Incorrect Bounds Check in CDROM Driver Allows Reading of Kernel Memory

Incorrect Bounds Check in CDROM Driver Allows Reading of Kernel Memory

CVE-2018-10940 · MEDIUM Severity

AV:L/AC:L/AU:N/C:N/I:N/A:C

The cdrom_ioctl_media_changed function in drivers/cdrom/cdrom.c in the Linux kernel before 4.16.6 allows local attackers to use a incorrect bounds check in the CDROM driver CDROM_MEDIA_CHANGED ioctl to read out kernel memory.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.