CVE-2018-6554

Summary

Memory leak in the irda_bind function in net/irda/af_irda.c and later in drivers/staging/irda/net/af_irda.c in the Linux kernel before 4.17 allows local users to cause a denial of service (memory consumption) by repeatedly binding an AF_IRDA socket.

Affected Software

VendorProductVersion RangeStatus
Linux KernelLinux Kernelbefore 4.17affected

Weaknesses

  • CWE-400: CWE-400: Uncontrolled Resource Consumption ('Resource Exhaustion')

ADP Enrichment

CVE Program Container

Additional References

References