{ "threat_severity" : "Moderate", "public_date" : "2018-05-17T17:00:00Z", "bugzilla" : { "description" : "procps: incorrect integer size in proc/alloc.* leading to truncation / integer overflow issues", "id" : "1575853", "url" : "https://bugzilla.redhat.com/show_bug.cgi?id=1575853" }, "cvss3" : { "cvss3_base_score" : "4.8", "cvss3_scoring_vector" : "CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L", "status" : "verified" }, "cwe" : "CWE-190", "details" : [ "procps-ng before version 3.3.15 is vulnerable to an incorrect integer size in proc/alloc.* leading to truncation/integer overflow issues. This flaw is related to CVE-2018-1124.", "A flaw was found where procps-ng provides wrappers for standard C allocators that took `unsigned int` instead of `size_t` parameters. On platforms where these differ (such as x86_64), this could cause integer truncation, leading to undersized regions being returned to callers that could then be overflowed. The only known exploitable vector for this issue is CVE-2018-1124." ], "acknowledgement" : "Red Hat would like to thank Qualys Research Labs for reporting this issue.", "affected_release" : [ { "product_name" : "Red Hat Enterprise Linux 6", "release_date" : "2018-05-31T00:00:00Z", "advisory" : "RHSA-2018:1777", "cpe" : "cpe:/o:redhat:enterprise_linux:6", "package" : "procps-0:3.2.8-45.el6_9.3" }, { "product_name" : "Red Hat Enterprise Linux 6.6 Advanced Update Support", "release_date" : "2018-07-26T00:00:00Z", "advisory" : "RHSA-2018:2268", "cpe" : "cpe:/o:redhat:rhel_aus:6.6", "package" : "procps-0:3.2.8-30.el6_6.1" }, { "product_name" : "Red Hat Enterprise Linux 6.6 Telco Extended Update Support", "release_date" : "2018-07-26T00:00:00Z", "advisory" : "RHSA-2018:2268", "cpe" : "cpe:/o:redhat:rhel_tus:6.6", "package" : "procps-0:3.2.8-30.el6_6.1" }, { "product_name" : "Red Hat Enterprise Linux 6.7 Extended Update Support", "release_date" : "2018-07-26T00:00:00Z", "advisory" : "RHSA-2018:2267", "cpe" : "cpe:/o:redhat:rhel_eus:6.7", "package" : "procps-0:3.2.8-35.el6_7.1" }, { "product_name" : "Red Hat Enterprise Linux 7", "release_date" : "2018-05-23T00:00:00Z", "advisory" : "RHSA-2018:1700", "cpe" : "cpe:/o:redhat:enterprise_linux:7", "package" : "procps-ng-0:3.3.10-17.el7_5.2" }, { "product_name" : "Red Hat Enterprise Linux 7.4 Extended Update Support", "release_date" : "2019-07-30T00:00:00Z", "advisory" : "RHSA-2019:1944", "cpe" : "cpe:/o:redhat:rhel_eus:7.4", "package" : "procps-ng-0:3.3.10-16.el7_4.1" }, { "product_name" : "Red Hat Virtualization 4 for Red Hat Enterprise Linux 7", "release_date" : "2018-06-11T00:00:00Z", "advisory" : "RHSA-2018:1820", "cpe" : "cpe:/o:redhat:enterprise_linux:7::hypervisor", "package" : "imgbased-0:1.0.17-0.1.el7ev" }, { "product_name" : "Red Hat Virtualization 4 for Red Hat Enterprise Linux 7", "release_date" : "2018-06-11T00:00:00Z", "advisory" : "RHSA-2018:1820", "cpe" : "cpe:/o:redhat:enterprise_linux:7::hypervisor", "package" : "redhat-release-virtualization-host-0:4.2-3.1.el7" }, { "product_name" : "Red Hat Virtualization 4 for Red Hat Enterprise Linux 7", "release_date" : "2018-06-11T00:00:00Z", "advisory" : "RHSA-2018:1820", "cpe" : "cpe:/o:redhat:enterprise_linux:7::hypervisor", "package" : "redhat-virtualization-host-0:4.2-20180531.0" } ], "package_state" : [ { "product_name" : "Red Hat Enterprise Linux 5", "fix_state" : "Will not fix", "package_name" : "procps", "cpe" : "cpe:/o:redhat:enterprise_linux:5" }, { "product_name" : "Red Hat Enterprise Linux 8", "fix_state" : "Not affected", "package_name" : "procps-ng", "cpe" : "cpe:/o:redhat:enterprise_linux:8" }, { "product_name" : "Red Hat Enterprise Linux 9", "fix_state" : "Not affected", "package_name" : "procps-ng", "cpe" : "cpe:/o:redhat:enterprise_linux:9" } ], "references" : [ "https://www.cve.org/CVERecord?id=CVE-2018-1126\nhttps://nvd.nist.gov/vuln/detail/CVE-2018-1126\nhttps://www.qualys.com/2018/05/17/procps-ng-audit-report-advisory.txt" ], "name" : "CVE-2018-1126", "csaw" : false }