CVE-2018-1120 — LOW (2.8) — White Hats Nepal

Q: How severe is CVE-2018-1120?

CVE-2018-1120 has been rated LOW with a CVSS base score of 2.8/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2018-1120?

Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel, Redhat Virtualization Host, Redhat Enterprise Linux Desktop, Redhat Enterprise Linux Server, Redhat Enterprise Linux Workstation.

Vulnerability Description

A flaw was found affecting the Linux kernel before version 4.17. By mmap()ing a FUSE-backed file onto a process's memory containing command line arguments (or environment strings), an attacker can cause utilities from psutils or procps (such as ps, w) or any other program which makes a read() call to the /proc/<pid>/cmdline (or /proc/<pid>/environ) files to block indefinitely (denial of service) or for some controlled time (as a synchronization primitive for other attacks).

CVSS Score

2.8

LOW

CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:L

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality

NONE

Integrity

NONE

Availability

LOW

Affected Products

Vendor	Product	Versions
Linux	Linux Kernel	< 4.17
Redhat	Virtualization Host	4.0
Redhat	Enterprise Linux Desktop	7.0
Redhat	Enterprise Linux Server	7.0
Redhat	Enterprise Linux Workstation	7.0
Debian	Debian Linux	8.0
Canonical	Ubuntu Linux	16.04

Related Weaknesses (CWE)

CWE-122 CWE-119

References

http://seclists.org/oss-sec/2018/q2/122ExploitMailing ListThird Party Advisory
http://www.securityfocus.com/bid/104229Third Party AdvisoryVDB Entry
https://access.redhat.com/errata/RHSA-2018:2948Third Party Advisory
https://access.redhat.com/errata/RHSA-2018:3083Third Party Advisory
https://access.redhat.com/errata/RHSA-2018:3096Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-1120Issue TrackingPatchThird Party Advisory
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=7fPatchThird Party Advisory
https://lists.debian.org/debian-lts-announce/2018/07/msg00020.htmlMailing ListThird Party Advisory
https://security.gentoo.org/glsa/201805-14Third Party Advisory
https://usn.ubuntu.com/3752-1/Third Party Advisory
https://usn.ubuntu.com/3752-2/Third Party Advisory
https://usn.ubuntu.com/3752-3/Third Party Advisory
https://usn.ubuntu.com/3910-1/
https://usn.ubuntu.com/3910-2/
https://www.exploit-db.com/exploits/44806/ExploitThird Party AdvisoryVDB Entry

FAQ

What is CVE-2018-1120?

CVE-2018-1120 is a vulnerability with a CVSS score of 2.8 (LOW). A flaw was found affecting the Linux kernel before version 4.17. By mmap()ing a FUSE-backed file onto a process's memory containing command line arguments (or environment strings), an attacker can cau...

How severe is CVE-2018-1120?

CVE-2018-1120 has been rated LOW with a CVSS base score of 2.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2018-1120?

Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel, Redhat Virtualization Host, Redhat Enterprise Linux Desktop, Redhat Enterprise Linux Server, Redhat Enterprise Linux Workstation.