{"id":"CVE-2018-19333","details":"pkg/sentry/kernel/shm/shm.go in Google gVisor before 2018-11-01 allows attackers to overwrite memory locations in processes running as root (but not escape the sandbox) via vectors involving IPC_RMID shmctl calls, because reference counting is mishandled.","modified":"2026-03-14T09:29:04.754770Z","published":"2018-11-17T17:29:00.227Z","references":[{"type":"FIX","url":"https://github.com/google/gvisor/commit/0e277a39c8b6f905e289b75e8ad0594e6b3562ca"},{"type":"EVIDENCE","url":"https://justi.cz/security/2018/11/14/gvisor-lpe.html"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/google/gvisor","events":[{"introduced":"0"},{"fixed":"0e277a39c8b6f905e289b75e8ad0594e6b3562ca"}]},{"type":"GIT","repo":"https://github.com/google/gvisor","events":[{"introduced":"0"},{"fixed":"0e277a39c8b6f905e289b75e8ad0594e6b3562ca"}]}],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-19333.json","unresolved_ranges":[{"events":[{"introduced":"0"},{"fixed":"2018-11-01"}]},{"events":[{"introduced":"0"},{"fixed":"2018-11-01"}]}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}]}