CVE-2018-12232

Description

In net/socket.c in the Linux kernel through 4.17.1, there is a race condition between fchownat and close in cases where they target the same socket file descriptor, related to the sock_close and sockfs_setattr functions. fchownat does not increment the file descriptor reference count, which allows close to set the socket to NULL during fchownat's execution, leading to a NULL pointer dereference and system crash.

How to fix CVE-2018-12232

To remediate CVE-2018-12232, upgrade the affected package to a fixed version below.

—upgrade to 4.17.3-1 or later

Is CVE-2018-12232 being exploited?

Moderate — EPSS is 6.6%. Track this CVE but it's not at the top of the prioritisation list.

Affected packages (1)

from 0, < 4.17.3-1

CVSS scores

Source	Version	Severity	Vector
osv	CVSS 3.1	MEDIUM5.9	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

References (1)

ADVISORYsecurity-tracker.debian.org/tracker/CVE-2018-12232