CVE-2018-8822
20.03.2018, 17:29
Incorrect buffer length handling in the ncp_read_kernel function in fs/ncpfs/ncplib_kernel.c in the Linux kernel through 4.15.11, and in drivers/staging/ncpfs/ncplib_kernel.c in the Linux kernel 4.16-rc through 4.16-rc6, could be exploited by malicious NCPFS servers to crash the kernel or execute code.Enginsight
| Vendor | Product | Version |
|---|---|---|
| linux | linux_kernel | 2.6.12 ≤ 𝑥 < 3.2.102 |
| linux | linux_kernel | 3.3 ≤ 𝑥 < 3.16.57 |
| linux | linux_kernel | 3.17 ≤ 𝑥 < 3.18.103 |
| linux | linux_kernel | 3.19 ≤ 𝑥 < 4.1.52 |
| linux | linux_kernel | 4.2 ≤ 𝑥 < 4.4.125 |
| linux | linux_kernel | 4.5 ≤ 𝑥 < 4.9.91 |
| linux | linux_kernel | 4.10 ≤ 𝑥 < 4.14.31 |
| linux | linux_kernel | 4.15 ≤ 𝑥 < 4.15.14 |
| linux | linux_kernel | 4.16:rc |
| linux | linux_kernel | 4.16:rc1 |
| linux | linux_kernel | 4.16:rc2 |
| linux | linux_kernel | 4.16:rc3 |
| linux | linux_kernel | 4.16:rc4 |
| linux | linux_kernel | 4.16:rc5 |
| linux | linux_kernel | 4.16:rc6 |
| canonical | ubuntu_linux | 12.04 |
| canonical | ubuntu_linux | 14.04 |
| canonical | ubuntu_linux | 16.04 |
| canonical | ubuntu_linux | 17.10 |
| debian | debian_linux | 7.0 |
| debian | debian_linux | 8.0 |
| debian | debian_linux | 9.0 |
𝑥
= Vulnerable software versions
Debian Releases
Ubuntu Releases
Ubuntu Product | |||||||||
|---|---|---|---|---|---|---|---|---|---|
| linux |
| ||||||||
| linux-aws |
| ||||||||
| linux-azure |
| ||||||||
| linux-euclid |
| ||||||||
| linux-flo |
| ||||||||
| linux-gcp |
| ||||||||
| linux-gke |
| ||||||||
| linux-goldfish |
| ||||||||
| linux-grouper |
| ||||||||
| linux-hwe |
| ||||||||
| linux-hwe-edge |
| ||||||||
| linux-kvm |
| ||||||||
| linux-lts-trusty |
| ||||||||
| linux-lts-utopic |
| ||||||||
| linux-lts-vivid |
| ||||||||
| linux-lts-wily |
| ||||||||
| linux-lts-xenial |
| ||||||||
| linux-maguro |
| ||||||||
| linux-mako |
| ||||||||
| linux-manta |
| ||||||||
| linux-oem |
| ||||||||
| linux-raspi2 |
| ||||||||
| linux-snapdragon |
|
Common Weakness Enumeration
References