Improper Action Name Cleanup Affecting torvalds/linux package, versions [3.2,4.9.135)[4.9.136,4.14.78)[4.14.79,4.18.16)[4.18.17,4.19)


Severity

Recommended
0.0
high
0
10

CVSS assessment made by Snyk's Security Team. Learn more

Threat Intelligence

EPSS
0.24% (63rd percentile)

Do your applications use this vulnerable package?

In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.

Test your applications
  • Snyk IDSNYK-UNMANAGED-TORVALDSLINUX-3006347
  • published26 Jan 2022
  • disclosed30 Oct 2018
  • creditUnknown

Introduced: 30 Oct 2018

CVE-2018-18281  (opens in a new tab)
CWE-459  (opens in a new tab)

How to fix?

Upgrade torvalds/linux to version 4.9.135, 4.14.78, 4.18.16, 4.19 or higher.

Overview

Affected versions of this package are vulnerable to Improper Action Name Cleanup. Since Linux kernel version 3.2, the mremap() syscall performs TLB flushes after dropping pagetable locks. If a syscall such as ftruncate() removes entries from the pagetables of a task that is in the middle of mremap(), a stale TLB entry can remain for a short time that permits access to a physical page after it has been released back to the page allocator and reused. This is fixed in the following kernel versions: 4.9.135, 4.14.78, 4.18.16, 4.19.

References

CVSS Base Scores

version 3.1