QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2018-10902

Back to search

CVE-2018-10902

Published: Aug 21, 2018

Modified: Aug 5, 2024

PUBLISHED

CVSS v3.0

7.8

HIGH

Description

It was found that the raw midi kernel driver does not protect against concurrent access which leads to a double realloc (double free) in snd_rawmidi_input_params() and snd_rawmidi_output_status() which are part of snd_rawmidi_ioctl() handler in rawmidi.c file. A malicious local attacker could possibly use this for privilege escalation.

VendorProductVersions

[UNKNOWN]

kernel

affected
n/a

Weaknesses (CWE)

CWE-416

CVSS v3.0 Details

CVSS v3.0 Vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

References

RHSA-2018:3083
vendor-advisory
x_refsource_REDHAT
USN-3776-1
vendor-advisory
x_refsource_UBUNTU
USN-3776-2
vendor-advisory
x_refsource_UBUNTU
USN-3847-1
vendor-advisory
x_refsource_UBUNTU
USN-3847-2
vendor-advisory
x_refsource_UBUNTU
USN-3849-1
vendor-advisory
x_refsource_UBUNTU
RHSA-2019:0415
vendor-advisory
x_refsource_REDHAT
USN-3849-2
vendor-advisory
x_refsource_UBUNTU
1041529
vdb-entry
x_refsource_SECTRACK
DSA-4308
vendor-advisory
x_refsource_DEBIAN
USN-3847-3
vendor-advisory
x_refsource_UBUNTU
RHSA-2018:3096
vendor-advisory
x_refsource_REDHAT
105119
vdb-entry
x_refsource_BID
RHSA-2019:0641
vendor-advisory
x_refsource_REDHAT
RHSA-2019:3217
vendor-advisory
x_refsource_REDHAT
RHSA-2019:3967
vendor-advisory
x_refsource_REDHAT

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now