In sk_clone_lock of sock.c, there is a possible memory corruption due to type confusion. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android kernel. Android ID: A-113509306. References: Upstream kernel.
2018-12-06T14:29:01.860
2024-11-21T04:15:43.270
Modified
CVSSv3.1: 7.8 (HIGH)
AV:L/AC:L/Au:N/C:C/I:C/A:C
3.9
10.0
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | android | - | Yes | |
| Operating System | canonical | ubuntu_linux | 12.04 | Yes |
| Operating System | canonical | ubuntu_linux | 14.04 | Yes |
| Operating System | redhat | enterprise_linux_desktop | 7.0 | Yes |
| Operating System | redhat | enterprise_linux_server | 7.0 | Yes |
| Operating System | redhat | enterprise_linux_server_aus | 7.6 | Yes |
| Operating System | redhat | enterprise_linux_server_eus | 7.6 | Yes |
| Operating System | redhat | enterprise_linux_server_tus | 7.6 | Yes |
| Operating System | redhat | enterprise_linux_workstation | 7.0 | Yes |
| Operating System | linux | linux_kernel | < 3.10.108 | Yes |
| Operating System | linux | linux_kernel | < 3.16.58 | Yes |
| Operating System | linux | linux_kernel | < 3.18.77 | Yes |
| Operating System | linux | linux_kernel | < 4.1.46 | Yes |
| Operating System | linux | linux_kernel | < 4.4.94 | Yes |
| Operating System | linux | linux_kernel | < 4.9.55 | Yes |
| Operating System | linux | linux_kernel | < 4.13.6 | Yes |