CVE-2018-18438: Integer Overflow
First published: Fri Oct 19 2018(Updated: )
Qemu has integer overflows because IOReadHandler and its associated functions use a signed integer data type for a size value.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| debian/qemu | 1:3.1+dfsg-8+deb10u8 1:3.1+dfsg-8+deb10u11 1:5.2+dfsg-11+deb11u3 1:5.2+dfsg-11+deb11u2 1:7.2+dfsg-7+deb12u3 1:8.1.2+ds-1 1:8.2.0+ds-1 | |
| QEMU KVM | ||
| Red Hat Enterprise Linux | =6.0 | |
| Red Hat Enterprise Linux | =7.0 | |
| Red Hat OpenStack for IBM Power | =8 | |
| Red Hat OpenStack for IBM Power | =9 | |
| Red Hat OpenStack for IBM Power | =10 | |
| Red Hat OpenStack for IBM Power | =12 | |
| Red Hat OpenStack for IBM Power | =13 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.openwall.com/lists/oss-security/2018/10/17/3
- http://www.securityfocus.com/bid/105953
- https://lists.gnu.org/archive/html/qemu-devel/2018-10/msg02396.html
- https://lists.gnu.org/archive/html/qemu-devel/2018-10/msg02402.html
- https://www.openwall.com/lists/oss-security/2018/10/17/3
- https://security-tracker.debian.org/tracker/CVE-2018-18438
Frequently Asked Questions
What is the severity of CVE-2018-18438?
CVE-2018-18438 has a moderate severity rating due to potential integer overflow vulnerabilities in QEMU.
How do I fix CVE-2018-18438?
To fix CVE-2018-18438, upgrade to a patched version of QEMU as specified by your operating system vendor.
What software is affected by CVE-2018-18438?
CVE-2018-18438 affects multiple versions of QEMU and various Red Hat and OpenStack products.
What are the potential impacts of CVE-2018-18438?
The potential impacts of CVE-2018-18438 include application crashes and possible remote code execution due to the integer overflow.
Is there a workaround for CVE-2018-18438 until I can apply a fix?
Currently, the most effective workaround for CVE-2018-18438 is to disable the affected features of QEMU until a fix can be applied.
- collector/security-tracker-debian
- agent/references
- agent/type
- agent/remedy
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/author
- agent/severity
- agent/event
- agent/description
- agent/first-publish-date
- agent/weakness
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- package-manager/debian
- vendor/qemu
- canonical/qemu kvm
- vendor/redhat
- canonical/red hat enterprise linux
- version/red hat enterprise linux/6.0
- version/red hat enterprise linux/7.0
- canonical/red hat openstack for ibm power
- version/red hat openstack for ibm power/8
- version/red hat openstack for ibm power/9
- version/red hat openstack for ibm power/10
- version/red hat openstack for ibm power/12
- version/red hat openstack for ibm power/13