CVE-2018-16885
CVSS v3.0
5.5 (Medium)
CVSS v2.0
4.9 (Medium)
EPSS
0.06 % (26th)
Affected Products
2
Advisories
3
A flaw was found in the Linux kernel that allows the userspace to call memcpy_fromiovecend() and similar functions with a zero offset and buffer length which causes the read beyond the buffer boundaries, in certain cases causing a memory access fault and a system halt by accessing invalid memory address. This issue only affects kernel version 3.10.x as shipped with Red Hat Enterprise Linux 7.
Weaknesses
- CWE-125
- Out-of-bounds Read
- CVE Status
- PUBLISHED
- CNA
- Red Hat, Inc.
- Published Date
-
2019-01-03 16:29:00
(5 years ago) - Updated Date
-
2023-02-13 04:52:35
(19 months ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
|
Configuration #2
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...