VOMIT (go/vomit) has received an external vulnerability report for the Linux kernel.
Advisory: CVE-2018-5873
Details: http://vomit.googleplex.com/advisory?id=CVE/CVE-2018-5873
CVSS severity score: 6.9/10.0
Description:
An issue was discovered in the __ns_get_path function in fs/nsfs.c in the Linux kernel before 4.11. Due to a race condition when accessing files, a Use After Free condition can occur. This also affects all Android releases from CAF using the Linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-07-05.
This bug was filed by http://go/vomit
Please contact us at vomit-team@google.com if you need any assistance.
Comment 1 by groeck@chromium.org
, Aug 30Labels: Security_Severity-Medium Security_Impact-None Pri-3
Owner: groeck@chromium.org
Status: WontFix (was: Untriaged)
Upstream commit 073c516ff735 ("nsfs: mark dentry with DCACHE_RCUACCESS"). Added to mainline kernel in July 2017; chromeos-4.14 is thus not affected. Fix is present in chromeos-4.4 since February 2018; current releases are not affected. The patch introducing the problem is not in chromeos-3.18 and older releases, which are therefore not affected either.