CVE-2018-20836 | SynScan

Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2018-20836

An issue was discovered in the Linux kernel before 4.20. There is a race condition in smp_task_timedout() and smp_task_done() in drivers/scsi/libsas/sas_expander.c, leading to a use-after-free.

Published: May 7, 2019
Updated: Apr 13, 2023
CVE: CVE-2018-20836
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 8.1
AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

Severity: High
Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

CWEs:

Affected Software
References

Software	From	Fixed in
linux / linux_kernel	-	3.16.72
linux / linux_kernel	3.17	3.18.140
linux / linux_kernel	3.19	4.4.180
linux / linux_kernel	4.5	4.9.175
linux / linux_kernel	4.10	4.14.118
linux / linux_kernel	4.15	4.19.42
canonical / ubuntu_linux	16.04	16.04.x
debian / debian_linux	8.0	8.0.x
debian / debian_linux	9.0	9.0.x
debian / debian_linux	10.0	10.0.x
f5 / traffix_signaling_delivery_controller	5.1.0	5.1.0.x
f5 / traffix_signaling_delivery_controller	5.0.0	5.0.0.x
netapp / virtual_storage_console	7.2	7.2.x
netapp / active_iq_unified_manager	9.5	9.5.x
netapp / vasa_provider_for_clustered_data_ontap	7.2	7.2.x
opensuse / leap	15.0	15.0.x
opensuse / leap	15.1	15.1.x