Lucene search
PRIOn knowledge basePRION:CVE-2018-1121HistoryJun 13, 2018 - 8:29 p.m.
Race condition
2018-06-1320:29:00
PRIOn knowledge base
www.prio-n.com
11
procps-ng, procps is vulnerable to a process hiding through race condition. Since the kernel’s proc_pid_readdir() returns PID entries in ascending numeric order, a process occupying a high PID can use inotify events to determine when the process list is being scanned, and fork/exec to obtain a lower PID, thus avoiding enumeration. An unprivileged attacker can hide a process from procps-ng’s utilities by exploiting a race condition in reading /proc/PID entries. This vulnerability affects procps and procps-ng up to version 3.3.15, newer versions might be affected also.
Related
nessus
nessus
RHEL 8 : procps (Unpatched Vulnerability)
2024-06-03 00:00:00
RHEL 8 : procps-ng,_procps (Unpatched Vulnerability)
2024-05-11 00:00:00
RHEL 7 : procps-ng,_procps (Unpatched Vulnerability)
2024-05-11 00:00:00
osv
osv
CVE-2018-1121
2018-06-13 20:29:00
nvd
nvd
CVE-2018-1121
2018-06-13 20:29:00
cve
cve
CVE-2018-1121
2018-06-13 20:29:00
redhatcve
redhatcve
CVE-2018-1121
2018-05-18 05:19:54
ubuntucve
ubuntucve
CVE-2018-1121
2018-05-17 00:00:00
debiancve
debiancve
CVE-2018-1121
2018-06-13 20:29:00
cvelist
cvelist
CVE-2018-1121
2018-06-13 20:00:00
zdt
zdt
Procps-ng - Multiple Vulnerabilities
2018-05-30 00:00:00
packetstorm
packetstorm
Procps-ng Audit Report
2018-05-22 00:00:00
exploitpack
exploitpack
Procps-ng - Multiple Vulnerabilities
2018-05-30 00:00:00
exploitdb
exploitdb
Procps-ng - Multiple Vulnerabilities
2018-05-30 00:00:00
ibm
ibm
avleonov
avleonov