An integer overflow flaw was found in the Linux kernel's create_elf_tables() function. An unprivileged local user with access to SUID (or otherwise privileged) binary could use this flaw to escalate their privileges on the system. Kernel versions 2.6.x, 3.10.x and 4.14.x are believed to be vulnerable.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Configuration 4 (hide)
|
History
13 Feb 2023, 04:51
Type | Values Removed | Values Added |
---|---|---|
Summary | An integer overflow flaw was found in the Linux kernel's create_elf_tables() function. An unprivileged local user with access to SUID (or otherwise privileged) binary could use this flaw to escalate their privileges on the system. Kernel versions 2.6.x, 3.10.x and 4.14.x are believed to be vulnerable. | |
References |
|
02 Feb 2023, 16:18
Type | Values Removed | Values Added |
---|---|---|
Summary | An integer overflow flaw was found in the Linux kernel's create_elf_tables() function. An unprivileged local user with access to SUID (or otherwise privileged) binary could use this flaw to escalate their privileges on the system. | |
References |
|
|
Information
Published : 2018-09-25 21:29
Updated : 2023-12-10 12:44
NVD link : CVE-2018-14634
Mitre link : CVE-2018-14634
CVE.ORG link : CVE-2018-14634
JSON object : View
Products Affected
redhat
- enterprise_linux_desktop
- enterprise_linux_server_eus
- enterprise_linux_server_aus
- enterprise_linux_server
- enterprise_linux_server_tus
- enterprise_linux_workstation
linux
- linux_kernel
canonical
- ubuntu_linux
netapp
- active_iq_performance_analytics_services
CWE
CWE-190
Integer Overflow or Wraparound