Wind River Support Network

HomeDefectsLIN6-14861
Fixed

LIN6-14861 : Security Advisory - linux - CVE-2018-14734

Created: Aug 1, 2018    Updated: Dec 16, 2018
Resolved Date: Nov 18, 2018
Found In Version: 6.0.0.37
Fix Version: 6.0.0.38
Severity: Standard
Applicable for: Wind River Linux 6
Component/s: Userspace

Description

drivers/infiniband/core/ucma.c in the Linux kernel through 4.17.11 allows ucma_leave_multicast to access a certain data structure after a cleanup step in ucma_process_join, which allows attackers to cause a denial of service (use-after-free).

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-14734

Other Downloads


Live chat
Online