VDB
CVE-2018-5848
CVE-2018-5848
PUBLISHED
In the function wmi_set_ie(), the length validation code does not handle unsigned integer overflow properly. As a result, a large value of the 'ie_len' argument can cause a buffer overflow in all Android releases from CAF (Android for MSM, Firefox OS for MSM, QRD Android) using the Linux Kernel.
EPSS 0.15% · 35.7th percentile
Risk Scores
EPSS Score
0.15%
35.7th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu:Pro:FIPS-updates:18.04:LTS | linux-azure-fips | 4.15.0-1002.2, 0 |
| Ubuntu:18.04:LTS | linux-aws | 4.15.0-1007.7, 4.15.0-1017.17, 4.15.0-1005.5 |
| Ubuntu:16.04:LTS | linux-aws | 4.4.0-1061.70, 4.4.0-1062.71, 4.4.0-1067.77 |
| Ubuntu:22.04:LTS | linux-realtime | 5.15.0-1032.35, 0 |
| Ubuntu:16.04:LTS | linux-azure | 0, 4.15.0-1050.55, 4.15.0-1040.44 |
| Ubuntu:16.04:LTS | linux | 4.4.0-127.153, 4.4.0-122.146, 4.4.0-119.143 |
| Ubuntu:16.04:LTS | linux-kvm | 4.4.0-1010.15, 4.4.0-1012.17, 4.4.0-1017.22 |
| Ubuntu:Pro:20.04:LTS | linux-azure-fde-5.15 | 5.15.0-1020.25~20.04.1.1, 5.15.0-1094.103~20.04.1.1, 5.15.0-1097.106~20.04.1.1 |
| Ubuntu:16.04:LTS | linux-oracle | 4.15.0-1013.15~16.04.1, 4.15.0-1015.17~16.04.1, 4.15.0-1018.20~16.04.1 |
| Ubuntu:Pro:FIPS:18.04:LTS | linux-azure-fips | 0, 4.15.0-1002.2 |
| Ubuntu:18.04:LTS | linux-gcp-edge | 4.18.0-1005.6~18.04.1, 5.0.0-1013.13~18.04.1, 5.0.0-1011.11~18.04.1 |
| Ubuntu:18.04:LTS | linux-raspi2 | 4.15.0-1033.35, 4.15.0-1031.33, 4.15.0-1030.32 |
| Ubuntu:24.04:LTS | linux-raspi-realtime | 0, 6.8.0-2019.20 |
| Ubuntu:18.04:LTS | linux-gke-4.15 | 4.15.0-1033.35, 4.15.0-1036.38, 4.15.0-1037.39 |
| Ubuntu:18.04:LTS | linux-azure | 5.0.0-1035.37, 4.15.0-1003.3, 4.15.0-1004.4 |
| Ubuntu:22.04:LTS | linux-intel-iot-realtime | 5.15.0-1073.75, 0 |
| Ubuntu:Pro:FIPS-updates:18.04:LTS | linux-aws-fips | 4.15.0-2000.4, 0 |
| Ubuntu:16.04:LTS | linux-hwe | 4.8.0-39.42~16.04.1, 4.8.0-36.36~16.04.1, 0 |
| Ubuntu:Pro:14.04:LTS | linux | 3.13.0-105.152, 0, 3.11.0-12.19 |
| Ubuntu:16.04:LTS | linux-hwe-edge | 0, 4.8.0-28.30~16.04.1, 4.8.0-30.32~16.04.1 |
…and 23 more
Timeline
- Jun 12, 2018 CVE Published
- Apr 14, 2021 EPSS Score
- Jun 23, 2021 EPSS Score
- Aug 24, 2021 EPSS Score
- Oct 26, 2021 EPSS Score
- Dec 27, 2021 EPSS Score
- May 2, 2022 EPSS Score
- Jul 3, 2022 EPSS Score
- Sep 5, 2022 EPSS Score
- Nov 6, 2022 EPSS Score
- Jan 8, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
References
- https://ubuntu.com/security/CVE-2018-5848 third-party-advisory
- https://access.redhat.com/errata/RHSA-2018:2948 third-party-advisory
- https://access.redhat.com/errata/RHSA-2018:3083 third-party-advisory
- https://access.redhat.com/errata/RHSA-2018:3096 third-party-advisory
- https://lists.debian.org/debian-lts-announce/2019/03/msg00017.html third-party-advisory
- https://lists.debian.org/debian-lts-announce/2019/03/msg00034.html third-party-advisory
- https://lists.debian.org/debian-lts-announce/2019/04/msg00004.html third-party-advisory
- https://source.android.com/security/bulletin/pixel/2018-05-01 third-party-advisory
- https://www.codeaurora.org/security-bulletin/2018/05/11/may-2018-code-aurora-security-bulletin-2 third-party-advisory
- https://www.cve.org/CVERecord?id=CVE-2018-5848 third-party-advisory