In the Linux kernel 4.14.x, 4.15.x, 4.16.x, 4.17.x, and 4.18.x before 4.18.13, faulty computation of numeric bounds in the BPF verifier permits out-of-bounds memory accesses because adjust_scalar_min_max_vals in kernel/bpf/verifier.c mishandles 32-bit right shifts.
4.15.0-1036.38~14.04.24.15.0-1031.33~16.04.14.15.0-1036.38~16.04.14.15.0-1026.27~16.04.14.15.0-43.46~16.04.14.15.0-43.464.15.0-1031.334.15.0-1036.384.15.0-1026.274.15.0-1028.28Exploitability
AV:LAC:LPR:LUI:NScope
S:UImpact
C:HI:HA:HCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H