Lucene search
Redhat.comRH:CVE-2018-12633HistoryMar 23, 2020 - 7:58 a.m.
CVE-2018-12633
2020-03-2307:58:52
redhat.com
access.redhat.com
7
0.0004 Low
EPSS
Percentile
5.1%
An issue was discovered in the Linux kernel through 4.17.2. vbg_misc_device_ioctl() in drivers/virt/vboxguest/vboxguest_linux.c reads the same user data twice with copy_from_user. The header part of the user data is double-fetched, and a malicious user thread can tamper with the critical variables (hdr.size_in and hdr.size_out) in the header between the two fetches because of a race condition, leading to severe kernel errors, such as buffer over-accesses. This bug can cause a local denial of service and information leakage.
Related
cvelist
cvelist
CVE-2018-12633
2018-06-22 00:00:00
debiancve
debiancve
CVE-2018-12633
2018-06-22 00:29:00
cve
cve
CVE-2018-12633
2018-06-22 00:29:00
prion
prion
Race condition
2018-06-22 00:29:00
nessus
nessus
Fedora 28 : kernel (2018-d92fde52d7)
2019-01-03 00:00:00
Fedora 27 : kernel (2018-2a0f8b2c9d)
2018-07-02 00:00:00
EulerOS Virtualization for ARM 64 3.0.1.0 : kernel (EulerOS-SA-2019-1476)
2019-05-13 00:00:00
ubuntucve
ubuntucve
CVE-2018-12633
2018-06-22 00:00:00
nvd
nvd
CVE-2018-12633
2018-06-22 00:29:00
openvas
openvas
Fedora Update for kernel FEDORA-2018-d92fde52d7
2018-07-03 00:00:00
Fedora Update for kernel FEDORA-2018-d82a45d9ab
2018-07-12 00:00:00
Fedora Update for kernel FEDORA-2018-50075276e8
2018-07-15 00:00:00
fedora
fedora
[SECURITY] Fedora 28 Update: kernel-4.17.3-200.fc28
2018-07-01 02:39:58
[SECURITY] Fedora 28 Update: kernel-4.17.4-200.fc28
2018-07-11 20:24:29
[SECURITY] Fedora 28 Update: kernel-4.17.11-200.fc28
2018-08-03 20:51:04