In the hidp_process_report in bluetooth, there is an integer overflow. This could lead to an out of bounds write with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android kernel Android ID: A-65853588 References: Upstream kernel.
References
Link | Resource |
---|---|
https://access.redhat.com/errata/RHSA-2018:2948 | Third Party Advisory |
https://access.redhat.com/errata/RHSA-2019:2029 | Third Party Advisory |
https://access.redhat.com/errata/RHSA-2019:2043 | Third Party Advisory |
https://lists.debian.org/debian-lts-announce/2018/10/msg00003.html | Mailing List Third Party Advisory |
https://source.android.com/security/bulletin/2018-06-01 | Vendor Advisory |
https://usn.ubuntu.com/3797-1/ | Third Party Advisory |
https://usn.ubuntu.com/3797-2/ | Third Party Advisory |
https://usn.ubuntu.com/3820-1/ | Third Party Advisory |
https://usn.ubuntu.com/3820-2/ | Third Party Advisory |
https://usn.ubuntu.com/3820-3/ | Third Party Advisory |
https://usn.ubuntu.com/3822-1/ | Third Party Advisory |
https://usn.ubuntu.com/3822-2/ | Third Party Advisory |
https://www.debian.org/security/2018/dsa-4308 | Third Party Advisory |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Configuration 4 (hide)
|
History
19 Jan 2023, 16:01
Type | Values Removed | Values Added |
---|---|---|
References | (REDHAT) https://access.redhat.com/errata/RHSA-2019:2029 - Third Party Advisory | |
References | (REDHAT) https://access.redhat.com/errata/RHSA-2019:2043 - Third Party Advisory | |
CPE | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | |
First Time |
Linux
Linux linux Kernel |
Information
Published : 2018-11-06 17:29
Updated : 2023-12-10 12:44
NVD link : CVE-2018-9363
Mitre link : CVE-2018-9363
CVE.ORG link : CVE-2018-9363
JSON object : View
Products Affected
linux
- linux_kernel
canonical
- ubuntu_linux
debian
- debian_linux
- android