vulnerability

Ubuntu: (CVE-2018-20510): linux-lts-xenial vulnerability

Try Surface Command

Back to search

Severity

CVSS

(AV:L/AC:L/Au:N/C:P/I:N/A:N)

Published

Apr 30, 2019

Added

Nov 19, 2024

Modified

Apr 16, 2026

Description

The print_binder_transaction_ilocked function in drivers/android/binder.c in the Linux kernel 4.14.90 allows local users to obtain sensitive address information by reading "*from *code *flags" lines in a debugfs file.

Solutions

ubuntu-upgrade-linux-awsubuntu-upgrade-linux-azureubuntu-upgrade-linux-fipsubuntu-upgrade-linux-gcpubuntu-upgrade-linux-hweubuntu-upgrade-linux-hwe-edgeubuntu-upgrade-linux-lts-xenialubuntu-upgrade-linux-snapdragon

References

CVE-2018-20510
https://attackerkb.com/topics/CVE-2018-20510
CWE-200
EUVD-EUVD-2018-13064
https://euvd.enisa.europa.eu/vulnerability/EUVD-2018-13064
https://github.com/Yellow-Pay/CVE/blob/master/CVE-2018-20510
https://www.cve.org/CVERecord?id=CVE-2018-20510

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report