CVE-2018-20856

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2018-20856

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2018-20856.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2018-20856

Downstream

BELL-CVE-2018-20856

DEBIAN-CVE-2018-20856

DLA-1885-1

DSA-4497-1

RHSA-2019:3055

RHSA-2019:3076

RHSA-2019:3089

RHSA-2019:3217

RHSA-2020:0100

RHSA-2020:0103

RHSA-2020:0543

RHSA-2020:0664

RHSA-2020:0698

SUSE-SU-2019:2263-1

SUSE-SU-2019:2299-1

SUSE-SU-2019:3228-1

SUSE-SU-2019:3232-1

SUSE-SU-2019:3252-1

SUSE-SU-2019:3258-1

SUSE-SU-2019:3260-1

SUSE-SU-2019:3261-1

UBUNTU-CVE-2018-20856

USN-4094-1

USN-4116-1

USN-4118-1

Related

Withdrawn

2026-01-27T04:17:08.619804Z

Published

2019-07-26T05:15:10Z

Modified

2026-01-27T04:17:08.619804Z

Severity

7.8 (High) CVSS_V3 - CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

An issue was discovered in the Linux kernel before 4.18.7. In block/blk-core.c, there is an _blkdrain_queue() use-after-free because a certain error case is mishandled.

References

Affected packages