High severity7.8NVD Advisory· Published Sep 22, 2018· Updated Jun 17, 2026
CVE-2018-17336
CVE-2018-17336
Description
UDisks 2.8.0 has a format string vulnerability in udisks_log in udiskslogging.c, allowing attackers to obtain sensitive information (stack contents), cause a denial of service (memory corruption), or possibly have unspecified other impact via a malformed filesystem label, as demonstrated by %d or %n substrings.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- osv-coords2 versionspkg:rpm/opensuse/udisks2&distro=openSUSE%20Tumbleweedpkg:rpm/suse/udisks2&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015
< 2.9.2-1.6+ 1 more
- (no CPE)range: < 2.9.2-1.6
- (no CPE)range: < 2.6.5-3.7.2
Patches
Vulnerability mechanics
References
3- github.com/storaged-project/udisks/issues/578nvdExploitPatchThird Party Advisory
- usn.ubuntu.com/3772-1/nvdThird Party Advisory
- access.redhat.com/errata/RHSA-2019:2178nvd
News mentions
0No linked articles in our index yet.