Fixed
Created: Oct 8, 2018
Updated: May 18, 2019
Resolved Date: Nov 1, 2018
Found In Version: 7.0.0.5
Fix Version: 7.0.0.30
Severity: Standard
Applicable for: Wind River Linux 7
Component/s: Kernel
An issue was discovered in the Linux kernel through 4.18.8. The vmacache_flush_all function in mm/vmacache.c mishandles sequence number overflows. An attacker can trigger a use-after-free (and possibly gain privileges) via certain thread creation, map, unmap, invalidation, and dereference operations.
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17182