| Vulnerability Name: | CVE-2018-20511 (CCN-154857) | ||||||||||||||||||||||||||||||||||||
| Assigned: | 2018-09-13 | ||||||||||||||||||||||||||||||||||||
| Published: | 2018-09-13 | ||||||||||||||||||||||||||||||||||||
| Updated: | 2019-04-01 | ||||||||||||||||||||||||||||||||||||
| Summary: | An issue was discovered in the Linux kernel before 4.18.11. The ipddp_ioctl function in drivers/net/appletalk/ipddp.c allows local users to obtain sensitive kernel address information by leveraging CAP_NET_ADMIN to read the ipddp_route dev and next fields via an SIOCFINDIPDDPRT ioctl call. | ||||||||||||||||||||||||||||||||||||
| CVSS v3 Severity: | 5.5 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N) 4.8 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C)
3.5 Low (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C)
| ||||||||||||||||||||||||||||||||||||
| CVSS v2 Severity: | 2.1 Low (CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N)
| ||||||||||||||||||||||||||||||||||||
| Vulnerability Type: | CWE-200 | ||||||||||||||||||||||||||||||||||||
| Vulnerability Consequences: | Obtain Information | ||||||||||||||||||||||||||||||||||||
| References: | Source: MITRE Type: CNA CVE-2018-20511 Source: MISC Type: Patch, Vendor Advisory http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=9824dfae5741275473a23a7ed5756c7b6efacc9d Source: BID Type: Third Party Advisory, VDB Entry 106347 Source: MISC Type: Release Notes, Vendor Advisory https://cdn.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.18.11 Source: XF Type: UNKNOWN linux-kernel-cve201820511-info-disc(154857) Source: CCN Type: Linux Kernel GIT Repository net/appletalk: fix minor pointer leak to userspace in SIOCFINDIPDDPRT Source: MISC Type: Patch, Third Party Advisory https://github.com/torvalds/linux/commit/9824dfae5741275473a23a7ed5756c7b6efacc9d Source: MLIST Type: Mailing List, Third Party Advisory [debian-lts-announce] 20190327 [SECURITY] [DLA 1731-1] linux security update Source: MLIST Type: UNKNOWN [debian-lts-announce] 20190401 [SECURITY] [DLA 1731-2] linux regression update Source: MISC Type: Patch, Third Party Advisory https://lkml.org/lkml/2018/9/27/480 Source: UBUNTU Type: UNKNOWN USN-4094-1 Source: UBUNTU Type: UNKNOWN USN-4118-1 Source: CCN Type: WhiteSource Vulnerability Database CVE-2018-20511 | ||||||||||||||||||||||||||||||||||||
| Vulnerable Configuration: | Configuration 1: Configuration 2: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||||||||||||||||||||||||||||||
| Oval Definitions | |||||||||||||||||||||||||||||||||||||
| |||||||||||||||||||||||||||||||||||||
| BACK | |||||||||||||||||||||||||||||||||||||