CVE-2018-1068Improper Restriction of Operations within the Bounds of a Memory Buffer in Kernel

CWE-119Improper Restriction of Operations within the Bounds of a Memory BufferCWE-787Out-of-bounds Write17 documents8 sources
Severity
6.7MEDIUMNVD
OSV4.7
EPSS
0.0%
top 91.14%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
11
Linux KernelLinux Kernel Organization INC Linux KernelCanonical Ubuntu Linux+8 more
Timeline
PublishedMar 16
Latest updateMay 14

Description

A flaw was found in the Linux 4.x kernel's implementation of 32-bit syscall interface for bridging. This allowed a privileged user to arbitrarily write to a limited range of kernel memory.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:HExploitability: 0.8 | Impact: 5.9

Affected Packages8 packages

NVDlinux/linux_kernel3.33.16.57+7
Debianlinux/linux_kernel< 4.15.11-1+3
Ubuntulinux/linux_kernel< 3.13.0-151.201

Also affects: Debian Linux 7.0, 8.0, 9.0, Ubuntu Linux 12.04, 14.04, 16.04, 17.10, Enterprise Linux 7.6, 7.5

Patches

Patch: git.kernel.orgPatch: github.comPatch: marc.info

🔴Vulnerability Details

5
GHSA
GHSA-xfrv-5h7j-4qvx: A flaw was found in the Linux 42022-05-14
OSV
linux-hwe, linux-gcp, linux-oem vulnerabilities2018-06-12
OSV
linux vulnerabilities2018-06-11
CVEList
CVE-2018-1068: A flaw was found in the Linux 42018-03-16
OSV
CVE-2018-1068: A flaw was found in the Linux 42018-03-16

📋Vendor Advisories

9
Ubuntu
Linux kernel (HWE) vulnerabilities2018-06-12
Ubuntu
Linux kernel vulnerabilities2018-06-11
Ubuntu
Linux kernel vulnerabilities2018-06-11
Ubuntu
Linux kernel (Trusty HWE) vulnerabilities2018-06-11
Ubuntu
Linux kernel vulnerabilities2018-05-22

💬Community

2
Bugzilla
CVE-2018-1068 kernel: Out-of-bounds write via userland offsets in ebt_entry struct in netfilter/ebtables.c [fedora-all]2018-03-16
Bugzilla
CVE-2018-1068 kernel: Out-of-bounds write via userland offsets in ebt_entry struct in netfilter/ebtables.c2018-03-06
CVE-2018-1068 — Linux Kernel vulnerability | cvebase