CVE-2018-1066

CVSS v3.0 6.5 (Medium)

CVSS v2.0 7.1 (High)

EPSS 0.67 % (80^th)

Affected Products 3

Advisories 9

The Linux kernel before version 4.11 is vulnerable to a NULL pointer dereference in fs/cifs/cifsencrypt.c:setup_ntlmv2_rsp() that allows an attacker controlling a CIFS server to kernel panic a client that has this server mounted, because an empty TargetInfo field in an NTLMSSP setup negotiation response is mishandled during session recovery.

Weaknesses

CWE-476: NULL Pointer Dereference

CVE Status: PUBLISHED
CNA: Red Hat, Inc.
Published Date: 2018-03-02 08:29:00
(6 years ago)
Updated Date: 2019-04-23 13:37:27
(5 years ago)

Affected Products

Configuration #1

		CPE23	From	Up To
	Linux Kernel 4.10.15 and prior versions	cpe:2.3:o:linux:linux_kernel		<= 4.10.15

Configuration #2

		CPE23	From	Up To
	Debian Linux 8.0	cpe:2.3:o:debian:debian_linux:8.0
	Debian Linux 9.0	cpe:2.3:o:debian:debian_linux:9.0

Configuration #3

		CPE23	From	Up To
	Canonical Ubuntu Linux 12.04	cpe:2.3:o:canonical:ubuntu_linux:12.04:::*:esm
	Canonical Ubuntu Linux 14.04	cpe:2.3:o:canonical:ubuntu_linux:14.04:::*:lts

Weaknesses

Affected Products

Canonical

Debian

Linux

Configuration #1

Configuration #2

Configuration #3