Unrated severityNVD Advisory· Published Jan 3, 2019· Updated Aug 5, 2024
CVE-2018-16885
CVE-2018-16885
Description
A flaw was found in the Linux kernel that allows the userspace to call memcpy_fromiovecend() and similar functions with a zero offset and buffer length which causes the read beyond the buffer boundaries, in certain cases causing a memory access fault and a system halt by accessing invalid memory address. This issue only affects kernel version 3.10.x as shipped with Red Hat Enterprise Linux 7.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: = 3.10.x
Patches
Vulnerability mechanics
References
4- access.redhat.com/errata/RHSA-2019:2029mitrevendor-advisoryx_refsource_REDHAT
- access.redhat.com/errata/RHSA-2019:2043mitrevendor-advisoryx_refsource_REDHAT
- www.securityfocus.com/bid/106296mitrevdb-entryx_refsource_BID
- bugzilla.redhat.com/show_bug.cgimitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.