CVE-2018-16871

Description

A flaw was found in the Linux kernel's NFS implementation, all versions 3.x and all versions 4.x up to 4.20. An attacker, who is able to mount an exported NFS filesystem, is able to trigger a null pointer dereference by using an invalid NFS sequence. This can panic the machine and deny access to the NFS server. Any outstanding disk writes to the NFS server will be lost.

CVSS Metrics

• v3.1•HIGH•Score: 7.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
• v3.0•HIGH•Score: 7.5CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
• v2.0•MEDIUM•Score: 5AV:N/AC:L/Au:N/C:N/I:N/A:P

EPSS Trends

Current EPSS score: 1.50%• Percentile: 81%

Techniques & Countermeasures

• CWE-476•NULL Pointer Dereference

  The product dereferences a pointer that it expects to be valid but is NULL.

Affected Systems

• linux•linux_kernel

  ≥ 3.0, ≤ 4.20

• netapp•cloud_backup

  na

• netapp•h300e

  na

• netapp•h300s_firmware

  na

• netapp•h410c_firmware

  na

• netapp•h410s_firmware

  na

• netapp•h500e

  na

• netapp•h500s_firmware

  na

• netapp•h700e

  na

• netapp•h700s_firmware

  na

• red hat•kernel:

  all 3.x, all 4.x up to 4.20

• redhat•developer_tools

  1.0

• redhat•enterprise_linux

  7.0

• redhat•enterprise_linux_desktop

  7.0

• redhat•enterprise_linux_eus

  7.4

• redhat•enterprise_linux_server

  7.0

• redhat•enterprise_linux_server_aus

  7.4 | 7.6

• redhat•enterprise_linux_server_eus

  7.6

• redhat•enterprise_linux_server_tus

  7.4 | 7.6

• redhat•enterprise_linux_workstation

  7.0

• redhat•mrg_realtime

  2.0

References (7)

• https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16871
• https://access.redhat.com/errata/RHSA-2019:2696
• https://access.redhat.com/errata/RHSA-2019:2730
• https://support.f5.com/csp/article/K18657134
• https://support.f5.com/csp/article/K18657134?utm_source=f5support&amp%3Butm_medium=RSS
• https://access.redhat.com/errata/RHSA-2020:0740
• https://security.netapp.com/advisory/ntap-20211004-0002/