vulnerability

Red Hat: CVE-2018-9363: Important: kernel-alt security, bug fix, and enhancement update (Multiple Advisories)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:L/AC:L/Au:N/C:C/I:C/A:C)	Oct 30, 2018	Oct 31, 2018	Mar 3, 2021

Severity

CVSS

(AV:L/AC:L/Au:N/C:C/I:C/A:C)

Published

Oct 30, 2018

Added

Oct 31, 2018

Modified

Mar 3, 2021

Description

In the hidp_process_report in bluetooth, there is an integer overflow. This could lead to an out of bounds write with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Versions: Android kernel Android ID: A-65853588 References: Upstream kernel.

Solutions

redhat-upgrade-kernelredhat-upgrade-kernel-rt

References

DEBIAN-DSA-4308
NVD-CVE-2018-9363
REDHAT-RHSA-2018:2948
REDHAT-RHSA-2019:2029
REDHAT-RHSA-2019:2043

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report