Lucene search

K
ubuntucveUbuntu.comUB:CVE-2018-25020
HistoryDec 08, 2021 - 12:00 a.m.

CVE-2018-25020

2021-12-0800:00:00
ubuntu.com
ubuntu.com
12

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

4.6 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.0004 Low

EPSS

Percentile

10.9%

The BPF subsystem in the Linux kernel before 4.17 mishandles situations
with a long jump over an instruction sequence where inner instructions
require substantial expansions into multiple BPF instructions, leading to
an overflow. This affects kernel/bpf/core.c and net/core/filter.c.

OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchlinux< 4.15.0-166.174UNKNOWN
ubuntu16.04noarchlinux-hwe< 4.15.0-166.174~16.04.1) Available with Ubuntu Pro or Ubuntu Pro (Infra-onlyUNKNOWN
ubuntu18.04noarchlinux-aws< 4.15.0-1118.125UNKNOWN
ubuntu20.04noarchlinux-gkeop-5.15< anyUNKNOWN
ubuntu16.04noarchlinux-aws-hwe< 4.15.0-1118.125~16.04.1) Available with Ubuntu Pro or Ubuntu Pro (Infra-onlyUNKNOWN
ubuntu14.04noarchlinux-azure< 4.15.0-1129.142~14.04.1) Available with Ubuntu Pro or Ubuntu Pro (Infra-onlyUNKNOWN
ubuntu16.04noarchlinux-azure< 4.15.0-1129.142~16.04.1) Available with Ubuntu Pro or Ubuntu Pro (Infra-onlyUNKNOWN
ubuntu18.04noarchlinux-azure-4.15< 4.15.0-1129.142UNKNOWN
ubuntu18.04noarchlinux-oracle< 4.15.0-1085.93UNKNOWN
ubuntu16.04noarchlinux-oracle< 4.15.0-1085.93~16.04.1) Available with Ubuntu Pro or Ubuntu Pro (Infra-onlyUNKNOWN
Rows per page:
1-10 of 181

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

4.6 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.0004 Low

EPSS

Percentile

10.9%