CVE-2018-18281
CVSS v3.0
7.8 (High)
CVSS v2.0
4.6 (Medium)
EPSS
0.11 % (45th)
Affected Products
3
Advisories
27
Since Linux kernel version 3.2, the mremap() syscall performs TLB flushes after dropping pagetable locks. If a syscall such as ftruncate() removes entries from the pagetables of a task that is in the middle of mremap(), a stale TLB entry can remain for a short time that permits access to a physical page after it has been released back to the page allocator and reused. This is fixed in the following kernel versions: 4.9.135, 4.14.78, 4.18.16, 4.19.
Weaknesses
- CWE-459
- Incomplete Cleanup
- CVE Status
- PUBLISHED
- CNA
- MITRE
- Published Date
-
2018-10-30 18:29:00
(5 years ago) - Updated Date
-
2020-08-24 17:37:01
(4 years ago)
Affected Products
Loading...
Loading...
Configuration #1
|
Configuration #2
|
Configuration #3
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...