CVE-2018-17182

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2018-17182

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2018-17182.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2018-17182

Downstream

DEBIAN-CVE-2018-17182

DLA-1529-1

DLA-1531-1

DSA-4308-1

RHSA-2018:3656

SUSE-SU-2018:3003-1

SUSE-SU-2018:3004-1

SUSE-SU-2018:3032-1

SUSE-SU-2018:3032-2

SUSE-SU-2018:3083-1

SUSE-SU-2018:3084-1

SUSE-SU-2018:3100-1

SUSE-SU-2018:3158-1

SUSE-SU-2018:3159-1

SUSE-SU-2018:3164-1

SUSE-SU-2018:3171-1

SUSE-SU-2018:3172-1

SUSE-SU-2018:3173-1

SUSE-SU-2018:3238-1

SUSE-SU-2018:3272-1

SUSE-SU-2018:3331-1

SUSE-SU-2018:3659-1

SUSE-SU-2018:3961-1

SUSE-SU-2019:0095-1

UBUNTU-CVE-2018-17182

USN-3776-1

USN-3776-2

USN-3777-1

USN-3777-2

USN-3777-3

Related

Published

2018-09-19T09:29:00Z

Modified

2025-08-09T20:01:26Z

Severity

7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

An issue was discovered in the Linux kernel through 4.18.8. The vmacacheflushall function in mm/vmacache.c mishandles sequence number overflows. An attacker can trigger a use-after-free (and possibly gain privileges) via certain thread creation, map, unmap, invalidation, and dereference operations.

References

Affected packages