CVE-2018-14634
Description
An integer overflow flaw was found in the Linux kernels create_elf_tables() function. An unprivileged local user with access to SUID (or otherwise privileged) binary could use this flaw to escalate their privileges on the system. Kernel versions 2.6.x, 3.10.x and 4.14.x are believed to be vulnerable.
Risk Information
Base Score
7.8
MODERATE
Vector
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
25.699
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Linux kernel (USN-3775-1) linux-image-3.13.0-160-generic_3.13.0-160.210_i386.deb | Linux |
| Linux kernel (USN-3775-1) linux-image-3.13.0-160-generic_3.13.0-160.210_amd64.deb | Linux |
| Linux kernel (USN-3775-1) linux-image-3.13.0-160-lowlatency_3.13.0-160.210_i386.deb | Linux |
| Linux kernel (USN-3775-1) linux-image-3.13.0-160-lowlatency_3.13.0-160.210_amd64.deb | Linux |
| Kernel security update (CESA-2018:2748) perf-3.10.0-862.14.4.el7.x86_64.rpm | Linux |
| Kernel security update (CESA-2018:2748) kernel-3.10.0-862.14.4.el7.x86_64.rpm | Linux |
| (RHSA-2018:2748) kernel security and bug fix update kernel-3.10.0-862.14.4.el7.x86_64.rpm | Linux |
| (RHSA-2018:2748) kernel security and bug fix update kernel-abi-whitelists-3.10.0-862.14.4.el7.noarch.rpm | Linux |
| (RHSA-2018:2748) kernel security and bug fix update kernel-debug-3.10.0-862.14.4.el7.x86_64.rpm | Linux |
| (RHSA-2018:2748) kernel security and bug fix update kernel-debug-devel-3.10.0-862.14.4.el7.x86_64.rpm | Linux |
| (RHSA-2018:2748) kernel security and bug fix update kernel-devel-3.10.0-862.14.4.el7.x86_64.rpm | Linux |
| (RHSA-2018:2748) kernel security and bug fix update kernel-doc-3.10.0-862.14.4.el7.noarch.rpm | Linux |
| (RHSA-2018:2748) kernel security and bug fix update kernel-headers-3.10.0-862.14.4.el7.x86_64.rpm | Linux |
| (RHSA-2018:2748) kernel security and bug fix update kernel-tools-3.10.0-862.14.4.el7.x86_64.rpm | Linux |
| (RHSA-2018:2748) kernel security and bug fix update kernel-tools-libs-3.10.0-862.14.4.el7.x86_64.rpm | Linux |
| (RHSA-2018:2748) kernel security and bug fix update kernel-tools-libs-devel-3.10.0-862.14.4.el7.x86_64.rpm | Linux |
| (RHSA-2018:2748) kernel security and bug fix update perf-3.10.0-862.14.4.el7.x86_64.rpm | Linux |
| (RHSA-2018:2748) kernel security and bug fix update python-perf-3.10.0-862.14.4.el7.x86_64.rpm | Linux |
| (RHSA-2018:2846) kernel security and bug fix update kernel-2.6.32-754.6.3.el6.i686.rpm | Linux |
| (RHSA-2018:2846) kernel security and bug fix update kernel-2.6.32-754.6.3.el6.x86_64.rpm | Linux |
| (RHSA-2018:2846) kernel security and bug fix update kernel-abi-whitelists-2.6.32-754.6.3.el6.noarch.rpm | Linux |
| (RHSA-2018:2846) kernel security and bug fix update kernel-debug-2.6.32-754.6.3.el6.i686.rpm | Linux |
| (RHSA-2018:2846) kernel security and bug fix update kernel-debug-2.6.32-754.6.3.el6.x86_64.rpm | Linux |
| (RHSA-2018:2846) kernel security and bug fix update kernel-debug-devel-2.6.32-754.6.3.el6.i686.rpm | Linux |
| (RHSA-2018:2846) kernel security and bug fix update kernel-debug-devel-2.6.32-754.6.3.el6.x86_64.rpm | Linux |
| (RHSA-2018:2846) kernel security and bug fix update kernel-devel-2.6.32-754.6.3.el6.i686.rpm | Linux |
| (RHSA-2018:2846) kernel security and bug fix update kernel-devel-2.6.32-754.6.3.el6.x86_64.rpm | Linux |
| (RHSA-2018:2846) kernel security and bug fix update kernel-doc-2.6.32-754.6.3.el6.noarch.rpm | Linux |
| (RHSA-2018:2846) kernel security and bug fix update kernel-firmware-2.6.32-754.6.3.el6.noarch.rpm | Linux |
| (RHSA-2018:2846) kernel security and bug fix update kernel-headers-2.6.32-754.6.3.el6.i686.rpm | Linux |
| (RHSA-2018:2846) kernel security and bug fix update kernel-headers-2.6.32-754.6.3.el6.x86_64.rpm | Linux |
| (RHSA-2018:2846) kernel security and bug fix update perf-2.6.32-754.6.3.el6.i686.rpm | Linux |
| (RHSA-2018:2846) kernel security and bug fix update perf-2.6.32-754.6.3.el6.x86_64.rpm | Linux |
| (RHSA-2018:2846) kernel security and bug fix update python-perf-2.6.32-754.6.3.el6.i686.rpm | Linux |
| (RHSA-2018:2846) kernel security and bug fix update python-perf-2.6.32-754.6.3.el6.x86_64.rpm | Linux |
| (RHSA-2018:3591) kernel security and bug fix update kernel-abi-whitelists-3.10.0-514.61.1.el7.noarch.rpm | Linux |
| (RHSA-2018:3591) kernel security and bug fix update kernel-doc-3.10.0-514.61.1.el7.noarch.rpm | Linux |
| SUSE-SU-2018:2907-1(SUSE Linux Enterprise Server 11-EXTRA ) kernel-bigsmp-extra-3.0.101-0.47.106.50.1.x86_64.rpm | Linux |
| Dtrace-modules-3.8.13-118.24.3.el6uek update (ELSA-2018-4233) dtrace-modules-3.8.13-118.24.3.el6uek-0.4.5-3.el6.x86_64.rpm | Linux |
| Dtrace-modules-3.8.13-118.24.3.el7uek update (ELSA-2018-4233) dtrace-modules-3.8.13-118.24.3.el7uek-0.4.5-3.el7.x86_64.rpm | Linux |
| Dtrace-modules-3.8.13-118.25.1.el6uek update (ELSA-2018-4245) dtrace-modules-3.8.13-118.25.1.el6uek-0.4.5-3.el6.x86_64.rpm | Linux |
| Dtrace-modules-3.8.13-118.25.1.el7uek update (ELSA-2018-4245) dtrace-modules-3.8.13-118.25.1.el7uek-0.4.5-3.el7.x86_64.rpm | Linux |
| CVE-2018-14634 | NCM |
| Integer Overflow or Wraparound Vulnerability (CVE-2018-14634) | NCM |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234