1. Home
  2. Vulnerabilities
  3. CVE-2018-10938

CVE-2018-10938

CVSS v3.0 5.9 (Medium)
59% Progress
CVSS v2.0 7.1 (High)
71% Progress
EPSS 2.23 % (90th)
2.23% Progress
Affected Products 3
Advisories 22
Info CVSS EPSS Affected Configurations References Security Advisories Packages & Software OVAL Tools, Exploits & PoC Graph Web & Social Timeline

A flaw was found in the Linux kernel present since v4.0-rc1 and through v4.13-rc4. A crafted network packet sent remotely by an attacker may force the kernel to enter an infinite loop in the cipso_v4_optptr() function in net/ipv4/cipso_ipv4.c leading to a denial-of-service. A certain non-default configuration of LSM (Linux Security Module) and NetLabel should be set up on a system before an attacker could leverage this flaw.

Weaknesses
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
CVE Status
PUBLISHED
CNA
Red Hat, Inc.
Published Date
2018-08-27 13:29:00
(6 years ago)
Updated Date
2019-10-03 00:03:26
(5 years ago)

Affected Products

Canonical

Debian

Linux

Configuration #1

    CPE23 From Up To
  Linux Kernel 4.0 cpe:2.3:o:linux:linux_kernel:4.0
  Linux Kernel 4.0 Rc1 cpe:2.3:o:linux:linux_kernel:4.0:rc1
  Linux Kernel 4.0 Rc2 cpe:2.3:o:linux:linux_kernel:4.0:rc2
  Linux Kernel 4.0 Rc3 cpe:2.3:o:linux:linux_kernel:4.0:rc3
  Linux Kernel 4.0 Rc4 cpe:2.3:o:linux:linux_kernel:4.0:rc4
  Linux Kernel 4.0 Rc5 cpe:2.3:o:linux:linux_kernel:4.0:rc5
  Linux Kernel 4.0 Rc6 cpe:2.3:o:linux:linux_kernel:4.0:rc6
  Linux Kernel 4.0 Rc7 cpe:2.3:o:linux:linux_kernel:4.0:rc7
  Linux Kernel 4.1 cpe:2.3:o:linux:linux_kernel:4.1
  Linux Kernel 4.1 Rc1 cpe:2.3:o:linux:linux_kernel:4.1:rc1
  Linux Kernel 4.1 Rc2 cpe:2.3:o:linux:linux_kernel:4.1:rc2
  Linux Kernel 4.1 Rc3 cpe:2.3:o:linux:linux_kernel:4.1:rc3
  Linux Kernel 4.1 Rc4 cpe:2.3:o:linux:linux_kernel:4.1:rc4
  Linux Kernel 4.1 Rc5 cpe:2.3:o:linux:linux_kernel:4.1:rc5
  Linux Kernel 4.1 Rc6 cpe:2.3:o:linux:linux_kernel:4.1:rc6
  Linux Kernel 4.1 Rc7 cpe:2.3:o:linux:linux_kernel:4.1:rc7
  Linux Kernel 4.1 Rc8 cpe:2.3:o:linux:linux_kernel:4.1:rc8
  Linux Kernel 4.2 cpe:2.3:o:linux:linux_kernel:4.2
  Linux Kernel 4.2 Rc1 cpe:2.3:o:linux:linux_kernel:4.2:rc1
  Linux Kernel 4.2 Rc2 cpe:2.3:o:linux:linux_kernel:4.2:rc2
  Linux Kernel 4.2 Rc3 cpe:2.3:o:linux:linux_kernel:4.2:rc3
  Linux Kernel 4.2 Rc4 cpe:2.3:o:linux:linux_kernel:4.2:rc4
  Linux Kernel 4.2 Rc5 cpe:2.3:o:linux:linux_kernel:4.2:rc5
  Linux Kernel 4.2 Rc6 cpe:2.3:o:linux:linux_kernel:4.2:rc6
  Linux Kernel 4.2 Rc7 cpe:2.3:o:linux:linux_kernel:4.2:rc7
  Linux Kernel 4.2 Rc8 cpe:2.3:o:linux:linux_kernel:4.2:rc8
  Linux Kernel 4.3 cpe:2.3:o:linux:linux_kernel:4.3
  Linux Kernel 4.3 Rc1 cpe:2.3:o:linux:linux_kernel:4.3:rc1
  Linux Kernel 4.3 Rc2 cpe:2.3:o:linux:linux_kernel:4.3:rc2
  Linux Kernel 4.3 Rc3 cpe:2.3:o:linux:linux_kernel:4.3:rc3
  Linux Kernel 4.3 Rc4 cpe:2.3:o:linux:linux_kernel:4.3:rc4
  Linux Kernel 4.3 Rc5 cpe:2.3:o:linux:linux_kernel:4.3:rc5
  Linux Kernel 4.3 Rc6 cpe:2.3:o:linux:linux_kernel:4.3:rc6
  Linux Kernel 4.3 Rc7 cpe:2.3:o:linux:linux_kernel:4.3:rc7
  Linux Kernel 4.4 cpe:2.3:o:linux:linux_kernel:4.4
  Linux Kernel 4.4 Rc1 cpe:2.3:o:linux:linux_kernel:4.4:rc1
  Linux Kernel 4.4 Rc2 cpe:2.3:o:linux:linux_kernel:4.4:rc2
  Linux Kernel 4.4 Rc3 cpe:2.3:o:linux:linux_kernel:4.4:rc3
  Linux Kernel 4.4 Rc4 cpe:2.3:o:linux:linux_kernel:4.4:rc4
  Linux Kernel 4.4 Rc5 cpe:2.3:o:linux:linux_kernel:4.4:rc5
  Linux Kernel 4.4 Rc6 cpe:2.3:o:linux:linux_kernel:4.4:rc6
  Linux Kernel 4.4 Rc7 cpe:2.3:o:linux:linux_kernel:4.4:rc7
  Linux Kernel 4.4 Rc8 cpe:2.3:o:linux:linux_kernel:4.4:rc8
  Linux Kernel 4.5 cpe:2.3:o:linux:linux_kernel:4.5
  Linux Kernel 4.5 Rc1 cpe:2.3:o:linux:linux_kernel:4.5:rc1
  Linux Kernel 4.5 Rc2 cpe:2.3:o:linux:linux_kernel:4.5:rc2
  Linux Kernel 4.5 Rc3 cpe:2.3:o:linux:linux_kernel:4.5:rc3
  Linux Kernel 4.5 Rc4 cpe:2.3:o:linux:linux_kernel:4.5:rc4
  Linux Kernel 4.5 Rc5 cpe:2.3:o:linux:linux_kernel:4.5:rc5
  Linux Kernel 4.5 Rc6 cpe:2.3:o:linux:linux_kernel:4.5:rc6
  Linux Kernel 4.5 Rc7 cpe:2.3:o:linux:linux_kernel:4.5:rc7
  Linux Kernel 4.6 cpe:2.3:o:linux:linux_kernel:4.6
  Linux Kernel 4.6 Rc1 cpe:2.3:o:linux:linux_kernel:4.6:rc1
  Linux Kernel 4.6 Rc2 cpe:2.3:o:linux:linux_kernel:4.6:rc2
  Linux Kernel 4.6 Rc3 cpe:2.3:o:linux:linux_kernel:4.6:rc3
  Linux Kernel 4.6 Rc4 cpe:2.3:o:linux:linux_kernel:4.6:rc4
  Linux Kernel 4.6 Rc5 cpe:2.3:o:linux:linux_kernel:4.6:rc5
  Linux Kernel 4.6 Rc6 cpe:2.3:o:linux:linux_kernel:4.6:rc6
  Linux Kernel 4.6 Rc7 cpe:2.3:o:linux:linux_kernel:4.6:rc7
  Linux Kernel 4.7 cpe:2.3:o:linux:linux_kernel:4.7
  Linux Kernel 4.7 Rc1 cpe:2.3:o:linux:linux_kernel:4.7:rc1
  Linux Kernel 4.7 Rc2 cpe:2.3:o:linux:linux_kernel:4.7:rc2
  Linux Kernel 4.7 Rc3 cpe:2.3:o:linux:linux_kernel:4.7:rc3
  Linux Kernel 4.7 Rc4 cpe:2.3:o:linux:linux_kernel:4.7:rc4
  Linux Kernel 4.7 Rc5 cpe:2.3:o:linux:linux_kernel:4.7:rc5
  Linux Kernel 4.7 Rc6 cpe:2.3:o:linux:linux_kernel:4.7:rc6
  Linux Kernel 4.7 Rc7 cpe:2.3:o:linux:linux_kernel:4.7:rc7
  Linux Kernel 4.8 cpe:2.3:o:linux:linux_kernel:4.8
  Linux Kernel 4.8 Rc1 cpe:2.3:o:linux:linux_kernel:4.8:rc1
  Linux Kernel 4.8 Rc2 cpe:2.3:o:linux:linux_kernel:4.8:rc2
  Linux Kernel 4.8 Rc3 cpe:2.3:o:linux:linux_kernel:4.8:rc3
  Linux Kernel 4.8 Rc4 cpe:2.3:o:linux:linux_kernel:4.8:rc4
  Linux Kernel 4.8 Rc5 cpe:2.3:o:linux:linux_kernel:4.8:rc5
  Linux Kernel 4.8 Rc6 cpe:2.3:o:linux:linux_kernel:4.8:rc6
  Linux Kernel 4.8 Rc7 cpe:2.3:o:linux:linux_kernel:4.8:rc7
  Linux Kernel 4.8 Rc8 cpe:2.3:o:linux:linux_kernel:4.8:rc8
  Linux Kernel 4.9 cpe:2.3:o:linux:linux_kernel:4.9
  Linux Kernel 4.9 Rc1 cpe:2.3:o:linux:linux_kernel:4.9:rc1
  Linux Kernel 4.9 Rc2 cpe:2.3:o:linux:linux_kernel:4.9:rc2
  Linux Kernel 4.9 Rc3 cpe:2.3:o:linux:linux_kernel:4.9:rc3
  Linux Kernel 4.9 Rc4 cpe:2.3:o:linux:linux_kernel:4.9:rc4
  Linux Kernel 4.9 Rc5 cpe:2.3:o:linux:linux_kernel:4.9:rc5
  Linux Kernel 4.9 Rc6 cpe:2.3:o:linux:linux_kernel:4.9:rc6
  Linux Kernel 4.9 Rc7 cpe:2.3:o:linux:linux_kernel:4.9:rc7
  Linux Kernel 4.9 Rc8 cpe:2.3:o:linux:linux_kernel:4.9:rc8
  Linux Kernel 4.10 cpe:2.3:o:linux:linux_kernel:4.10
  Linux Kernel 4.10 Rc1 cpe:2.3:o:linux:linux_kernel:4.10:rc1
  Linux Kernel 4.10 Rc2 cpe:2.3:o:linux:linux_kernel:4.10:rc2
  Linux Kernel 4.10 Rc3 cpe:2.3:o:linux:linux_kernel:4.10:rc3
  Linux Kernel 4.10 Rc4 cpe:2.3:o:linux:linux_kernel:4.10:rc4
  Linux Kernel 4.10 Rc5 cpe:2.3:o:linux:linux_kernel:4.10:rc5
  Linux Kernel 4.10 Rc6 cpe:2.3:o:linux:linux_kernel:4.10:rc6
  Linux Kernel 4.10 Rc7 cpe:2.3:o:linux:linux_kernel:4.10:rc7
  Linux Kernel 4.10 Rc8 cpe:2.3:o:linux:linux_kernel:4.10:rc8
  Linux Kernel 4.11 cpe:2.3:o:linux:linux_kernel:4.11
  Linux Kernel 4.11 Rc1 cpe:2.3:o:linux:linux_kernel:4.11:rc1
  Linux Kernel 4.11 Rc2 cpe:2.3:o:linux:linux_kernel:4.11:rc2
  Linux Kernel 4.11 Rc3 cpe:2.3:o:linux:linux_kernel:4.11:rc3
  Linux Kernel 4.11 Rc4 cpe:2.3:o:linux:linux_kernel:4.11:rc4
  Linux Kernel 4.11 Rc5 cpe:2.3:o:linux:linux_kernel:4.11:rc5
  Linux Kernel 4.11 Rc6 cpe:2.3:o:linux:linux_kernel:4.11:rc6
  Linux Kernel 4.11 Rc7 cpe:2.3:o:linux:linux_kernel:4.11:rc7
  Linux Kernel 4.11 Rc8 cpe:2.3:o:linux:linux_kernel:4.11:rc8
  Linux Kernel 4.12 cpe:2.3:o:linux:linux_kernel:4.12
  Linux Kernel 4.12 Rc1 cpe:2.3:o:linux:linux_kernel:4.12:rc1
  Linux Kernel 4.12 Rc2 cpe:2.3:o:linux:linux_kernel:4.12:rc2
  Linux Kernel 4.12 Rc3 cpe:2.3:o:linux:linux_kernel:4.12:rc3
  Linux Kernel 4.12 Rc4 cpe:2.3:o:linux:linux_kernel:4.12:rc4
  Linux Kernel 4.12 Rc5 cpe:2.3:o:linux:linux_kernel:4.12:rc5
  Linux Kernel 4.12 Rc6 cpe:2.3:o:linux:linux_kernel:4.12:rc6
  Linux Kernel 4.12 Rc7 cpe:2.3:o:linux:linux_kernel:4.12:rc7
  Linux Kernel 4.13 Rc1 cpe:2.3:o:linux:linux_kernel:4.13:rc1
  Linux Kernel 4.13 Rc2 cpe:2.3:o:linux:linux_kernel:4.13:rc2
  Linux Kernel 4.13 Rc3 cpe:2.3:o:linux:linux_kernel:4.13:rc3
  Linux Kernel 4.13 Rc4 cpe:2.3:o:linux:linux_kernel:4.13:rc4

Configuration #2

    CPE23 From Up To
  Canonical Ubuntu Linux 14.04 cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts
  Canonical Ubuntu Linux 16.04 cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts
  Debian Linux 9.0 cpe:2.3:o:debian:debian_linux:9.0