A flaw was found in the Linux kernel that allows the userspace to call memcpy_fromiovecend() and similar functions with a zero offset and buffer length which causes the read beyond the buffer boundaries, in certain cases causing a memory access fault and a system halt by accessing invalid memory address. This issue only affects kernel version 3.10.x as shipped with Red Hat Enterprise Linux 7.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published:

Updated: 2024-08-05T10:32:54.243Z

Reserved: 2018-09-11T00:00:00

Link: CVE-2018-16885

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2019-01-03T16:29:00.477

Modified: 2024-11-21T03:53:31.970

Link: CVE-2018-16885

cve-icon Redhat

Severity : Low

Publid Date: 2018-12-21T00:00:00Z

Links: CVE-2018-16885 - Bugzilla

cve-icon OpenCVE Enrichment

No data.