CVE-2018-18397
Description
The userfaultfd implementation in the Linux kernel before 4.19.7 mishandles access control for certain UFFDIO_ ioctl calls, as demonstrated by allowing local users to write data into holes in a tmpfs file (if the user has read-only access to that file, and that file contains holes), related to fs/userfaultfd.c and mm/userfaultfd.c.
Risk Information
Base Score
5.5
MODERATE
Vector
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
EPSS Score
Exploitation Probability
0.067
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Linux kernel for Microsoft Azure Cloud systems (USN-3878-2) linux-image-azure_4.18.0.1013.14_amd64.deb | Linux |
| Linux kernel (USN-3901-1) linux-image-gcp_4.15.0.1028.30_amd64.deb | Linux |
| Linux kernel (USN-3901-1) linux-image-gke_4.15.0.1028.30_amd64.deb | Linux |
| Linux kernel (USN-3901-1) linux-image-kvm_4.15.0.1030.30_amd64.deb | Linux |
| Linux kernel (USN-3901-1) linux-image-oem_4.15.0.1034.39_amd64.deb | Linux |
| Linux kernel (USN-3901-1) linux-image-oracle_4.15.0.1009.12_amd64.deb | Linux |
| Linux kernel (USN-3901-1) linux-image-generic_4.15.0.46.48_i386.deb | Linux |
| Linux kernel (USN-3901-1) linux-image-generic_4.15.0.46.48_amd64.deb | Linux |
| Linux kernel (USN-3901-1) linux-image-lowlatency_4.15.0.46.48_i386.deb | Linux |
| Linux kernel (USN-3901-1) linux-image-lowlatency_4.15.0.46.48_amd64.deb | Linux |
| Linux kernel (USN-3901-1) linux-image-4.15.0-1028-gcp_4.15.0-1028.29_amd64.deb | Linux |
| Linux kernel (USN-3901-1) linux-image-4.15.0-1030-kvm_4.15.0-1030.30_amd64.deb | Linux |
| Linux kernel (USN-3901-1) linux-image-4.15.0-1033-aws_4.15.0-1033.35_amd64.deb | Linux |
| Linux kernel (USN-3901-1) linux-image-4.15.0-1034-oem_4.15.0-1034.39_amd64.deb | Linux |
| Linux kernel (USN-3901-1) linux-image-4.15.0-46-generic_4.15.0-46.49_i386.deb | Linux |
| Linux kernel (USN-3901-1) linux-image-4.15.0-46-generic_4.15.0-46.49_amd64.deb | Linux |
| Linux kernel (USN-3901-1) linux-image-4.15.0-1009-oracle_4.15.0-1009.11_amd64.deb | Linux |
| Linux kernel (USN-3901-1) linux-image-4.15.0-46-lowlatency_4.15.0-46.49_i386.deb | Linux |
| Linux kernel (USN-3901-1) linux-image-4.15.0-46-lowlatency_4.15.0-46.49_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS-HWE) systems (USN-3901-2) linux-image-gcp_4.15.0.1028.42_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS-HWE) systems (USN-3901-2) linux-image-gke_4.15.0.1028.42_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS-HWE) systems (USN-3901-2) linux-image-oem_4.15.0.46.67_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS-HWE) systems (USN-3901-2) linux-image-azure_4.15.0.1040.27_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS-HWE) systems (USN-3901-2) linux-image-azure_4.15.0.1040.44_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS-HWE) systems (USN-3901-2) linux-image-oracle_4.15.0.1009.3_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS-HWE) systems (USN-3901-2) linux-image-aws-hwe_4.15.0.1033.34_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS-HWE) systems (USN-3901-2) linux-image-4.15.0-1028-gcp_4.15.0-1028.29~16.04.1_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS-HWE) systems (USN-3901-2) linux-image-4.15.0-1033-aws_4.15.0-1033.35~16.04.1_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS-HWE) systems (USN-3901-2) linux-image-4.15.0-1040-azure_4.15.0-1040.44_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS-HWE) systems (USN-3901-2) linux-image-4.15.0-1040-azure_4.15.0-1040.44~14.04.1_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS-HWE) systems (USN-3901-2) linux-image-4.15.0-46-generic_4.15.0-46.49~16.04.1_i386.deb | Linux |
| Linux kernel for Amazon Web Services (AWS-HWE) systems (USN-3901-2) linux-image-4.15.0-46-generic_4.15.0-46.49~16.04.1_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS-HWE) systems (USN-3901-2) linux-image-generic-hwe-16.04_4.15.0.46.67_i386.deb | Linux |
| Linux kernel for Amazon Web Services (AWS-HWE) systems (USN-3901-2) linux-image-generic-hwe-16.04_4.15.0.46.67_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS-HWE) systems (USN-3901-2) linux-image-4.15.0-1009-oracle_4.15.0-1009.11~16.04.1_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS-HWE) systems (USN-3901-2) linux-image-4.15.0-46-lowlatency_4.15.0-46.49~16.04.1_i386.deb | Linux |
| Linux kernel for Amazon Web Services (AWS-HWE) systems (USN-3901-2) linux-image-4.15.0-46-lowlatency_4.15.0-46.49~16.04.1_amd64.deb | Linux |
| Linux kernel for Amazon Web Services (AWS-HWE) systems (USN-3901-2) linux-image-lowlatency-hwe-16.04_4.15.0.46.67_i386.deb | Linux |
| Linux kernel for Amazon Web Services (AWS-HWE) systems (USN-3901-2) linux-image-lowlatency-hwe-16.04_4.15.0.46.67_amd64.deb | Linux |
| Linux kernel (USN-3903-1) linux-image-gcp_4.18.0.1007.7_amd64.deb | Linux |
| Linux kernel (USN-3903-1) linux-image-gke_4.18.0.1007.7_amd64.deb | Linux |
| Linux kernel (USN-3903-1) linux-image-kvm_4.18.0.1008.8_amd64.deb | Linux |
| Linux kernel (USN-3903-1) linux-image-azure_4.18.0.1013.14_amd64.deb | Linux |
| Linux kernel (USN-3903-1) linux-image-generic_4.18.0.16.17_i386.deb | Linux |
| Linux kernel (USN-3903-1) linux-image-generic_4.18.0.16.17_amd64.deb | Linux |
| Linux kernel (USN-3903-1) linux-image-lowlatency_4.18.0.16.17_i386.deb | Linux |
| Linux kernel (USN-3903-1) linux-image-lowlatency_4.18.0.16.17_amd64.deb | Linux |
| Linux kernel (USN-3903-1) linux-image-4.18.0-1007-gcp_4.18.0-1007.8_amd64.deb | Linux |
| Linux kernel (USN-3903-1) linux-image-4.18.0-1008-kvm_4.18.0-1008.8_amd64.deb | Linux |
| Linux kernel (USN-3903-1) linux-image-4.18.0-1013-azure_4.18.0-1013.13_amd64.deb | Linux |
| Linux kernel (USN-3903-1) linux-image-4.18.0-16-generic_4.18.0-16.17_i386.deb | Linux |
| Linux kernel (USN-3903-1) linux-image-4.18.0-16-generic_4.18.0-16.17_amd64.deb | Linux |
| Linux kernel (USN-3903-1) linux-image-4.18.0-16-lowlatency_4.18.0-16.17_i386.deb | Linux |
| Linux kernel (USN-3903-1) linux-image-4.18.0-16-lowlatency_4.18.0-16.17_amd64.deb | Linux |
| Linux kernel for Microsoft Azure Cloud systems (USN-3903-2) linux-image-azure_4.18.0.1013.12_amd64.deb | Linux |
| Linux kernel for Microsoft Azure Cloud systems (USN-3903-2) linux-image-4.18.0-1013-azure_4.18.0-1013.13~18.04.1_amd64.deb | Linux |
| Linux kernel for Microsoft Azure Cloud systems (USN-3903-2) linux-image-4.18.0-16-generic_4.18.0-16.17~18.04.1_i386.deb | Linux |
| Linux kernel for Microsoft Azure Cloud systems (USN-3903-2) linux-image-4.18.0-16-generic_4.18.0-16.17~18.04.1_amd64.deb | Linux |
| Linux kernel for Microsoft Azure Cloud systems (USN-3903-2) linux-image-generic-hwe-18.04_4.18.0.16.66_i386.deb | Linux |
| Linux kernel for Microsoft Azure Cloud systems (USN-3903-2) linux-image-generic-hwe-18.04_4.18.0.16.66_amd64.deb | Linux |
| Linux kernel for Microsoft Azure Cloud systems (USN-3903-2) linux-image-4.18.0-16-lowlatency_4.18.0-16.17~18.04.1_i386.deb | Linux |
| Linux kernel for Microsoft Azure Cloud systems (USN-3903-2) linux-image-4.18.0-16-lowlatency_4.18.0-16.17~18.04.1_amd64.deb | Linux |
| Linux kernel for Microsoft Azure Cloud systems (USN-3903-2) linux-image-lowlatency-hwe-18.04_4.18.0.16.66_i386.deb | Linux |
| Linux kernel for Microsoft Azure Cloud systems (USN-3903-2) linux-image-lowlatency-hwe-18.04_4.18.0.16.66_amd64.deb | Linux |
| Kernel security update (CESA-2019:0163) perf-3.10.0-957.5.1.el7.x86_64.rpm | Linux |
| Kernel security update (CESA-2019:0163) kernel-3.10.0-957.5.1.el7.x86_64.rpm | Linux |
| Kernel security update (CESA-2019:0163) bpftool-3.10.0-957.5.1.el7.x86_64.rpm | Linux |
| Kernel security update (CESA-2019:0163) kernel-doc-3.10.0-957.5.1.el7.noarch.rpm | Linux |
| Kernel security update (CESA-2019:0163) kernel-abi-whitelists-3.10.0-957.5.1.el7.noarch.rpm | Linux |
| Kernel security update (CESA-2019:0163) kernel-debug-3.10.0-957.5.1.el7.x86_64.rpm | Linux |
| Kernel security update (CESA-2019:0163) kernel-debug-devel-3.10.0-957.5.1.el7.x86_64.rpm | Linux |
| Kernel security update (CESA-2019:0163) kernel-devel-3.10.0-957.5.1.el7.x86_64.rpm | Linux |
| Kernel security update (CESA-2019:0163) kernel-headers-3.10.0-957.5.1.el7.x86_64.rpm | Linux |
| Kernel security update (CESA-2019:0163) kernel-tools-3.10.0-957.5.1.el7.x86_64.rpm | Linux |
| Kernel security update (CESA-2019:0163) kernel-tools-libs-3.10.0-957.5.1.el7.x86_64.rpm | Linux |
| Kernel security update (CESA-2019:0163) kernel-tools-libs-devel-3.10.0-957.5.1.el7.x86_64.rpm | Linux |
| Kernel security update (CESA-2019:0163) python-perf-3.10.0-957.5.1.el7.x86_64.rpm | Linux |
| (RHSA-2019:0163) kernel security, bug fix, and enhancement update bpftool-3.10.0-957.5.1.el7.x86_64.rpm | Linux |
| (RHSA-2019:0163) kernel security, bug fix, and enhancement update kernel-3.10.0-957.5.1.el7.x86_64.rpm | Linux |
| (RHSA-2019:0163) kernel security, bug fix, and enhancement update kernel-abi-whitelists-3.10.0-957.5.1.el7.noarch.rpm | Linux |
| (RHSA-2019:0163) kernel security, bug fix, and enhancement update kernel-debug-3.10.0-957.5.1.el7.x86_64.rpm | Linux |
| (RHSA-2019:0163) kernel security, bug fix, and enhancement update kernel-debug-devel-3.10.0-957.5.1.el7.x86_64.rpm | Linux |
| (RHSA-2019:0163) kernel security, bug fix, and enhancement update kernel-devel-3.10.0-957.5.1.el7.x86_64.rpm | Linux |
| (RHSA-2019:0163) kernel security, bug fix, and enhancement update kernel-doc-3.10.0-957.5.1.el7.noarch.rpm | Linux |
| (RHSA-2019:0163) kernel security, bug fix, and enhancement update kernel-headers-3.10.0-957.5.1.el7.x86_64.rpm | Linux |
| (RHSA-2019:0163) kernel security, bug fix, and enhancement update kernel-tools-3.10.0-957.5.1.el7.x86_64.rpm | Linux |
| (RHSA-2019:0163) kernel security, bug fix, and enhancement update kernel-tools-libs-3.10.0-957.5.1.el7.x86_64.rpm | Linux |
| (RHSA-2019:0163) kernel security, bug fix, and enhancement update kernel-tools-libs-devel-3.10.0-957.5.1.el7.x86_64.rpm | Linux |
| (RHSA-2019:0163) kernel security, bug fix, and enhancement update perf-3.10.0-957.5.1.el7.x86_64.rpm | Linux |
| (RHSA-2019:0163) kernel security, bug fix, and enhancement update python-perf-3.10.0-957.5.1.el7.x86_64.rpm | Linux |
| (CESA-2019:0163) kernel security, bug fix, and enhancement update kernel-abi-whitelists-3.10.0-957.5.1.el7.noarch.rpm | Linux |
| (CESA-2019:0163) kernel security, bug fix, and enhancement update kernel-doc-3.10.0-957.5.1.el7.noarch.rpm | Linux |
| Incorrect Authorization Vulnerability (CVE-2018-18397) | NCM |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234