cvelist/2018/5xxx/CVE-2018-5873.json

{
    "CVE_data_meta": {
        "ASSIGNER": "product-security@qualcomm.com",
        "DATE_PUBLIC": "2018-07-02T00:00:00",
        "ID": "CVE-2018-5873",
        "STATE": "PUBLIC"
    },
    "affects": {
        "vendor": {
            "vendor_data": [
                {
                    "product": {
                        "product_data": [
                            {
                                "product_name": "Android for MSM, Firefox OS for MSM, QRD Android",
                                "version": {
                                    "version_data": [
                                        {
                                            "version_value": "All Android releases from CAF using the Linux kernel"
                                        }
                                    ]
                                }
                            }
                        ]
                    },
                    "vendor_name": "Qualcomm, Inc."
                }
            ]
        }
    },
    "data_format": "MITRE",
    "data_type": "CVE",
    "data_version": "4.0",
    "description": {
        "description_data": [
            {
                "lang": "eng",
                "value": "An issue was discovered in the __ns_get_path function in fs/nsfs.c in the Linux kernel before 4.11. Due to a race condition when accessing files, a Use After Free condition can occur. This also affects all Android releases from CAF using the Linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-07-05."
            }
        ]
    },
    "problemtype": {
        "problemtype_data": [
            {
                "description": [
                    {
                        "lang": "eng",
                        "value": "Use After Free in Kernel"
                    }
                ]
            }
        ]
    },
    "references": {
        "reference_data": [
            {
                "name": "https://www.codeaurora.org/security-bulletin/2018/07/02/july-2018-code-aurora-security-bulletin",
                "refsource": "CONFIRM",
                "url": "https://www.codeaurora.org/security-bulletin/2018/07/02/july-2018-code-aurora-security-bulletin"
            },
            {
                "name": "https://source.codeaurora.org/quic/la/kernel/msm-4.9/commit/?id=34742aaf7cb16c95edba4a7afed6d2c4fa7e434b",
                "refsource": "CONFIRM",
                "url": "https://source.codeaurora.org/quic/la/kernel/msm-4.9/commit/?id=34742aaf7cb16c95edba4a7afed6d2c4fa7e434b"
            },
            {
                "name": "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=073c516ff73557a8f7315066856c04b50383ac34",
                "refsource": "CONFIRM",
                "url": "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=073c516ff73557a8f7315066856c04b50383ac34"
            },
            {
                "name": "https://source.android.com/security/bulletin/2018-07-01",
                "refsource": "CONFIRM",
                "url": "https://source.android.com/security/bulletin/2018-07-01"
            },
            {
                "name": "https://github.com/torvalds/linux/commit/073c516ff73557a8f7315066856c04b50383ac34",
                "refsource": "CONFIRM",
                "url": "https://github.com/torvalds/linux/commit/073c516ff73557a8f7315066856c04b50383ac34"
            }
        ]
    }
}
- Synchronized data. 2018-01-19 16:02:21 -05:00			`{`
"-Synchronized-Data." 2019-03-17 22:29:46 +00:00			`"CVE_data_meta": {`
			`"ASSIGNER": "product-security@qualcomm.com",`
			`"DATE_PUBLIC": "2018-07-02T00:00:00",`
			`"ID": "CVE-2018-5873",`
			`"STATE": "PUBLIC"`
			`},`
			`"affects": {`
			`"vendor": {`
			`"vendor_data": [`
			`{`
			`"product": {`
			`"product_data": [`
			`{`
			`"product_name": "Android for MSM, Firefox OS for MSM, QRD Android",`
			`"version": {`
			`"version_data": [`
			`{`
			`"version_value": "All Android releases from CAF using the Linux kernel"`
			`}`
			`]`
			`}`
			`}`
			`]`
			`},`
			`"vendor_name": "Qualcomm, Inc."`
			`}`
			`]`
			`}`
			`},`
			`"data_format": "MITRE",`
			`"data_type": "CVE",`
			`"data_version": "4.0",`
			`"description": {`
			`"description_data": [`
- Added submission from Qualcomm for July 2018 bulletin from 2018-07-06. 2018-07-06 14:04:47 -04:00			`{`
"-Synchronized-Data." 2019-03-17 22:29:46 +00:00			`"lang": "eng",`
			`"value": "An issue was discovered in the __ns_get_path function in fs/nsfs.c in the Linux kernel before 4.11. Due to a race condition when accessing files, a Use After Free condition can occur. This also affects all Android releases from CAF using the Linux kernel (Android for MSM, Firefox OS for MSM, QRD Android) before security patch level 2018-07-05."`
- Added submission from Qualcomm for July 2018 bulletin from 2018-07-06. 2018-07-06 14:04:47 -04:00			`}`
"-Synchronized-Data." 2019-03-17 22:29:46 +00:00			`]`
			`},`
			`"problemtype": {`
			`"problemtype_data": [`
			`{`
			`"description": [`
			`{`
			`"lang": "eng",`
			`"value": "Use After Free in Kernel"`
			`}`
			`]`
			`}`
			`]`
			`},`
			`"references": {`
			`"reference_data": [`
			`{`
			`"name": "https://www.codeaurora.org/security-bulletin/2018/07/02/july-2018-code-aurora-security-bulletin",`
			`"refsource": "CONFIRM",`
			`"url": "https://www.codeaurora.org/security-bulletin/2018/07/02/july-2018-code-aurora-security-bulletin"`
			`},`
			`{`
			`"name": "https://source.codeaurora.org/quic/la/kernel/msm-4.9/commit/?id=34742aaf7cb16c95edba4a7afed6d2c4fa7e434b",`
			`"refsource": "CONFIRM",`
			`"url": "https://source.codeaurora.org/quic/la/kernel/msm-4.9/commit/?id=34742aaf7cb16c95edba4a7afed6d2c4fa7e434b"`
			`},`
			`{`
			`"name": "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=073c516ff73557a8f7315066856c04b50383ac34",`
			`"refsource": "CONFIRM",`
			`"url": "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=073c516ff73557a8f7315066856c04b50383ac34"`
			`},`
			`{`
			`"name": "https://source.android.com/security/bulletin/2018-07-01",`
			`"refsource": "CONFIRM",`
			`"url": "https://source.android.com/security/bulletin/2018-07-01"`
			`},`
			`{`
			`"name": "https://github.com/torvalds/linux/commit/073c516ff73557a8f7315066856c04b50383ac34",`
			`"refsource": "CONFIRM",`
			`"url": "https://github.com/torvalds/linux/commit/073c516ff73557a8f7315066856c04b50383ac34"`
			`}`
			`]`
			`}`
			`}`