vulnerability

Red Hat: CVE-2018-16871: NULL pointer dereference due to an anomalized NFS message sequence (Multiple Advisories)

Name: Red Hat: CVE-2018-16871: NULL pointer dereference due to an anomalized NFS message sequence (Multiple Advisories)
Creator: Red Hat
Published: 2019-07-29T00:00:00.000Z
Keywords: CVE, CWE-476, Red Hat, 2018, 16871, NULL pointer dereference due to an anomalized NFS message sequence (Multiple Advisories), redhat-upgrade-kernel, redhat-upgrade-kernel-rt, Severity 5

Try Surface Command

Back to search

Severity

CVSS

(AV:N/AC:L/Au:N/C:N/I:N/A:P)

Published

Jul 29, 2019

Added

Jul 30, 2019

Modified

Mar 27, 2026

Description

A flaw was found in the Linux kernel's NFS implementation, all versions 3.x and all versions 4.x up to 4.20. An attacker, who is able to mount an exported NFS filesystem, is able to trigger a null pointer dereference by using an invalid NFS sequence. This can panic the machine and deny access to the NFS server. Any outstanding disk writes to the NFS server will be lost.

Solutions

redhat-upgrade-kernelredhat-upgrade-kernel-rt

References

CWE-476
EUVD-EUVD-2018-8662
NVD-CVE-2018-16871
REDHAT-RHSA-2019:1873
REDHAT-RHSA-2019:1891
REDHAT-RHSA-2019:2696
REDHAT-RHSA-2020:1567
REDHAT-RHSA-2020:1769
https://euvd.enisa.europa.eu/vulnerability/EUVD-2018-8662

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report