Vulnerability Details : CVE-2018-10940
The cdrom_ioctl_media_changed function in drivers/cdrom/cdrom.c in the Linux kernel before 4.16.6 allows local attackers to use a incorrect bounds check in the CDROM driver CDROM_MEDIA_CHANGED ioctl to read out kernel memory.
Vulnerability category: Overflow
Products affected by CVE-2018-10940
- cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
- cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2018-10940
0.02%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 4 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2018-10940
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
4.9
|
MEDIUM | AV:L/AC:L/Au:N/C:N/I:N/A:C |
3.9
|
6.9
|
NIST | |
|
5.5
|
MEDIUM | CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
1.8
|
3.6
|
NIST |
CWE ids for CVE-2018-10940
-
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.Assigned by: nvd@nist.gov (Primary)
References for CVE-2018-10940
-
https://usn.ubuntu.com/3695-1/
USN-3695-1: Linux kernel vulnerabilities | Ubuntu security notices
-
https://usn.ubuntu.com/3754-1/
USN-3754-1: Linux kernel vulnerabilities | Ubuntu security notices
-
https://access.redhat.com/errata/RHSA-2018:3096
RHSA-2018:3096 - Security Advisory - Red Hat Customer Portal
-
https://usn.ubuntu.com/3676-2/
USN-3676-2: Linux kernel (Xenial HWE) vulnerabilities | Ubuntu security noticesThird Party Advisory
-
http://www.securityfocus.com/bid/104154
Linux Kernel CVE-2018-10940 Local Denial of Service VulnerabilityThird Party Advisory;VDB Entry
-
https://access.redhat.com/errata/RHSA-2018:2948
RHSA-2018:2948 - Security Advisory - Red Hat Customer Portal
-
https://access.redhat.com/errata/RHSA-2018:3083
RHSA-2018:3083 - Security Advisory - Red Hat Customer Portal
-
https://usn.ubuntu.com/3695-2/
USN-3695-2: Linux kernel (HWE) vulnerabilities | Ubuntu security notices
-
https://github.com/torvalds/linux/commit/9de4ee40547fd315d4a0ed1dd15a2fa3559ad707
cdrom: information leak in cdrom_ioctl_media_changed() · torvalds/linux@9de4ee4 · GitHubPatch
-
https://lists.debian.org/debian-lts-announce/2018/07/msg00020.html
[SECURITY] [DLA 1423-1] linux-4.9 new package
-
https://lists.debian.org/debian-lts-announce/2018/07/msg00015.html
[SECURITY] [DLA 1422-1] linux security update
-
https://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.16.6
Release Notes
-
https://lists.debian.org/debian-lts-announce/2018/06/msg00000.html
[SECURITY] [DLA 1392-1] linux security updateThird Party Advisory
-
http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=9de4ee40547fd315d4a0ed1dd15a2fa3559ad707
kernel/git/torvalds/linux.git - Linux kernel source treePatch
-
https://lists.debian.org/debian-lts-announce/2018/07/msg00016.html
[SECURITY] [DLA 1422-2] linux security update
-
https://usn.ubuntu.com/3676-1/
USN-3676-1: Linux kernel vulnerabilities | Ubuntu security noticesThird Party Advisory
Jump to