Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2018-1120 — Heap-based Buffer Overflow in Kernel

CWE-122 — Heap-based Buffer Overflow CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer18 documents11 sources

Severity

5.3MEDIUMNVD

CNA2.8

EPSS

1.3%

top 19.99%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Linux Kernel Canonical Ubuntu Linux Debian Linux +5 more

Timeline

PublishedJun 20

Latest updateMay 13

Description

A flaw was found affecting the Linux kernel before version 4.17. By mmap()ing a FUSE-backed file onto a process's memory containing command line arguments (or environment strings), an attacker can cause utilities from psutils or procps (such as ps, w) or any other program which makes a read() call to the /proc//cmdline (or /proc//environ) files to block indefinitely (denial of service) or for some controlled time (as a synchronization primitive for other attacks).

CVSS vector

CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.6 | Impact: 3.6

Affected Packages7 packages

▶NVDlinux/linux_kernel< 4.17

▶Debianlinux/linux_kernel< 4.16.12-1+3

▶NVDredhat/enterprise_linux_server7.0

▶NVDredhat/enterprise_linux_desktop7.0

▶NVDredhat/enterprise_linux_workstation7.0

Also affects: Debian Linux 8.0, Ubuntu Linux 16.04, 18.04

Patches

Patch: bugzilla.redhat.com ↗Patch: git.kernel.org ↗Patch: bugzilla.redhat.com ↗

🔴Vulnerability Details

GHSA

GHSA-gq4w-28gq-c8cj: A flaw was found affecting the Linux kernel before version 4↗2022-05-13

▶

OSV

linux, linux-aws, linux-kvm, linux-raspi2, linux-snapdragon vulnerabilities↗2019-03-15

▶

OSV

linux-lts-xenial, linux-aws vulnerabilities↗2019-03-15

▶

OSV

CVE-2018-1120: A flaw was found affecting the Linux kernel before version 4↗2018-06-20

▶

CVEList

CVE-2018-1120: A flaw was found affecting the Linux kernel before version 4↗2018-06-20

▶

💥Exploits & PoCs

Exploit-DB

Procps-ng - Multiple Vulnerabilities↗2018-05-30

▶

📋Vendor Advisories

Palo Alto

PAN↗2020-07-08

▶

Ubuntu

Linux kernel (Xenial HWE) vulnerabilities↗2019-03-15

▶

Ubuntu

Linux kernel vulnerabilities↗2019-03-15

▶

Ubuntu

Linux kernel (Azure, GCP, OEM) vulnerabilities↗2018-08-28

▶

Ubuntu

Linux kernel vulnerabilities↗2018-08-24

▶

💬Community

Bugzilla

CVE-2018-1120 kernel: fuse-backed file mmap-ed onto process cmdline arguments causes denial of service [fedora-all]↗2018-05-17

▶

Bugzilla

CVE-2018-1120 kernel: fuse-backed file mmap-ed onto process cmdline arguments causes denial of service↗2018-05-07

▶