CVE-2018-13053
- Source
- https://cve.org/CVERecord?id=CVE-2018-13053
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2018-13053.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2018-13053
- Downstream
- Related
- Withdrawn
- 2026-01-27T04:16:06.245274Z
- Published
- 2018-07-02T12:29:00Z
- Modified
- 2026-01-27T04:16:06.245274Z
- Severity
-
- 3.3 (Low) CVSS_V3 - CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L CVSS Calculator
- Summary
- [none]
- Details
-
The alarmtimernsleep function in kernel/time/alarmtimer.c in the Linux kernel through 4.17.3 has an integer overflow via a large relative timeout because ktimeaddsafe is not used.
- References
-
- http://www.securityfocus.com/bid/104671
- https://access.redhat.com/errata/RHSA-2019:0831
- https://access.redhat.com/errata/RHSA-2019:2029
- https://access.redhat.com/errata/RHSA-2019:2043
- https://bugzilla.kernel.org/show_bug.cgi?id=200303
- https://git.kernel.org/pub/scm/linux/kernel/git/tip/tip.git/commit/?id=5f936e19cc0ef97dbe3a56e9498922ad5ba1edef
- https://lists.debian.org/debian-lts-announce/2019/03/msg00017.html
- https://lists.debian.org/debian-lts-announce/2019/03/msg00034.html
- https://usn.ubuntu.com/3821-1/
- https://usn.ubuntu.com/3821-2/
- https://lists.debian.org/debian-lts-announce/2019/04/msg00004.html
- https://usn.ubuntu.com/4094-1/
- https://usn.ubuntu.com/4118-1/