CVE-2018-1123

LOW

procps-ng <3.3.15 - DoS

Title source: llm

Description

procps-ng before version 3.3.15 is vulnerable to a denial of service in ps via mmap buffer overflow. Inbuilt protection in ps maps a guard page at the end of the overflowed buffer, ensuring that the impact of this flaw is limited to a crash (temporary denial of service).

Exploits (2)

exploitdb WRITEUP

by Qualys Corporation · textlocallinux

https://www.exploit-db.com/exploits/44806

View Code ZIP pw:eip

nomisec STUB

by aravinddathd · poc

https://github.com/aravinddathd/CVE-2018-1123

View Code ZIP pw:eip

References (14)

Core 14

Core References

Third Party Advisory vendor-advisory x_refsource_ubuntu

https://usn.ubuntu.com/3658-1/

Third Party Advisory vendor-advisory x_refsource_debian

https://www.debian.org/security/2018/dsa-4208

Third Party Advisory vendor-advisory x_refsource_gentoo

https://security.gentoo.org/glsa/201805-14

Third Party Advisory, VDB Entry exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/44806/

Third Party Advisory mailing-list x_refsource_mlist

https://lists.debian.org/debian-lts-announce/2018/05/msg00021.html

Third Party Advisory vendor-advisory x_refsource_ubuntu

https://usn.ubuntu.com/3658-3/

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/104214

Mailing List, Third Party Advisory mailing-list x_refsource_mlist

http://seclists.org/oss-sec/2018/q2/122

Issue Tracking, Patch, Third Party Advisory x_refsource_confirm

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-1123

Exploit, Third Party Advisory x_refsource_misc

https://www.qualys.com/2018/05/17/procps-ng-audit-report-advisory.txt

Mailing List vendor-advisory x_refsource_suse

http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00058.html

Mailing List vendor-advisory x_refsource_suse

http://lists.opensuse.org/opensuse-security-announce/2019-10/msg00059.html

Mailing List mailing-list x_refsource_mlist

https://lists.apache.org/thread.html/rf4c02775860db415b4955778a131c2795223f61cb8c6a450893651e4%40%3Cissues.bookkeeper.apache.org%3E

Mailing List mailing-list x_refsource_mlist

https://lists.apache.org/thread.html/r58af02e294bd07f487e2c64ffc0a29b837db5600e33b6e698b9d696b%40%3Cissues.bookkeeper.apache.org%3E

Scores

CVSS v3 3.9

EPSS 0.0331

EPSS Percentile 87.3%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:L

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-119 CWE-122

Status published

Products (9)

canonical/ubuntu_linux 12.04

canonical/ubuntu_linux 14.04

canonical/ubuntu_linux 16.04

canonical/ubuntu_linux 17.10

canonical/ubuntu_linux 18.04

debian/debian_linux 7.0

debian/debian_linux 8.0

debian/debian_linux 9.0

procps-ng_project/procps-ng < 3.3.15

Published May 23, 2018

Tracked Since Feb 18, 2026