Wind River Support Network


SCP7-825 : Security Advisory - linux - CVE-2018-1120

Created: May 24, 2018    Updated: Oct 26, 2018
Resolved Date: Aug 14, 2018
Found In Version:
Fix Version:
Severity: Standard
Applicable for: Wind River Linux 7
Component/s: Kernel


An attacker can block any read() access to /proc/PID/cmdline by mmap()ing a FUSE file (Filesystem in Userspace) onto this process's command-line arguments. The attacker can therefore block pgrep, pidof, pkill, ps, and w, either forever (a denial of service), or for some controlled time (a synchronization tool for exploiting other vulnerabilities).

Other Downloads

Live chat