{"id":"CVE-2018-9568","details":"In sk_clone_lock of sock.c, there is a possible memory corruption due to type confusion. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android. Versions: Android kernel. Android ID: A-113509306. References: Upstream kernel.","modified":"2026-03-15T22:28:49.497524Z","published":"2018-12-06T14:29:01.860Z","related":["SUSE-SU-2018:4153-1","SUSE-SU-2018:4154-1","SUSE-SU-2018:4157-1","SUSE-SU-2018:4158-1","SUSE-SU-2018:4195-1","SUSE-SU-2018:4196-1","SUSE-SU-2018:4238-1","SUSE-SU-2019:0148-1","SUSE-SU-2019:0150-1","SUSE-SU-2019:0196-1","SUSE-SU-2019:0222-1","SUSE-SU-2019:0224-1","SUSE-SU-2019:0320-1","SUSE-SU-2019:0439-1","SUSE-SU-2019:0541-1","SUSE-SU-2019:1289-1","SUSE-SU-2019:13937-1","SUSE-SU-2019:13979-1","openSUSE-SU-2019:0065-1"],"references":[{"type":"ADVISORY","url":"https://usn.ubuntu.com/3880-1/"},{"type":"ADVISORY","url":"https://usn.ubuntu.com/3880-2/"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2019:0512"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2019:0514"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2019:2696"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2019:2730"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2019:2736"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2019:4056"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2019:4159"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2019:4164"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2019:3967"},{"type":"ADVISORY","url":"https://access.redhat.com/errata/RHSA-2019:4255"},{"type":"FIX","url":"https://source.android.com/security/bulletin/2018-12-01"}],"affected":[{"database_specific":{"unresolved_ranges":[{"events":[{"introduced":"0"},{"last_affected":"12.04"}]},{"events":[{"introduced":"0"},{"last_affected":"14.04"}]},{"events":[{"introduced":"0"},{"last_affected":"7.0"}]},{"events":[{"introduced":"0"},{"last_affected":"7.0"}]},{"events":[{"introduced":"0"},{"last_affected":"7.6"}]},{"events":[{"introduced":"0"},{"last_affected":"7.6"}]},{"events":[{"introduced":"0"},{"last_affected":"7.6"}]},{"events":[{"introduced":"0"},{"last_affected":"7.0"}]},{"events":[{"introduced":"0"},{"fixed":"3.10.108"}]},{"events":[{"introduced":"3.11"},{"fixed":"3.16.58"}]},{"events":[{"introduced":"3.17"},{"fixed":"3.18.77"}]},{"events":[{"introduced":"3.19"},{"fixed":"4.1.46"}]},{"events":[{"introduced":"4.2"},{"fixed":"4.4.94"}]},{"events":[{"introduced":"4.5"},{"fixed":"4.9.55"}]},{"events":[{"introduced":"4.10"},{"fixed":"4.13.6"}]}],"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-9568.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}]}