CVE-2018-16884 -- linux-imageID: oval:org.secpod.oval:def:2001338 | Date: (C)2019-05-30 (M)2024-05-22 |
Class: VULNERABILITY | Family: unix |
A flaw was found in the Linux kernel"s NFS41+ subsystem. NFS41+ shares mounted in different network namespaces at the same time can make bc_svc_process use wrong back-channel IDs and cause a use-after-free vulnerability. Thus a malicious container user can cause a host kernel memory corruption and a system panic. Due to the nature of the flaw, privilege escalation cannot be fully ruled out.
Platform: |
Debian 8.x |
Debian 9.x |
Product: |
linux-image-4.9 |
linux-image-3.16 |