{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2018-08-27T00:00:00", "descriptions": [{"lang": "en", "value": "A flaw was found in the Linux kernel present since v4.0-rc1 and through v4.13-rc4. A crafted network packet sent remotely by an attacker may force the kernel to enter an infinite loop in the cipso_v4_optptr() function in net/ipv4/cipso_ipv4.c leading to a denial-of-service. A certain non-default configuration of LSM (Linux Security Module) and NetLabel should be set up on a system before an attacker could leverage this flaw."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-23T09:57:01", "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat"}, "references": [{"name": "[oss-security] 20180827 CVE-2018-10938: Linux kernel: net: infinite loop in net/ipv4/cipso_ipv4.c:cipso_v4_optptr() allows a remote DoS", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://seclists.org/oss-sec/2018/q3/179"}, {"name": "USN-3797-2", "tags": ["vendor-advisory", "x_refsource_UBUNTU"], "url": "https://usn.ubuntu.com/3797-2/"}, {"name": "USN-3797-1", "tags": ["vendor-advisory", "x_refsource_UBUNTU"], "url": "https://usn.ubuntu.com/3797-1/"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=40413955ee265a5e42f710940ec78f5450d49149"}, {"name": "[debian-lts-announce] 20181003 [SECURITY] [DLA 1531-1] linux-4.9 security update", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "https://lists.debian.org/debian-lts-announce/2018/10/msg00003.html"}, {"name": "1041569", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id/1041569"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10938"}, {"name": "105154", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/105154"}, {"name": "DSA-4308", "tags": ["vendor-advisory", "x_refsource_DEBIAN"], "url": "https://www.debian.org/security/2018/dsa-4308"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "secalert@redhat.com", "ID": "CVE-2018-10938", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "A flaw was found in the Linux kernel present since v4.0-rc1 and through v4.13-rc4. A crafted network packet sent remotely by an attacker may force the kernel to enter an infinite loop in the cipso_v4_optptr() function in net/ipv4/cipso_ipv4.c leading to a denial-of-service. A certain non-default configuration of LSM (Linux Security Module) and NetLabel should be set up on a system before an attacker could leverage this flaw."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "[oss-security] 20180827 CVE-2018-10938: Linux kernel: net: infinite loop in net/ipv4/cipso_ipv4.c:cipso_v4_optptr() allows a remote DoS", "refsource": "MLIST", "url": "http://seclists.org/oss-sec/2018/q3/179"}, {"name": "USN-3797-2", "refsource": "UBUNTU", "url": "https://usn.ubuntu.com/3797-2/"}, {"name": "USN-3797-1", "refsource": "UBUNTU", "url": "https://usn.ubuntu.com/3797-1/"}, {"name": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=40413955ee265a5e42f710940ec78f5450d49149", "refsource": "CONFIRM", "url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=40413955ee265a5e42f710940ec78f5450d49149"}, {"name": "[debian-lts-announce] 20181003 [SECURITY] [DLA 1531-1] linux-4.9 security update", "refsource": "MLIST", "url": "https://lists.debian.org/debian-lts-announce/2018/10/msg00003.html"}, {"name": "1041569", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id/1041569"}, {"name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10938", "refsource": "CONFIRM", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10938"}, {"name": "105154", "refsource": "BID", "url": "http://www.securityfocus.com/bid/105154"}, {"name": "DSA-4308", "refsource": "DEBIAN", "url": "https://www.debian.org/security/2018/dsa-4308"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-05T07:54:35.481Z"}, "title": "CVE Program Container", "references": [{"name": "[oss-security] 20180827 CVE-2018-10938: Linux kernel: net: infinite loop in net/ipv4/cipso_ipv4.c:cipso_v4_optptr() allows a remote DoS", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://seclists.org/oss-sec/2018/q3/179"}, {"name": "USN-3797-2", "tags": ["vendor-advisory", "x_refsource_UBUNTU", "x_transferred"], "url": "https://usn.ubuntu.com/3797-2/"}, {"name": "USN-3797-1", "tags": ["vendor-advisory", "x_refsource_UBUNTU", "x_transferred"], "url": "https://usn.ubuntu.com/3797-1/"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=40413955ee265a5e42f710940ec78f5450d49149"}, {"name": "[debian-lts-announce] 20181003 [SECURITY] [DLA 1531-1] linux-4.9 security update", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "https://lists.debian.org/debian-lts-announce/2018/10/msg00003.html"}, {"name": "1041569", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://www.securitytracker.com/id/1041569"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10938"}, {"name": "105154", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/105154"}, {"name": "DSA-4308", "tags": ["vendor-advisory", "x_refsource_DEBIAN", "x_transferred"], "url": "https://www.debian.org/security/2018/dsa-4308"}]}]}, "cveMetadata": {"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "cveId": "CVE-2018-10938", "datePublished": "2018-08-27T13:00:00", "dateReserved": "2018-05-09T00:00:00", "dateUpdated": "2024-08-05T07:54:35.481Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:linux:linux_kernel:4.0:*:*:*:*:*:*:*", "matchCriteriaId": "D7572A0F-20BA-4206-A3DC-87FF1E0A8999", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.0:rc1:*:*:*:*:*:*", "matchCriteriaId": "41EB34C0-7E98-4275-9940-0FA832551A00", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.0:rc2:*:*:*:*:*:*", "matchCriteriaId": "56672BFD-BBD3-4A4D-9FB3-E8D2C2C8E97E", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.0:rc3:*:*:*:*:*:*", "matchCriteriaId": "4DA48AD3-82ED-4225-9A84-4067ED56F9D1", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.0:rc4:*:*:*:*:*:*", "matchCriteriaId": "20A8368D-ABA0-4787-B4DC-0CC8F3A1F5A4", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.0:rc5:*:*:*:*:*:*", "matchCriteriaId": "CE29E563-29A0-431E-A871-8E5DE0B5AE4E", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.0:rc6:*:*:*:*:*:*", "matchCriteriaId": "9B676179-07A2-4C84-A1DE-650C7B20573E", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.0:rc7:*:*:*:*:*:*", "matchCriteriaId": "EC4645B3-E637-4B76-939F-ABAB12513DA8", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.1:*:*:*:*:*:*:*", "matchCriteriaId": "B98E44B8-1A5D-4BE3-9D5A-9D92B150C285", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.1:rc1:*:*:*:*:*:*", "matchCriteriaId": "DD00F761-489D-40EF-A0E1-DA7EEB2EA2F8", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.1:rc2:*:*:*:*:*:*", "matchCriteriaId": "DE3D49F8-C500-4DE3-A8AE-42BE4E40A648", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.1:rc3:*:*:*:*:*:*", "matchCriteriaId": "83D5E725-6A98-413E-8375-78A153833F73", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.1:rc4:*:*:*:*:*:*", "matchCriteriaId": "866CAE02-6313-4BB8-B765-0A7EF1D46113", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.1:rc5:*:*:*:*:*:*", "matchCriteriaId": "2D6F8973-3692-484E-944C-B7234CE5BB47", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.1:rc6:*:*:*:*:*:*", "matchCriteriaId": "8D237DD3-EFF7-4E26-901E-43DE555FBA63", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.1:rc7:*:*:*:*:*:*", "matchCriteriaId": "1AB2D00D-8F31-4003-900A-1BAA17397036", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.1:rc8:*:*:*:*:*:*", "matchCriteriaId": "12AFF404-7575-42B4-BA34-1D9DFE61EC76", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.2:*:*:*:*:*:*:*", "matchCriteriaId": "395FA73A-DF17-40CE-AE42-DE849AB73E35", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.2:rc1:*:*:*:*:*:*", "matchCriteriaId": "8AFE7ED9-FADE-4E73-90F6-CE7509701284", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.2:rc2:*:*:*:*:*:*", "matchCriteriaId": "58FB19F0-507A-4281-844F-F3DC99E34AEB", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.2:rc3:*:*:*:*:*:*", "matchCriteriaId": "1EC64B1B-3E04-4F49-B887-9C6B02EE7C87", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.2:rc4:*:*:*:*:*:*", "matchCriteriaId": "8C5DADE2-2A31-4F65-8A7E-224C02958A81", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.2:rc5:*:*:*:*:*:*", "matchCriteriaId": "130E1C2A-45DE-4C16-8FFA-06E9C9F7F175", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.2:rc6:*:*:*:*:*:*", "matchCriteriaId": "78F0CC21-E28A-4B83-B65B-94AB9242F345", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.2:rc7:*:*:*:*:*:*", "matchCriteriaId": "AED16DC6-6364-4B57-92A1-F14F347DADF7", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.2:rc8:*:*:*:*:*:*", "matchCriteriaId": "03A4BCF1-5A7D-4E74-948F-134F0E57D73B", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.3:*:*:*:*:*:*:*", "matchCriteriaId": "2B8101D6-70F5-4F6E-B8D0-655F69B04E9C", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.3:rc1:*:*:*:*:*:*", "matchCriteriaId": "BF5EA09F-BAA1-497B-A1AC-B35569795EEA", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.3:rc2:*:*:*:*:*:*", "matchCriteriaId": "3E60E431-ABDD-4E2B-8D65-FCD79DA57B26", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.3:rc3:*:*:*:*:*:*", "matchCriteriaId": "18441725-D231-42AA-A157-76D87E5AFB61", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.3:rc4:*:*:*:*:*:*", "matchCriteriaId": "5135D006-1800-4B96-A95C-7FFCA5497085", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.3:rc5:*:*:*:*:*:*", "matchCriteriaId": "58066E96-647A-4672-B6C6-B56CCD45DBD6", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.3:rc6:*:*:*:*:*:*", "matchCriteriaId": "125ECB6A-6ED3-4FBF-AD02-47A69528D1A1", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.3:rc7:*:*:*:*:*:*", "matchCriteriaId": "A729D0E4-EEA8-4497-B6B7-D9C83C4E9F97", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.4:*:*:*:*:*:*:*", "matchCriteriaId": "1D09D8FB-B3F3-4442-9C10-8B1B7B1AE78A", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.4:rc1:*:*:*:*:*:*", "matchCriteriaId": "E425B7E4-0104-4CF8-A874-4CAF3273BCDF", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.4:rc2:*:*:*:*:*:*", "matchCriteriaId": "C066AC79-4021-4414-A9F2-6B75C2D62773", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.4:rc3:*:*:*:*:*:*", "matchCriteriaId": "A8FD5845-6A12-42D1-B59F-C3F8AED2EFEC", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.4:rc4:*:*:*:*:*:*", "matchCriteriaId": "7B37BB89-774E-43E3-B676-BC19C14B1823", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.4:rc5:*:*:*:*:*:*", "matchCriteriaId": "48D4FDF4-7ECF-4B68-87F9-58E3D8E6181B", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.4:rc6:*:*:*:*:*:*", "matchCriteriaId": "5DE43D99-452A-43FD-A459-B33D07B2CA7E", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.4:rc7:*:*:*:*:*:*", "matchCriteriaId": "FF58DB97-7EA1-4528-AF9D-DAB0D66641DB", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.4:rc8:*:*:*:*:*:*", "matchCriteriaId": "AD811782-D76C-4CC9-9F00-BFE7E258362F", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.5:*:*:*:*:*:*:*", "matchCriteriaId": "505BB1F7-7CF9-4B70-9A75-2D63AE439B48", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.5:rc1:*:*:*:*:*:*", "matchCriteriaId": "5011ED56-97F0-4754-9C98-B28B806DF6DD", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.5:rc2:*:*:*:*:*:*", "matchCriteriaId": "B7FC0A28-90D9-4DF3-8A2A-49C3D4CB470A", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.5:rc3:*:*:*:*:*:*", "matchCriteriaId": "9D90B29E-F7B6-4EAB-83D2-1C339310D34D", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.5:rc4:*:*:*:*:*:*", "matchCriteriaId": "02A2E198-C184-459C-9B7C-8A9C74A6DCEE", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.5:rc5:*:*:*:*:*:*", "matchCriteriaId": "F091733F-C9E6-4222-8EA0-9DDEC70EB129", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.5:rc6:*:*:*:*:*:*", "matchCriteriaId": "E4736F08-176D-4F49-A59D-E8C0F6DDEC8B", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.5:rc7:*:*:*:*:*:*", "matchCriteriaId": "80AD3822-AE03-412E-8E14-0DAD0BDCA028", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.6:*:*:*:*:*:*:*", "matchCriteriaId": "273E9BE2-7913-4FA4-9E2E-41AF562FA7B1", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.6:rc1:*:*:*:*:*:*", "matchCriteriaId": "CB920EEE-E2DE-4B39-B0B3-583FCE440B9D", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.6:rc2:*:*:*:*:*:*", "matchCriteriaId": "B97E93C8-FD2A-4713-BBD9-957295BBC3FC", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.6:rc3:*:*:*:*:*:*", "matchCriteriaId": "87D9C8CA-54CC-450A-BD00-64008CD45453", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.6:rc4:*:*:*:*:*:*", "matchCriteriaId": "08ECC36A-9E2C-479B-B438-C463317A58DE", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.6:rc5:*:*:*:*:*:*", "matchCriteriaId": "65156E4E-B7C6-4C87-88F7-C04896F1535C", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.6:rc6:*:*:*:*:*:*", "matchCriteriaId": "ABD1B91B-4053-4063-B11B-2EDC4FC14F12", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.6:rc7:*:*:*:*:*:*", "matchCriteriaId": "1F3EC6CF-3386-45B6-A1FE-04C3FBC02EB2", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.7:*:*:*:*:*:*:*", "matchCriteriaId": "D50FE96C-7A38-486B-8B90-D3D29813A990", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.7:rc1:*:*:*:*:*:*", "matchCriteriaId": "49A670AB-795C-429C-9F52-0794799C230C", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.7:rc2:*:*:*:*:*:*", "matchCriteriaId": "FB7866D3-A8CE-42A1-A3E1-783DA7F3DB4E", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.7:rc3:*:*:*:*:*:*", "matchCriteriaId": "4940B9A0-CF62-4B5F-9E69-91C1594B2107", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.7:rc4:*:*:*:*:*:*", "matchCriteriaId": "DA6F4E31-42D4-4DAA-B9D8-0514F11AE778", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.7:rc5:*:*:*:*:*:*", "matchCriteriaId": "8DEB1797-95E0-4344-91B3-8C3AEE42BDB8", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.7:rc6:*:*:*:*:*:*", "matchCriteriaId": "B3E4C538-05B3-47AA-8464-087549C0D8F9", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.7:rc7:*:*:*:*:*:*", "matchCriteriaId": "45FA346F-1039-4607-871B-B9F236A30C16", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.8:*:*:*:*:*:*:*", "matchCriteriaId": "4E12A4EF-B3CF-432B-B9FF-AEF80A5C6906", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.8:rc1:*:*:*:*:*:*", "matchCriteriaId": "4DCA12A5-2DA5-4357-9C9A-D57CA605BAB0", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.8:rc2:*:*:*:*:*:*", "matchCriteriaId": "9A2F7F5F-5684-4D0A-8AB9-22F739A4CA38", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.8:rc3:*:*:*:*:*:*", "matchCriteriaId": "35868503-6ECC-47B7-A31E-1030CDBD9AC3", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.8:rc4:*:*:*:*:*:*", "matchCriteriaId": "5A6BD9A6-A3A8-4277-80ED-A169FD374D5A", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.8:rc5:*:*:*:*:*:*", "matchCriteriaId": "22786B53-9B60-4708-9176-276DF0767E9B", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.8:rc6:*:*:*:*:*:*", "matchCriteriaId": "1AAE030D-F039-4E93-BFA5-74456E2FC4A5", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.8:rc7:*:*:*:*:*:*", "matchCriteriaId": "EA3C1AC7-9D6A-4C5D-8EC9-6F634224E889", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.8:rc8:*:*:*:*:*:*", "matchCriteriaId": "3FCA9337-C4BE-41FA-841D-80FE81643EE2", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.9:*:*:*:*:*:*:*", "matchCriteriaId": "27B10B33-5F64-4039-8351-694A7AB6E4E4", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.9:rc1:*:*:*:*:*:*", "matchCriteriaId": "789DA749-1F1A-4DD9-9C94-A384002AE55D", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.9:rc2:*:*:*:*:*:*", "matchCriteriaId": "F525DDFE-705C-4838-802A-8D0D3A4A9FB2", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.9:rc3:*:*:*:*:*:*", "matchCriteriaId": "D1685CD6-C7A0-46C9-B8D4-C472E46F70A2", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.9:rc4:*:*:*:*:*:*", "matchCriteriaId": "FE21670A-9B31-4AED-93C4-171286BB2A56", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.9:rc5:*:*:*:*:*:*", "matchCriteriaId": "059DF035-9B5B-4F84-8EDD-34534ECAA579", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.9:rc6:*:*:*:*:*:*", "matchCriteriaId": "B0288B1E-67AB-40F4-98C7-8C686510F664", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.9:rc7:*:*:*:*:*:*", "matchCriteriaId": "73A5C6E1-051D-4FDC-8034-BE2896C639F3", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.9:rc8:*:*:*:*:*:*", "matchCriteriaId": "F96570B2-47BE-4DEF-AAD8-909913366EA0", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.10:*:*:*:*:*:*:*", "matchCriteriaId": "1DCB26E2-5F19-4F9C-9FF3-184EF7262D6D", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.10:rc1:*:*:*:*:*:*", "matchCriteriaId": "A3D4D149-1B68-4BE4-866D-719C998504D8", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.10:rc2:*:*:*:*:*:*", "matchCriteriaId": "A50F996D-49DE-4EAF-A6ED-4EE56A2CFD95", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.10:rc3:*:*:*:*:*:*", "matchCriteriaId": "E23D17CA-66C9-477F-8668-9D314841785E", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.10:rc4:*:*:*:*:*:*", "matchCriteriaId": "EA5A26AC-E4BA-4BCC-BE0A-B3F31BA5084C", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.10:rc5:*:*:*:*:*:*", "matchCriteriaId": "3BE64B11-DBC1-4DA0-836C-32332216A650", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.10:rc6:*:*:*:*:*:*", "matchCriteriaId": "09B6110F-7933-484D-AEAF-5D15FF38647E", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.10:rc7:*:*:*:*:*:*", "matchCriteriaId": "75694C52-0ADF-45EC-80AC-D973535B5CB9", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.10:rc8:*:*:*:*:*:*", "matchCriteriaId": "29F29665-6B16-4D9F-A417-D0743395DF01", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.11:*:*:*:*:*:*:*", "matchCriteriaId": "DB4B6A89-EA92-4229-8F03-473AD371CABB", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.11:rc1:*:*:*:*:*:*", "matchCriteriaId": "45227BEA-300E-4694-8ADE-D0FA7C560C83", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.11:rc2:*:*:*:*:*:*", "matchCriteriaId": "9F27DB1B-125C-416A-8DF1-80EE75E4F972", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.11:rc3:*:*:*:*:*:*", "matchCriteriaId": "64F78CCF-F54B-4D1C-AFA6-DE4076C3A263", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.11:rc4:*:*:*:*:*:*", "matchCriteriaId": "A659506C-868E-4E87-B0D8-E901BC2E9BDC", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.11:rc5:*:*:*:*:*:*", "matchCriteriaId": "ACE2C8C3-F2AA-4A39-9D81-B0F8BB82B834", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.11:rc6:*:*:*:*:*:*", "matchCriteriaId": "D67BFFD0-1A52-4F5D-98DB-D94B58FD8D30", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.11:rc7:*:*:*:*:*:*", "matchCriteriaId": "7D996F38-22AC-4059-84FC-F7D69CE0CB9B", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.11:rc8:*:*:*:*:*:*", "matchCriteriaId": "97EFF4F7-E5F9-4FAA-AD58-94A24501AD59", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.12:*:*:*:*:*:*:*", "matchCriteriaId": "66BD76EB-0E70-4257-90E0-190AFCE21E02", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.12:rc1:*:*:*:*:*:*", "matchCriteriaId": "FE5098AB-40B1-4110-B2C7-186FD2B92AA9", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.12:rc2:*:*:*:*:*:*", "matchCriteriaId": "256043A0-506E-41F9-8B2B-57C8ACC3236A", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.12:rc3:*:*:*:*:*:*", "matchCriteriaId": "06C33D36-B8A5-41CB-A742-7A1D91CCA18F", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.12:rc4:*:*:*:*:*:*", "matchCriteriaId": "E4E23BD8-16EB-4F8C-88C1-D5B9094D6D2C", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.12:rc5:*:*:*:*:*:*", "matchCriteriaId": "B6FE7913-36A0-49E4-A568-0C72F9B5B9E2", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.12:rc6:*:*:*:*:*:*", "matchCriteriaId": "7094F315-C1A3-4246-A85D-2409CC25DF65", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.12:rc7:*:*:*:*:*:*", "matchCriteriaId": "F236B926-4DDD-4548-ABC7-7EC105FAEFEF", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.13:rc1:*:*:*:*:*:*", "matchCriteriaId": "00DC2A8C-1E8B-4799-BE91-771BB321246D", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.13:rc2:*:*:*:*:*:*", "matchCriteriaId": "CCBE5190-4EFC-4C4E-BE91-5711E04F3D26", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.13:rc3:*:*:*:*:*:*", "matchCriteriaId": "CB7715C0-AB55-458B-9242-8BEE9446F6D4", "vulnerable": true}, {"criteria": "cpe:2.3:o:linux:linux_kernel:4.13:rc4:*:*:*:*:*:*", "matchCriteriaId": "BA601A37-DCB0-45D4-AE9A-637221D488DA", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "matchCriteriaId": "B5A6F2F3-4894-4392-8296-3B8DD2679084", "vulnerable": true}, {"criteria": "cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*", "matchCriteriaId": "F7016A2A-8365-4F1A-89A2-7A19F2BCAE5B", "vulnerable": true}, {"criteria": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", "matchCriteriaId": "DEECE5FC-CACF-4496-A3E7-164736409252", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "A flaw was found in the Linux kernel present since v4.0-rc1 and through v4.13-rc4. A crafted network packet sent remotely by an attacker may force the kernel to enter an infinite loop in the cipso_v4_optptr() function in net/ipv4/cipso_ipv4.c leading to a denial-of-service. A certain non-default configuration of LSM (Linux Security Module) and NetLabel should be set up on a system before an attacker could leverage this flaw."}, {"lang": "es", "value": "Se ha detectado un error en el kernel de Linux presente desde v4.0-rc1 y hasta v4.13-rc4. Un paquete de red manipulado enviado de forma remota por un atacante podr\u00eda forzar al kernel a entrar en un bucle infinito en la funci\u00f3n cipso_v4_optptr() en net/ipv4/cipso_ipv4.c, lo que conduce a una denegaci\u00f3n de servicio (DoS). Cierta configuraci\u00f3n que no es por defecto en LSM (Linux Security Module) y NetLabel deber\u00eda configurarse en un sistema antes de que un atacante pueda aprovechar este error."}], "id": "CVE-2018-10938", "lastModified": "2019-10-03T00:03:26.223", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.1, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:C", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 6.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 5.9, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.0"}, "exploitabilityScore": 2.2, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2018-08-27T13:29:00.353", "references": [{"source": "secalert@redhat.com", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://seclists.org/oss-sec/2018/q3/179"}, {"source": "secalert@redhat.com", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/105154"}, {"source": "secalert@redhat.com", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securitytracker.com/id/1041569"}, {"source": "secalert@redhat.com", "tags": ["Issue Tracking", "Third Party Advisory"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-10938"}, {"source": "secalert@redhat.com", "tags": ["Mailing List", "Third Party Advisory"], "url": "https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=40413955ee265a5e42f710940ec78f5450d49149"}, {"source": "secalert@redhat.com", "tags": ["Mailing List", "Third Party Advisory"], "url": "https://lists.debian.org/debian-lts-announce/2018/10/msg00003.html"}, {"source": "secalert@redhat.com", "tags": ["Third Party Advisory"], "url": "https://usn.ubuntu.com/3797-1/"}, {"source": "secalert@redhat.com", "tags": ["Third Party Advisory"], "url": "https://usn.ubuntu.com/3797-2/"}, {"source": "secalert@redhat.com", "tags": ["Third Party Advisory"], "url": "https://www.debian.org/security/2018/dsa-4308"}], "sourceIdentifier": "secalert@redhat.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-835"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"bugzilla": {"description": "kernel: infinite loop in net/ipv4/cipso_ipv4.c:cipso_v4_optptr() allows for DoS", "id": "1622404", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1622404"}, "csaw": false, "cvss3": {"cvss3_base_score": "5.3", "cvss3_scoring_vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "status": "draft"}, "cwe": "CWE-400", "details": ["A flaw was found in the Linux kernel present since v4.0-rc1 and through v4.13-rc4. A crafted network packet sent remotely by an attacker may force the kernel to enter an infinite loop in the cipso_v4_optptr() function in net/ipv4/cipso_ipv4.c leading to a denial-of-service. A certain non-default configuration of LSM (Linux Security Module) and NetLabel should be set up on a system before an attacker could leverage this flaw.", "A flaw was found in the Linux kernel present since v4.0-rc1 and through v4.13-rc4. A crafted network packet sent remotely by an attacker may force the kernel to enter an infinite loop in the cipso_v4_optptr() function in net/ipv4/cipso_ipv4.c leading to a denial-of-service. A certain non-default configuration of LSM (Linux Security Module) and NetLabel should be set up on a system before an attacker could leverage this flaw."], "name": "CVE-2018-10938", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:5", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 5"}, {"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Not affected", "package_name": "kernel-alt", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Not affected", "package_name": "kernel-rt", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "kernel", "product_name": "Red Hat Enterprise Linux 8"}, {"cpe": "cpe:/a:redhat:enterprise_mrg:2", "fix_state": "Not affected", "package_name": "realtime-kernel", "product_name": "Red Hat Enterprise MRG 2"}], "public_date": "2018-08-27T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2018-10938\nhttps://nvd.nist.gov/vuln/detail/CVE-2018-10938"], "threat_severity": "Moderate", "upstream_fix": "kernel 4.13-rc5"}