Out-of-bounds read in Linux kernel

#VU16703 Out-of-bounds read in Linux kernel

Published: 2018-12-21 | Updated: 2018-12-25

Vulnerability identifier: #VU16703

Vulnerability risk: Low

CVSSv3.1: 5.1 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:U/RC:C]

CVE-ID: CVE-2018-16885

CWE-ID: CWE-125

Exploitation vector: Local

Exploit availability: No

Vulnerable software:
Linux kernel
Operating systems & Components / Operating system

Vendor: Linux Foundation

Description

The vulnerability allows a local attacker to cause DoS condition on the target system.

The vulnerability exists due to out-of-bounds read. A local attacker can call memcpy_fromiovecend() and similar functions with a zero offset and buffer length, cause a memory access fault and a system halt by accessing invalid memory address.

Mitigation
Cybersecurity Help is currently unaware of any official solution to address the vulnerability.

Vulnerable software versions

Linux kernel:

External links
http://bugzilla.redhat.com/show_bug.cgi?id=1661503

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Red Hat update for kernel

Red Hat update for kernel-rt

Denial of service in Linux Kernel