CVE-2018-14734

Published: Jul 29, 2018

Modified: Aug 5, 2024

PUBLISHED

Description

drivers/infiniband/core/ucma.c in the Linux kernel through 4.17.11 allows ucma_leave_multicast to access a certain data structure after a cleanup step in ucma_process_join, which allows attackers to cause a denial of service (use-after-free).

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=cb2595c1393b4a5211534e6f0a0fbad369e21ad8

x_refsource_MISC

USN-3797-2

vendor-advisory

x_refsource_UBUNTU

USN-3847-1

vendor-advisory

x_refsource_UBUNTU

USN-3797-1

vendor-advisory

x_refsource_UBUNTU

[debian-lts-announce] 20181003 [SECURITY] [DLA 1531-1] linux-4.9 security update

mailing-list

x_refsource_MLIST

USN-3847-2

vendor-advisory

x_refsource_UBUNTU

USN-3849-1

vendor-advisory

x_refsource_UBUNTU

USN-3849-2

vendor-advisory

x_refsource_UBUNTU

DSA-4308

vendor-advisory

x_refsource_DEBIAN

https://github.com/torvalds/linux/commit/cb2595c1393b4a5211534e6f0a0fbad369e21ad8

x_refsource_MISC

USN-3847-3

vendor-advisory

x_refsource_UBUNTU

RHSA-2019:0831

vendor-advisory

x_refsource_REDHAT

RHSA-2019:2043

vendor-advisory

x_refsource_REDHAT

RHSA-2019:2029

vendor-advisory

x_refsource_REDHAT

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2018-14734

Description

Affected Products

References