CVE-2018-1124
Table of Contents
Multiple integer overflows leading to heap corruption flaws were discovered in file2strvec(). These vulnerabilities can lead to privilege escalation for a local attacker who can create entries in procfs by starting processes, which will lead to crashes or arbitrary code execution in proc utilities run by other users (eg pgrep, pkill, pidof, w).
Find out more about CVE-2018-1124 from the MITRE CVE dictionary dictionary and NIST NVD.
CVSS v3 metrics
| CVSS3 Base Score | 7.3 |
|---|---|
| CVSS3 Base Metrics | CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H |
| Attack Vector | Local |
| Attack Complexity | Low |
| Privileges Required | Low |
| User Interaction | Required |
| Scope | Unchanged |
| Confidentiality | High |
| Integrity Impact | High |
| Availability Impact | High |
Red Hat Security Errata
| Platform | Errata | Release Date |
|---|---|---|
| Red Hat Enterprise Linux Server TUS (v. 6.6) (procps) | RHSA-2018:2268 | 2018-07-26 |
| Red Hat Enterprise Linux Update Services for SAP Solutions 7.3 (procps-ng) | RHSA-2019:2401 | 2019-08-07 |
| Red Hat Virtualization 4 Management Agent for RHEL 7 Hosts | RHSA-2018:1820 | 2018-06-11 |
| Red Hat Enterprise Linux Advanced Update Support 6.6 (procps) | RHSA-2018:2268 | 2018-07-26 |
| Red Hat Enterprise Linux Extended Update Support 7.4 (procps-ng) | RHSA-2019:1944 | 2019-07-30 |
| Red Hat Enterprise Linux 7 (procps-ng) | RHSA-2018:1700 | 2018-05-23 |
| Red Hat Enterprise Linux Extended Update Support 6.7 (procps) | RHSA-2018:2267 | 2018-07-26 |
| Red Hat Enterprise Linux 6 (procps) | RHSA-2018:1777 | 2018-05-31 |
| Red Hat Enterprise Linux 7.3 Telco Extended Update Support (procps-ng) | RHSA-2019:2401 | 2019-08-07 |
| Red Hat Enterprise Linux Advanced Update Support 7.3 (procps-ng) | RHSA-2019:2401 | 2019-08-07 |
Affected Packages State
| Platform | Package | State |
|---|---|---|
| Red Hat Enterprise Linux 8 | procps-ng | Not affected |
| Red Hat Enterprise Linux 5 | procps | Will not fix |