Use After Free Affecting kernel-debuginfo package, versions <0:4.14.55-68.37.amzn2
Threat Intelligence
Do your applications use this vulnerable package?
In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applications- Snyk ID SNYK-AMZN2-KERNELDEBUGINFO-1663316
- published 27 Sep 2021
- disclosed 24 May 2018
Introduced: 24 May 2018
CVE-2018-11412 Open this link in a new tabHow to fix?
Upgrade Amazon-Linux:2 kernel-debuginfo to version 0:4.14.55-68.37.amzn2 or higher.
This issue was patched in ALAS2-2018-1046.
NVD Description
Note: Versions mentioned in the description apply only to the upstream kernel-debuginfo package and not the kernel-debuginfo package as distributed by Amazon-Linux.
See How to fix? for Amazon-Linux:2 relevant fixed versions and status.
In the Linux kernel 4.13 through 4.16.11, ext4_read_inline_data() in fs/ext4/inline.c performs a memcpy with an untrusted length value in certain circumstances involving a crafted filesystem that stores the system.data extended attribute value in a dedicated inode.
References
- http://www.securityfocus.com/bid/104291
- http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11412
- https://www.exploit-db.com/exploits/44832/
- https://bugs.chromium.org/p/project-zero/issues/detail?id=1580
- https://bugzilla.kernel.org/show_bug.cgi?id=199803
- https://access.redhat.com/errata/RHSA-2019:0525
- https://usn.ubuntu.com/3752-1/
- https://usn.ubuntu.com/3752-2/
- https://usn.ubuntu.com/3752-3/