kernel: Denial of service in resv_map_release function in mm/hugetlb.c

🗓️ 30 Oct 2018 10:04:28Reported by RedHatType

Local user DoS in Linux kernel up to 4.15.7 via resv_map_release in mm/hugetlb.c using mmap with large pgoff in remap_file_pages.

Reporter	Title	Published	Views	Family All 118
IBM Security Bulletins	Security Bulletin: IBM QRadar Network Security is affected by Linux kernel vulnerabilities	27 Jun 201908:40	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in the Linux Kernel affect PowerKVM	17 May 201916:05	–	ibm
Tenable Nessus	CentOS 7 : kernel (CESA-2018:3083)	16 Nov 201800:00	–	nessus
Tenable Nessus	Debian DLA-1369-1 : linux security update (Spectre)	3 May 201800:00	–	nessus
Tenable Nessus	Debian DSA-4187-1 : linux - security update (Spectre)	2 May 201800:00	–	nessus
Tenable Nessus	Debian DSA-4188-1 : linux - security update (Spectre)	2 May 201800:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP5 : kernel (EulerOS-SA-2019-1076)	8 Mar 201900:00	–	nessus
Tenable Nessus	EulerOS Virtualization 2.5.4 : kernel (EulerOS-SA-2019-1229)	4 Apr 201900:00	–	nessus
Tenable Nessus	EulerOS Virtualization for ARM 64 3.0.1.0 : kernel (EulerOS-SA-2019-1505)	13 May 201900:00	–	nessus
Tenable Nessus	openSUSE Security Update : the Linux Kernel (openSUSE-2018-377)	18 Apr 201800:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
Red Hat Enterprise Linux	7	x86_64	bpftool	0:3.10.0-957.el7	bpftool-0:3.10.0-957.el7.x86_64.rpm
Red Hat Enterprise Linux	7	ppc64	kernel	0:3.10.0-957.el7	kernel-0:3.10.0-957.el7.ppc64.rpm
Red Hat Enterprise Linux	7	ppc64le	kernel	0:3.10.0-957.el7	kernel-0:3.10.0-957.el7.ppc64le.rpm
Red Hat Enterprise Linux	7	s390x	kernel	0:3.10.0-957.el7	kernel-0:3.10.0-957.el7.s390x.rpm
Red Hat Enterprise Linux	7	x86_64	kernel	0:3.10.0-957.el7	kernel-0:3.10.0-957.el7.x86_64.rpm
Red Hat Enterprise Linux	7	any	kernel-abi-whitelists	0:3.10.0-957.el7.noarch	kernel-abi-whitelists-0:3.10.0-957.el7.noarch.noarch.rpm
Red Hat Enterprise Linux	7	ppc64	kernel-bootwrapper	0:3.10.0-957.el7	kernel-bootwrapper-0:3.10.0-957.el7.ppc64.rpm
Red Hat Enterprise Linux	7	ppc64le	kernel-bootwrapper	0:3.10.0-957.el7	kernel-bootwrapper-0:3.10.0-957.el7.ppc64le.rpm
Red Hat Enterprise Linux	7	ppc64	kernel-debug	0:3.10.0-957.el7	kernel-debug-0:3.10.0-957.el7.ppc64.rpm
Red Hat Enterprise Linux	7	ppc64le	kernel-debug	0:3.10.0-957.el7	kernel-debug-0:3.10.0-957.el7.ppc64le.rpm

Source	Link
access	www.access.redhat.com/security/cve/CVE-2018-7740
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
nvd	www.nvd.nist.gov/vuln/detail/CVE-2018-7740
cve	www.cve.org/CVERecord

13 May 2026 01:32Current

7High risk

Vulners AI Score7

CVSS 24.9

CVSS 35.5

EPSS0.00616