Lucene search

Veracode Vulnerability DatabaseVERACODE:18229

HistoryMay 02, 2019 - 6:36 a.m.

Use-After-Free

2019-05-0206:36:11

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

0.0004 Low

EPSS

Percentile

5.1%

JSON

Linux kernel is vulnerable to Use-After-Free vulnerability. A local user could exploit the flaw which enables a race condition in the L2TPv3 IP Encapsulation feature allowing elevated privileges or system hang. Affected is the component, kernel networking subsystem.

CPENameOperatorVersion
kernel-rteq3.10.0__229.rt56.162.el6rt
kernel-rteq3.0.36__rt57.66.el6rt
kernel-rteq3.10.0__229.rt56.153.el6rt
kernel-rteq3.10.0__327.rt56.198.el6rt
kernel-rteq3.0.9__rt26.46.el6rt
kernel-rteq3.10.0__327.rt56.195.el6rt
kernel-rteq3.8.13__rt14.20.el6rt
kernel-rteq3.10.0__327.rt56.197.el6rt
kernel-rteq3.10.0__514.rt56.210.el6rt
kernel-rteq3.0.9__rt26.45.el6rt

Name	Operator	Version
kernel-rt	eq	3.10.0__229.rt56.162.el6rt
kernel-rt	eq	3.0.36__rt57.66.el6rt
kernel-rt	eq	3.10.0__229.rt56.153.el6rt
kernel-rt	eq	3.10.0__327.rt56.198.el6rt
kernel-rt	eq	3.0.9__rt26.46.el6rt
kernel-rt	eq	3.10.0__327.rt56.195.el6rt
kernel-rt	eq	3.8.13__rt14.20.el6rt
kernel-rt	eq	3.10.0__327.rt56.197.el6rt
kernel-rt	eq	3.10.0__514.rt56.210.el6rt
kernel-rt	eq	3.0.9__rt26.45.el6rt

Rows per page:

1-10 of 1001

References

git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=32c231164b762dddefa13af5a0101032c70b50ef

source.android.com/security/bulletin/2017-03-01.html

www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.8.14

www.securityfocus.com/bid/101783

www.securitytracker.com/id/1037965

www.securitytracker.com/id/1037968

access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/html/7.4_Release_Notes/index.html

access.redhat.com/errata/RHSA-2017:1842

access.redhat.com/errata/RHSA-2017:2077

access.redhat.com/errata/RHSA-2017:2437

access.redhat.com/errata/RHSA-2017:2444

access.redhat.com/security/cve/CVE-2016-10741

access.redhat.com/security/cve/CVE-2017-2584

access.redhat.com/security/cve/CVE-2017-5551

access.redhat.com/security/cve/CVE-2017-7495

access.redhat.com/security/updates/classification/#important

bugzilla.redhat.com/show_bug.cgi?id=1377840

bugzilla.redhat.com/show_bug.cgi?id=1378172

bugzilla.redhat.com/show_bug.cgi?id=1389215

bugzilla.redhat.com/show_bug.cgi?id=1400188

bugzilla.redhat.com/show_bug.cgi?id=1414052

bugzilla.redhat.com/show_bug.cgi?id=1421801

bugzilla.redhat.com/show_bug.cgi?id=1421810

bugzilla.redhat.com/show_bug.cgi?id=1425780

bugzilla.redhat.com/show_bug.cgi?id=1426661

bugzilla.redhat.com/show_bug.cgi?id=1427626

bugzilla.redhat.com/show_bug.cgi?id=1427647

bugzilla.redhat.com/show_bug.cgi?id=1427991

bugzilla.redhat.com/show_bug.cgi?id=1428890

bugzilla.redhat.com/show_bug.cgi?id=1428943

bugzilla.redhat.com/show_bug.cgi?id=1429610

bugzilla.redhat.com/show_bug.cgi?id=1429640

bugzilla.redhat.com/show_bug.cgi?id=1429951

bugzilla.redhat.com/show_bug.cgi?id=1429977

bugzilla.redhat.com/show_bug.cgi?id=1430023

bugzilla.redhat.com/show_bug.cgi?id=1430038

bugzilla.redhat.com/show_bug.cgi?id=1430074

bugzilla.redhat.com/show_bug.cgi?id=1430353

bugzilla.redhat.com/show_bug.cgi?id=1430926

bugzilla.redhat.com/show_bug.cgi?id=1430946

bugzilla.redhat.com/show_bug.cgi?id=1431104

bugzilla.redhat.com/show_bug.cgi?id=1432118

bugzilla.redhat.com/show_bug.cgi?id=1434616

bugzilla.redhat.com/show_bug.cgi?id=1438512

bugzilla.redhat.com/show_bug.cgi?id=1441552

bugzilla.redhat.com/show_bug.cgi?id=1452240

bugzilla.redhat.com/show_bug.cgi?id=1459056

github.com/torvalds/linux/commit/32c231164b762dddefa13af5a0101032c70b50ef

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for VERACODE:18229