CVE-2018-8822

Published Mar 20, 2018

Last updated 3 days ago

CVSS high 7.8

Overview

Description: Incorrect buffer length handling in the ncp_read_kernel function in fs/ncpfs/ncplib_kernel.c in the Linux kernel through 4.15.11, and in drivers/staging/ncpfs/ncplib_kernel.c in the Linux kernel 4.16-rc through 4.16-rc6, could be exploited by malicious NCPFS servers to crash the kernel or execute code.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 3.1

Type: Primary
Base score: 7.8
Impact score: 5.9
Exploitability score: 1.8
Vector string: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Severity: HIGH

CVSS 2.0

Type: Primary
Base score: 7.2
Impact score: 10
Exploitability score: 3.9
Vector string: AV:L/AC:L/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: CWE-119

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9002FDD9-8A8C-4E06-8DE5-7CF6C79B117A",
            "versionEndExcluding": "3.2.102",
            "versionStartIncluding": "2.6.12"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0786B96E-E04C-4D2B-B358-CCE006BAED46",
            "versionEndExcluding": "3.16.57",
            "versionStartIncluding": "3.3"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F9906D89-2D98-4380-9A65-798B12332FC9",
            "versionEndExcluding": "3.18.103",
            "versionStartIncluding": "3.17"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DC20C495-C297-4CEE-9034-4FE81754FE98",
            "versionEndExcluding": "4.1.52",
            "versionStartIncluding": "3.19"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BB766B8A-0C15-4949-BC7E-C624A8FB122A",
            "versionEndExcluding": "4.4.125",
            "versionStartIncluding": "4.2"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "086C29F5-DF5E-43B2-8E7D-EBA453B571D8",
            "versionEndExcluding": "4.9.91",
            "versionStartIncluding": "4.5"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9E6E5A35-1967-44F6-9D8F-83A08D60DB2F",
            "versionEndExcluding": "4.14.31",
            "versionStartIncluding": "4.10"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A8ED8E8A-0A8C-4F47-9BFF-69DB613F2C35",
            "versionEndExcluding": "4.15.14",
            "versionStartIncluding": "4.15"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:4.16:rc:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "47F1FC1E-886E-4D29-89F6-ACE3BA4C6ABC"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:4.16:rc1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C7161042-96AB-4B27-85D1-284F7F975B07"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:4.16:rc2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "023AC641-A30A-4814-8EEE-E8290134B8E0"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:4.16:rc3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9B70E4A9-D27F-4318-85DF-30CE6E86194B"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:4.16:rc4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5E280740-2FD3-459D-AF37-624DC6171F8D"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:4.16:rc5:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CA2A106F-944D-42C5-BB4B-E81B97A57CDA"
          },
          {
            "criteria": "cpe:2.3:o:linux:linux_kernel:4.16:rc6:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B14098E0-F40A-4C8E-B285-E96E6E604582"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8D305F7A-D159-4716-AB26-5E38BB5CD991"
          },
          {
            "criteria": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B5A6F2F3-4894-4392-8296-3B8DD2679084"
          },
          {
            "criteria": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F7016A2A-8365-4F1A-89A2-7A19F2BCAE5B"
          },
          {
            "criteria": "cpe:2.3:o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9070C9D8-A14A-467F-8253-33B966C16886"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "16F59A04-14CF-49E2-9973-645477EA09DA"
          },
          {
            "criteria": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43"
          },
          {
            "criteria": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DEECE5FC-CACF-4496-A3E7-164736409252"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 3.1

CVSS 2.0

Weaknesses

Social media

Configurations

References