in ext4_update_inline_data(). An attacker could use this to cause a system crash and a denial of service.

CPENameOperatorVersion
ubuntu_linuxeq16.04
ubuntu_linuxeq14.04
ubuntu_linuxeq18.04
debian_linuxeq8.0
linux_kernellt4.17.6
enterprise_linuxeq7.0

Name	Operator	Version
ubuntu_linux	eq	16.04
ubuntu_linux	eq	14.04
ubuntu_linux	eq	18.04
debian_linux	eq	8.0
linux_kernel	lt	4.17.6
enterprise_linux	eq	7.0

References

patchwork.ozlabs.org/patch/930639/

www.securityfocus.com/bid/104907

www.securityfocus.com/bid/106503

access.redhat.com/errata/RHSA-2018:2948

bugzilla.kernel.org/show_bug.cgi?id=200005

bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10880

git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=8cdb5240ec5928b20490a2bb34cb87e9a5f40226

lists.debian.org/debian-lts-announce/2018/07/msg00020.html

usn.ubuntu.com/3821-1/

usn.ubuntu.com/3821-2/

usn.ubuntu.com/3871-1/

usn.ubuntu.com/3871-3/

usn.ubuntu.com/3871-4/

usn.ubuntu.com/3871-5/