Executive Summary

Informations
NameCVE-2018-20511First vendor Publication2018-12-27
VendorCveLast vendor Modification2019-04-01

Security-Database Scoring CVSS v2

Cvss vector : (AV:L/AC:L/Au:N/C:P/I:N/A:N)
Cvss Base Score2.1Attack RangeLocal
Cvss Impact Score2.9Attack ComplexityLow
Cvss Expoit Score3.9AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

An issue was discovered in the Linux kernel before 4.18.11. The ipddp_ioctl function in drivers/net/appletalk/ipddp.c allows local users to obtain sensitive kernel address information by leveraging CAP_NET_ADMIN to read the ipddp_route dev and next fields via an SIOCFINDIPDDPRT ioctl call.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20511

CWE : Common Weakness Enumeration

%idName
100 %CWE-200Information Exposure

CPE : Common Platform Enumeration

TypeDescriptionCount
Os1
Os2690

Sources (Detail)

SourceUrl
BID http://www.securityfocus.com/bid/106347
MISC http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=982...
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.18.11
https://github.com/torvalds/linux/commit/9824dfae5741275473a23a7ed5756c7b6efa...
https://lkml.org/lkml/2018/9/27/480
MLIST https://lists.debian.org/debian-lts-announce/2019/03/msg00034.html
https://lists.debian.org/debian-lts-announce/2019/04/msg00004.html

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
DateInformations
2019-04-05 00:19:00
  • Multiple Updates
2019-04-02 05:18:42
  • Multiple Updates
2019-03-29 00:19:15
  • Multiple Updates
2019-03-28 00:19:04
  • Multiple Updates
2019-01-31 21:19:34
  • Multiple Updates
2018-12-29 17:19:26
  • Multiple Updates
2018-12-27 17:19:23
  • First insertion