Vulnetix
Try Vulnetix Request Demo
CVE-2018-10938 PUBLISHED

A flaw was found in the Linux kernel present since v4.0-rc1 and through v4.13-rc4. A crafted network packet sent remotely by an attacker may force the kernel to enter an infinite loop in the cipso_v4_optptr() function in net/ipv4/cipso_ipv4.c leading to a denial-of-service. A certain non-default configuration of LSM (Linux Security Module) and NetLabel should be set up on a system before an attacker could leverage this flaw.

EPSS 4.37% · 88.9th percentile

Risk Scores

EPSS Score
4.37%
88.9th percentile

Affected Products

VendorProductVersions
Ubuntu:16.04:LTSlinux-kvm4.4.0-1012.17, 4.4.0-1035.41, 4.4.0-1033.39
Ubuntu:20.04:LTSlinux-riscv5.4.0-40.45, 5.4.0-39.44, 5.4.0-37.42
Ubuntu:16.04:LTSlinux4.4.0-97.120, 4.4.0-45.66, 4.4.0-47.68
Ubuntu:22.04:LTSlinux-riscv5.15.0-1004.4, 5.15.0-1006.6, 5.15.0-1007.7
Ubuntu:Pro:FIPS:16.04:LTSlinux-fips0, 4.4.0-1003.3, 4.4.0-1005.5
Ubuntu:16.04:LTSlinux-snapdragon4.4.0-1012.12, 4.4.0-1102.107, 4.4.0-1100.105
Ubuntu:14.04:LTSlinux-lts-xenial4.4.0-38.57~14.04.1, 4.4.0-34.53~14.04.1, 4.4.0-31.50~14.04.1
Ubuntu:22.04:LTSlinux-realtime5.15.0-1032.35, 0
Ubuntu:16.04:LTSlinux-hwe4.13.0-31.34~16.04.1, 4.8.0-52.55~16.04.1, 4.8.0-53.56~16.04.1
Ubuntu:24.04:LTSlinux-raspi-realtime6.8.0-2019.20, 0
Ubuntu:16.04:LTSlinux-azure4.11.0-1015.15, 4.11.0-1016.16, 4.11.0-1013.13
Ubuntu:20.04:LTSlinux-raspi25.4.0-1004.4, 5.3.0-1007.8, 0
Ubuntu:20.04:LTSlinux-gke5.4.0-1090.97, 0, 5.4.0-1033.35
Ubuntu:16.04:LTSlinux-aws4.4.0-1013.22, 4.4.0-1052.61, 4.4.0-1050.59
Ubuntu:14.04:LTSlinux-aws4.4.0-1011.11, 4.4.0-1029.32, 4.4.0-1031.34
Ubuntu:22.04:LTSlinux-intel-iot-realtime5.15.0-1073.75, 0
Ubuntu:16.04:LTSlinux-gcp4.10.0-1009.9, 4.10.0-1008.8, 4.10.0-1007.7
Ubuntu:16.04:LTSlinux-raspi24.4.0-1003.4, 4.2.0-1014.21, 4.2.0-1013.19
Ubuntu:20.04:LTSlinux-azure-fde5.4.0-1103.109+cvm1.1, 5.4.0-1100.106+cvm1.1, 5.4.0-1098.104+cvm1.1

Timeline

References

Open in Interactive Console →