NULL pointer dereference vulnerability in rds_cmsg_atomic function in Linux kernel through 4.14.13

NULL pointer dereference vulnerability in rds_cmsg_atomic function in Linux kernel through 4.14.13

CVE-2018-5333 · MEDIUM Severity

AV:L/AC:L/AU:N/C:N/I:N/A:C

In the Linux kernel through 4.14.13, the rds_cmsg_atomic function in net/rds/rdma.c mishandles cases where page pinning fails or an invalid address is supplied, leading to an rds_atomic_free_op NULL pointer dereference.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.