Vulnetix
Try Vulnetix Request Demo
CVE-2018-5873 PUBLISHED

An issue was discovered in the __ns_get_path function in fs/nsfs.c in the Linux kernel before 4.11. Due to a race condition when accessing files, a Use After Free condition can occur. This also affects all Android releases from CAF using the Linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-07-05.

EPSS 0.15% · 35.8th percentile

Risk Scores

EPSS Score
0.15%
35.8th percentile

Affected Products

VendorProductVersions
Ubuntu:16.04:LTSlinux-snapdragon4.4.0-1081.86, 4.4.0-1069.74, 4.4.0-1067.72
Ubuntu:24.04:LTSlinux-raspi-realtime6.8.0-2019.20, 0
Ubuntu:16.04:LTSlinux-hwe4.8.0-42.45~16.04.1, 4.8.0-39.42~16.04.1, 4.8.0-36.36~16.04.1
Ubuntu:20.04:LTSlinux-raspi20, 5.3.0-1007.8, 5.3.0-1014.16
Ubuntu:20.04:LTSlinux-azure-fde5.4.0-1074.77+cvm1.1, 5.4.0-1076.79+cvm1.1, 5.4.0-1078.81+cvm1.1
Ubuntu:20.04:LTSlinux-riscv5.4.0-27.31, 5.4.0-28.32, 5.4.0-30.34
Ubuntu:20.04:LTSlinux-gke5.4.0-1035.37, 5.4.0-1105.112, 5.4.0-1104.111
Ubuntu:22.04:LTSlinux-intel-iot-realtime5.15.0-1073.75, 0
Ubuntu:16.04:LTSlinux4.4.0-92.115, 4.4.0-91.114, 4.4.0-89.112
Ubuntu:18.04:LTSlinux-azure-edge4.18.0-1008.8~18.04.1, 5.0.0-1012.12~18.04.2, 4.18.0-1007.7~18.04.1
Ubuntu:16.04:LTSlinux-gcp4.10.0-1009.9, 4.10.0-1007.7, 4.10.0-1008.8
Ubuntu:Pro:FIPS:16.04:LTSlinux-fips4.4.0-1003.3, 4.4.0-1006.6, 4.4.0-1005.5
Ubuntu:22.04:LTSlinux-riscv5.15.0-1008.8, 5.15.0-1007.7, 0
Ubuntu:14.04:LTSlinux-aws0, 4.4.0-1002.2, 4.4.0-1003.3
Ubuntu:16.04:LTSlinux-aws4.4.0-1016.25, 0, 4.4.0-1001.10
Ubuntu:16.04:LTSlinux-kvm4.4.0-1020.25, 0, 4.4.0-1004.9
Ubuntu:14.04:LTSlinux-lts-xenial0, 4.4.0-112.135~14.04.1, 4.4.0-111.134~14.04.1
Ubuntu:22.04:LTSlinux-realtime0, 5.15.0-1032.35
Ubuntu:16.04:LTSlinux-raspi24.2.0-1014.21, 4.3.0-1006.6, 4.4.0-1003.4

Timeline

References

Open in Interactive Console →