CVE-2018-14634

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2018-14634

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-14634.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2018-14634

Downstream

DLA-1529-1

RHSA-2018:2748

RHSA-2018:2763

RHSA-2018:2846

RHSA-2018:2924

RHSA-2018:2925

RHSA-2018:2933

RHSA-2018:3540

RHSA-2018:3586

RHSA-2018:3590

RHSA-2018:3591

RHSA-2018:3643

SUSE-SU-2018:2879-1

SUSE-SU-2018:2907-1

SUSE-SU-2018:2908-1

SUSE-SU-2018:2908-2

SUSE-SU-2018:3083-1

SUSE-SU-2018:3088-1

SUSE-SU-2018:3171-1

SUSE-SU-2018:3238-1

UBUNTU-CVE-2018-14634

USN-3775-1

Related

Published

2018-09-25T21:29:00Z

Modified

2025-08-09T19:01:29Z

Severity

7.8 (High) CVSS_V3 - CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

An integer overflow flaw was found in the Linux kernel's createelftables() function. An unprivileged local user with access to SUID (or otherwise privileged) binary could use this flaw to escalate their privileges on the system. Kernel versions 2.6.x, 3.10.x and 4.14.x are believed to be vulnerable.

References

Affected packages