CVE-2018-1130: Null Pointer Dereference
First published: Wed May 09 2018(Updated: )
A null pointer dereference in dccp_write_xmit() function in net/dccp/output.c in the Linux kernel allows a local user to cause a denial of service by a number of certain crafted system calls. References: <a href="https://syzkaller.appspot.com/bug?id=833568de043e0909b2aeaef7be136db39d21ba94">https://syzkaller.appspot.com/bug?id=833568de043e0909b2aeaef7be136db39d21ba94</a> <a href="https://marc.info/?t=152036611500003&r=1&w=2">https://marc.info/?t=152036611500003&r=1&w=2</a> <a href="http://seclists.org/oss-sec/2018/q2/100">http://seclists.org/oss-sec/2018/q2/100</a> An upstream patch: <a href="https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=67f93df79aeefc3add4e4b31a752600f834236e2">https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=67f93df79aeefc3add4e4b31a752600f834236e2</a>
Credit: secalert@redhat.com secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Linux Linux kernel | <4.16 | |
| Linux Linux kernel | =4.16-rc1 | |
| Linux Linux kernel | =4.16-rc2 | |
| Linux Linux kernel | =4.16-rc3 | |
| Linux Linux kernel | =4.16-rc4 | |
| Linux Linux kernel | =4.16-rc5 | |
| Linux Linux kernel | =4.16-rc6 | |
| Debian Debian Linux | =7.0 | |
| Debian Debian Linux | =8.0 | |
| Canonical Ubuntu Linux | =14.04 | |
| Canonical Ubuntu Linux | =16.04 | |
| Redhat Enterprise Linux Desktop | =7.0 | |
| Redhat Enterprise Linux Server | =7.0 | |
| Redhat Enterprise Linux Workstation | =7.0 | |
| redhat/kernel | <4.16 | 4.16 |
| debian/linux | 5.10.223-1 5.10.226-1 6.1.115-1 6.1.119-1 6.11.10-1 6.12.5-1 |
Remedy
Blacklist the dccp ipv[46] autoloading aliases by adding the following lines to /etc/modprobe.d/blacklist-dccp.conf: alias net-pf-2-proto-0-type-6 off alias net-pf-2-proto-33-type-6 off alias net-pf-10-proto-0-type-6 off alias net-pf-10-proto-33-type-6 off
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://access.redhat.com/errata/RHSA-2018:1854
- https://access.redhat.com/errata/RHSA-2018:3083
- https://access.redhat.com/errata/RHSA-2018:3096
- https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-1130
- https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=67f93df79aeefc3add4e4b31a752600f834236e2
- https://lists.debian.org/debian-lts-announce/2018/06/msg00000.html
- https://lists.debian.org/debian-lts-announce/2018/07/msg00015.html
- https://lists.debian.org/debian-lts-announce/2018/07/msg00016.html
- https://lists.debian.org/debian-lts-announce/2018/07/msg00020.html
- https://marc.info/?l=linux-netdev&m=152036596825220&w=2
- https://syzkaller.appspot.com/bug?id=833568de043e0909b2aeaef7be136db39d21ba94
- https://usn.ubuntu.com/3654-1/
- https://usn.ubuntu.com/3654-2/
- https://usn.ubuntu.com/3656-1/
- https://usn.ubuntu.com/3697-1/
- https://usn.ubuntu.com/3697-2/
- https://usn.ubuntu.com/3698-1/
- https://usn.ubuntu.com/3698-2/
- https://marc.info/?l=linux-netdev&m=152036596825220&w=2
- https://launchpad.net/bugs/cve/CVE-2018-1130
- https://marc.info/?t=152036611500003&r=1&w=2
- http://seclists.org/oss-sec/2018/q2/100
- https://bugzilla.redhat.com/show_bug.cgi?id=1576419
- https://git.kernel.org/linus/67f93df79aeefc3add4e4b31a752600f834236e2
- https://security-tracker.debian.org/tracker/CVE-2018-1130
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1130
- https://nvd.nist.gov/vuln/detail/CVE-2018-1130
- https://ubuntu.com/security/CVE-2018-1130
Frequently Asked Questions
What is CVE-2018-1130?
CVE-2018-1130 is a vulnerability in the Linux kernel that allows a local user to cause a denial of service.
How severe is CVE-2018-1130?
CVE-2018-1130 has a severity level of medium.
Which versions of Linux kernel are affected by CVE-2018-1130?
Linux kernel versions 3.13.0-153.203, 4.4.0-127.153, 4.13.0-46.51, and 4.16~ are affected by CVE-2018-1130.
How can I fix CVE-2018-1130?
To fix CVE-2018-1130, you should update your Linux kernel to version 4.16 or higher.
Where can I find more information about CVE-2018-1130?
You can find more information about CVE-2018-1130 on the following references: [link1](https://marc.info/?l=linux-netdev&m=152036596825220&w=2), [link2](https://syzkaller.appspot.com/bug?id=833568de043e0909b2aeaef7be136db39d21ba94), [link3](https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-1130).
- collector/nvd-index
- agent/type
- agent/first-publish-date
- collector/launchpad-cve
- source/Launchpad
- agent/author
- collector/nvd-cve
- source/NVD
- agent/software-canonical-lookup
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2018-1130
- agent/weakness
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/last-modified-date
- agent/remedy
- agent/references
- agent/tags
- collector/usn-cve
- source/Ubuntu
- agent/event
- agent/description
- collector/security-tracker-debian
- source/Debian
- agent/softwarecombine
- agent/trending
- vendor/linux
- canonical/linux linux kernel
- version/linux linux kernel/4.16-rc1
- version/linux linux kernel/4.16-rc2
- version/linux linux kernel/4.16-rc3
- version/linux linux kernel/4.16-rc4
- version/linux linux kernel/4.16-rc5
- version/linux linux kernel/4.16-rc6
- vendor/debian
- canonical/debian debian linux
- version/debian debian linux/7.0
- version/debian debian linux/8.0
- vendor/canonical
- canonical/canonical ubuntu linux
- version/canonical ubuntu linux/14.04
- version/canonical ubuntu linux/16.04
- vendor/redhat
- canonical/redhat enterprise linux desktop
- version/redhat enterprise linux desktop/7.0
- canonical/redhat enterprise linux server
- version/redhat enterprise linux server/7.0
- canonical/redhat enterprise linux workstation
- version/redhat enterprise linux workstation/7.0
- package-manager/redhat
- package-manager/debian