CVE-2018-14678 — Improper Initialization in Kernel

CWE-665 — Improper Initialization CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer13 documents8 sources

Severity

7.8HIGHNVD

EPSS

0.1%

top 76.26%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Linux Kernel Debian Linux XEN +2 more

Timeline

PublishedJul 28

Latest updateMay 13

Description

An issue was discovered in the Linux kernel through 4.17.11, as used in Xen through 4.11.x. The xen_failsafe_callback entry point in arch/x86/entry/entry_64.S does not properly maintain RBX, which allows local users to cause a denial of service (uninitialized memory usage and system crash). Within Xen, 64-bit x86 PV Linux guest OS users can trigger a guest OS crash or possibly gain privileges.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages5 packages

▶NVDlinux/linux_kernel4.14.21 — 4.14.61+1

▶Debianlinux/linux_kernel< 4.17.14-1+3

▶Ubuntulinux/linux_kernel< 4.15.0-47.50

▶debiandebian/linux< linux 4.17.14-1 (bookworm)

▶NVDxen/xen4.11.0

Also affects: Debian Linux 8.0, 9.0, Ubuntu Linux 14.04, 16.04, 18.04

Patches

Patch: xenbits.xen.org ↗Patch: xenbits.xen.org ↗

🔴Vulnerability Details

GHSA

GHSA-mmph-rg95-j757: An issue was discovered in the Linux kernel through 4↗2022-05-13

▶

OSV

linux, linux-aws, linux-gcp, linux-kvm, linux-oem, linux-oracle, linux-raspi2 vulnerabilities↗2019-04-02

▶

OSV

linux-hwe, linux-aws-hwe, linux-azure, linux-gcp, linux-oracle vulnerabilities↗2019-04-02

▶

OSV

CVE-2018-14678: An issue was discovered in the Linux kernel through 4↗2018-07-28

▶

📋Vendor Advisories

Ubuntu

Linux kernel (HWE) vulnerabilities↗2019-04-02

▶

Ubuntu

Linux kernel vulnerabilities↗2019-04-02

▶

Red Hat

xen: Uninitialized state in x86 PV failsafe callback path (XSA-274)↗2018-07-25

▶

Debian

CVE-2018-14678: linux - An issue was discovered in the Linux kernel through 4.17.11, as used in Xen thro...↗2018

▶

📄Research Papers

arXiv

Cyber Situation Awareness Monitoring and Proactive Response for Enterprises on the Cloud↗2020-09-03

▶

💬Community

Bugzilla

CVE-2018-14678 xen: Uninitialized state in x86 PV failsafe callback path (XSA-274)↗2018-07-25

▶

Bugzilla

CVE-2018-14678 xen: Uninitialized state in PV syscall return path (XSA-274) [fedora-all]↗2018-07-25

▶

Bugzilla

CVE-2018-11357 wireshark: Uncontrolled Resource Consumption in epan/tvbuff.c↗2018-05-23

▶