CVE-2018-1126

🗓️ 05 Oct 2019 13:49:59Reported by redhat.comType

A flaw in procps-ng allows integer truncation leading to undersized regions returned to callers, potentially causing overflow

Reporter	Title	Published	Views	Family All 180
IBM Security Bulletins	Security Bulletin: IBM Dynamic System Analysis (DSA) Preboot is affected by vulnerabilities in procps	7 Dec 202322:45	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in Ubuntu affect IBM API Connect Developer Portal	23 Jun 201802:50	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in procps affect IBM BladeCenter Advanced Management Module (AMM)	11 Oct 201815:50	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in procps-ng affect PowerKVM	7 Jul 201800:00	–	ibm
IBM Security Bulletins	Security Bulletin: IBM QRadar Network Security is affected by procps-ng procps vulnerabilities	25 Jul 201814:34	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Security Guardium is affected by a Using Components with Known Vulnerabilities (procps) vulnerability	19 Dec 201820:15	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Flex System Chassis Management Module (CMM) is affected by vulnerabilities in procps	7 Dec 202322:45	–	ibm
0day.today	Procps-ng - Multiple Vulnerabilities	30 May 201800:00	–	zdt
Tenable Nessus	Amazon Linux 2 : procps-ng (ALAS-2018-1031)	12 Jun 201800:00	–	nessus
Tenable Nessus	CentOS 7 : procps-ng (CESA-2018:1700)	30 May 201800:00	–	nessus

Source	Link
qualys	www.qualys.com/2018/05/17/procps-ng-audit-report-advisory.txt
bugzilla	www.bugzilla.redhat.com/show_bug.cgi

07 Mar 2023 22:03Current

4Medium risk

Vulners AI Score4

CVSS 27.5

CVSS 3.17.8

CVSS 34.8 - 9.8

EPSS0.01993