CVE-2018-5814

HIGH

Linux Kernel <4.16.11-4.4.133 - Use After Free

Title source: llm
STIX 2.1

Description

In the Linux Kernel before version 4.16.11, 4.14.43, 4.9.102, and 4.4.133, multiple race condition errors when handling probe, disconnect, and rebind operations can be exploited to trigger a use-after-free condition or a NULL pointer dereference by sending multiple USB over IP packets.

References (18)

Core 18
Core References
Third Party Advisory vendor-advisory x_refsource_ubuntu
https://usn.ubuntu.com/3752-2/
Third Party Advisory mailing-list x_refsource_mlist
https://lists.debian.org/debian-lts-announce/2018/07/msg00015.html
Third Party Advisory vendor-advisory x_refsource_ubuntu
https://usn.ubuntu.com/3696-1/
Third Party Advisory vendor-advisory x_refsource_ubuntu
https://usn.ubuntu.com/3752-3/
Third Party Advisory mailing-list x_refsource_mlist
https://lists.debian.org/debian-lts-announce/2018/07/msg00016.html
Third Party Advisory mailing-list x_refsource_mlist
https://lists.debian.org/debian-lts-announce/2018/07/msg00020.html
Third Party Advisory vendor-advisory x_refsource_ubuntu
https://usn.ubuntu.com/3696-2/
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1041050
Third Party Advisory third-party-advisory x_refsource_secunia
https://secuniaresearch.flexerasoftware.com/advisories/81540/
Third Party Advisory vendor-advisory x_refsource_ubuntu
https://usn.ubuntu.com/3752-1/

Scores

CVSS v3 7.0
EPSS 0.0003
EPSS Percentile 7.9%
Attack Vector LOCAL
CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-362
Status published
Products (4)
canonical/ubuntu_linux 16.04
canonical/ubuntu_linux 18.04
debian/debian_linux 8.0
linux/linux_kernel < 4.4.133
Published Jun 12, 2018
Tracked Since Feb 18, 2026