BID:104291

Linux kernel CVE-2018-11412 Out-of-Bounds Security Vulnerability

CVE-2018-11412 |

Info

Linux kernel CVE-2018-11412 Out-of-Bounds Security Vulnerability

Bugtraq ID:	104291
Class:	Design Error
CVE:	CVE-2018-11412
Remote:	Yes
Local:	No
Published:	May 22 2018 12:00AM
Updated:	May 22 2018 12:00AM
Credit:	Jann Horn
Vulnerable:	Linux kernel 4.16.11 Linux kernel 4.16.6 Linux kernel 4.16.3 Linux kernel 4.15.14 Linux kernel 4.15.11 Linux kernel 4.15.9 Linux kernel 4.15.4 Linux kernel 4.14.31 Linux kernel 4.14.13 + EnGarde Secure Linux 1.0.1 + Immunix Immunix OS 7+ + MandrakeSoft Single Network Firewall 7.2 + Mandriva Linux Mandrake 8.1 + Mandriva Linux Mandrake 8.0 ppc + Mandriva Linux Mandrake 8.0 + SuSE Linux 7.0 + SuSE Linux 6.4 + SuSE Linux 6.3 + Trustix Secure Linux 1.5 Linux kernel 4.14.11 + EnGarde Secure Linux 1.0.1 + Immunix Immunix OS 7+ + MandrakeSoft Single Network Firewall 7.2 + Mandriva Linux Mandrake 8.1 + Mandriva Linux Mandrake 8.0 ppc + Mandriva Linux Mandrake 8.0 + SuSE Linux 7.0 + SuSE Linux 6.4 + SuSE Linux 6.3 + Trustix Secure Linux 1.5 Linux kernel 4.14.10 Linux kernel 4.14.6 Linux kernel 4.14.5 Linux kernel 4.14.1 Linux kernel 4.13.11 Linux kernel 4.13.10 Linux kernel 4.13.9 Linux kernel 4.13.8 Linux kernel 4.13.7 Linux kernel 4.13.6 Linux kernel 4.13.4 Linux kernel 4.13.3 Linux kernel 4.15.8 Linux kernel 4.15.7 Linux kernel 4.14.8 Linux kernel 4.14.7 + EnGarde Secure Linux 1.0.1 + Immunix Immunix OS 7+ + MandrakeSoft Single Network Firewall 7.2 + Mandriva Linux Mandrake 8.1 + Mandriva Linux Mandrake 8.0 ppc + Mandriva Linux Mandrake 8.0 + SuSE Linux 7.0 + SuSE Linux 6.4 + SuSE Linux 6.3 + Trustix Secure Linux 1.5 Linux kernel 4.14.4 Linux kernel 4.14.3 Linux kernel 4.14.2 Linux kernel 4.14.15 + EnGarde Secure Linux 1.0.1 + Immunix Immunix OS 7+ + MandrakeSoft Single Network Firewall 7.2 + Mandriva Linux Mandrake 8.1 + Mandriva Linux Mandrake 8.0 ppc + Mandriva Linux Mandrake 8.0 + SuSE Linux 7.0 + SuSE Linux 6.4 + SuSE Linux 6.3 + Trustix Secure Linux 1.5 Linux kernel 4.14.14 + EnGarde Secure Linux 1.0.1 + Immunix Immunix OS 7+ + MandrakeSoft Single Network Firewall 7.2 + Mandriva Linux Mandrake 8.1 + Mandriva Linux Mandrake 8.0 ppc + Mandriva Linux Mandrake 8.0 + SuSE Linux 7.0 + SuSE Linux 6.4 + SuSE Linux 6.3 + Trustix Secure Linux 1.5 Linux kernel 4.13.5 Linux kernel 4.13.2 Linux kernel 4.13.1 Linux kernel 4.13

Not Vulnerable:

Discussion

Linux kernel CVE-2018-11412 Out-of-Bounds Security Vulnerability

Linux kernel is prone to a out-of-bounds security vulnerability.

Successful exploits may allow an attacker to bypass certain security restrictions and perform unauthorized actions or cause a denial-of-service condition. This may aid in further attacks.

Linux kernel 4.13 through 4.16.11 are vulnerable.

Exploit / POC

Linux kernel CVE-2018-11412 Out-of-Bounds Security Vulnerability

Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

Solution / Fix

Linux kernel CVE-2018-11412 Out-of-Bounds Security Vulnerability

Solution:
Updates are available. Please see the references or vendor advisory for more information.

References

Linux kernel CVE-2018-11412 Out-of-Bounds Security Vulnerability

References:

Linux ext4: out-of-bounds memcpy via non-inline system.data xattr (chromium.org)
Linux kernel Homepage (kernel.org)
Bug 1582358 - (CVE-2018-11412) CVE-2018-11412 kernel: out-of-bounds memcpy in f (Redhat)
Bug 199803 - out-of-bounds memcpy via non-inline system.data xattr (kernel.org)
CVE-2018-11412 (Redhat)