18 Déc 2018
CVE-2018-16884 - CVE Vulnerability
A flaw was found in the Linux kernel in the NFS41+ subsystem. NFS41+ shares mounted in different network namespaces at the same time can make bc_svc_process() use wrong back-channel id and cause a use-after-free. Thus a malicious container user can cause a host kernel memory corruption and a system panic. Due to the nature of the flaw, privilege escalation cannot be fully ruled out. (CVSS:0.0) (Last Update:2018-12-18)
Vulnerability Details : A flaw was found in the Linux kernel in the NFS41+ subsystem. NFS41+ shares mounted in different network namespaces at the same time can make bc_svc_process() use wrong back-channel id and cause a use-after-free. Thus a malicious container user can cause a host kernel memory corruption and a system panic. Due to the nature of the flaw, privilege escalation cannot be fully ruled out. Publish Date : 2018-12-18 Last Update Date : 2018-12-18 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2018-16884
- References For CVE-2018-16884
| ||||||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2018-16884There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information) |