CVE-2018-20168

N/A

Description

Google gVisor before 2018-08-22 reuses a pagetable in a different level with the paging-structure cache intact, which allows attackers to cause a denial of service ("physical address not valid" panic) via a crafted application.

CVE Details

CVSS v3.1 ScoreN/A

Published12/17/2018

Last Modified11/21/2024

Sourcenvd

Honeypot Sightings0

Affected Products

google:gvisor

Weaknesses (CWE)

CWE-20

References

https://bugs.chromium.org/p/project-zero/issues/detail?id=1674(cve@mitre.org)

https://bugs.chromium.org/p/project-zero/issues/detail?id=1674(af854a3a-2127-422b-91ae-364da2661108)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.