Home
Packages
Forums
Wiki
GitLab
Security
AUR
Download

issues
advisories
todo
stats
log
login

CVE-2018-1120 - log back

CVE-2018-1120 created at 25 Sep 2019 19:31:40

Severity

+

Medium

Remote

+

Local

Type

+	Denial of service

Description

+

A denial of service has been found in Linux <= 4.16.9. An attacker can block any read() access to /proc/PID/cmdline by mmap()ing a FUSE file (Filesystem in Userspace) onto this process's command-line arguments. The attacker can therefore block pgrep, pidof, pkill, ps, and w, either forever (a denial of service), or for some controlled time (a synchronization tool for exploiting other vulnerabilities).

References

+	https://www.qualys.com/2018/05/17/procps-ng-audit-report-advisory.txt
+	https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=7f7ccc2ccc2e70c6054685f5e3522efa81556830

Notes

+	Fixed in v4.17