Wind River Support Network

HomeDefectsLIN7-11276
Fixed

LIN7-11276 : Security Advisory - linux - CVE-2018-16871

Created: Jul 30, 2019    Updated: Aug 9, 2019
Resolved Date: Aug 9, 2019
Found In Version: 7.0.0.1
Severity: Standard
Applicable for: Wind River Linux 8
Component/s: Kernel

Description

A flaw was found in the Linux kernel's NFS implementation, all versions 3.x and all versions 4.x up to 4.20. An attacker, who is able to mount an exported NFS filesystem, is able to trigger a null pointer dereference by using an invalid NFS sequence. This can panic the machine and deny access to the NFS server. Any outstanding disk writes to the NFS server will be lost.

CREATE(Triage): {Link=https://nvd.nist.gov/vuln/detail/CVE-2018-16871 User=admin}

CVEs


Live chat
Online