What the vulnerability does

01Description

Memory leak in the irda_bind function in net/irda/af_irda.c and later in drivers/staging/irda/net/af_irda.c in the Linux kernel before 4.17 allows local users to cause a denial of service (memory consumption) by repeatedly binding an AF_IRDA socket.

Key dates

02Disclosure timeline

September 4, 2018 CVE published
September 17, 2024 Record updated