kernel: out-of-bounds access in the show_timer function in kernel/time/posix-timers.c

The timercreate syscall implementation in kernel/time/posix-timers.c in the Linux kernel doesn't properly validate the sigevent-sigevnotify field, which leads to out-of-bounds access in the showtimer function...

Linux kernel information disclosure vulnerability (CNVD-2018-24551)

Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. A security vulnerability exists in the kernel/time/posix-timers.c file in versions of Linux kernel prior to 4.14.8, which stems from an implementation of the timercrea...

DEBIAN-CVE-2018-12896

An issue was discovered in the Linux kernel through 4.17.3. An Integer Overflow in kernel/time/posix-timers.c in the POSIX timer code is caused by the way the overrun accounting works. Depending on interval and expiry time values, the overrun can be larger than INTMAX, but the accounting is int...