Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2018-5333NULL Pointer Dereference in Linux

CWE-476NULL Pointer Dereference22 documents9 sources
Severity
5.5MEDIUMNVD
OSV7.8
EPSS
2.8%
top 13.87%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
4
Linux KernelDebian LinuxCanonical Ubuntu Linux+1 more
Timeline
PublishedJan 11
Latest updateMay 13

Description

In the Linux kernel through 4.14.13, the rds_cmsg_atomic function in net/rds/rdma.c mishandles cases where page pinning fails or an invalid address is supplied, leading to an rds_atomic_free_op NULL pointer dereference.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages4 packages

Debianlinux/linux_kernel< 4.14.17-1+3
Ubuntulinux/linux_kernel< 3.13.0-142.191+1
NVDlinux/linux_kernel4.14.13
debiandebian/linux< linux 4.14.17-1 (bookworm)

Also affects: Debian Linux 7.0, 8.0, Ubuntu Linux 12.04, 14.04, 16.04, 17.10

Patches

Patch: git.kernel.orgPatch: github.comPatch: git.kernel.org

🔴Vulnerability Details

7
GHSA
GHSA-fgqv-475c-x2p6: In the Linux kernel through 42022-05-13
OSV
linux-azure vulnerabilities2018-04-24
OSV
linux-lts-xenial, linux-aws vulnerabilities2018-04-05
OSV
linux, linux-aws, linux-kvm, linux-raspi2, linux-snapdragon vulnerabilities2018-04-04
OSV
linux-hwe, linux-gcp, linux-oem vulnerabilities2018-04-03

💥Exploits & PoCs

2
Exploit-DB
Reliable Datagram Sockets (RDS) - rds_atomic_free_op NULL pointer dereference Privilege Escalation (Metasploit)2020-01-23
Metasploit
Reliable Datagram Sockets (RDS) rds_atomic_free_op NULL pointer dereference Privilege Escalation

📋Vendor Advisories

10
Ubuntu
Linux kernel (Azure) vulnerabilities2018-04-24
Ubuntu
Linux kernel (Xenial HWE) vulnerabilities2018-04-05
Ubuntu
Linux kernel vulnerabilities2018-04-04
Ubuntu
Linux kernel (Raspberry Pi 2) vulnerabilities2018-04-04
Ubuntu
Linux kernel vulnerabilities2018-04-03

💬Community

2
Bugzilla
CVE-2018-5332 CVE-2018-5333 kernel: various flaws [fedora-all]2018-01-12
Bugzilla
CVE-2018-5333 kernel: Null pointer dereference in rds_atomic_free_op() allowing denial-of-service2018-01-12