High severity7.8CISA KEVNVD Advisory· Published Sep 25, 2018· Updated Jun 17, 2026
CVE-2018-14634
CVE-2018-14634
Description
An integer overflow flaw was found in the Linux kernel's create_elf_tables() function. An unprivileged local user with access to SUID (or otherwise privileged) binary could use this flaw to escalate their privileges on the system. Kernel versions 2.6.x, 3.10.x and 4.14.x are believed to be vulnerable.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
74- osv-coords72 versionspkg:rpm/suse/kernel-bigmem&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4pkg:rpm/suse/kernel-bigmem&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4pkg:rpm/suse/kernel-bigsmp&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-LTSSpkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Point%20of%20Sale%2011%20SP3pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-LTSSpkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1-LTSSpkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%2012-LTSSpkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4pkg:rpm/suse/kernel-default&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1pkg:rpm/suse/kernel-docs&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2011%20SP4pkg:rpm/suse/kernel-ec2&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2012pkg:rpm/suse/kernel-ec2&distro=SUSE%20Linux%20Enterprise%20Point%20of%20Sale%2011%20SP3pkg:rpm/suse/kernel-ec2&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-LTSSpkg:rpm/suse/kernel-ec2&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4pkg:rpm/suse/kernel-ec2&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4pkg:rpm/suse/kernel-pae&distro=SUSE%20Linux%20Enterprise%20Point%20of%20Sale%2011%20SP3pkg:rpm/suse/kernel-pae&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-LTSSpkg:rpm/suse/kernel-pae&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4pkg:rpm/suse/kernel-pae&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4pkg:rpm/suse/kernel-ppc64&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4pkg:rpm/suse/kernel-ppc64&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4pkg:rpm/suse/kernel-rt&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2011%20SP4pkg:rpm/suse/kernel-rt_trace&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2011%20SP4pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Point%20of%20Sale%2011%20SP3pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-LTSSpkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1-LTSSpkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%2012-LTSSpkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4pkg:rpm/suse/kernel-source&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1pkg:rpm/suse/kernel-source-rt&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2011%20SP4pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Point%20of%20Sale%2011%20SP3pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-LTSSpkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1-LTSSpkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%2012-LTSSpkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4pkg:rpm/suse/kernel-syms&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1pkg:rpm/suse/kernel-syms-rt&distro=SUSE%20Linux%20Enterprise%20Real%20Time%2011%20SP4pkg:rpm/suse/kernel-trace&distro=SUSE%20Linux%20Enterprise%20Point%20of%20Sale%2011%20SP3pkg:rpm/suse/kernel-trace&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-LTSSpkg:rpm/suse/kernel-trace&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4pkg:rpm/suse/kernel-trace&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4pkg:rpm/suse/kernel-xen&distro=SUSE%20Linux%20Enterprise%20Point%20of%20Sale%2011%20SP3pkg:rpm/suse/kernel-xen&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP3-LTSSpkg:rpm/suse/kernel-xen&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4pkg:rpm/suse/kernel-xen&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1-LTSSpkg:rpm/suse/kernel-xen&distro=SUSE%20Linux%20Enterprise%20Server%2012-LTSSpkg:rpm/suse/kernel-xen&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4pkg:rpm/suse/kernel-xen&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1pkg:rpm/suse/kgraft-patch-SLE12-SP1_Update_22&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1-LTSSpkg:rpm/suse/kgraft-patch-SLE12-SP1_Update_23&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1-LTSSpkg:rpm/suse/kgraft-patch-SLE12-SP1_Update_24&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1-LTSSpkg:rpm/suse/kgraft-patch-SLE12-SP1_Update_25&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1-LTSSpkg:rpm/suse/kgraft-patch-SLE12-SP1_Update_26&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1-LTSSpkg:rpm/suse/kgraft-patch-SLE12-SP1_Update_27&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1-LTSSpkg:rpm/suse/kgraft-patch-SLE12-SP1_Update_28&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1-LTSSpkg:rpm/suse/kgraft-patch-SLE12-SP1_Update_29&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1-LTSSpkg:rpm/suse/kgraft-patch-SLE12-SP1_Update_30&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1-LTSSpkg:rpm/suse/kgraft-patch-SLE12-SP1_Update_31&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1pkg:rpm/suse/kgraft-patch-SLE12_Update_28&distro=SUSE%20Linux%20Enterprise%20Server%2012-LTSSpkg:rpm/suse/kgraft-patch-SLE12_Update_29&distro=SUSE%20Linux%20Enterprise%20Server%2012-LTSSpkg:rpm/suse/kgraft-patch-SLE12_Update_30&distro=SUSE%20Linux%20Enterprise%20Server%2012-LTSSpkg:rpm/suse/kgraft-patch-SLE12_Update_31&distro=SUSE%20Linux%20Enterprise%20Server%2012-LTSSpkg:rpm/suse/kgraft-patch-SLE12_Update_32&distro=SUSE%20Linux%20Enterprise%20Server%2012-LTSSpkg:rpm/suse/kgraft-patch-SLE12_Update_33&distro=SUSE%20Linux%20Enterprise%20Server%2012-LTSSpkg:rpm/suse/kgraft-patch-SLE12_Update_34&distro=SUSE%20Linux%20Enterprise%20Server%2012-LTSSpkg:rpm/suse/kgraft-patch-SLE12_Update_35&distro=SUSE%20Linux%20Enterprise%20Server%2012-LTSSpkg:rpm/suse/kgraft-patch-SLE12_Update_36&distro=SUSE%20Linux%20Enterprise%20Server%2012-LTSSpkg:rpm/suse/kgraft-patch-SLE12_Update_37&distro=SUSE%20Linux%20Enterprise%20Server%2012-LTSSpkg:rpm/suse/kgraft-patch-SLE12_Update_38&distro=SUSE%20Linux%20Enterprise%20Server%2012-LTSS
< 3.0.101-108.71.1+ 71 more
- (no CPE)range: < 3.0.101-108.71.1
- (no CPE)range: < 3.0.101-108.71.1
- (no CPE)range: < 3.0.101-0.47.106.50.1
- (no CPE)range: < 3.0.101-0.47.106.50.1
- (no CPE)range: < 3.0.101-0.47.106.50.1
- (no CPE)range: < 3.0.101-108.71.1
- (no CPE)range: < 3.12.74-60.64.104.1
- (no CPE)range: < 3.12.61-52.146.1
- (no CPE)range: < 3.0.101-108.71.1
- (no CPE)range: < 3.12.74-60.64.104.1
- (no CPE)range: < 3.0.101-108.71.1
- (no CPE)range: < 3.12.74-60.64.104.1
- (no CPE)range: < 3.0.101-0.47.106.50.1
- (no CPE)range: < 3.0.101-0.47.106.50.1
- (no CPE)range: < 3.0.101-108.71.1
- (no CPE)range: < 3.0.101-108.71.1
- (no CPE)range: < 3.0.101-0.47.106.50.1
- (no CPE)range: < 3.0.101-0.47.106.50.1
- (no CPE)range: < 3.0.101-108.71.1
- (no CPE)range: < 3.0.101-108.71.1
- (no CPE)range: < 3.0.101-108.71.1
- (no CPE)range: < 3.0.101-108.71.1
- (no CPE)range: < 3.0.101.rt130-69.36.1
- (no CPE)range: < 3.0.101.rt130-69.36.1
- (no CPE)range: < 3.0.101-0.47.106.50.1
- (no CPE)range: < 3.0.101-0.47.106.50.1
- (no CPE)range: < 3.0.101-108.71.1
- (no CPE)range: < 3.12.74-60.64.104.1
- (no CPE)range: < 3.12.61-52.146.1
- (no CPE)range: < 3.0.101-108.71.1
- (no CPE)range: < 3.12.74-60.64.104.1
- (no CPE)range: < 3.0.101.rt130-69.36.1
- (no CPE)range: < 3.0.101-0.47.106.50.1
- (no CPE)range: < 3.0.101-0.47.106.50.1
- (no CPE)range: < 3.0.101-108.71.1
- (no CPE)range: < 3.12.74-60.64.104.1
- (no CPE)range: < 3.12.61-52.146.1
- (no CPE)range: < 3.0.101-108.71.1
- (no CPE)range: < 3.12.74-60.64.104.1
- (no CPE)range: < 3.0.101.rt130-69.36.1
- (no CPE)range: < 3.0.101-0.47.106.50.1
- (no CPE)range: < 3.0.101-0.47.106.50.1
- (no CPE)range: < 3.0.101-108.71.1
- (no CPE)range: < 3.0.101-108.71.1
- (no CPE)range: < 3.0.101-0.47.106.50.1
- (no CPE)range: < 3.0.101-0.47.106.50.1
- (no CPE)range: < 3.0.101-108.71.1
- (no CPE)range: < 3.12.74-60.64.104.1
- (no CPE)range: < 3.12.61-52.146.1
- (no CPE)range: < 3.0.101-108.71.1
- (no CPE)range: < 3.12.74-60.64.104.1
- (no CPE)range: < 10-2.1
- (no CPE)range: < 9-2.1
- (no CPE)range: < 8-2.1
- (no CPE)range: < 8-2.1
- (no CPE)range: < 8-2.1
- (no CPE)range: < 6-2.1
- (no CPE)range: < 5-2.1
- (no CPE)range: < 5-2.1
- (no CPE)range: < 4-2.1
- (no CPE)range: < 1-2.5.1
- (no CPE)range: < 10-2.1
- (no CPE)range: < 10-2.1
- (no CPE)range: < 9-2.1
- (no CPE)range: < 9-2.1
- (no CPE)range: < 9-2.1
- (no CPE)range: < 8-2.1
- (no CPE)range: < 6-2.1
- (no CPE)range: < 5-2.1
- (no CPE)range: < 5-2.1
- (no CPE)range: < 4-2.1
- (no CPE)range: < 1-1.5.1
Patches
Vulnerability mechanics
References
23- security.netapp.com/advisory/ntap-20190204-0002/nvdPatchThird Party Advisory
- www.exploit-db.com/exploits/45516/nvdExploitThird Party AdvisoryVDB Entry
- www.openwall.com/lists/oss-security/2018/09/25/4nvdExploitMailing ListThird Party Advisory
- www.openwall.com/lists/oss-security/2021/07/20/2nvdMailing ListThird Party Advisory
- www.securityfocus.com/bid/105407nvdBroken LinkThird Party AdvisoryVDB Entry
- access.redhat.com/errata/RHSA-2018:2748nvdThird Party Advisory
- access.redhat.com/errata/RHSA-2018:2763nvdThird Party Advisory
- access.redhat.com/errata/RHSA-2018:2846nvdThird Party Advisory
- access.redhat.com/errata/RHSA-2018:2924nvdThird Party Advisory
- access.redhat.com/errata/RHSA-2018:2925nvdThird Party Advisory
- access.redhat.com/errata/RHSA-2018:2933nvdThird Party Advisory
- access.redhat.com/errata/RHSA-2018:3540nvdThird Party Advisory
- access.redhat.com/errata/RHSA-2018:3586nvdThird Party Advisory
- access.redhat.com/errata/RHSA-2018:3590nvdThird Party Advisory
- access.redhat.com/errata/RHSA-2018:3591nvdThird Party Advisory
- access.redhat.com/errata/RHSA-2018:3643nvdThird Party Advisory
- bugzilla.redhat.com/show_bug.cginvdIssue TrackingThird Party Advisory
- security.paloaltonetworks.com/CVE-2018-14634nvdThird Party Advisory
- support.f5.com/csp/article/K20934447nvdThird Party Advisory
- usn.ubuntu.com/3775-1/nvdThird Party Advisory
- usn.ubuntu.com/3775-2/nvdThird Party Advisory
- usn.ubuntu.com/3779-1/nvdThird Party Advisory
- www.cisa.gov/known-exploited-vulnerabilities-catalognvdUS Government Resource
News mentions
0No linked articles in our index yet.