What is CVE-2018-11806?

CVE-2018-11806 is a high-severity software vulnerability (Out-of-bounds write) with a CVSS score of 8.2. m_cat in slirp/mbuf.c in Qemu has a heap-based buffer overflow via incoming fragmented datagrams.

Is CVE-2018-11806 being actively exploited?

It is not currently in CISA's KEV catalog. Its EPSS exploitation probability is 1%.

What products does CVE-2018-11806 affect?

Tracked products affected include QEMU. Check the version you run to see whether it is affected.

How do I fix CVE-2018-11806?

Apply the vendor fix promptly. An official patch or advisory is available. Upgrade affected products to a fixed version.

← All products

CVE-2018-11806

HIGH severity · CVSS 8.2 · Out-of-bounds write

8.2CVSS HIGH

Summary

m_cat in slirp/mbuf.c in Qemu has a heap-based buffer overflow via incoming fragmented datagrams.

Impact & exploitability

Attack vectorLocal

Attack complexityLow

Privileges requiredHigh

User interactionNone

Confidentiality impactHigh

Integrity impactHigh

Availability impactHigh

Exploit probability (EPSS)1%

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

Affected products we track (1)

QEMU

Recommendation

Apply the vendor fix promptly. Open any affected product above for its exact safe version.

Official patch: https://bugzilla.redhat.com/show_bug.cgi?id=1586245 ↗

Additional information

NVD record
https://bugzilla.redhat.com/show_bug.cgi?id=1586245Patch
http://www.openwall.com/lists/oss-security/2018/06/07/1Advisory
http://www.securityfocus.com/bid/104400Advisory
https://access.redhat.com/errata/RHSA-2018:2462Advisory
https://access.redhat.com/errata/RHSA-2018:2762Advisory
https://access.redhat.com/errata/RHSA-2018:2822Advisory
https://access.redhat.com/errata/RHSA-2018:2887Advisory
https://access.redhat.com/errata/RHSA-2019:2892Advisory