Vulnerabilities

CVE-2018-11506

by Fred · 28/05/2018

The sr_do_ioctl function in drivers/scsi/sr_ioctl.c in the Linux kernel through 4.16.12 allows local users to cause a denial of service (stack-based buffer overflow) or possibly have unspecified other impact because sense buffers have different sizes at the CDROM layer and the SCSI layer, as demonstrated by a CDROMREADMODE2 ioctl call.

Date published : 2018-05-28

http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=f7068114d45ec55996b9040e98111afa56e010fe

https://github.com/torvalds/linux/commit/f7068114d45ec55996b9040e98111afa56e010fe

Similar

Tags: Cybersecurity Alert