Vulnerability Name:

CVE-2018-14722 (CCN-148374)

Assigned:2018-08-14
Published:2018-08-14
Updated:2019-10-03
Summary:An issue was discovered in evaluate_auto_mountpoint in btrfsmaintenance-functions in btrfsmaintenance through 0.4.1. Code execution as root can occur via a specially crafted filesystem label if btrfs-{scrub,balance,trim} are set to auto in /etc/sysconfig/btrfsmaintenance (this is not the default, though).
CVSS v3 Severity:8.1 High (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H)
7.1 High (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:U/RC:R)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): High
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
7.8 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H)
6.9 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:U/RC:R)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): Required
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
CVSS v2 Severity:9.3 High (CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
6.8 Medium (CCN CVSS v2 Vector: AV:L/AC:L/Au:S/C:C/I:C/A:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Athentication (Au): Single_Instance
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
Vulnerability Type:CWE-noinfo
Vulnerability Consequences:Gain Access
References:Source: MITRE
Type: CNA
CVE-2018-14722

Source: CCN
Type: oss-sec Mailing List, Tue, 14 Aug 2018 17:57:18 +0200
CVE-2018-14722: btrfsmaintenance: Code execution

Source: MLIST
Type: Mailing List, Third Party Advisory
[oss-security] 20180814 CVE-2018-14722: btrfsmaintenance: Code execution

Source: MLIST
Type: UNKNOWN
[oss-security] 20190627 Re: linux-distros membership application - Microsoft

Source: MLIST
Type: UNKNOWN
[oss-security] 20190628 Re: linux-distros membership application - Microsoft

Source: MLIST
Type: UNKNOWN
[oss-security] 20190628 Re: linux-distros membership application - Microsoft

Source: CONFIRM
Type: Issue Tracking, Third Party Advisory
https://bugzilla.suse.com/show_bug.cgi?id=1102721

Source: XF
Type: UNKNOWN
btrfsmaintenance-cve201814722-code-exec(148374)

Source: CCN
Type: btrfsmaintenance GIT Repository
btrfsmaintenance

Vulnerable Configuration:Configuration 1:
  • cpe:/a:btrfsmaintenance_project:btrfsmaintenance:*:*:*:*:*:*:*:* (Version <= 0.4.1)

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:201814722
    V
    		CVE-2018-14722
    2023-06-22
    oval:org.opensuse.security:def:7454
    P
    		btrfsmaintenance-0.4.2-3.3.1 on GA media (Moderate)
    2023-06-12
    oval:org.opensuse.security:def:619
    P
    		Security update for php8 (Important) (in QA)
    2022-10-03
    oval:org.opensuse.security:def:2881
    P
    		btrfsmaintenance-0.4.2-3.3.1 on GA media (Moderate)
    2022-06-22
    oval:org.opensuse.security:def:94511
    P
    		btrfsmaintenance-0.4.2-3.3.1 on GA media (Moderate)
    2022-06-22
    oval:org.opensuse.security:def:321
    P
    		tpm2.0-tools-4.3.0-2.3 on GA media (Moderate)
    2022-06-13
    oval:org.opensuse.security:def:19
    P
    		btrfsmaintenance-0.4.2-1.11 on GA media (Moderate)
    2022-06-13
    oval:org.opensuse.security:def:948
    P
    		Security update for polkit (Moderate)
    2022-02-18
    oval:org.opensuse.security:def:112027
    P
    		btrfsmaintenance-0.5-2.5 on GA media (Moderate)
    2022-01-17
    oval:org.opensuse.security:def:70808
    P
    		Security update for the Linux Kernel (Important)
    2021-12-06
    oval:org.opensuse.security:def:105583
    P
    		btrfsmaintenance-0.5-2.5 on GA media (Moderate)
    2021-10-01
    oval:org.opensuse.security:def:89565
    P
    		btrfsmaintenance-0.4.2-1.11 on GA media (Moderate)
    2021-09-21
    oval:org.opensuse.security:def:61410
    P
    		btrfsmaintenance-0.4.2-1.11 on GA media (Moderate)
    2021-09-21
    oval:org.opensuse.security:def:71151
    P
    		btrfsmaintenance-0.4.2-1.11 on GA media (Moderate)
    2021-09-21
    oval:org.opensuse.security:def:103220
    P
    		btrfsmaintenance-0.4.2-1.11 on GA media (Moderate)
    2021-09-21
    oval:org.opensuse.security:def:96530
    P
    		btrfsmaintenance-0.4.2-1.11 on GA media (Moderate)
    2021-09-21
    oval:org.opensuse.security:def:67568
    P
    		Security update for openssl-1_0_0 (Low)
    2021-09-09
    oval:org.opensuse.security:def:69711
    P
    		Security update for libass (Important)
    2021-08-20
    oval:org.opensuse.security:def:47841
    P
    		pam-modules-12.1-23.12 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:48070
    P
    		libSoundTouch0-1.7.1-5.11.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47395
    P
    		libpng16-16-1.6.8-14.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47903
    P
    		tcpdump-4.9.2-14.5.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:46978
    P
    		kdump-0.8.15-28.5 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47543
    P
    		DirectFB-1.7.1-6.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47968
    P
    		bzip2-1.0.6-30.8.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47171
    P
    		update-alternatives-1.18.4-14.216 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47757
    P
    		libopus0-1.1-3.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47999
    P
    		ecryptfs-utils-103-8.3.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47303
    P
    		lftp-4.7.4-1.13 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:62037
    P
    		btrfsmaintenance-0.4.2-1.11 on GA media (Moderate)
    2021-08-09
    oval:org.opensuse.security:def:71778
    P
    		btrfsmaintenance-0.4.2-1.11 on GA media (Moderate)
    2021-08-09
    oval:org.opensuse.security:def:100795
    P
    		btrfsmaintenance-0.4.2-1.11 on GA media (Moderate)
    2021-08-09
    oval:org.opensuse.security:def:46857
    P
    		tftp-5.2-10.3 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:48708
    P
    		typelib-1_0-EvinceDocument-3_0-3.10.3-1.213 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:46842
    P
    		shim-0.9-2.14 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:48762
    P
    		NetworkManager-1.0.12-8.6 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:46843
    P
    		smt-3.0.8-1.4 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:70921
    P
    		gstreamer-1.12.5-1.17 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:100388
    P
    		 (Low)
    2021-03-29
    oval:org.opensuse.security:def:69606
    P
    		Security update for git (Important)
    2021-03-09
    oval:org.opensuse.security:def:107054
    P
    		btrfsmaintenance-0.4.2-1.11 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:49006
    P
    		libatalk12-3.1.0-3.3.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:116612
    P
    		btrfsmaintenance-0.4.2-1.11 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:93675
    P
    		btrfsmaintenance-0.4.2-1.11 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:61708
    P
    		btrfsmaintenance-0.4.2-1.11 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:49060
    P
    		typelib-1_0-Gtk-2_0-2.24.31-9.6.28 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:71449
    P
    		btrfsmaintenance-0.4.2-1.11 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:64221
    P
    		btrfsmaintenance on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:66263
    P
    		Security update for ffmpeg (Low)
    2020-12-01
    oval:org.opensuse.security:def:73046
    P
    		btrfsmaintenance on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:66355
    P
    		btrfsmaintenance on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:67468
    P
    		Security update for libvirt (Important)
    2020-12-01
    oval:org.opensuse.security:def:72928
    P
    		Security update for rubygem-actionview-5_1 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:64134
    P
    		Security update for xerces-c (Moderate)
    2020-12-01
    oval:com.ubuntu.cosmic:def:201814722000
    V
    		CVE-2018-14722 on Ubuntu 18.10 (cosmic) - medium.
    2018-08-15
    oval:com.ubuntu.cosmic:def:2018147220000000
    V
    		CVE-2018-14722 on Ubuntu 18.10 (cosmic) - medium.
    2018-08-15
    oval:com.ubuntu.disco:def:2018147220000000
    V
    		CVE-2018-14722 on Ubuntu 19.04 (disco) - medium.
    2018-08-15
    BACK
    btrfsmaintenance_project btrfsmaintenance *