Description
A missing address check in the callers of the show_opcodes() in the Linux kernel allows an attacker to dump the kernel memory at an arbitrary kernel address into the dmesg log.
CVSS breakdown
CVSS 3.0
Attack Vector
Local
Attack Complexity
High
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High
Affected products
- Unknown / kerneln/a – n/a
References
- MISChttps://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-14656
- MISChttp://www.securitytracker.com/id/1041804
- MISChttps://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=342db04ae71273322f0011384a9ed414df8bdae4
- MISChttps://lore.kernel.org/lkml/20180828154901.112726-1-jannh%40google.com/T/
- MAILING_LISThttps://seclists.org/oss-sec/2018/q4/9
- MISChttps://bugs.chromium.org/p/project-zero/issues/detail?id=1650