Executive Summary

Informations
NameCVE-2018-20784First vendor Publication2019-02-22
VendorCveLast vendor Modification2019-02-22

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:P/I:P/A:P)
Cvss Base Score7.5Attack RangeNetwork
Cvss Impact Score6.4Attack ComplexityLow
Cvss Expoit Score10AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

In the Linux kernel before 4.20.2, kernel/sched/fair.c mishandles leaf cfs_rq's, which allows attackers to cause a denial of service (infinite loop in update_blocked_averages) or possibly have unspecified other impact by inducing a high load.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20784

CWE : Common Weakness Enumeration

%idName
100 %CWE-400Uncontrolled Resource Consumption ('Resource Exhaustion')

CPE : Common Platform Enumeration

TypeDescriptionCount
Os2723

Sources (Detail)

SourceUrl
MISC http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=c40...
https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.20.2
https://github.com/torvalds/linux/commit/c40f7d74c741a907cfaeb73a7697081881c4...

Alert History

If you want to see full details history, please login or register.
0
DateInformations
2019-02-23 09:19:22
  • First insertion