CVE-2018-14634
HIGH7.8⚠ KEVEPSS 20.6%Linux Kernel Integer Overflow Vulnerability
Published: 9/25/2018Modified: 4/28/2026Added to CISA KEV: 1/26/2026
Description
An integer overflow flaw was found in the Linux kernel's create_elf_tables() function. An unprivileged local user with access to SUID (or otherwise privileged) binary could use this flaw to escalate their privileges on the system. Kernel versions 2.6.x, 3.10.x and 4.14.x are believed to be vulnerable.
Affected packages (1)
- Debian/linuxfrom 0, < 4.12.6-1
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | HIGH7.8 | CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |