Lucene search

K

PRIOn knowledge basePRION:CVE-2018-7757

HistoryMar 08, 2018 - 2:29 p.m.

Design/Logic Flaw

2018-03-0814:29:00

PRIOn knowledge base

www.prio-n.com

11

5.6 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

10.3%

Memory leak in the sas_smp_get_phy_events function in drivers/scsi/libsas/sas_expander.c in the Linux kernel through 4.15.7 allows local users to cause a denial of service (memory consumption) via many read accesses to files in the /sys/class/sas_phy directory, as demonstrated by the /sys/class/sas_phy/phy-1:0:12/invalid_dword_count file.

CPENameOperatorVersion
linux_kernelle4.15.7

References

git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=4a491b1ab11ca0556d2fda1ff1301e862a2d44c4

www.securityfocus.com/bid/103348

access.redhat.com/errata/RHSA-2018:2948

access.redhat.com/errata/RHSA-2018:3083

access.redhat.com/errata/RHSA-2018:3096

github.com/torvalds/linux/commit/4a491b1ab11ca0556d2fda1ff1301e862a2d44c4

lists.debian.org/debian-lts-announce/2018/05/msg00000.html

usn.ubuntu.com/3654-1/

usn.ubuntu.com/3654-2/

usn.ubuntu.com/3656-1/

usn.ubuntu.com/3697-1/

usn.ubuntu.com/3697-2/

usn.ubuntu.com/3698-1/

usn.ubuntu.com/3698-2/

www.debian.org/security/2018/dsa-4187

www.debian.org/security/2018/dsa-4188

5.6 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

10.3%

Related for PRION:CVE-2018-7757

ubuntucve1 nvd1 alpinelinux1 debiancve1 nessus41 redhatcve1 f51 oraclelinux5 cvelist1 veracode1 cve1 fedora23 openvas46 photon3 ubuntu7 suse5 virtuozzo2 cloudfoundry1 debian5 osv3 redhat3 centos1 ibm1