Lucene search

UbuntuUSN-3658-1

HistoryMay 23, 2018 - 12:00 a.m.

procps-ng vulnerabilities

2018-05-2300:00:00

ubuntu.com

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.5 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.006 Low

EPSS

Percentile

77.6%

JSON

Releases

Ubuntu 18.04 ESM
Ubuntu 17.10
Ubuntu 16.04 ESM
Ubuntu 14.04 ESM

Packages

procps - /proc file system utilities

Details

It was discovered that the procps-ng top utility incorrectly read its
configuration file from the current working directory. A local attacker
could possibly use this issue to escalate privileges. (CVE-2018-1122)

It was discovered that the procps-ng ps tool incorrectly handled memory. A
local user could possibly use this issue to cause a denial of service.
(CVE-2018-1123)

It was discovered that libprocps incorrectly handled the file2strvec()
function. A local attacker could possibly use this to execute arbitrary
code. (CVE-2018-1124)

It was discovered that the procps-ng pgrep utility incorrectly handled
memory. A local attacker could possibly use this issue to cause de denial
of service. (CVE-2018-1125)

It was discovered that procps-ng incorrectly handled memory. A local
attacker could use this issue to cause a denial of service, or possibly
execute arbitrary code. (CVE-2018-1126)

OSVersionArchitecturePackageVersionFilename
Ubuntu18.04noarchlibprocps6< 2:3.3.12-3ubuntu1.1UNKNOWN
Ubuntu18.04noarchlibprocps-dev< 2:3.3.12-3ubuntu1.1UNKNOWN
Ubuntu18.04noarchlibprocps6-dbgsym< 2:3.3.12-3ubuntu1.1UNKNOWN
Ubuntu18.04noarchprocps< 2:3.3.12-3ubuntu1.1UNKNOWN
Ubuntu18.04noarchprocps-dbgsym< 2:3.3.12-3ubuntu1.1UNKNOWN
Ubuntu17.10noarchlibprocps6< 2:3.3.12-1ubuntu2.1UNKNOWN
Ubuntu17.10noarchlibprocps-dev< 2:3.3.12-1ubuntu2.1UNKNOWN
Ubuntu17.10noarchlibprocps6-dbgsym< 2:3.3.12-1ubuntu2.1UNKNOWN
Ubuntu17.10noarchprocps< 2:3.3.12-1ubuntu2.1UNKNOWN
Ubuntu17.10noarchprocps-dbgsym< 2:3.3.12-1ubuntu2.1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
Ubuntu	18.04	noarch	libprocps6	< 2:3.3.12-3ubuntu1.1	UNKNOWN
Ubuntu	18.04	noarch	libprocps-dev	< 2:3.3.12-3ubuntu1.1	UNKNOWN
Ubuntu	18.04	noarch	libprocps6-dbgsym	< 2:3.3.12-3ubuntu1.1	UNKNOWN
Ubuntu	18.04	noarch	procps	< 2:3.3.12-3ubuntu1.1	UNKNOWN
Ubuntu	18.04	noarch	procps-dbgsym	< 2:3.3.12-3ubuntu1.1	UNKNOWN
Ubuntu	17.10	noarch	libprocps6	< 2:3.3.12-1ubuntu2.1	UNKNOWN
Ubuntu	17.10	noarch	libprocps-dev	< 2:3.3.12-1ubuntu2.1	UNKNOWN
Ubuntu	17.10	noarch	libprocps6-dbgsym	< 2:3.3.12-1ubuntu2.1	UNKNOWN
Ubuntu	17.10	noarch	procps	< 2:3.3.12-1ubuntu2.1	UNKNOWN
Ubuntu	17.10	noarch	procps-dbgsym	< 2:3.3.12-1ubuntu2.1	UNKNOWN