Home CVE Database CVE-2018-10689

CVE-2018-10689

Description

blktrace (aka Block IO Tracing) 1.2.0, as used with the Linux kernel and Android, has a buffer overflow in the dev_map_read function in btt/devmap.c because the device and devno arrays are too small, as demonstrated by an invalid free when using the btt program with a crafted file.

Priority: MEDIUM
CVSS v3: 5.5
Publish Date: May 3, 2018
Related ID: --
CVSS v2: MEDIUM
Modified Date: May 3, 2018

Find out more about CVE-2018-10689 from the MITRE-CVE dictionary and NIST NVD


Products Affected

Login may be required to access defects or downloads.

Related Products

Product Name Status Defect Fixed Downloads
Linux 7 SCP Not Vulnerable -- -- --
Linux 7 CGP Not Vulnerable -- -- --

Comments

blktrace

Live chat
Online