Your submission was sent successfully! Close

CVE-2018-1130

Published: 10 May 2018

Linux kernel before version 4.16-rc7 is vulnerable to a null pointer dereference in dccp_write_xmit() function in net/dccp/output.c in that allows a local user to cause a denial of service by a number of certain crafted system calls.

From the Ubuntu Security Team

It was discovered that a null pointer dereference vulnerability existed in the DCCP protocol implementation in the Linux kernel. A local attacker could use this to cause a denial of service (system crash).

Notes

AuthorNote
sbeattie
Introduced in fix for CVE-2017-8824

Mitigation

Blacklist the dccp ipv[46] autoloading aliases by adding the following
lines to /etc/modprobe.d/blacklist-dccp.conf:
  alias net-pf-2-proto-0-type-6 off
  alias net-pf-2-proto-33-type-6 off
  alias net-pf-10-proto-0-type-6 off
  alias net-pf-10-proto-33-type-6 off
Priority

Medium

CVSS 3 base score: 5.5

Status

Package Release Status
linux
Launchpad, Ubuntu, Debian
artful
Released (4.13.0-46.51)
bionic Not vulnerable
(4.15.0-15.16)
precise Ignored
(was needed ESM criteria)
trusty
Released (3.13.0-153.203)
upstream
Released (4.16~rc7)
xenial
Released (4.4.0-127.153)
Patches:
Introduced by

69c64866ce072dea1d1e59a0d61e0f66c0dffb76

Fixed by 67f93df79aeefc3add4e4b31a752600f834236e2
linux-aws
Launchpad, Ubuntu, Debian
artful Does not exist

bionic Not vulnerable
(4.15.0-1003.3)
precise Does not exist

trusty
Released (4.4.0-1022.22)
upstream
Released (4.16~rc7)
xenial
Released (4.4.0-1060.69)
linux-azure
Launchpad, Ubuntu, Debian
artful Does not exist

bionic Not vulnerable
(4.15.0-1004.4)
precise Does not exist

trusty Not vulnerable
(4.15.0-1023.24~14.04.1)
upstream
Released (4.16~rc7)
xenial
Released (4.15.0-1013.13~16.04.2)
linux-euclid
Launchpad, Ubuntu, Debian
artful Does not exist

bionic Does not exist

precise Does not exist

trusty Does not exist

upstream
Released (4.16~rc7)
xenial Ignored
(was needed ESM criteria)
linux-flo
Launchpad, Ubuntu, Debian
artful Does not exist

bionic Does not exist

precise Does not exist

trusty Does not exist
(trusty was ignored [abandoned])
upstream
Released (4.16~rc7)
xenial Ignored
(abandoned)
linux-gcp
Launchpad, Ubuntu, Debian
artful Does not exist

bionic Not vulnerable
(4.15.0-1003.3)
precise Does not exist

trusty Does not exist

upstream
Released (4.16~rc7)
xenial
Released (4.15.0-1014.14~16.04.1)
linux-gke
Launchpad, Ubuntu, Debian
artful Does not exist

bionic Does not exist

precise Does not exist

trusty Does not exist

upstream
Released (4.16~rc7)
xenial Ignored
(was needs-triage now end-of-life)
linux-goldfish
Launchpad, Ubuntu, Debian
artful Does not exist

bionic Does not exist

precise Does not exist

trusty Does not exist
(trusty was ignored [abandoned])
upstream
Released (4.16~rc7)
xenial Ignored
(was needs-triage now end-of-life)
linux-grouper
Launchpad, Ubuntu, Debian
artful Does not exist

bionic Does not exist

precise Does not exist

trusty Does not exist
(trusty was ignored [abandoned])
upstream
Released (4.16~rc7)
xenial Does not exist

linux-hwe
Launchpad, Ubuntu, Debian
artful Does not exist

bionic Not vulnerable

precise Does not exist

trusty Does not exist

upstream
Released (4.16~rc7)
xenial
Released (4.15.0-24.26~16.04.1)
linux-hwe-edge
Launchpad, Ubuntu, Debian
artful Does not exist

bionic
Released (4.18.0-8.9~18.04.1)
precise Does not exist

trusty Does not exist

upstream
Released (4.16~rc7)
xenial
Released (4.15.0-24.26~16.04.1)
linux-kvm
Launchpad, Ubuntu, Debian
artful Does not exist

bionic Not vulnerable
(4.15.0-1004.4)
precise Does not exist

trusty Does not exist

upstream
Released (4.16~rc7)
xenial
Released (4.4.0-1026.31)
linux-lts-trusty
Launchpad, Ubuntu, Debian
artful Does not exist

bionic Does not exist

precise
Released (3.13.0-153.203~precise1)
trusty Does not exist

upstream
Released (4.16~rc7)
xenial Does not exist

linux-lts-utopic
Launchpad, Ubuntu, Debian
artful Does not exist

bionic Does not exist

precise Does not exist

trusty Does not exist
(trusty was ignored [out of standard support])
upstream
Released (4.16~rc7)
xenial Does not exist

linux-lts-vivid
Launchpad, Ubuntu, Debian
artful Does not exist

bionic Does not exist

precise Does not exist

trusty Does not exist
(trusty was ignored [out of standard support])
upstream
Released (4.16~rc7)
xenial Does not exist

linux-lts-wily
Launchpad, Ubuntu, Debian
artful Does not exist

bionic Does not exist

precise Does not exist

trusty Does not exist
(trusty was ignored [out of standard support])
upstream
Released (4.16~rc7)
xenial Does not exist

linux-lts-xenial
Launchpad, Ubuntu, Debian
artful Does not exist

bionic Does not exist

precise Does not exist

trusty
Released (4.4.0-127.153~14.04.1)
upstream
Released (4.16~rc7)
xenial Does not exist

linux-maguro
Launchpad, Ubuntu, Debian
artful Does not exist

bionic Does not exist

precise Does not exist

trusty Does not exist
(trusty was ignored [abandoned])
upstream
Released (4.16~rc7)
xenial Does not exist

linux-mako
Launchpad, Ubuntu, Debian
artful Does not exist

bionic Does not exist

precise Does not exist

trusty Does not exist
(trusty was ignored [abandoned])
upstream
Released (4.16~rc7)
xenial Ignored
(abandoned)
linux-manta
Launchpad, Ubuntu, Debian
artful Does not exist

bionic Does not exist

precise Does not exist

trusty Does not exist
(trusty was ignored [abandoned])
upstream
Released (4.16~rc7)
xenial Does not exist

linux-oem
Launchpad, Ubuntu, Debian
artful Does not exist

bionic Not vulnerable
(4.15.0-1002.3)
precise Does not exist

trusty Does not exist

upstream
Released (4.16~rc7)
xenial
Released (4.13.0-1031.35)
linux-raspi2
Launchpad, Ubuntu, Debian
artful
Released (4.13.0-1023.24)
bionic Not vulnerable
(4.15.0-1006.7)
precise Does not exist

trusty Does not exist

upstream
Released (4.16~rc7)
xenial
Released (4.4.0-1090.98)
linux-snapdragon
Launchpad, Ubuntu, Debian
artful
Released (4.4.0-1093.98)
bionic Not vulnerable

precise Does not exist

trusty Does not exist

upstream
Released (4.16~rc7)
xenial
Released (4.4.0-1093.98)