CVE-2018-15471: Input Validation
First published: Fri Aug 17 2018(Updated: )
An issue was discovered in xenvif_set_hash_mapping in drivers/net/xen-netback/hash.c in the Linux kernel through 4.18.1, as used in Xen through 4.11.x and other products. The Linux netback driver allows frontends to control mapping of requests to request queues. When processing a request to set or change this mapping, some input validation (e.g., for an integer overflow) was missing or flawed, leading to OOB access in hash handling. A malicious or buggy frontend may cause the (usually privileged) backend to make out of bounds memory accesses, potentially resulting in one or more of privilege escalation, Denial of Service (DoS), or information leaks.
Credit: cve@mitre.org cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Xen Xen | <=4.11.0 | |
| Linux Linux kernel | >=4.7<4.9.133 | |
| Linux Linux kernel | >=4.10<4.14.76 | |
| Linux Linux kernel | >=4.15<4.18.14 | |
| Canonical Ubuntu Linux | =14.04 | |
| Canonical Ubuntu Linux | =16.04 | |
| Canonical Ubuntu Linux | =18.04 | |
| Canonical Ubuntu Linux | =18.10 | |
| debian/linux | 5.10.223-1 5.10.226-1 6.1.115-1 6.1.119-1 6.11.10-1 6.12.3-1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://xenbits.xen.org/xsa/advisory-270.html
- https://bugs.chromium.org/p/project-zero/issues/detail?id=1607
- https://lists.debian.org/debian-lts-announce/2019/03/msg00017.html
- https://usn.ubuntu.com/3819-1/
- https://usn.ubuntu.com/3820-1/
- https://usn.ubuntu.com/3820-2/
- https://usn.ubuntu.com/3820-3/
- https://www.debian.org/security/2018/dsa-4313
- https://launchpad.net/bugs/cve/CVE-2018-15471
- https://xenbits.xen.org/xsa/advisory-270.html
- https://security-tracker.debian.org/tracker/CVE-2018-15471
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15471
- https://nvd.nist.gov/vuln/detail/CVE-2018-15471
- https://ubuntu.com/security/CVE-2018-15471
Frequently Asked Questions
What is CVE-2018-15471?
CVE-2018-15471 is a vulnerability discovered in the Linux kernel through version 4.18.1, as used in Xen and other products, that allows frontends to control mapping of requests to request queues.
How does CVE-2018-15471 affect the Linux kernel?
CVE-2018-15471 affects the Linux kernel through version 4.18.1 and allows frontends to control mapping of requests to request queues.
Which software is affected by CVE-2018-15471?
CVE-2018-15471 affects Xen through version 4.11.x and other products that use the Linux kernel through version 4.18.1.
What is the severity of CVE-2018-15471?
The severity of CVE-2018-15471 is not specified.
How can I fix CVE-2018-15471?
To fix CVE-2018-15471, update your Linux kernel to version 4.19~ or apply the recommended patches for your specific distribution.
- collector/nvd-api
- collector/nvd-index
- agent/type
- agent/remedy
- collector/launchpad-cve
- source/Launchpad
- agent/severity
- agent/author
- agent/weakness
- collector/nvd-cve
- source/NVD
- agent/software-canonical-lookup
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- collector/usn-cve
- source/Ubuntu
- agent/references
- agent/tags
- agent/first-publish-date
- agent/description
- agent/event
- collector/security-tracker-debian
- source/Debian
- agent/softwarecombine
- agent/trending
- vendor/xen
- canonical/xen xen
- version/xen xen/4.11.0
- vendor/linux
- canonical/linux linux kernel
- version/linux linux kernel/4.7
- version/linux linux kernel/4.10
- version/linux linux kernel/4.15
- vendor/canonical
- canonical/canonical ubuntu linux
- version/canonical ubuntu linux/14.04
- version/canonical ubuntu linux/16.04
- version/canonical ubuntu linux/18.04
- version/canonical ubuntu linux/18.10
- package-manager/debian