suse · CVE-2018-17182

Quick triage

Priority: medium Published: 2021-05-30 14:17:10 UTC Updated: 2026-03-05 06:40:03 UTC

View at Official suse advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2018-17182 severity moderate: SUSE including 288 source package names (cluster-md-kmp-azure-4.12.14-5.16.1, cluster-md-kmp-default-4.12.14-120.1, …), 616 product×package rows across 78 product lines (SUSE CaaS Platform 3.0, SUSE CaaS Platform 4.0, … (78 product lines)): Fixed 506, Known Not Affected 110.

Description:

An issue was discovered in the Linux kernel through 4.18.8. The vmacache_flush_all function in mm/vmacache.c mishandles sequence number overflows. An attacker can trigger a use-after-free (and possibly gain privileges) via certain thread creation, map, unmap, invalidation, and dereference operations.

cvelogic Threat Intelligence