CVE-2017-18595Double Free in Kernel

CWE-415Double FreeCWE-416Use After Free7 documents6 sources
Severity
7.8HIGHNVD
EPSS
0.1%
top 68.11%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Linux KernelDebian LinuxOpensuse Leap
Timeline
PublishedSep 4
Latest updateMay 24

Description

An issue was discovered in the Linux kernel before 4.14.11. A double free may be caused by the function allocate_trace_buffer in the file kernel/trace/trace.c.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages4 packages

NVDlinux/linux_kernel3.103.16.55+5
Debianlinux/linux_kernel< 4.14.12-1+3
debiandebian/linux< linux 4.14.12-1 (bookworm)
NVDopensuse/leap15.0, 15.1+1

Patches

Patch: git.kernel.orgPatch: git.kernel.org

🔴Vulnerability Details

2
GHSA
GHSA-rqcm-ff8h-8mfx: An issue was discovered in the Linux kernel before 42022-05-24
OSV
CVE-2017-18595: An issue was discovered in the Linux kernel before 42019-09-04

📋Vendor Advisories

2
Red Hat
kernel: double free may be caused by the function allocate_trace_buffer in the file kernel/trace/trace.c2019-09-04
Debian
CVE-2017-18595: linux - An issue was discovered in the Linux kernel before 4.14.11. A double free may be...2017

💬Community

2
Bugzilla
CVE-2017-18595 kernel: double free may be caused by the function allocate_trace_buffer in the file kernel/trace/trace.c [fedora-all]2019-10-07
Bugzilla
CVE-2017-18595 kernel: double free may be caused by the function allocate_trace_buffer in the file kernel/trace/trace.c2019-10-04